{"report_id":"bd57dcf0-1895-4064-a35c-7346219c7cf6","version":6,"status":"done","tags":[],"date":"2026-02-01T15:25:35Z","url":{"schema":"https","addr":"defimmdd.com/","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"172.67.180.142","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"defimmdd.com/#/","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"title":"DeFi","dom":{"size":7778,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (5957)","md5":"4d69ca67c55860b712551aa46469c1c9","sha1":"22d4a60e7542e9cd11fb943bb3a543e7a615357d","sha256":"1f635689733aa25c299dc9d8ec6442d1af31679c1d989e2d242ccc74c21c1ca5","sha512":"1ad035a689aa83d66c6fd88142df3ee64ba21cc745884f38c6751dc01024b0c2c75c1964f0614a1ddf4d2c1ffddbd7314515e4ddbd8eee51c052674c11814af7","ssdeep":"96:jM9oMtARwI9hNFnV7J+Oe/AT37J+Oe/ATl9SOt8sYferBebdtuy9ef6xmuPSkW:jy1KKI9hNFnV7JXeS7JXeW/27xfmuPvW","tlshash":"c1f1e667a410489daf23c8e7ece1b214702561d7d62dcef5b1cd800cbbeaae514db719","dom_hash":"domhashd6d6b599d36b887ce7a031d80a299f05","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"defimmdd.com/","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"172.67.180.142","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-08T15:25:35Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"fonts.googleapis.com","ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2005-01-25","domain_rank":313,"first_seen":"2012-05-23T12:41:44Z","last_seen":"2026-01-25T22:17:37.642954Z","alert_count":0,"request_count":2,"received_data":16195,"sent_data":972,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"defimmdd.com","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-01-01","domain_rank":0,"first_seen":"2026-02-01T01:20:05.264204Z","last_seen":"2026-02-01T01:20:05.264204Z","alert_count":28,"request_count":14,"received_data":3426629,"sent_data":6430,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Java","description":"Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.","website":"https://java.com","common_platform_enumeration":"cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*","icon":"Java.svg","categories":["Programming languages"]}]},{"fqdn":"fonts.gstatic.com","ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"domain_registered":"2008-02-11","domain_rank":0,"first_seen":"2014-04-02T10:51:04Z","last_seen":"2026-01-25T22:14:35.458366Z","alert_count":0,"request_count":1,"received_data":8718,"sent_data":532,"comment":"","tags":null,"fingerprints":null}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"defimmdd.com/","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"c31e7584b07711c8e56839ede034f858","sha1":"db61145a15eb1d6db06bd7d59e84b5aaf0c1ee26","sha256":"a8da70d4a710074d98ea60a86e66e94085bb1712ff4322e6a8fe36aeb395caea","sha512":"907b9030800e9568be4ed568bb02a97d2c57c92c5390329fa142382fa86aefdf5e012af1460b5ca56402cb5f71a1abf0f8d96a8da9a7f39b3b4f6b9e1d8ff0cb","ssdeep":"","tlshash":"f9f0ab9f2c43a02633e92239c727a66b2762070128c2d919ba0dc8142fe0896189299e","size":438,"data":"","first_seen":"2025-07-05T03:06:36.36666Z","last_seen":"2026-05-29T11:03:01.944284Z","times_seen":96,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/assets/js/index.86a29e94.js","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"98bc084fc30a83fe535e75adb199263d","sha1":"cb85d5dbe8142013f8dbce0be65e7ad5fca5975c","sha256":"a4632dd46fe72eaf8d3b43d8786efa4053f5973d8ff46e372d5efc3b04614570","sha512":"c4a19369646b21bda27fdbf1c19a8c51a2b0a80caeb978cb451989891e330d63c06abe7f8dfc2fb623feebad84e72a848178910b8952f8601068f97e8b98c705","ssdeep":"24576:UiS8tK9rlD1Hipab9aa/J+vKgAqkPmLvYiKmLpA8:Aaa/QvK+kOLR","tlshash":"f4258e76338a303507aa5286709f3111f3ba1d75b609a0f8f5e8895a25f0e1591bff3e","size":980033,"data":"","first_seen":"2026-01-28T10:32:55.23824Z","last_seen":"2026-02-02T22:40:25.615035Z","times_seen":26,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/assets/js/3367.d70c3dc2.js","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7e47199ee62be6a6e882de901f1ec0c1","sha1":"941f1f72e392da53558573db218f91288142beab","sha256":"c23bc8930f14a2a25e59605be52d0d3d724da5c40d0fe0d3af56dbabe784ddc6","sha512":"902372d4dec6c16e01c4a1f4bd426e704bcc27296e5eb36cef5325c08ccb74d0f7a86045ceec751c1e5240da2939756c96cb299b995e6d58c4f6b78e6248b590","ssdeep":"","tlshash":"1ab09b5825867a7d333b71c154d51765746f2090351e50d76e711cf4d46754c06d01cd","size":122,"data":"","first_seen":"2026-01-28T10:32:55.213511Z","last_seen":"2026-05-29T11:03:01.933462Z","times_seen":48,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/assets/js/2202.483f444e.js","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d7f3e31cebd0a09aedd2391cc36e4ff7","sha1":"e2895066f5d6645f0d785b1d05bc06358a3aceba","sha256":"d8c3e946277eadb7bb058a14c85a78349befd140eafff0928acc527cc55c4259","sha512":"8e5aef3c7160d7a07c138530cf7d1a0dfc7b2ff3bba437bc241cef10a094ff7c6e1746ff85198c51c9aba17ef8bf653433858c408fb5f51b42f3c117f8f30562","ssdeep":"768:UQFCyw5uwVyso37aHPJDcrUjT/5Z5nm369HzYeiLQ9p0nhn:e4UJxj79HzXohn","tlshash":"3dd22be2f3da106ddbf83584555b2100b154bee5a80ac96eb9bc38e715ec401e476f7c","size":30753,"data":"","first_seen":"2026-01-21T20:20:48.191325Z","last_seen":"2026-03-17T06:31:23.51971Z","times_seen":36,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/assets/js/3582.7ac210aa.js","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7544bb039a66ba1e0e8ba3ca615dec99","sha1":"f3ec2ed6d93633df7472cf9966b7395ca179ab66","sha256":"6d333fcdb241c4d0732852e86c45bbfd00e60c800b061e4b9079dc82cb173a87","sha512":"bfa288eaa594d7085304917083e70178d798e5a4cc95fced6685882c895e0dd3ae9694c7ce94de98bdab30e733351f6fe89751903b53d98b57db2446fbaf9ec8","ssdeep":"1536:xHa0LAx37TK4GTgiaq6NIsLIou868l845Xm0cAj6:x6iAxS4FUMIou8Vl84VmJl","tlshash":"0b537c15a18be4ffec6d6061a10e2a30f4693ff48121e48af63cc97595d8d64370ebac","size":62053,"data":"","first_seen":"2026-01-28T10:32:55.178803Z","last_seen":"2026-02-01T17:50:19.92132Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/js/web3.min.js","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"ce5bd54ade787e3757d0d32ff267280a","sha1":"33daa933561e55f9988e2be25448078f97ef0db2","sha256":"f03340295d792adb763c777eaa96039aa831c2402bd7cbc970db44931fa736b8","sha512":"11ca21748cd36a3ee4bcfd3298cdd188ac5a9ef7f01af8ecae6a2e15139e2dbb485cd5e04010d479eeb0adfecbe1b8304a25c66512e2d8094390e4385ab08a62","ssdeep":"6144:iNajiG1YOdqCibdPB8c118X1Unf9F9CvU9sT6Q479FwwQPvi6naRq3A7Hpa:ic+skHYW79FlDpa","tlshash":"98d44b847690f0a10bdb50e554b70002f334b965701d94a8b7b99cebbea9ecda137f39","size":642428,"data":"","first_seen":"2024-12-04T22:03:33.643534Z","last_seen":"2026-06-07T18:14:25.548014Z","times_seen":2124,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/assets/js/chunk-vendors.510c1d94.js","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5c9b5810e450dea73197b6f1e631f49c","sha1":"e700133dd570dd11bef0505c1725e2d20af952e9","sha256":"310b3f854af87c01f0af5d2ba248a26c0d9869fc920b872c0c828d0279f6919f","sha512":"657d60cd9778c10d48f6570725af1ff197ea178b2382be01d5430abe0d8900ae7c6a631cf478a0003801e9a1e69f4f918d64c8914c235bcee8cc493246afb5aa","ssdeep":"3072:5YFUeD8r4nfMdJ34Nape8sW+MW334mwXJoXOgtkqC1yHSuHFol9caYizi:S3DOWa24oyaHql97u","tlshash":"5354f6cdb291b0b207e760f5402f150bf23b6959a80e84a4f665e4e5acbd94e9137f3c","size":293070,"data":"","first_seen":"2026-01-16T19:41:07.399477Z","last_seen":"2026-05-29T11:03:01.932522Z","times_seen":68,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/assets/js/5911.21c06be8.js","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5356d45eb37cb27a1390855df6f82fe4","sha1":"bb419fc9ce9ee1432b8716e18b3675044291bed2","sha256":"2ac4fb97df4a3f5335a75a29c49df863e024f30e81540c1aec5068604b11577e","sha512":"a9c868799ce886e407b24095a6dbc00b0f710c31bde12943960337f87762fe633e1c3237af19bbf4d4078733d45523dd867dc471a51753a63153f9381257c07f","ssdeep":"96:CHMUjrEtorEAhCPxb9UhnyBZkLJBJmrdKtm/p4p:aDjw0EXPxb7BhrdKtm/pC","tlshash":"7a12cb4521d2c2e0277ded53aba289d3e93733795e4e35d0fd949a8807f2a4be17206c","size":9193,"data":"","first_seen":"2026-01-28T10:32:55.230115Z","last_seen":"2026-02-02T22:40:25.566978Z","times_seen":25,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/assets/js/9706.ec7dfce6.js","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5b3cb487660977969294a1c592ded426","sha1":"d254d5dc801a6f4e8a707559c41fd65b4936d848","sha256":"ed15d62adc912b26e3e56bc64b1bfbca8c0df4e253388aace0d6dffb97a90c41","sha512":"3de8fe8b276311fb51a7d1a795d6e9362878ea9f3c3b5a1a347954df708cb30422d5be699e6338fdaeb2704afe77643034ede3df86aa541834a67498a713b5f6","ssdeep":"24576:akGyLb7CZkLqEDBzW+clYiv89GQGQrbyy1ODsUSCF:akGyLb7CCLqEDBzW+clYik9GQGQrbyyA","tlshash":"ed454c8072e1f036079751d9647b1102f2395959340d80acf7acecebbfa9989963bf39","size":1229480,"data":"","first_seen":"2026-01-16T19:41:07.409138Z","last_seen":"2026-02-02T22:40:25.614476Z","times_seen":28,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"defimmdd.com/assets/js/2202.483f444e.js","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://defimmdd.com/","date":"2026-02-01T15:25:28.510Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"defimmdd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 05:04:47 GMT","end":"Wed, 01 Apr 2026 06:03:27 GMT"},"fingerprint":{"sha1":"A1:E3:27:73:A2:B7:67:2F:9A:83:63:DA:F4:A1:83:17:CB:DA:84:19","sha256":"1C:72:44:D0:8E:43:D8:F4:9D:99:28:39:33:51:6D:FC:63:D3:65:4C:C1:74:89:84:AC:ED:65:8C:AE:4C:85:58"}}},"request":{"raw":"GET /assets/js/2202.483f444e.js HTTP/1.1\r\nHost: defimmdd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://defimmdd.com/\r\nCookie: JSESSIONID=9113F4C40A57FC26020F98E1E2BDE7A4\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 01 Feb 2026 15:25:29 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Sun, 25 Jan 2026 07:23:22 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=3,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=71IJjX9lwAr9tR7kcVO4Dbw4PSOkKnSjWhixTuFMp35TZIiWthU4u%2FmM2YzPKWm0Xe8HDIa%2BkcLWwkwhJFxteVY3pDFJvQBT24u0jg%3D%3D\"}]}\r\netag: W/\"6975c4ea-7821\"\r\ncontent-encoding: br\r\ncf-ray: 9c72762d2cc98be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":30753,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (30727), with no line terminators","md5":"d7f3e31cebd0a09aedd2391cc36e4ff7","sha1":"e2895066f5d6645f0d785b1d05bc06358a3aceba","sha256":"d8c3e946277eadb7bb058a14c85a78349befd140eafff0928acc527cc55c4259","sha512":"8e5aef3c7160d7a07c138530cf7d1a0dfc7b2ff3bba437bc241cef10a094ff7c6e1746ff85198c51c9aba17ef8bf653433858c408fb5f51b42f3c117f8f30562","ssdeep":"768:UQFCyw5uwVyso37aHPJDcrUjT/5Z5nm369HzYeiLQ9p0nhn:e4UJxj79HzXohn","tlshash":"3dd22be2f3da106ddbf83584555b2100b154bee5a80ac96eb9bc38e715ec401e476f7c","first_seen":"2026-01-21T20:20:48.191325Z","last_seen":"2026-03-17T06:31:23.51971Z","times_seen":36,"resource_available":true,"data":null}},"time_used":588,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":586,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.gstatic.com/s/poppins/v24/pxiEyp8kv8JHgFVrJJfecg.woff2","fqdn":"fonts.gstatic.com","domain":"gstatic.com","tld":"com"},"ip":{"addr":"142.250.178.35","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://defimmdd.com/","date":"2026-02-01T15:25:29.127Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.gstatic.com","organization":""},"issuer":{"commonName":"WE2","organization":"Google Trust Services"},"validity":{"start":"Mon, 12 Jan 2026 08:38:01 GMT","end":"Mon, 06 Apr 2026 08:38:00 GMT"},"fingerprint":{"sha1":"32:D1:51:F3:25:53:74:EC:B9:1B:D7:7E:15:C3:08:AE:8D:84:63:44","sha256":"7C:E5:93:66:E3:68:18:E9:BB:F3:0A:10:43:B7:30:2F:55:66:99:2C:37:0C:EE:D9:DA:5C:8D:5E:49:17:7B:F6"}}},"request":{"raw":"GET /s/poppins/v24/pxiEyp8kv8JHgFVrJJfecg.woff2 HTTP/1.1\r\nHost: fonts.gstatic.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nOrigin: https://defimmdd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://fonts.googleapis.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccept-ranges: bytes\r\naccess-control-allow-origin: *\r\ncontent-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin; report-to=\"apps-themes\"\r\nreport-to: {\"group\":\"apps-themes\",\"max_age\":2592000,\"endpoints\":[{\"url\":\"https://csp.withgoogle.com/csp/report-to/apps-themes\"}]}\r\ntiming-allow-origin: *\r\ncontent-length: 7884\r\nx-content-type-options: nosniff\r\nserver: sffe\r\nx-xss-protection: 0\r\ndate: Wed, 28 Jan 2026 00:02:37 GMT\r\nexpires: Thu, 28 Jan 2027 00:02:37 GMT\r\ncache-control: public, max-age=31536000\r\nage: 400972\r\nlast-modified: Mon, 15 Sep 2025 16:34:42 GMT\r\ncontent-type: font/woff2\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7884,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 7884, version 1.0","md5":"9212f6f9860f9fc6c69b02fedf6db8c3","sha1":"ac6d71b4d5fdd2b3dabc9a06ff6c001e4251da0b","sha256":"7d93459d86585bfcdbb7e0376056226adb25821ee54b96236fe2123e9560929f","sha512":"67317495f4b53e20a9f31c034e456e6c37f387dffb2c092caa5159bc441cfcadd02749ffe5bbed1d580d5300a59e48a767ef2c6d9978b474f84c1a2cd095c126","ssdeep":"192:xLFDbKO9E3rS3JWBRO/J601FSS5ZUbik3Zy2f0:pd9J5W501otlI","tlshash":"c3f1ae4eb3f2cd1be40982e53a0fc90b1c578272681fd772d067a22517893bc8db2c81","first_seen":"2023-04-05T15:35:34Z","last_seen":"2026-06-08T11:34:59.133196Z","times_seen":353214,"resource_available":false,"data":null}},"time_used":188,"timings":{"blocked":86,"dns":1,"connect":14,"send":0,"wait":15,"receive":1,"ssl":69},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/assets/css/chunk-vendors.8a8f331d.css","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://defimmdd.com/","date":"2026-02-01T15:25:14.388Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"defimmdd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 05:04:47 GMT","end":"Wed, 01 Apr 2026 06:03:27 GMT"},"fingerprint":{"sha1":"A1:E3:27:73:A2:B7:67:2F:9A:83:63:DA:F4:A1:83:17:CB:DA:84:19","sha256":"1C:72:44:D0:8E:43:D8:F4:9D:99:28:39:33:51:6D:FC:63:D3:65:4C:C1:74:89:84:AC:ED:65:8C:AE:4C:85:58"}}},"request":{"raw":"GET /assets/css/chunk-vendors.8a8f331d.css HTTP/1.1\r\nHost: defimmdd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://defimmdd.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 01 Feb 2026 15:25:14 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Sun, 25 Jan 2026 07:23:21 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=2,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DTjxlG77nScf3XRu%2FbKnUGfvfRCIPtKqqtZ9uSyW%2B5WwRAh3gAEJn5Kc%2F6jxNSDlfwQw3pWBZsE8dAy26TE0DaF4ndCTpGJWm%2Bv8ag%3D%3D\"}]}\r\netag: W/\"6975c4e9-12845\"\r\ncontent-encoding: br\r\ncf-ray: 9c7275d4e8c68be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":75845,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"308ae22f281248e9484c5fd850b7920f","sha1":"8f2c94b913364e7e30ecaff9ec2f1bf004918419","sha256":"a085c38ed450e695a4de242b664303261544306b41881b95d82db9c45aa8859d","sha512":"acae075ec8d49495750c2a89b8712a4cc25c5c432bb75f741eb40f378fcd03a9b41e5c02ea0af9248c1d5be26fb0c9c0c8ce43c211506128fd779f1819500c68","ssdeep":"1536:VfQbFNJ+jqkiHc4rx3WqyrtpqoSWEDZQU1k1fM:VSrxmNH9yDdgfM","tlshash":"1673f8b699c412dc732bc912cfc0f6e8d259e222d9810de5f206661e4fd7b8511a6f3e","first_seen":"2025-07-27T10:11:44.193341Z","last_seen":"2026-05-29T11:03:01.921018Z","times_seen":143,"resource_available":false,"data":null}},"time_used":603,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":599,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Poppins:wght@300;400;600;700\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://defimmdd.com/","date":"2026-02-01T15:25:29.085Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 12 Jan 2026 08:37:56 GMT","end":"Mon, 06 Apr 2026 08:37:55 GMT"},"fingerprint":{"sha1":"DE:3B:B4:94:98:33:3A:CB:2A:A9:96:A1:CB:19:8C:84:B5:8D:23:E9","sha256":"D0:A1:5A:83:80:77:19:74:AA:CB:27:69:4A:C7:2C:F0:DA:06:9C:79:1E:07:77:9A:4D:7B:5D:AA:A2:D2:D4:E9"}}},"request":{"raw":"GET /css2?family=Poppins:wght@300;400;600;700\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://defimmdd.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sun, 01 Feb 2026 15:25:29 GMT\r\ndate: Sun, 01 Feb 2026 15:25:29 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncross-origin-resource-policy: cross-origin\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4792,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"04bbe03bab4d95eb132eb967c4aa89f9","sha1":"e82318720b95b16b2228a5ebc6a9164e9027d7a7","sha256":"fad5e5a7350f92d0c278508e0f7057d993e8db7d552ebd25336dac7fadce6047","sha512":"cda84549edda5cf738349eb46318b0dd90848e07047b5a6bc54338aebee1b858e26ea07e8253efb8949cb1a2b4a5ad165f19489c61e8711ea2f5233a9a49e1f8","ssdeep":"96:SO1arO1aTJc+ukO1aaN3OEanOEaCJc+ukOEauN3OxMacOxMaUJc+ukOxMarN3OpQ:4hHdPgKQFVwa3RzJZ","tlshash":"0fa1aed1087be114ab831cc123ce7d37ee1e9255b810e5786bfd0c98adabc654362b2d","first_seen":"2025-09-19T04:24:17.708991Z","last_seen":"2026-06-08T05:00:52.766828Z","times_seen":1043,"resource_available":false,"data":null}},"time_used":34,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":34,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-01T15:25:13.541Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"defimmdd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 05:04:47 GMT","end":"Wed, 01 Apr 2026 06:03:27 GMT"},"fingerprint":{"sha1":"A1:E3:27:73:A2:B7:67:2F:9A:83:63:DA:F4:A1:83:17:CB:DA:84:19","sha256":"1C:72:44:D0:8E:43:D8:F4:9D:99:28:39:33:51:6D:FC:63:D3:65:4C:C1:74:89:84:AC:ED:65:8C:AE:4C:85:58"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: defimmdd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sun, 01 Feb 2026 15:25:14 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Sun, 25 Jan 2026 07:23:22 GMT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mPZDeLGI59uCun9MIEZlf6j4POLg4eeY2kLJ8pW034I%2BV6J1m7wIUyCFphPmFtPEbF7qiIkFAcOauR6KgBTap8yYhb3cz5cpLMY%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9c7275d00c7d5696-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2399,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (1417), with CRLF line terminators","md5":"4f1de2383f0c494d7eb2e238d4caafcf","sha1":"90cdbd383fc7fa36dd8065a4fca2ee6624bac4cb","sha256":"a2caabf714f58c8186d5a88b6d41fe59b36ef22575759edbda98e9d24f74ad34","sha512":"a662de282378c4aad16ccb6c94976e051fd0c88d2b30cfd8e9fb8183c3522ff91abe571150d46732e61fd30e9812dbff9b52c044288f924820fb13a124b6f3c7","ssdeep":"","tlshash":"fa4131e39c105c1d23718a32ea66f11a8a79a524d458e899f4dc60ee4fe0fc380c3f36","first_seen":"2026-01-28T10:32:55.217268Z","last_seen":"2026-02-02T22:40:25.58212Z","times_seen":26,"resource_available":false,"data":null}},"time_used":751,"timings":{"blocked":64,"dns":40,"connect":1,"send":0,"wait":615,"receive":0,"ssl":27},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/js/web3.min.js","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://defimmdd.com/","date":"2026-02-01T15:25:14.380Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"defimmdd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 05:04:47 GMT","end":"Wed, 01 Apr 2026 06:03:27 GMT"},"fingerprint":{"sha1":"A1:E3:27:73:A2:B7:67:2F:9A:83:63:DA:F4:A1:83:17:CB:DA:84:19","sha256":"1C:72:44:D0:8E:43:D8:F4:9D:99:28:39:33:51:6D:FC:63:D3:65:4C:C1:74:89:84:AC:ED:65:8C:AE:4C:85:58"}}},"request":{"raw":"GET /js/web3.min.js HTTP/1.1\r\nHost: defimmdd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://defimmdd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 01 Feb 2026 15:25:26 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Sun, 25 Jan 2026 07:23:22 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=2,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=cABhngCuwhhB4FOedyGcBjXlVX%2BTrmFhpfbUZvZRH5jqYypvhsmOsdP9vMQoWBOPkUx8LangZH2oRFqAUN%2FB47xJ3%2FwO2t1SKpmMTg%3D%3D\"}]}\r\netag: W/\"6975c4ea-9cd7c\"\r\ncontent-encoding: br\r\ncf-ray: 9c7275d4d8b18be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":642428,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65470)","md5":"ce5bd54ade787e3757d0d32ff267280a","sha1":"33daa933561e55f9988e2be25448078f97ef0db2","sha256":"f03340295d792adb763c777eaa96039aa831c2402bd7cbc970db44931fa736b8","sha512":"11ca21748cd36a3ee4bcfd3298cdd188ac5a9ef7f01af8ecae6a2e15139e2dbb485cd5e04010d479eeb0adfecbe1b8304a25c66512e2d8094390e4385ab08a62","ssdeep":"6144:iNajiG1YOdqCibdPB8c118X1Unf9F9CvU9sT6Q479FwwQPvi6naRq3A7Hpa:ic+skHYW79FlDpa","tlshash":"98d44b847690f0a10bdb50e554b70002f334b965701d94a8b7b99cebbea9ecda137f39","first_seen":"2024-12-04T22:03:33.643534Z","last_seen":"2026-06-07T18:14:25.548014Z","times_seen":2124,"resource_available":true,"data":null}},"time_used":12236,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12218,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/assets/js/chunk-vendors.510c1d94.js","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://defimmdd.com/","date":"2026-02-01T15:25:14.385Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"defimmdd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 05:04:47 GMT","end":"Wed, 01 Apr 2026 06:03:27 GMT"},"fingerprint":{"sha1":"A1:E3:27:73:A2:B7:67:2F:9A:83:63:DA:F4:A1:83:17:CB:DA:84:19","sha256":"1C:72:44:D0:8E:43:D8:F4:9D:99:28:39:33:51:6D:FC:63:D3:65:4C:C1:74:89:84:AC:ED:65:8C:AE:4C:85:58"}}},"request":{"raw":"GET /assets/js/chunk-vendors.510c1d94.js HTTP/1.1\r\nHost: defimmdd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://defimmdd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 01 Feb 2026 15:25:17 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Sun, 25 Jan 2026 07:23:22 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=3,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zgk0o9vlkbSASwyP8KKajBY90MC1QA4LwmCYZGk07Rx81df1ffenqba7zTU%2B1Utd31YnN5yqMVL%2Fkfv2PseKzdN2oZQ8%2BS5PY%2F4AAg%3D%3D\"}]}\r\netag: W/\"6975c4ea-478ce\"\r\ncontent-encoding: br\r\ncf-ray: 9c7275d4d8b88be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":293070,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"5c9b5810e450dea73197b6f1e631f49c","sha1":"e700133dd570dd11bef0505c1725e2d20af952e9","sha256":"310b3f854af87c01f0af5d2ba248a26c0d9869fc920b872c0c828d0279f6919f","sha512":"657d60cd9778c10d48f6570725af1ff197ea178b2382be01d5430abe0d8900ae7c6a631cf478a0003801e9a1e69f4f918d64c8914c235bcee8cc493246afb5aa","ssdeep":"3072:5YFUeD8r4nfMdJ34Nape8sW+MW334mwXJoXOgtkqC1yHSuHFol9caYizi:S3DOWa24oyaHql97u","tlshash":"5354f6cdb291b0b207e760f5402f150bf23b6959a80e84a4f665e4e5acbd94e9137f3c","first_seen":"2026-01-16T19:41:07.399477Z","last_seen":"2026-05-29T11:03:01.932522Z","times_seen":68,"resource_available":true,"data":null}},"time_used":3083,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3071,"receive":12,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/favicon.ico","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://defimmdd.com/","date":"2026-02-01T15:25:27.966Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"defimmdd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 05:04:47 GMT","end":"Wed, 01 Apr 2026 06:03:27 GMT"},"fingerprint":{"sha1":"A1:E3:27:73:A2:B7:67:2F:9A:83:63:DA:F4:A1:83:17:CB:DA:84:19","sha256":"1C:72:44:D0:8E:43:D8:F4:9D:99:28:39:33:51:6D:FC:63:D3:65:4C:C1:74:89:84:AC:ED:65:8C:AE:4C:85:58"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: defimmdd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://defimmdd.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ndate: Sun, 01 Feb 2026 15:25:28 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncache-control: max-age=14400\r\ncf-cache-status: EXPIRED\r\npriority: u=6,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lcYrsMJKrwrZh6r%2BlANg04jpJxYZfrgH7QsS0dQz7Fc4i7BbIOA%2FORGyOmb8DuIlKXyJTgFYBuyqOG3nsW1NZy0vsQJk2x1EXveHzQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9c727629ca648be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":153,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with CRLF line terminators","md5":"8259bd2dc96b69fffb7c7e1f3411275e","sha1":"e945be7ea901f4a7cf170e184711c81bcd3527e6","sha256":"c375e42b6328de1880de1424a93267d573a1afa2ed37f72a35d8218f6880dd58","sha512":"b6c638e4421bf99ca1c8156247c5af6233e696f956f72cfccc88ac1521bc3d9c4ec6d2fc33e9ad78dd7eb95735543d9eea96dd5caa27878b8bc5c6a5a7dcb8c9","ssdeep":"","tlshash":"48c02b2d35137c4cc5a3317432c37080c0da833764ba41128440800331cf2a98ac7397","first_seen":"2025-05-03T23:55:22.499243Z","last_seen":"2026-06-08T10:19:37.794442Z","times_seen":17785,"resource_available":true,"data":null}},"time_used":670,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":670,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/assets/css/3367.8d35523d.css","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://defimmdd.com/","date":"2026-02-01T15:25:28.495Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"defimmdd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 05:04:47 GMT","end":"Wed, 01 Apr 2026 06:03:27 GMT"},"fingerprint":{"sha1":"A1:E3:27:73:A2:B7:67:2F:9A:83:63:DA:F4:A1:83:17:CB:DA:84:19","sha256":"1C:72:44:D0:8E:43:D8:F4:9D:99:28:39:33:51:6D:FC:63:D3:65:4C:C1:74:89:84:AC:ED:65:8C:AE:4C:85:58"}}},"request":{"raw":"GET /assets/css/3367.8d35523d.css HTTP/1.1\r\nHost: defimmdd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://defimmdd.com/\r\nCookie: JSESSIONID=9113F4C40A57FC26020F98E1E2BDE7A4\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 01 Feb 2026 15:25:29 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Sun, 25 Jan 2026 07:23:21 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=2,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=zWNjM8ViaNVFNu0VWBUtc%2FFV%2BvQm49%2BIoB4DJpKvEF5BOoamKY2U09UlhvDp%2BsyD3T1lKaGd6Id01S%2F2hLnFyPG%2BhKksWjEtSqwrHw%3D%3D\"}]}\r\netag: W/\"6975c4e9-6a58\"\r\ncontent-encoding: br\r\ncf-ray: 9c72762d1c938be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":27224,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (27072)","md5":"b57f75ebade528c0176cc792f438906a","sha1":"0a6bdd3414e1244e3c01a2c887298d50cbdb5742","sha256":"a905a7daf1f3a9d1f0ad7d74771b8c4bc6e133ba79512ef273ca5d63196e7b55","sha512":"967932be1d432f7b0f3e5284fed3e0c985285fa5fc135ef640981e970b4088bbd208a3ebb6bbc038d04a2460846f8e4e1fa87ee1b31eb57abb7514224538f628","ssdeep":"384:VwckoivPvNmc0USsr/qP7n5MhezqcbAHaJhL6IPROi+ifh:DkBvt0n5mSqc0HaJAsfh","tlshash":"b4c209716b95393df17b816f70e0a64c941cc842f75b9faaa62372318ac31c3297539e","first_seen":"2026-01-28T10:32:55.20766Z","last_seen":"2026-04-21T03:05:18.518814Z","times_seen":35,"resource_available":false,"data":null}},"time_used":580,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":578,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"fonts.googleapis.com/css2?family=Fredoka+One\u0026family=Montserrat:wght@400;600;700;800;900\u0026display=swap","fqdn":"fonts.googleapis.com","domain":"fonts.googleapis.com","tld":"googleapis.com"},"ip":{"addr":"216.58.211.10","port":443,"asn":15169,"as":"GOOGLE","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://defimmdd.com/","date":"2026-02-01T15:25:14.383Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"upload.video.google.com","organization":""},"issuer":{"commonName":"WR2","organization":"Google Trust Services"},"validity":{"start":"Mon, 12 Jan 2026 08:37:56 GMT","end":"Mon, 06 Apr 2026 08:37:55 GMT"},"fingerprint":{"sha1":"DE:3B:B4:94:98:33:3A:CB:2A:A9:96:A1:CB:19:8C:84:B5:8D:23:E9","sha256":"D0:A1:5A:83:80:77:19:74:AA:CB:27:69:4A:C7:2C:F0:DA:06:9C:79:1E:07:77:9A:4D:7B:5D:AA:A2:D2:D4:E9"}}},"request":{"raw":"GET /css2?family=Fredoka+One\u0026family=Montserrat:wght@400;600;700;800;900\u0026display=swap HTTP/1.1\r\nHost: fonts.googleapis.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://defimmdd.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-type: text/css; charset=utf-8\r\nvary: Sec-Fetch-Dest, Sec-Fetch-Mode, Sec-Fetch-Site\r\naccess-control-allow-origin: *\r\ntiming-allow-origin: *\r\nlink: \u003chttps://fonts.gstatic.com\u003e; rel=preconnect; crossorigin\r\nstrict-transport-security: max-age=31536000\r\nexpires: Sun, 01 Feb 2026 15:25:14 GMT\r\ndate: Sun, 01 Feb 2026 15:25:14 GMT\r\ncache-control: private, max-age=86400\r\ncross-origin-resource-policy: cross-origin\r\ncross-origin-opener-policy: same-origin-allow-popups\r\ncontent-encoding: gzip\r\nserver: ESF\r\nx-xss-protection: 0\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nalt-svc: h3=\":443\"; ma=2592000,h3-29=\":443\"; ma=2592000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":10051,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text","md5":"dafaff8cc1c7415c879444dda500ba0b","sha1":"0d03c6ef2e351d9a2c7a0a6024e85c566e2cec03","sha256":"00e18884c0a1a6b3ced77016a2f511d68d62878215ff7df118b0b87c7c1e6a46","sha512":"b2e2d9e1e4d057643e76b72760611c6c4bd0eaf57a4f9cf087fb8301eaf92577128014800f67cc7fa15aaaaade73f04ce6dd1e7c14f645fc3dddde31ac861375","ssdeep":"192:2wbCRo7TbOmupRS719Ocu6RB7W+OjuTRU7XPOKuMR77wIO5u8:byQ4ajdfMfPE","tlshash":"2322bc91105ba500e7472cc923cf7e26dd4e61627494c579bffe2ca8adeac224325b3d","first_seen":"2025-09-18T15:29:39.116952Z","last_seen":"2026-05-29T11:03:01.920428Z","times_seen":131,"resource_available":false,"data":null}},"time_used":387,"timings":{"blocked":173,"dns":0,"connect":21,"send":0,"wait":35,"receive":0,"ssl":155},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/assets/js/index.86a29e94.js","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://defimmdd.com/","date":"2026-02-01T15:25:14.386Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"defimmdd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 05:04:47 GMT","end":"Wed, 01 Apr 2026 06:03:27 GMT"},"fingerprint":{"sha1":"A1:E3:27:73:A2:B7:67:2F:9A:83:63:DA:F4:A1:83:17:CB:DA:84:19","sha256":"1C:72:44:D0:8E:43:D8:F4:9D:99:28:39:33:51:6D:FC:63:D3:65:4C:C1:74:89:84:AC:ED:65:8C:AE:4C:85:58"}}},"request":{"raw":"GET /assets/js/index.86a29e94.js HTTP/1.1\r\nHost: defimmdd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://defimmdd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 01 Feb 2026 15:25:14 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Sun, 25 Jan 2026 07:23:22 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=3,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QOVKN%2Bxsw%2Fy8Sss89%2BVfltGw1hKDYrd8rtPw9JZOwTtOTXlFMnc5HK984k6h%2BE7mld%2BasoPVOHWxc2zNjpRVfsIbK%2BjYG%2FK9ko%2FdKg%3D%3D\"}]}\r\netag: W/\"6975c4ea-ef441\"\r\ncontent-encoding: br\r\ncf-ray: 9c7275d4e8c18be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":980033,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65464), with no line terminators","md5":"98bc084fc30a83fe535e75adb199263d","sha1":"cb85d5dbe8142013f8dbce0be65e7ad5fca5975c","sha256":"a4632dd46fe72eaf8d3b43d8786efa4053f5973d8ff46e372d5efc3b04614570","sha512":"c4a19369646b21bda27fdbf1c19a8c51a2b0a80caeb978cb451989891e330d63c06abe7f8dfc2fb623feebad84e72a848178910b8952f8601068f97e8b98c705","ssdeep":"24576:UiS8tK9rlD1Hipab9aa/J+vKgAqkPmLvYiKmLpA8:Aaa/QvK+kOLR","tlshash":"f4258e76338a303507aa5286709f3111f3ba1d75b609a0f8f5e8895a25f0e1591bff3e","first_seen":"2026-01-28T10:32:55.23824Z","last_seen":"2026-02-02T22:40:25.615035Z","times_seen":26,"resource_available":true,"data":null}},"time_used":637,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":607,"receive":30,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/assets/js/5911.21c06be8.js","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://defimmdd.com/","date":"2026-02-01T15:25:27.439Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"defimmdd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 05:04:47 GMT","end":"Wed, 01 Apr 2026 06:03:27 GMT"},"fingerprint":{"sha1":"A1:E3:27:73:A2:B7:67:2F:9A:83:63:DA:F4:A1:83:17:CB:DA:84:19","sha256":"1C:72:44:D0:8E:43:D8:F4:9D:99:28:39:33:51:6D:FC:63:D3:65:4C:C1:74:89:84:AC:ED:65:8C:AE:4C:85:58"}}},"request":{"raw":"GET /assets/js/5911.21c06be8.js HTTP/1.1\r\nHost: defimmdd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://defimmdd.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 01 Feb 2026 15:25:27 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Sun, 25 Jan 2026 07:23:22 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=3,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QFAGA3g2rCp%2FmIexBm8oSY61nLE%2BDWIYinfxuNh5FatuXw5croEOOylbheU7geZsHNDspKvORAh0xGrD1R8WkhPVXJtj%2BMwdy%2FjTUA%3D%3D\"}]}\r\netag: W/\"6975c4ea-23e9\"\r\ncontent-encoding: br\r\ncf-ray: 9c7276268f6f8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9193,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (9193), with no line terminators","md5":"5356d45eb37cb27a1390855df6f82fe4","sha1":"bb419fc9ce9ee1432b8716e18b3675044291bed2","sha256":"2ac4fb97df4a3f5335a75a29c49df863e024f30e81540c1aec5068604b11577e","sha512":"a9c868799ce886e407b24095a6dbc00b0f710c31bde12943960337f87762fe633e1c3237af19bbf4d4078733d45523dd867dc471a51753a63153f9381257c07f","ssdeep":"96:CHMUjrEtorEAhCPxb9UhnyBZkLJBJmrdKtm/p4p:aDjw0EXPxb7BhrdKtm/pC","tlshash":"7a12cb4521d2c2e0277ded53aba289d3e93733795e4e35d0fd949a8807f2a4be17206c","first_seen":"2026-01-28T10:32:55.230115Z","last_seen":"2026-02-02T22:40:25.566978Z","times_seen":25,"resource_available":true,"data":null}},"time_used":210,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":210,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/assets/js/3367.d70c3dc2.js","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://defimmdd.com/","date":"2026-02-01T15:25:28.501Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"defimmdd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 05:04:47 GMT","end":"Wed, 01 Apr 2026 06:03:27 GMT"},"fingerprint":{"sha1":"A1:E3:27:73:A2:B7:67:2F:9A:83:63:DA:F4:A1:83:17:CB:DA:84:19","sha256":"1C:72:44:D0:8E:43:D8:F4:9D:99:28:39:33:51:6D:FC:63:D3:65:4C:C1:74:89:84:AC:ED:65:8C:AE:4C:85:58"}}},"request":{"raw":"GET /assets/js/3367.d70c3dc2.js HTTP/1.1\r\nHost: defimmdd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://defimmdd.com/\r\nCookie: JSESSIONID=9113F4C40A57FC26020F98E1E2BDE7A4\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 01 Feb 2026 15:25:29 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Sun, 25 Jan 2026 07:23:22 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=3,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=egcfX6cK6nWCYUi3qe494hWkMjfxusLUBXIzYbN%2BTQIMA727v0Rn9%2BQTKRhhWFPD28CIZFuP41myO47F98OmEl7U7xsmQ1gDDejVkg%3D%3D\"}]}\r\netag: W/\"6975c4ea-7a\"\r\ncontent-encoding: br\r\ncf-ray: 9c72762d2cb08be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":122,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with no line terminators","md5":"7e47199ee62be6a6e882de901f1ec0c1","sha1":"941f1f72e392da53558573db218f91288142beab","sha256":"c23bc8930f14a2a25e59605be52d0d3d724da5c40d0fe0d3af56dbabe784ddc6","sha512":"902372d4dec6c16e01c4a1f4bd426e704bcc27296e5eb36cef5325c08ccb74d0f7a86045ceec751c1e5240da2939756c96cb299b995e6d58c4f6b78e6248b590","ssdeep":"","tlshash":"1ab09b5825867a7d333b71c154d51765746f2090351e50d76e711cf4d46754c06d01cd","first_seen":"2026-01-28T10:32:55.213511Z","last_seen":"2026-05-29T11:03:01.933462Z","times_seen":48,"resource_available":true,"data":null}},"time_used":574,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":574,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/assets/js/9706.ec7dfce6.js","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://defimmdd.com/","date":"2026-02-01T15:25:28.508Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"defimmdd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 05:04:47 GMT","end":"Wed, 01 Apr 2026 06:03:27 GMT"},"fingerprint":{"sha1":"A1:E3:27:73:A2:B7:67:2F:9A:83:63:DA:F4:A1:83:17:CB:DA:84:19","sha256":"1C:72:44:D0:8E:43:D8:F4:9D:99:28:39:33:51:6D:FC:63:D3:65:4C:C1:74:89:84:AC:ED:65:8C:AE:4C:85:58"}}},"request":{"raw":"GET /assets/js/9706.ec7dfce6.js HTTP/1.1\r\nHost: defimmdd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://defimmdd.com/\r\nCookie: JSESSIONID=9113F4C40A57FC26020F98E1E2BDE7A4\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 01 Feb 2026 15:25:29 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Sun, 25 Jan 2026 07:23:22 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=3,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2Bxvu5vHtlzEa1P3%2Bj7Cw0syyae%2Bg3%2FDip55nZt2fwpxJ%2FOQ4ocbTiz81mQW27CTXh%2BM5wvdcC8fqAnojQZjs7HNKz3wuz0%2Bu%2FcNF9Q%3D%3D\"}]}\r\netag: W/\"6975c4ea-12c2a8\"\r\ncontent-encoding: br\r\ncf-ray: 9c72762d2cc28be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1229480,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65535), with no line terminators","md5":"9e17d1e00df71ed80fbb25b970900152","sha1":"a8db1c1f64fed07c49c455e4c905ac9a53c43c8e","sha256":"a716fe0c065a0c2aaf8d8f7c8b1a57e9ff2ba87c36b670cb406ca0a5f830826b","sha512":"7ea80f4567a8e9048e696be7a562f887b1a9c860ba0f7bae61b5a771ecc2774b170a49daf7016be1a663d29a58eaad480b9cc34fc408af28cd8c3570bcb9ee94","ssdeep":"24576:akGyLb7CZkLqEDBzW+clYiv89GQGQrbyy3:akGyLb7CCLqEDBzW+clYik9GQGQrbyy3","tlshash":"c2255c8072e1f066079710d824bb1006f2396d69740d44acf7acecebbfa99899577f39","first_seen":"2026-01-16T19:41:07.350492Z","last_seen":"2026-02-02T22:40:25.554813Z","times_seen":28,"resource_available":false,"data":null}},"time_used":676,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":644,"receive":32,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/assets/js/3582.7ac210aa.js","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://defimmdd.com/","date":"2026-02-01T15:25:28.514Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"defimmdd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 05:04:47 GMT","end":"Wed, 01 Apr 2026 06:03:27 GMT"},"fingerprint":{"sha1":"A1:E3:27:73:A2:B7:67:2F:9A:83:63:DA:F4:A1:83:17:CB:DA:84:19","sha256":"1C:72:44:D0:8E:43:D8:F4:9D:99:28:39:33:51:6D:FC:63:D3:65:4C:C1:74:89:84:AC:ED:65:8C:AE:4C:85:58"}}},"request":{"raw":"GET /assets/js/3582.7ac210aa.js HTTP/1.1\r\nHost: defimmdd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://defimmdd.com/\r\nCookie: JSESSIONID=9113F4C40A57FC26020F98E1E2BDE7A4\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 01 Feb 2026 15:25:30 GMT\r\ncontent-type: application/javascript\r\nserver: cloudflare\r\nlast-modified: Sun, 25 Jan 2026 07:23:22 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=3,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BUxK%2BJhYUNQR6NnFz57ylCU2gOchQnt0Ikl7L0c%2FySafTxS5dIz4zPMK4bT53BuRF3jxTY8b8SxiOX9I3mZ7RYQ5iZwgua4%2FCqgnGw%3D%3D\"}]}\r\netag: W/\"6975c4ea-f265\"\r\ncontent-encoding: br\r\ncf-ray: 9c72762d2cdb8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":62053,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (62045), with no line terminators","md5":"7544bb039a66ba1e0e8ba3ca615dec99","sha1":"f3ec2ed6d93633df7472cf9966b7395ca179ab66","sha256":"6d333fcdb241c4d0732852e86c45bbfd00e60c800b061e4b9079dc82cb173a87","sha512":"bfa288eaa594d7085304917083e70178d798e5a4cc95fced6685882c895e0dd3ae9694c7ce94de98bdab30e733351f6fe89751903b53d98b57db2446fbaf9ec8","ssdeep":"1536:xHa0LAx37TK4GTgiaq6NIsLIou868l845Xm0cAj6:x6iAxS4FUMIou8Vl84VmJl","tlshash":"0b537c15a18be4ffec6d6061a10e2a30f4693ff48121e48af63cc97595d8d64370ebac","first_seen":"2026-01-28T10:32:55.178803Z","last_seen":"2026-02-01T17:50:19.92132Z","times_seen":21,"resource_available":true,"data":null}},"time_used":1690,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":1687,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/assets/css/index.de59e14a.css","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://defimmdd.com/","date":"2026-02-01T15:25:14.389Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"defimmdd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 05:04:47 GMT","end":"Wed, 01 Apr 2026 06:03:27 GMT"},"fingerprint":{"sha1":"A1:E3:27:73:A2:B7:67:2F:9A:83:63:DA:F4:A1:83:17:CB:DA:84:19","sha256":"1C:72:44:D0:8E:43:D8:F4:9D:99:28:39:33:51:6D:FC:63:D3:65:4C:C1:74:89:84:AC:ED:65:8C:AE:4C:85:58"}}},"request":{"raw":"GET /assets/css/index.de59e14a.css HTTP/1.1\r\nHost: defimmdd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://defimmdd.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 01 Feb 2026 15:25:15 GMT\r\ncontent-type: text/css\r\nserver: cloudflare\r\nlast-modified: Sun, 25 Jan 2026 07:23:21 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\npriority: u=2,i=?0\r\nvary: accept-encoding\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GVVidS2etlMxbDf%2BQuY3U1BDi7FnWeaSn%2BxLEkaWdeqQU54oq%2BXsTZefd87RTfiaLwByAA7my3t9%2BeinDHBI2lihkodyo3qeA4xHPw%3D%3D\"}]}\r\netag: W/\"6975c4e9-ca7a\"\r\ncontent-encoding: br\r\ncf-ray: 9c7275d4e8cc8be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":51834,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (51834), with no line terminators","md5":"f0389baa17a131b14f59934fe8028ff4","sha1":"4cad7d8789d79c7be9d3ac3b93c2db0d9fdf9e4b","sha256":"6c7ed6b9f26ba92ea9db6d507b160840d085d636a3428cba33584b8a4c649b54","sha512":"cd3631233dd95d6ccee95f7939f8497c5c21b83e427519427af60feed7eaf3afa308e4c75cd67427e78658c183ddef52062c77be117d704322abc03d472a2a21","ssdeep":"1536:uXqiooUNDgL1Vrk84QA8uaA3PMKw3GYtppF0KxCsMiV95hR9HjReG:vMKwWYV","tlshash":"d3334c747b0d2117a87fc0d968d4e9689c39f8c3e4124fe9b67723564e973833ae9248","first_seen":"2026-01-21T20:20:48.178214Z","last_seen":"2026-05-29T11:03:01.935541Z","times_seen":64,"resource_available":false,"data":null}},"time_used":691,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":691,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"defimmdd.com/api/config","fqdn":"defimmdd.com","domain":"defimmdd.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://defimmdd.com/","date":"2026-02-01T15:25:27.668Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"defimmdd.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Thu, 01 Jan 2026 05:04:47 GMT","end":"Wed, 01 Apr 2026 06:03:27 GMT"},"fingerprint":{"sha1":"A1:E3:27:73:A2:B7:67:2F:9A:83:63:DA:F4:A1:83:17:CB:DA:84:19","sha256":"1C:72:44:D0:8E:43:D8:F4:9D:99:28:39:33:51:6D:FC:63:D3:65:4C:C1:74:89:84:AC:ED:65:8C:AE:4C:85:58"}}},"request":{"raw":"POST /api/config HTTP/1.1\r\nHost: defimmdd.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US\r\nAccept-Encoding: gzip, deflate, br\r\nlang: en-US\r\nContent-Type: application/json\r\nContent-Length: 51\r\nOrigin: https://defimmdd.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://defimmdd.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":51,"data":"{\"id\":\"5\",\"m\":null,\"reffer\":\"https://defimmdd.com\"}"}},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sun, 01 Feb 2026 15:25:28 GMT\r\ncontent-type: application/json;charset=UTF-8\r\nserver: cloudflare\r\nset-cookie: JSESSIONID=9113F4C40A57FC26020F98E1E2BDE7A4; Path=/; Secure; HttpOnly\r\naccess-control-allow-origin: *\r\naccess-control-allow-headers: X-Requested-With\r\naccess-control-allow-methods: GET,POST,OPTIONS\r\ncf-cache-status: DYNAMIC\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Udsy14rHoMXzQ0cFLxNK6amXFffeA7%2FMD%2B3VYc3xLDMTiDTEX8q3LllHRaAiOmoHGRGGByjQUkGXRfO4404MCfxzCZ9FAxGN8yACtw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncontent-encoding: br\r\ncf-ray: 9c727627fc128be6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Java","description":"Java is a class-based, object-oriented programming language that is designed to have as few implementation dependencies as possible.","website":"https://java.com","common_platform_enumeration":"cpe:2.3:a:oracle:jre:*:*:*:*:*:*:*:*","icon":"Java.svg","categories":["Programming languages"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12514,"size_decoded":0,"mime_type":"application/json; charset=UTF-8","magic":"Unicode text, UTF-8 text, with very long lines (12506), with no line terminators","md5":"5beed17e292f79854331e2c820521220","sha1":"e60dd0cd870591c2eb76db35b152f3f9ed325e59","sha256":"8c755fed869f580ce105d791219ff77bd111da619ab051154fa41f203a656273","sha512":"be06655fa0569efdf5326f46305a3c1a456ce87d4ff9027d0b624ccc0087f3c7fb9b31bc2aeefa1d253668c5935faaf38f159b1d688a46a3470928ae9884e33c","ssdeep":"192:TjigjYGLgB2HEkoPklhFlw6JhHCbHOMLo6ReVKO:TegjYygB2kkoPklnlw6JhHCbHOMLoqO","tlshash":"97420d81bc443f6e5515be39a97f80f560da36d2084e0705928bf63e02ec661bdb3d6b","first_seen":"2026-02-01T15:19:26.022459Z","last_seen":"2026-02-01T15:31:18.225367Z","times_seen":8,"resource_available":false,"data":null}},"time_used":788,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":611,"receive":177,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-01","alert":"Sinkholed","trigger":"defimmdd.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}