{"report_id":"f4e96776-e82a-4275-888c-7e4636a8ac56","version":6,"status":"done","tags":[],"date":"2026-04-04T15:34:20Z","url":{"schema":"https","addr":"deepsnitch-ai.claims/","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"172.67.169.61","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"deepsnitch-ai.claims/","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"title":"DeepSnitch AI ($DSNT) Presale: AI Agents for On-Chain Crypto Alpha | Deep Snitch AI","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"deepsnitch-ai.claims/","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"172.67.169.61","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-05-09T15:34:20Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":8,"urlquery":0,"analyzer":1}},"detection":{"ids":[{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-04T15:33:58Z","timestamp":1775316838,"ip_dst":{"addr":"104.26.13.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":38408,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO External IP Address Lookup Domain (ipify .org) in TLS SNI","source":"{\"timestamp\":\"2026-04-04T15:33:58.212679+0000\",\"flow_id\":1082633201527913,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":38408,\"dest_ip\":\"104.26.13.205\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2047703,\"rev\":1,\"signature\":\"ET INFO External IP Address Lookup Domain (ipify .org) in TLS SNI\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_and_Server\"],\"confidence\":[\"High\"],\"created_at\":[\"2023_08_22\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"reviewed_at\":[\"2023_08_22\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"External_IP_Lookup\"],\"updated_at\":[\"2023_08_22\"]}},\"tls\":{\"sni\":\"api.ipify.org\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":3435,\"start\":\"2026-04-04T15:33:58.207977+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-04T15:33:58Z","timestamp":1775316838,"ip_dst":{"addr":"172.67.74.152","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"ip_src":{"addr":"Client IP","port":55754,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO External IP Address Lookup Domain (ipify .org) in TLS SNI","source":"{\"timestamp\":\"2026-04-04T15:33:58.224245+0000\",\"flow_id\":937529878926629,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":55754,\"dest_ip\":\"172.67.74.152\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2047703,\"rev\":1,\"signature\":\"ET INFO External IP Address Lookup Domain (ipify .org) in TLS SNI\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Any\"],\"attack_target\":[\"Client_and_Server\"],\"confidence\":[\"High\"],\"created_at\":[\"2023_08_22\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"reviewed_at\":[\"2023_08_22\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"External_IP_Lookup\"],\"updated_at\":[\"2023_08_22\"]}},\"tls\":{\"sni\":\"api.ipify.org\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"eb1d94daa7e0344597e756a1fb6e7054\",\"string\":\"771,4865,51-43\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":915,\"bytes_toclient\":3511,\"start\":\"2026-04-04T15:33:58.218405+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-04T15:33:58Z","timestamp":1775316838,"ip_dst":{"addr":"173.244.207.30","port":443,"asn":13213,"as":"UK-2 Limited","country":"Germany","country_code":"DE"},"ip_src":{"addr":"Client IP","port":44378,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Smart Chain Domain in TLS SNI (rpc .ankr .com)","source":"{\"timestamp\":\"2026-04-04T15:33:58.313202+0000\",\"flow_id\":140517092810540,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":44378,\"dest_ip\":\"173.244.207.30\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2058825,\"rev\":1,\"signature\":\"ET INFO Observed Smart Chain Domain in TLS SNI (rpc .ankr .com)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2025_01_03\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\",\"TA_Abused_Service\"],\"updated_at\":[\"2025_01_03\"]}},\"tls\":{\"sni\":\"rpc.ankr.com\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"15af977ce25de452b96affa2addb1036\",\"string\":\"771,4866,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":4434,\"start\":\"2026-04-04T15:33:58.253740+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-04T15:33:58Z","timestamp":1775316838,"ip_dst":{"addr":"173.244.207.30","port":443,"asn":13213,"as":"UK-2 Limited","country":"Germany","country_code":"DE"},"ip_src":{"addr":"Client IP","port":44392,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Smart Chain Domain in TLS SNI (rpc .ankr .com)","source":"{\"timestamp\":\"2026-04-04T15:33:58.328953+0000\",\"flow_id\":2009463521730529,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":44392,\"dest_ip\":\"173.244.207.30\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2058825,\"rev\":1,\"signature\":\"ET INFO Observed Smart Chain Domain in TLS SNI (rpc .ankr .com)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2025_01_03\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\",\"TA_Abused_Service\"],\"updated_at\":[\"2025_01_03\"]}},\"tls\":{\"sni\":\"rpc.ankr.com\",\"version\":\"TLS 1.3\",\"ja3\":{\"hash\":\"650c82854aed91a22996035b295a0c3e\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-21,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"15af977ce25de452b96affa2addb1036\",\"string\":\"771,4866,43-51\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":5,\"bytes_toserver\":789,\"bytes_toclient\":4434,\"start\":\"2026-04-04T15:33:58.253921+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-04T15:33:58Z","timestamp":1775316838,"ip_dst":{"addr":"34.241.24.108","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"ip_src":{"addr":"Client IP","port":46652,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Smart Chain Domain in TLS SNI (bsc-dataseed .bnbchain .org)","source":"{\"timestamp\":\"2026-04-04T15:33:58.387730+0000\",\"flow_id\":1104554714653261,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":46652,\"dest_ip\":\"34.241.24.108\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2058780,\"rev\":1,\"signature\":\"ET INFO Observed Smart Chain Domain in TLS SNI (bsc-dataseed .bnbchain .org)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2025_01_03\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\",\"TA_Abused_Service\"],\"updated_at\":[\"2025_01_03\"]}},\"tls\":{\"sni\":\"bsc-dataseed.bnbchain.org\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"50a9e7b112931e541503e8a2499252b9\",\"string\":\"771,49199,0-11-65281-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":927,\"bytes_toclient\":1654,\"start\":\"2026-04-04T15:33:58.320077+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-04T15:33:58Z","timestamp":1775316838,"ip_dst":{"addr":"34.241.24.108","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"ip_src":{"addr":"Client IP","port":46642,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Smart Chain Domain in TLS SNI (bsc-dataseed .bnbchain .org)","source":"{\"timestamp\":\"2026-04-04T15:33:58.390676+0000\",\"flow_id\":2134829322133891,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":46642,\"dest_ip\":\"34.241.24.108\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2058780,\"rev\":1,\"signature\":\"ET INFO Observed Smart Chain Domain in TLS SNI (bsc-dataseed .bnbchain .org)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2025_01_03\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\",\"TA_Abused_Service\"],\"updated_at\":[\"2025_01_03\"]}},\"tls\":{\"sni\":\"bsc-dataseed.bnbchain.org\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"50a9e7b112931e541503e8a2499252b9\",\"string\":\"771,49199,0-11-65281-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":3,\"bytes_toserver\":927,\"bytes_toclient\":1654,\"start\":\"2026-04-04T15:33:58.319875+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-04T15:33:58Z","timestamp":1775316838,"ip_dst":{"addr":"54.72.29.7","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"ip_src":{"addr":"Client IP","port":56488,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Smart Chain Domain in TLS SNI (bsc-dataseed1 .bnbchain .org)","source":"{\"timestamp\":\"2026-04-04T15:33:58.719919+0000\",\"flow_id\":2185436921787881,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":56488,\"dest_ip\":\"54.72.29.7\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2058795,\"rev\":1,\"signature\":\"ET INFO Observed Smart Chain Domain in TLS SNI (bsc-dataseed1 .bnbchain .org)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2025_01_03\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\",\"TA_Abused_Service\"],\"updated_at\":[\"2025_01_03\"]}},\"tls\":{\"sni\":\"bsc-dataseed1.bnbchain.org\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"50a9e7b112931e541503e8a2499252b9\",\"string\":\"771,49199,0-11-65281-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":4,\"bytes_toserver\":928,\"bytes_toclient\":3168,\"start\":\"2026-04-04T15:33:58.652777+0000\"}}"},{"sensor_name":"suricata","title":"Suricata IDS","description":"Suricata /w Emerging Threats Pro","date":"2026-04-04T15:33:58Z","timestamp":1775316838,"ip_dst":{"addr":"54.72.29.7","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"ip_src":{"addr":"Client IP","port":56478,"asn":0,"as":"","country":"","country_code":"zz"},"severity":"low","alert":"ET INFO Observed Smart Chain Domain in TLS SNI (bsc-dataseed1 .bnbchain .org)","source":"{\"timestamp\":\"2026-04-04T15:33:58.726679+0000\",\"flow_id\":1584235989628248,\"in_iface\":\"br-31613a7ed13b\",\"event_type\":\"alert\",\"src_ip\":\"172.18.0.18\",\"src_port\":56478,\"dest_ip\":\"54.72.29.7\",\"dest_port\":443,\"proto\":\"TCP\",\"tx_id\":0,\"alert\":{\"action\":\"allowed\",\"gid\":1,\"signature_id\":2058795,\"rev\":1,\"signature\":\"ET INFO Observed Smart Chain Domain in TLS SNI (bsc-dataseed1 .bnbchain .org)\",\"category\":\"Misc activity\",\"severity\":3,\"metadata\":{\"affected_product\":[\"Windows_XP_Vista_7_8_10_Server_32_64_Bit\"],\"attack_target\":[\"Client_Endpoint\"],\"confidence\":[\"High\"],\"created_at\":[\"2025_01_03\"],\"deployment\":[\"Perimeter\"],\"performance_impact\":[\"Low\"],\"signature_severity\":[\"Informational\"],\"tag\":[\"Description_Generated_By_Proofpoint_Nexus\",\"TA_Abused_Service\"],\"updated_at\":[\"2025_01_03\"]}},\"tls\":{\"sni\":\"bsc-dataseed1.bnbchain.org\",\"version\":\"TLS 1.2\",\"ja3\":{\"hash\":\"0faf2a91198d40dbd58b9308f3fca2fd\",\"string\":\"771,4865-4867-4866-49195-49199-52393-52392-49196-49200-49171-49172-156-157-47-53,0-23-65281-10-11-16-5-34-51-43-13-28-65037,29-23-24-25-256-257,0\"},\"ja3s\":{\"hash\":\"50a9e7b112931e541503e8a2499252b9\",\"string\":\"771,49199,0-11-65281-16-23\"}},\"app_proto\":\"tls\",\"flow\":{\"pkts_toserver\":4,\"pkts_toclient\":4,\"bytes_toserver\":928,\"bytes_toclient\":3168,\"start\":\"2026-04-04T15:33:58.652632+0000\"}}"}],"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"bsc-dataseed1.bnbchain.org","ip":{"addr":"34.241.24.108","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"domain_registered":"2020-01-13","domain_rank":2973508,"first_seen":"2023-08-09T23:52:32Z","last_seen":"2026-03-29T11:56:26.911121Z","alert_count":0,"request_count":2,"received_data":7443,"sent_data":1049,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cdnjs.cloudflare.com","ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":1222,"first_seen":"2012-05-23T12:49:49Z","last_seen":"2026-03-29T22:32:58.732232Z","alert_count":0,"request_count":2,"received_data":798847,"sent_data":910,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"cdn.jsdelivr.net","ip":{"addr":"104.16.174.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2012-05-16","domain_rank":1678,"first_seen":"2012-09-30T00:15:09Z","last_seen":"2026-03-29T22:35:00.993215Z","alert_count":0,"request_count":3,"received_data":327886,"sent_data":1328,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"deepsnitch-ai.claims","ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-04-04T15:34:26.955651Z","last_seen":"2026-04-04T15:34:26.955652Z","alert_count":33,"request_count":33,"received_data":5368791,"sent_data":15664,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]}]},{"fqdn":"rpc.ankr.com","ip":{"addr":"173.244.207.30","port":443,"asn":13213,"as":"UK-2 Limited","country":"Germany","country_code":"DE"},"domain_registered":"2007-04-23","domain_rank":541361,"first_seen":"2021-10-24T12:41:06Z","last_seen":"2026-04-02T18:50:04.030562Z","alert_count":0,"request_count":2,"received_data":1467,"sent_data":1027,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"bsc-dataseed.bnbchain.org","ip":{"addr":"34.241.24.108","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"domain_registered":"2020-01-13","domain_rank":2077582,"first_seen":"2023-08-03T06:51:11Z","last_seen":"2026-03-30T11:25:50.446891Z","alert_count":0,"request_count":2,"received_data":5971,"sent_data":1047,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"binance.llamarpc.com","ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"domain_registered":"2022-02-07","domain_rank":2101135,"first_seen":"2023-09-18T00:31:06Z","last_seen":"2026-03-28T07:15:28.062472Z","alert_count":0,"request_count":1,"received_data":0,"sent_data":535,"comment":"","tags":null,"fingerprints":null},{"fqdn":"api.ipify.org","ip":{"addr":"104.26.13.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2014-01-05","domain_rank":8166,"first_seen":"2014-10-06T12:38:43Z","last_seen":"2026-03-30T11:23:58.261008Z","alert_count":0,"request_count":2,"received_data":508,"sent_data":882,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/ethers/5.6.9/ethers.umd.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"268d19762594655239a29d058a7e8b44","sha1":"f06da2f7a68114b8dda38a0d782d65ddacc9c0e8","sha256":"95c66625ee20f53d542e23dded002b021b24e9d28c3d193a076d45cba4dc8618","sha512":"55e6b3e48536891a5ad0106b26525e4607c9ece0075ad5496535ef81d1fbb377dfb0b50286594c0aa0b405bf9e791c4696b674ea260813f4772ac7220ab82fdc","ssdeep":"12288:TfLmYQI/yjP+H8Xb29/nNUgE6te1R5WJW:TfCPalnNfE6taD","tlshash":"29f42b80b3b1b0b583c729a4143f6046f63af46a505840a8f659faf279f9d4c957bb3c","size":735973,"data":"","first_seen":"2023-03-07T12:58:29Z","last_seen":"2026-04-22T16:00:31.045906Z","times_seen":8407,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"aa049e2749b8531cb8f233c2f64fc2b2","sha1":"b611a5a62c1813ae5b4763378b3a4a565556530a","sha256":"e52e51d5897d7a179089ddcf8f5de7aeb3ef4f27b054b63e937cf308b685c9e2","sha512":"fa951f3911de780608d6235a597758320388dff58cf18dd584a6941ac88cc36cac7d52caa72b678ee6f4dff47ee23955ab282714d03e713ae2bed4cb73a3c14e","ssdeep":"","tlshash":"71a0128471d6e4004b7320e40437448490396c60348c848051048c721c651108236c1c","size":79,"data":"","first_seen":"2023-04-11T21:38:58Z","last_seen":"2026-04-23T22:14:50.074989Z","times_seen":213199,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"8bc015410d3b17b7248b707bd158cbcf","sha1":"5de27f11083b4af2ca716a0f81aef1d12b2e0088","sha256":"5d792f057dc7a4cb258601cd51ed1300cbba1ecb91dee47c5f1fe4e273e6a30b","sha512":"e3adf7790eda6a51e4122f9087ff64e820e3a2b3bfb53f42221876092568b1447af734160a906e87f3e63563b25d62bb9eb731e28a758dd81545d4f628d87957","ssdeep":"","tlshash":"b8d0a7148ebe9410103f5287b3cede893a00107b2749ad49352cca089fd192140599a4","size":209,"data":"","first_seen":"2025-07-16T22:26:47.263804Z","last_seen":"2026-04-20T10:46:48.733842Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"29d0c84b9d1d8da446a6062c6a840ad9","sha1":"6d6b3a6065667c7c50d92f3889c85ed65a9ad784","sha256":"3c3cbdb71d0d2c22f504f4d63d8a6ffe8d250cde7e58300619be35b6bbab26a1","sha512":"52cfcbf2f7c3521c5a6c6120099ee6822d16e04ffbc04720da925a11242c8c2050f9cfc8d864a6d39a0036ac599f701080195a29a7c5e8d3e9308b91f9f0390f","ssdeep":"","tlshash":"428004d533c350004753117c04571cc4d034447014444d405040d4531c570315115c7c","size":37,"data":"","first_seen":"2023-04-11T21:31:25Z","last_seen":"2026-04-23T22:16:30.365383Z","times_seen":624890,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/52b4cd23-dfb5-4d9f-bc67-589f3b71ee55","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"ec26a722169cb2cef03353fcf8dd144a","sha1":"6eec6673abcde3d29547796a38361256d9efde1c","sha256":"01861fcd47bc63bb7be76c480bad4c6cc987c8996ab0e023a4e692b68c94b05c","sha512":"c885e5d94bd96fa4a573524356e0ca7398b1489f5a39fc1120cf7f4e469950630ad3e9f48dd0392acd36da390c27a4be1e81da943d1d9ecd48890d1691e416cf","ssdeep":"6144:Ufg7z90bnvLZqnWTI9esVTMuyEvtzXNglxQP92L:VzBe6kEdOxQoL","tlshash":"bf740980b261b07247da24e10477540af339e96c744a40acf6a8d8fb7dbd589957ff38","size":357754,"data":"","first_seen":"2025-07-12T22:38:09.13306Z","last_seen":"2026-04-20T10:46:48.744094Z","times_seen":5078,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/68f1b45f-7c67-48e0-b804-747670b27367","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"0b798d0d570431699b71a426bce1ff5b","sha1":"496b32021740691da75b8fbeb4caeb8f32ffe853","sha256":"dda04e9ec30c09af4b63e84adc3d903f6a5c1a0279283e9b8e57307f19dcf044","sha512":"a655bf46cc322a96dfa26403752b4a24f42ecd0cf0a1b2468125dce2602f9efad48b1c76f3363a0308aafa5bc2d01dd25260a6514ad0d79a910cc062e164cf92","ssdeep":"24576:Q+ExeLhZ4AU6SEPxKA47DclCokwDCk1rSqOZLkBcEtA85D+JIln24dzl+Q+:2IxJsHTQG","tlshash":"d12682948886a826dde621de6ff544648416775bc67c31cef42ea8fd738ceb31c83219","size":4820049,"data":"","first_seen":"2026-03-13T04:08:55.063979Z","last_seen":"2026-04-20T10:46:48.741888Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/crypto-js/4.2.0/crypto-js.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d9c6de0df2bf028d93924aff92487904","sha1":"6596050516dd12af52d9b0e7b18ed837f1d81300","sha256":"769a555de553babc35a3338f344dd7aa16260c93cea2c7db290707c90484e7cc","sha512":"6be4940eec0dcd70efcf85eb21c5c7b827f4f3dfe2240a0de259ab5c9835f179ddb8a2ba6250c73516a5bf8c9dd4de3438a23cd2d162745faba9314a18fa1615","ssdeep":"1536:R8K6Znxmj9rlvCOhI64j7AtSPtNPU9ArHMLlk:RV6+jKOh4z","tlshash":"65535bc0629c5491a3b76480087f740b7073353b0a1d5aacf658faefacacad6907cd39","size":60819,"data":"","first_seen":"2023-11-02T21:20:28Z","last_seen":"2026-04-23T19:46:17.629827Z","times_seen":29651,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/6079a52a-2f2e-4db5-9f22-6fe28ded9ae6","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"f11bcdc7b7757c117a8de0db3a4c25b8","sha1":"962e4d08a960106c829d0f9d492d7b891927adab","sha256":"b60b89c0c92cf57329c8590a2c5540cece4def64e4e7bf04f2d39b8ffa3b2748","sha512":"7461553dadb09db423bda8c47a58f8cdade82aa710a0f4415cde912e7a88cd4471ea86aa58a2e5097c90e2cb45ac410104019c56a04c35955e827f0bb0796040","ssdeep":"6144:vkWGL6BSn5NGCk3zi0mCw8wLPNU2HZjGfty3:cjkSnv1k20mCwFnHRGfty3","tlshash":"1044810609ac4f7986ec22e015f72cc401794e0ad9dc3cbfb9ada1579e25bd6e0c279d","size":259964,"data":"","first_seen":"2025-07-13T03:04:16.940864Z","last_seen":"2026-04-23T03:52:50.847473Z","times_seen":4989,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/974e214e-9d6f-4a72-bc55-bd9e3b041bd9","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"05997da4a9c3d58ef33a7cf3d716af57","sha1":"3a7a7913c31aa2787a11dc6ba6fb5b5f2c525ac1","sha256":"e268ded9f58238c3885b4e0e83ddf10ea9552c488dd25538c8569ec2beff7eb9","sha512":"83413571115e6b39abe7e3b6573a81b3198125b35ae13e31d14c7cb3c81790b24a11cd81531a58922386bbf6e2d41ab6e449fc3206c8b7f20932820cdf58aefe","ssdeep":"49152:D+2KKNjyR5WP4CQjNn9GU6lCLsSPOnLUfJ8KZTcbQQqG7r8aQO/iSJNHoRO2sxSQ:RD8ew45JV","tlshash":"20f591496bf660358213f0795e6f8801b234a40b2949ed5c7e9c92f09f4953c8bf6fe9","size":3517001,"data":"","first_seen":"2025-07-12T22:38:09.134446Z","last_seen":"2026-04-20T10:46:48.743198Z","times_seen":4165,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"8bc015410d3b17b7248b707bd158cbcf","sha1":"5de27f11083b4af2ca716a0f81aef1d12b2e0088","sha256":"5d792f057dc7a4cb258601cd51ed1300cbba1ecb91dee47c5f1fe4e273e6a30b","sha512":"e3adf7790eda6a51e4122f9087ff64e820e3a2b3bfb53f42221876092568b1447af734160a906e87f3e63563b25d62bb9eb731e28a758dd81545d4f628d87957","ssdeep":"","tlshash":"b8d0a7148ebe9410103f5287b3cede893a00107b2749ad49352cca089fd192140599a4","size":209,"data":"","first_seen":"2025-07-16T22:26:47.263804Z","last_seen":"2026-04-20T10:46:48.733842Z","times_seen":12,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/autocompleter@9.2.1/autocomplete.min.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.16.174.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:58.692Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jsdelivr.net","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 25 Apr 2025 00:00:00 GMT","end":"Mon, 04 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:DD:A1:61:65:41:D0:8F:18:9A:2F:B3:5C:A4:20:AA:B2:8C:AD:1F","sha256":"20:CE:80:8C:8A:B7:48:3B:0B:A0:F2:AC:61:42:83:EC:54:84:A8:FA:4C:2D:98:10:FF:8B:FA:A5:1D:F5:21:28"}}},"request":{"raw":"GET /npm/autocompleter@9.2.1/autocomplete.min.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Apr 2026 15:33:58 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 2223\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=31536000, s-maxage=31536000, immutable\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-jsd-version: 9.2.1\r\nx-jsd-version-type: version\r\netag: W/\"1778-T/efyFDYUSEmqnfjRzQWaoXGxew\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\nx-served-by: cache-fra-eddf8230138-FRA, cache-bma-essb1270062-BMA\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\nage: 3859644\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JwWR2n3hBTLiBbgAy2MBHjwgVqpD6KXnQr8I7bwJdxqoD36s6Ea7SDN5iv%2BthcnvbIitY4oZNz%2FHLFbmY%2BtyvjUSw7C04IMX%2F61ckOfX%2FshRM%2FG5PwcOtGpGZUh7d83hx2Q%3D\"}]}\r\nserver: cloudflare\r\ncf-ray: 9e715fe20b76712a-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6008,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (5512)","md5":"a86b4d0b78aa81ae3448dd179e63a6a1","sha1":"4ff79fc850d8512126aa77e34734166a85c6c5ec","sha256":"ad210c53d6d3b61146779594a306e0d0f48272ebf884284700613baa05919c74","sha512":"57be2c72415b2964b5d7b971f6445d62c7221d2a74be7e83245355f9990ddc29b3a54ef0e8cf885700796a0710f05ec5b49cb2a8b5cad580a87350250d091953","ssdeep":"96:mhrNV4lDBSEBnEMuZPo6paG9o2UKqB9PxtAdBzF9EvOViuhV33G:mvm45Mui6kB2UxjEdkSk","tlshash":"18c1757e3b0036731ac771e7959fb9421e782563e90e4c00a039ee943e3cee93667995","first_seen":"2024-08-13T22:13:15Z","last_seen":"2026-04-20T10:46:48.713479Z","times_seen":664,"resource_available":true,"data":null}},"time_used":72,"timings":{"blocked":29,"dns":10,"connect":5,"send":0,"wait":12,"receive":0,"ssl":11},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/sweetalert2@11","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.16.174.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:58.697Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jsdelivr.net","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 25 Apr 2025 00:00:00 GMT","end":"Mon, 04 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:DD:A1:61:65:41:D0:8F:18:9A:2F:B3:5C:A4:20:AA:B2:8C:AD:1F","sha256":"20:CE:80:8C:8A:B7:48:3B:0B:A0:F2:AC:61:42:83:EC:54:84:A8:FA:4C:2D:98:10:FF:8B:FA:A5:1D:F5:21:28"}}},"request":{"raw":"GET /npm/sweetalert2@11 HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Apr 2026 15:33:58 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 21418\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=604800, s-maxage=43200\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-jsd-version: 11.26.24\r\nx-jsd-version-type: version\r\netag: W/\"13877-yvQx6m3IVnvgENB/T31XmBY4Id4\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\nx-served-by: cache-fra-eddf8230216-FRA\r\nx-cache: HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\nage: 5137\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=17WtGPqNkGakjk0jxPVCbjb6gqlnJCzzV1%2FpRRIQMa5cymF%2F7C1sX%2BJUY2W8OD3Ov%2BZSoM78e%2B472KFJw0t5vxWIsngg28QUEF7NkAJG%2FjfpNIGAc4uW3DhO%2Fou2DsSf9%2Fk%3D\"}]}\r\nserver: cloudflare\r\ncf-ray: 9e715fe1fb6d712a-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":79991,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (49001)","md5":"e8f033d3c7a50e4abe3d98ac65234d13","sha1":"caf431ea6dc8567be010d07f4f7d5798163821de","sha256":"7506c8f4d85e4707ab46f9858f0c6e65e3316b9d2f122dcf485b9dbf39d5a7ac","sha512":"ecad9d89ce602e5121c97135933a33122f0d9b32c15b43949d5fbe51fe576da069e9a416772117eb4666d8354b685046c0d7a3e086f669fffa488e2f05ff0ba3","ssdeep":"1536:iw46xylPIZSKcO355lcVU/SZ2DUdzI8bRj:PxYIvTlcVU/62mI8d","tlshash":"e173f8916a00f03776bb45ae65d1e7047ae99405fcb34894f42cc8804fe7d4f26b7aba","first_seen":"2026-03-20T09:57:21.567576Z","last_seen":"2026-04-23T17:38:38.062189Z","times_seen":1192,"resource_available":true,"data":null}},"time_used":47,"timings":{"blocked":16,"dns":6,"connect":1,"send":0,"wait":6,"receive":1,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bsc-dataseed1.bnbchain.org/","fqdn":"bsc-dataseed1.bnbchain.org","domain":"bnbchain.org","tld":"org"},"ip":{"addr":"34.241.24.108","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:58.700Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bnbchain.org","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Fri, 09 May 2025 00:00:00 GMT","end":"Mon, 08 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"60:A4:BE:0F:33:E9:DC:36:3B:B7:3C:5A:E4:42:EE:DE:F1:46:52:E4","sha256":"15:55:B7:24:9E:06:40:29:6B:D0:0D:FD:D2:2B:02:D8:1B:63:50:F2:26:B3:56:69:5D:9D:DF:3E:40:64:99:5E"}}},"request":{"raw":"POST / HTTP/1.1\r\nHost: bsc-dataseed1.bnbchain.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://deepsnitch-ai.claims/\r\nContent-Type: application/json\r\nContent-Length: 136\r\nOrigin: https://deepsnitch-ai.claims\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":136,"data":"{\"method\":\"eth_call\",\"params\":[{\"to\":\"0x158862Ec60B7934f1333e53AC1e148811A2E3BeB\",\"data\":\"0x53ed5143\"},\"latest\"],\"id\":1,\"jsonrpc\":\"2.0\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Apr 2026 15:33:58 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: POST, GET, OPTIONS\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 600\r\nx-nr-trace-id: 06b4a8164ab324ec2e2b1a56efb1db42\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: origin-when-cross-origin\r\nstrict-transport-security: max-age=31536000; includeSubdomains\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":6374,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"fa3dbe9e7a67f351ee2d52c99850bf9c","sha1":"294cd26f4c0198841057707ed0b44b3cf616e5a8","sha256":"efe3b5e2a041edfb73e010d9c7b8321b7c075c78f0b5d972fe7783da8844f87b","sha512":"d46f4edc8d511404ba6bb32a1a375a1a1c66b24a11f072dbe332243df7b1489af0816a8506fb648a97dd28b0c5ceac714915bc46221ef78d12e9a8a5f1d51d45","ssdeep":"24:YUtXa257vaoWH3eGZsthXvUzZ5+hdex1qx1xxNU6xvQaNBtXX60jv:YKam3QytxvU15+doY1jNNTt9jv","tlshash":"52d108f098c98e50f19baa81b798bc9400213caf7fdf8f40415cf8b6a0f54a176a448f","first_seen":"2025-04-07T11:53:19.749574Z","last_seen":"2026-04-22T16:00:31.053937Z","times_seen":5240,"resource_available":false,"data":null}},"time_used":38,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":38,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/App-DqQskmkT.css","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:54.215Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /App-DqQskmkT.css HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:54 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\netag: W/\"69cbc86b-89fa\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 159\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DLhpMACFkQgU4lGlPXPZWTqd3XidAxPoSJJPEsqjtR0C9oiWTQNpFbM99EeMxCLu2RwTCK4lEEPqQwcql2xAlxW8g34mf%2BmQDi9BE35mHztEPfvgo0ybhb%2FcRe8qlJQosIFhrNxKOA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9e715fc5c821120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":35322,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (35320)","md5":"15b00856e3d2c1a319986834015c211d","sha1":"2be574a5f781aa937acb7cbc56365a5805a57baa","sha256":"f074a015236817e6c93e138e736e3faf285f2223c287e9e33d6bf10d1201cbe9","sha512":"0b060179340b5829e08e4f567221e07a7733e1436b5509e8651eee10fd285a4b69b942c80a58f13baf9adc92ad010965af068ab13f04206887981f0525685d88","ssdeep":"192:05/dU3lb5t+vd8zff8McfqSL23WFY/m7B/XoCoiP/TTVoUkgsfssfvsfA:yWWvdM3y22Y/m79XoCoiPdoUa","tlshash":"5cf2ba10c5c6806f705be56374aa731cb11fdec9d7129f3e63ab62a8e16d8d824f74a0","first_seen":"2026-03-02T13:19:41.804121Z","last_seen":"2026-04-11T18:00:32.042261Z","times_seen":4,"resource_available":false,"data":null}},"time_used":10,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/favicon.ico","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:54.928Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:55 GMT\r\ncontent-type: image/x-icon\r\npriority: u=6,i=?0\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"69cbc86b-3c2e\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=3un4Vtxh0t4D1IVyLGJsCyG17W%2Fm%2Btk6QFTo7%2BKrQAU3K8av5IYbXpkW5k7023pHzXqugLA%2FLi0r1gEB9AHmzfWxh%2FW%2BwRWO1QtbzDBXuHtTxx4uwPYttDDfTgaBGzropK%2Bk2XCz%2BQ%3D%3D\"}]}\r\ncf-ray: 9e715fca48ae120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":15406,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"fc8af4652750b17c4276d57a2cde7896","sha1":"d95bc67829203f99c90f7dba162fac345294d172","sha256":"576b2aff608f63aa20c7399f2b9eb5557c90d75d3457e29c7f4dbc2126acb5ce","sha512":"17f6021be3fba682c980313ec76ecd70dd1d0de276276796c2849e415582c357d4f14ce24b760eb3f6636f5f52249183578744a0cb215156748ab302130ff5db","ssdeep":"192:FxagR7kCRBdMiOlAOQ5Gn9nqr7Wnol2cMwDg83cT8rdi:FGoU","tlshash":"8162a33be2106243e607af7fda55fd2a40009f38b57386c3a0b5525e6116ed9aee70f4","first_seen":"2025-08-31T05:39:52.041705Z","last_seen":"2026-04-11T18:00:32.03894Z","times_seen":11,"resource_available":false,"data":null}},"time_used":182,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":181,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/index_3.html","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:56.397Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /index_3.html HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://deepsnitch-ai.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FkHlGnEhe77WS3IBCbOdpJkRMf3XVD9gGWeNfrDraKkCFNOm1yHK9yU9rbKLmdFoxvUrPBQevpe%2Bv4y0Qtw3lCxLALUrSvNobt5JAMyFouJh0eFRq%2F%2FFASq43X9rpFOKDnCsYoGmXQ%3D%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9e715fd37a46120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":36526,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (28988)","md5":"0fd921675091dc255abe237ef9aa9572","sha1":"89b2885ed8c0aac7f1b7f33ccf9fec247ea15146","sha256":"7f6b5a0b686e1dc47edafb6db12e1c63b35333e7bff4e9d2c985d0c065f39c2e","sha512":"71c9404e30e0b3fe61c6fbb5ce753ae38027d024b0058234f761c6251194fc92fbef7b1125dd36c4f449eb41ef8fec8b7254dcc283defc717ab6d7c6f3dc44e3","ssdeep":"768:yXeAEHX3H14DIYW6hKRR3RWt0Fdq5z7RAmhyT+:yXeAE14DIYrDUq5RAYa+","tlshash":"5df2e6f1d1f112a7008f07d8f25baa44eedb53eddb899c89349cdae11bd68a0d5ce112","first_seen":"2026-04-04T15:34:34.142Z","last_seen":"2026-04-11T18:00:32.039718Z","times_seen":3,"resource_available":false,"data":null}},"time_used":184,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":184,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/index_2.html","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://deepsnitch-ai.claims/index_1.html","date":"2026-04-04T15:33:56.897Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /index_2.html HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/index_1.html\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GaZApdLAUcti%2BnQdS68KfqoipLDn47Ath9%2BWrHOvw1E6oHQ18Sr0lTmmKplE8%2BI8V3PH6MFEe%2Fvu%2FJIZTSyyAsTSVc2Ya047cZiBMjQtCwQPbKe6U7jYkEGlBGToqhPvsLA2AiClNQ%3D%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9e715fd69ac8120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":315,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"fb794c5e155d248f9f2bb47bca148aad","sha1":"ea0d2332d38110f7626741e0e7f3b8d1ffbaa2ce","sha256":"4c08c0c6b84831e0b3105e27236ceda5eb9f0351b7375ccdc1cf7fae3b5a7583","sha512":"de63bb790d60a885fc5dee91bb710f9dc1780f183005047452d5fe281f62b8970b9b34455eefdc6aa3b1bd95cae8a1fff4504cfd7ed4cf47ba93365a8abc2994","ssdeep":"","tlshash":"b2e02d3246410d0f12a017d00bcab1404007ec2e7001cc307df1a10814e4236a8223e8","first_seen":"2026-04-04T15:34:34.143681Z","last_seen":"2026-04-11T18:00:32.019794Z","times_seen":3,"resource_available":false,"data":null}},"time_used":98,"timings":{"blocked":2,"dns":0,"connect":0,"send":0,"wait":96,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rpc.ankr.com/bsc","fqdn":"rpc.ankr.com","domain":"ankr.com","tld":"com"},"ip":{"addr":"173.244.207.30","port":443,"asn":13213,"as":"UK-2 Limited","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:58.231Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"shark.multi-rpc.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Mar 2026 11:28:53 GMT","end":"Sun, 21 Jun 2026 11:28:52 GMT"},"fingerprint":{"sha1":"AE:1D:6B:AA:47:F3:E6:57:DE:8E:AE:96:E2:57:FD:59:C7:98:35:45","sha256":"E7:E9:5B:8C:16:7D:7C:6C:3F:CA:EE:53:6B:E2:1C:37:99:35:61:A9:23:2A:B7:B5:21:15:EE:7D:F2:99:FF:57"}}},"request":{"raw":"OPTIONS /bsc HTTP/1.1\r\nHost: rpc.ankr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://deepsnitch-ai.claims/\r\nOrigin: https://deepsnitch-ai.claims\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Sat, 04 Apr 2026 15:33:58 GMT\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS\r\naccess-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,solana-client,client-sdk-version,client-sdk-type,client-target-api-version,x-ton-client-version,x-client-name,x-client-version\r\naccess-control-max-age: 1728000\r\ncontent-length: 0\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-23T22:19:34.826453Z","times_seen":14119056,"resource_available":true,"data":null}},"time_used":643,"timings":{"blocked":302,"dns":35,"connect":28,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/secureproxy?e=ping_proxy","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:58.469Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /secureproxy?e=ping_proxy HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://deepsnitch-ai.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:58 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncontent-length: 4\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\naccept-ranges: bytes\r\nlast-modified: Sat, 04 Apr 2026 15:33:58 GMT\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=XmVreHM%2BzjvxfxABpIg7Are%2F7Ekb9ltfLRcgxF8Uroi9SBmyrZiZPMNO5hS4Dz57EJ50In8B%2FknD%2FJ2B3d3w6Pt%2B2fRsywQmSU76Mgi9f6nFdgTrYHTGjQ2me%2FWW%2FzqioZ4qhDkTNw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9e715fe06bb5120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":4,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"6fdb087aa3fbfbcb8287a593a0919e61","sha1":"0e514a0662bcb69dc863953d1ce26e3d40e81a87","sha256":"9795c5ff8937f23526ccb207a5684c1fc94a7854e19c021b39d944e51f5baef2","sha512":"be5457d14c930b51b47ab152850c1ceaafe6ef88c8671b48164abbc83410b0c07a1e178540f6cdeac5f2672cadb1d1cbbb3434b3e39bc2c50c4646a2bae57437","ssdeep":"","tlshash":"fe300000300000000000000c0000000000000000000000000000000000300000000000","first_seen":"2023-04-12T09:14:15Z","last_seen":"2026-04-23T20:32:44.314498Z","times_seen":8439,"resource_available":true,"data":null}},"time_used":221,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":221,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/radar.png","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:54.221Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /radar.png HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:54 GMT\r\ncontent-type: image/png\r\ncontent-length: 75658\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\netag: \"69cbc86b-1278a\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 159\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=dRBkbkONjvc9ssBajzKhB7Qf07sLiwwsSyTwj2SizXwftQXTrac9NvnvoAj05S8e0obVhUq2zg77KlC0%2FmqLbLDWvASN%2BCX17NCp1MQ4uOCMhbmPD2cU2AK77EVSn2ppx6Wf31YfSQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9e715fc5d824120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":75658,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 796 x 796, 8-bit colormap, non-interlaced","md5":"e5c30046a3a3d96cd0514da7e73a39ee","sha1":"5e154a84ca86afd6bed0b5852a3c443885ee3e16","sha256":"4ed3ddf9ca6dac750968793c06e76af66a6d6accdca36f46dd3fd480a0d1c72f","sha512":"d6c28004ea4a7dd044f7dfb35d497b087b121c5a5b47e533e918575c666c405e987537a48cdb84a2e243054cef9acb1c82c8af6ec41454ad40311a2f98da5eb8","ssdeep":"1536:5ZkVjY9WG5M5Hq/7ld1lx32YNiyZ/rj4ort1bap++R5cXIVssSKWUcYaiguE:5yq9DCVit/3rtZavR5EIasW7iguE","tlshash":"b6731296084e4c64e802b139875fcb006a931fef5697464da932bf046cf798b73763b6","first_seen":"2025-08-31T05:39:52.007794Z","last_seen":"2026-04-11T18:00:32.02528Z","times_seen":5,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/SuisseIntl-Regular.woff2","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:56.521Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /SuisseIntl-Regular.woff2 HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/index-DjKQgynj.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 51596\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\netag: \"69cbc86b-c98c\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RmM1XgsHXOBIZnM2S3V%2BI1J8V7QSd%2Bp0h4mEEfFV1%2F9qOkksgA%2Fz8prwL1ZJAKcteMvXvwR8eYKlog55RX33nbhm5GGrNTPm5aHKhcU7fyJaZuRQS%2B0no3A4fIjk6GKVHlYSm65FRQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9e715fd44a7b120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":51596,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 51596, version 1.0","md5":"559252192f9cf226cbdf56c67aab2f76","sha1":"b910ab419e8f451f4648515278a4da6629b89ff6","sha256":"a34380f4528711a065ddd601e4c7c8d25945acfb7e1d1b93f8b63de24f5bafb1","sha512":"9bbb1120dc958c01c90ce7caa60fadcd570d8abfc0975b434c9e49cafb502ac2d9531243660140d8b489db1bc563e7371990f23de345858e4b4c29d752ea5878","ssdeep":"768:C0857TZ6dWJF9Mb22BEqoYKRJw7vh0yMvGjnSH31E8paLV0UevNEpw4QednxZYsR:+7wb24KRyMvh31dpaLV0UMQthS0R4zU","tlshash":"4f33028798888a2942245d701da0bd3527bf5d6e4f5efd50cd8acea53c402f3a0e8d7d","first_seen":"2023-07-07T03:46:16Z","last_seen":"2026-04-17T03:03:30.536628Z","times_seen":54,"resource_available":false,"data":null}},"time_used":284,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":222,"receive":62,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/2.png","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:56.662Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /2.png HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: image/png\r\ncontent-length: 142845\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\netag: \"69cbc86b-22dfd\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0SGiZwbbz%2B8%2Bva2DVFIDHs4vg2NuKjhEtW6DEkTzbvs6Z8IhUjEbvLnhhpykVftSd8dQKd1w7YMSUBbD%2Br1QWiHh80tzKg284TxOXHnoabN%2F00mnZnkgIYfXShlNDJ5UWRLpsnD3aw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9e715fd51aa1120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":142845,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1098 x 729, 8-bit colormap, non-interlaced","md5":"ad0135788b6a158b323bd59d0b645de8","sha1":"964a482da06697164adcf25c07ac80a334b4229e","sha256":"0e4e25fc4c0f4c8e6334db1971038a33738bbc2a379f9b1fed2d5e47465fffba","sha512":"d4a0bdd15b3e3cbae0f22c014b98455a577f9992587fe0d47cf94850b8827412d11dda619924b7f135c89eb525bfb736f698ac7e53ef8c093d66c7defb55873c","ssdeep":"3072:Y079kB294boVIBmwo0rxsM1b2T21vbqpaEPFrEz:XB94sqBm+awD6aEPFrq","tlshash":"3cd312e48ffda075c39c4cb7d91a2d81d255cf3c2909a1e38990f019b739b90a2f7692","first_seen":"2025-08-31T05:39:52.152203Z","last_seen":"2026-04-11T18:00:32.047485Z","times_seen":5,"resource_available":false,"data":null}},"time_used":355,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":244,"receive":111,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/secureproxy.php?e=ping_proxy","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:58.221Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /secureproxy.php?e=ping_proxy HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://deepsnitch-ai.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:58 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff, nosniff\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-xss-protection: 1; mode=block\r\npriority: u=4,i=?0\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Wu7OLSCbjeAL07Kxs82bpGozT9bAPszYXV%2F9RqRAUCLwHqf7VVRF6eqsYu5LWttGtDqTTi2ZXwEciavhTNQGdPVcZ2n6tPWxXSqQNfqnUEsbT6GHP%2BpNMjS2vQbL%2BpaLwRjXwGlmQQ%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9e715fdecb98120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":154,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"2df277033ebdddc7ad6d0bc57a2cec4a","sha1":"090973dbaee179a03eb7b06488ce088720496484","sha256":"7dfc135b846a84e592959ab632f343882054035516c7444dcc8f5bfbef085757","sha512":"0317668a81e27c38fba5df51ddbcd41902cfe7f741877cd373783a5a306fc48eca4dc28206a7fc6d4a05f3030a8e2b2d9699cbd023f65038bd7e7bf2cbc45c64","ssdeep":"","tlshash":"76c02bdf200012028a3097007ec1339834977f9e24e28644ff82e037ecd461bc8c71c8","first_seen":"2025-07-20T11:14:10.605973Z","last_seen":"2026-04-20T10:46:48.707007Z","times_seen":44,"resource_available":false,"data":null}},"time_used":226,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":226,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims//secureproxy.php?e=ping_proxy","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:58.456Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET //secureproxy.php?e=ping_proxy HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://deepsnitch-ai.claims/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:58 GMT\r\ncontent-type: text/html; charset=utf-8\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\nx-content-type-options: nosniff, nosniff\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-xss-protection: 1; mode=block\r\npriority: u=4,i=?0\r\nage: 0\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=R275AtQR0mSdgfA1R%2FOHVLuqMfF%2BBSyyFsrEEiLu5qdhZJHY9WOiu16GzZpYzQjSy%2B7HAOFR5zxhxDeLPuFVK8kFfC%2BxWB%2BPZIAEZRBlzTRlckKtgOzUfNKFdNJR5hXBQi4vn0MMKQ%3D%3D\"}]}\r\nvary: accept-encoding\r\ncf-ray: 9e715fe05bb0120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":154,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text","md5":"2df277033ebdddc7ad6d0bc57a2cec4a","sha1":"090973dbaee179a03eb7b06488ce088720496484","sha256":"7dfc135b846a84e592959ab632f343882054035516c7444dcc8f5bfbef085757","sha512":"0317668a81e27c38fba5df51ddbcd41902cfe7f741877cd373783a5a306fc48eca4dc28206a7fc6d4a05f3030a8e2b2d9699cbd023f65038bd7e7bf2cbc45c64","ssdeep":"","tlshash":"76c02bdf200012028a3097007ec1339834977f9e24e28644ff82e037ecd461bc8c71c8","first_seen":"2025-07-20T11:14:10.605973Z","last_seen":"2026-04-20T10:46:48.707007Z","times_seen":44,"resource_available":false,"data":null}},"time_used":6,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bsc-dataseed.bnbchain.org/","fqdn":"bsc-dataseed.bnbchain.org","domain":"bnbchain.org","tld":"org"},"ip":{"addr":"34.241.24.108","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:58.527Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bnbchain.org","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Fri, 09 May 2025 00:00:00 GMT","end":"Mon, 08 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"60:A4:BE:0F:33:E9:DC:36:3B:B7:3C:5A:E4:42:EE:DE:F1:46:52:E4","sha256":"15:55:B7:24:9E:06:40:29:6B:D0:0D:FD:D2:2B:02:D8:1B:63:50:F2:26:B3:56:69:5D:9D:DF:3E:40:64:99:5E"}}},"request":{"raw":"POST / HTTP/1.1\r\nHost: bsc-dataseed.bnbchain.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://deepsnitch-ai.claims/\r\nContent-Type: application/json\r\nContent-Length: 136\r\nOrigin: https://deepsnitch-ai.claims\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":136,"data":"{\"method\":\"eth_call\",\"params\":[{\"to\":\"0xd24aeC3254652B0ab565E41A945b491e98Bb5FFC\",\"data\":\"0x73d4a13a\"},\"latest\"],\"id\":1,\"jsonrpc\":\"2.0\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Apr 2026 15:33:58 GMT\r\ncontent-type: application/json; charset=utf-8\r\nvary: Accept-Encoding\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: POST, GET, OPTIONS\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 600\r\nx-nr-trace-id: b41dcfd737b5b5c93479038ec2d301d3\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: origin-when-cross-origin\r\nstrict-transport-security: max-age=31536000; includeSubdomains\r\ncontent-encoding: br\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":4902,"size_decoded":0,"mime_type":"application/json; charset=utf-8","magic":"JSON text data","md5":"2188b7f1b90a143020f7faf12d10e91f","sha1":"e6a95e4d574d05948b7c8517861a71e6f69b38b8","sha256":"4a8dd94310fc027a042dc9ca0311f20e9341084839e00b8d7a830ab52cdc8096","sha512":"08e8f648099fac2b075f96396f2f9056ac526f12e5843bc16d07fd725fcd74abeed4021a9ed64f53ef3e1dbb57a707ebee71bc51b230f5b5ee4200c2da1d7b1c","ssdeep":"96:oigW53TB2SzrZYpTbDaOTkSO6mdSInccYGS9FzelVLY:r5TB2SzAT/7kSRRrze3k","tlshash":"e6a179f0ee02c891f1be4768f2ddbe0461383726eedc5a4604b45a991ee5a51bd0dccd","first_seen":"2025-01-17T17:24:07.906471Z","last_seen":"2026-04-22T13:29:48.941318Z","times_seen":4803,"resource_available":false,"data":null}},"time_used":37,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/2042027996-3b9dae93bded9ed1aa1c1bccc860c8a9ef3d51661f6692478257c4888bbf550c-d.jpg","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://deepsnitch-ai.claims/index_3.html","date":"2026-04-04T15:33:56.712Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /2042027996-3b9dae93bded9ed1aa1c1bccc860c8a9ef3d51661f6692478257c4888bbf550c-d.jpg HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/index_3.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 1814\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\netag: \"69cbc86b-716\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=c045lK7CVicCP9%2F15WtAjmGWSvu3sNsAI0fzpuJjBIvmAajQtQv%2FRfx1DNCmhT5bEmfy74E3wY3dAu81bz5AocJN%2B72eA6kRHkArz4TmAiONaCXOrPDLgzs%2FLtvbr8hDpqxPatE2Sw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9e715fd57aad120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1814,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 80x45, components 3","md5":"442a8f9a8be4b87f3e9a750fdf45fec0","sha1":"1c6957fa41f12f213bccaf1a089e8da22a67e25f","sha256":"06e66162f59fbd80c6c094d7c6a557ab1fbb720d3b37128a8f830228073a44f9","sha512":"347a81bda3ef108ac0d536349938921047c648dca4dd1267e2b440a1fca5eb30f7fdf5e25fb20f9d651c71d437344a90b88dc862e9501e5763eb71a337cece9c","ssdeep":"","tlshash":"8d3109397fa8ced2ec450a3986810384b6a27c5a8ed5cc281285af20f7f46e9590d78c","first_seen":"2026-03-02T13:19:41.782569Z","last_seen":"2026-04-11T18:00:32.028254Z","times_seen":4,"resource_available":false,"data":null}},"time_used":174,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":174,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"bsc-dataseed.bnbchain.org/","fqdn":"bsc-dataseed.bnbchain.org","domain":"bnbchain.org","tld":"org"},"ip":{"addr":"34.241.24.108","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:58.230Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bnbchain.org","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Fri, 09 May 2025 00:00:00 GMT","end":"Mon, 08 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"60:A4:BE:0F:33:E9:DC:36:3B:B7:3C:5A:E4:42:EE:DE:F1:46:52:E4","sha256":"15:55:B7:24:9E:06:40:29:6B:D0:0D:FD:D2:2B:02:D8:1B:63:50:F2:26:B3:56:69:5D:9D:DF:3E:40:64:99:5E"}}},"request":{"raw":"OPTIONS / HTTP/1.1\r\nHost: bsc-dataseed.bnbchain.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://deepsnitch-ai.claims/\r\nOrigin: https://deepsnitch-ai.claims\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Sat, 04 Apr 2026 15:33:58 GMT\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: POST, GET, OPTIONS\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 600\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: origin-when-cross-origin\r\nstrict-transport-security: max-age=31536000; includeSubdomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-23T22:19:34.826453Z","times_seen":14119056,"resource_available":true,"data":null}},"time_used":481,"timings":{"blocked":222,"dns":92,"connect":32,"send":0,"wait":34,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"bsc-dataseed1.bnbchain.org/","fqdn":"bsc-dataseed1.bnbchain.org","domain":"bnbchain.org","tld":"org"},"ip":{"addr":"34.241.24.108","port":443,"asn":16509,"as":"AMAZON-02","country":"Ireland","country_code":"IE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:58.627Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256","key_group_name":"P256","signature_name":"RSA-PKCS1-SHA256","protocol":"TLSv1.2","cert":{"subject":{"commonName":"bnbchain.org","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Fri, 09 May 2025 00:00:00 GMT","end":"Mon, 08 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"60:A4:BE:0F:33:E9:DC:36:3B:B7:3C:5A:E4:42:EE:DE:F1:46:52:E4","sha256":"15:55:B7:24:9E:06:40:29:6B:D0:0D:FD:D2:2B:02:D8:1B:63:50:F2:26:B3:56:69:5D:9D:DF:3E:40:64:99:5E"}}},"request":{"raw":"OPTIONS / HTTP/1.1\r\nHost: bsc-dataseed1.bnbchain.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://deepsnitch-ai.claims/\r\nOrigin: https://deepsnitch-ai.claims\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Sat, 04 Apr 2026 15:33:58 GMT\r\naccess-control-allow-credentials: true\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: POST, GET, OPTIONS\r\naccess-control-allow-origin: *\r\naccess-control-max-age: 600\r\nx-frame-options: SAMEORIGIN\r\nx-xss-protection: 1; mode=block\r\nx-content-type-options: nosniff\r\nreferrer-policy: origin-when-cross-origin\r\nstrict-transport-security: max-age=31536000; includeSubdomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-23T22:19:34.826453Z","times_seen":14119056,"resource_available":true,"data":null}},"time_used":63,"timings":{"blocked":26,"dns":0,"connect":0,"send":0,"wait":37,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.jsdelivr.net/npm/merkletreejs@latest/merkletree.js","fqdn":"cdn.jsdelivr.net","domain":"jsdelivr.net","tld":"net"},"ip":{"addr":"104.16.174.226","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:58.689Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.jsdelivr.net","organization":""},"issuer":{"commonName":"Sectigo RSA Domain Validation Secure Server CA","organization":"Sectigo Limited"},"validity":{"start":"Fri, 25 Apr 2025 00:00:00 GMT","end":"Mon, 04 May 2026 23:59:59 GMT"},"fingerprint":{"sha1":"A6:DD:A1:61:65:41:D0:8F:18:9A:2F:B3:5C:A4:20:AA:B2:8C:AD:1F","sha256":"20:CE:80:8C:8A:B7:48:3B:0B:A0:F2:AC:61:42:83:EC:54:84:A8:FA:4C:2D:98:10:FF:8B:FA:A5:1D:F5:21:28"}}},"request":{"raw":"GET /npm/merkletreejs@latest/merkletree.js HTTP/1.1\r\nHost: cdn.jsdelivr.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Apr 2026 15:33:58 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 54223\r\naccess-control-allow-origin: *\r\naccess-control-expose-headers: *\r\ntiming-allow-origin: *\r\ncache-control: public, max-age=604800, s-maxage=43200\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-jsd-version: 0.6.0\r\nx-jsd-version-type: version\r\netag: W/\"3a393-ow5VcB3yNddBHZ9Yv78eUVMKtdU\"\r\ncontent-encoding: br\r\naccept-ranges: bytes\r\nx-served-by: cache-fra-etou8220102-FRA, cache-bma-essb1270022-BMA\r\nx-cache: HIT, HIT\r\nvary: Accept-Encoding\r\nalt-svc: h3=\":443\"; ma=86400\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\nage: 40198\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JZDdSZz4CF09CmmLOTS%2FNks0dAxeXn0GtSQPysuxQcZCFAzhV6%2BE%2BXYELTUk4oOXUaP%2BA7OItdB7AEhjAsVogR%2FwuCLpwe7CNae67BuUlF9VIlFl2cB3pJ2fE%2F2Li5cqoPw%3D\"}]}\r\nserver: cloudflare\r\ncf-ray: 9e715fe1fb6e712a-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":238483,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"67ce418e4d67b79b2e9d44050119f0d6","sha1":"a30e55701df235d7411d9f58bfbf1e51530ab5d5","sha256":"726fc8775a8aa08138293a5955dd14f9c2cb8b566f1c577f5d39c986bceab3a9","sha512":"827ddbae75068bcb5c45b95a5a33e8ef5f1f09cc8d5e580e17eb5370959970e8c0280d7edf8ed5e180390397c44ae8ff5861db566fa855bff17a52558a178956","ssdeep":"3072:6cBV39NAtLr/rq8orpLppLQ8CsPYx7F59U:6m9NAtvLYQVsQx7FLU","tlshash":"b7343bc63685a0a583da71a8043f990ff176e827404cd484e924f8f59cfce9956abf7c","first_seen":"2025-09-15T18:44:44.033997Z","last_seen":"2026-04-22T13:21:33.717642Z","times_seen":2037,"resource_available":true,"data":null}},"time_used":64,"timings":{"blocked":27,"dns":4,"connect":4,"send":0,"wait":10,"receive":2,"ssl":11},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"binance.llamarpc.com/","fqdn":"binance.llamarpc.com","domain":"llamarpc.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:58.813Z","timestamp":0,"http_version":"","security_state":"insecure","security_info":null,"request":{"raw":"OPTIONS / HTTP/1.1\r\nHost: binance.llamarpc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type\r\nReferer: https://deepsnitch-ai.claims/\r\nOrigin: https://deepsnitch-ai.claims\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-23T22:19:34.826453Z","times_seen":14119056,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/grid.png.html","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:56.497Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /grid.png.html HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/index-DjKQgynj.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=76zMXC1ntglOnLx5Htrxbfz6elJXaBqiRpLSr3hP7xk%2B9%2BVLzWw2U2QLU6NbPtQvojJ0ai2br%2FIlHhKFVdDutcXF3KWFxOTY8iV7RT40UiB5F%2BsBxo2GsPHzmf%2ByQmYt%2BEeVbJ0I3A%3D%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9e715fd41a75120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]}],"data":{"size":4115,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (411)","md5":"2482f1ae72bcc4765016e989d4d52a1f","sha1":"ce0c368da40ebaac85c6e0d874a9df94e54f1e41","sha256":"cc206f7bba2dd0405f462fa19d8ecad2d02c4c2296c1773e1361ce92c3d3d5d2","sha512":"b2e2f6423c6ff5b3f6a1b995fc9b6f2bcea28901e14d038668e199c4ffadf01bbe1fed7a5c2c8cf6b600ca1d1106c7469e64c63cdc8d37abf68099358292fc25","ssdeep":"48:0a+RPUEgfyusa7FH1jHYz+gm+wjT4c0JN6NxvPr2QqmX0vURMi4/V0Wgb1UpgM:f+RV+FZMjmZj3JP6QqmEv/i4/uWgb1BM","tlshash":"e58177b3d9509c068225837e68e6f45dd166e54f8144d83ab2ac50bd5bc2be04fb72bc","first_seen":"2026-04-04T15:34:34.156611Z","last_seen":"2026-04-11T18:00:32.025908Z","times_seen":3,"resource_available":false,"data":null}},"time_used":173,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":173,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/SuisseIntl-Medium.woff2","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:56.505Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /SuisseIntl-Medium.woff2 HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/index-DjKQgynj.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 51256\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\netag: \"69cbc86b-c838\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=YHRfOmIs7xaryA42aaUf%2BpCfiBpld5uG3crQGaRVJfUCu%2FibsK%2F4b7jGrCHn2IaJQDne%2BlXzmvc1ThqC5GM9ZkbHGHYVvLvKbu%2BdyEJ%2FPcrj8VfqkTQPljh9wdvdxOlPhT3dRjkC1A%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9e715fd42a77120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":51256,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 51256, version 1.0","md5":"4b72db42d902ab77776e60b24ed77b5a","sha1":"1ab80cc26003ab4f39f747265f3da21d8c3bed66","sha256":"36d0b9f27b0b6f2bf7178144fb601317f85880be47296f55678d3f9c37c4f8a5","sha512":"064fb9a5dce1335e4ff29bcd3dcc008a63373c6d688593bb037e0186c37d6b99bb3895b1834a2966e7f47363c040622f5620b108781824b857da61750615d2cc","ssdeep":"1536:s+8HVz4s0LSQgsdXqtpKr/BBoZZrDclJYhDylP:s+jFvdKKVBofGP","tlshash":"8e33027913f25eda171ce9f8da2073b3112a50c0f4d0d9235d944938ab3829dbeba7a1","first_seen":"2024-01-26T15:33:59Z","last_seen":"2026-04-17T03:03:30.50141Z","times_seen":37,"resource_available":false,"data":null}},"time_used":275,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":205,"receive":70,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/SuisseIntl-Light.woff2","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:56.538Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /SuisseIntl-Light.woff2 HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/index-DjKQgynj.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 30912\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\netag: \"69cbc86b-78c0\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=91p3Lf%2BEnxoZRXbuqdvdJJIO%2FLs%2FyiHA8OTdaLaDeepqY62lSqw%2BiNTjH%2BcSGr66kSVfqrf7GcYYoEZfyTvdKSIQCxT28I7lzXQ%2BgnscDrLddCVGO%2BWYDOjj5CViwhKD8Fji5QtMnw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9e715fd45a88120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":30912,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 30912, version 1.0","md5":"82c9bec110e9fd9adf34dbe24ab9837b","sha1":"05768f48200596944dbe567095051ea1a2c9e610","sha256":"9f056b86a0ee13b109d6c26ec35cab6f82ff9ace2222b58782cb295121b9044a","sha512":"a9ae3f517a1ceda8dceb4aa9f926ddfbdcfeea766af45f8e5b3c1005a872d4c71440395d10d2f96bed62794528bdedc49282f913fe2b9913e2e7b0e5cd5df3a7","ssdeep":"768:LHfmeZ3NNYWQSqa4b0OEacjJdFK0v7w9Ctbas:LHOy3NNYMx4b0jA0v7wCOs","tlshash":"5cd2e1c9a78e1dd0b4f75cec32b685f6326e9620403bbb1468244f392385b56bdc9735","first_seen":"2025-08-31T05:39:52.16138Z","last_seen":"2026-04-11T18:00:32.027119Z","times_seen":20,"resource_available":false,"data":null}},"time_used":332,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":284,"receive":48,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/logo-m.svg","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:56.661Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /logo-m.svg HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: image/svg+xml\r\npriority: u=4,i=?0\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"69cbc86b-490\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DZ7jTcGSicK3FmoXBeesW3otHcCzdV0pfM4glnWo%2B3%2Fv6Dd%2FOziRfNuAhxRkuwF3VBjc8rSqYdTKCBWPXlzB4JKnv%2FbzTcY0QIkjNDSOKttUnbja4zDvVAfqdAy9Xsl9wQDuFy1%2BlQ%3D%3D\"}]}\r\ncf-ray: 9e715fd51aa0120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":1168,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"219008bcbaff358ec1bb351720c40b87","sha1":"00313338b1047762291295de27340bc8dcfa85b9","sha256":"a05c8a06819da9f26db7825b1de25a073303fd0d2322a8ac8649d515dc94a034","sha512":"13095dbc9ad7c083843e542363abf9c3d1458dca2516953af4c4ea8c1cc96cf4f247629d230c96a730e3c63ae0da964f0b716905d277ec792452631c6e382983","ssdeep":"","tlshash":"a621c166a188a471fe49c2bdb93669b670b624dd80f1c781c1d27b2b792c782041e2d8","first_seen":"2025-08-31T05:39:52.067852Z","last_seen":"2026-04-11T18:00:32.03052Z","times_seen":4,"resource_available":false,"data":null}},"time_used":208,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":208,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/ethers/5.6.9/ethers.umd.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:58.006Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 14 Mar 2026 00:38:49 GMT","end":"Fri, 12 Jun 2026 01:38:45 GMT"},"fingerprint":{"sha1":"7A:4A:F6:D6:63:62:70:CA:51:C5:5A:06:41:17:71:BF:9D:2C:C9:42","sha256":"7F:F5:F5:FE:73:1F:E7:AF:1A:82:5B:59:EE:E8:E9:65:D6:87:68:61:8C:11:1E:94:4A:9A:C4:14:BD:4B:04:BA"}}},"request":{"raw":"GET /ajax/libs/ethers/5.6.9/ethers.umd.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\ndate: Sat, 04 Apr 2026 15:33:58 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 125841\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"62ad87d5-1eb91\"\r\nlast-modified: Sat, 18 Jun 2022 08:07:49 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 196940\r\nexpires: Thu, 25 Mar 2027 15:33:58 GMT\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=5R0LT8%2F3PQnuZ7JqCZ0BlhpIgZUXV74gqORu4iQ8xFI1ebyCUbcqVwfFMrlaOLjs6J%2FscP3KNH6M0DCFKOQ9XAU06pxuN%2BSWM1AJ0MuXN3OuPI%2Bxm5eNwfpUPDWhdavT0IsiG%2F9T\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\ncf-ray: 9e715fdd8d9ec272-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":735973,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"268d19762594655239a29d058a7e8b44","sha1":"f06da2f7a68114b8dda38a0d782d65ddacc9c0e8","sha256":"95c66625ee20f53d542e23dded002b021b24e9d28c3d193a076d45cba4dc8618","sha512":"55e6b3e48536891a5ad0106b26525e4607c9ece0075ad5496535ef81d1fbb377dfb0b50286594c0aa0b405bf9e791c4696b674ea260813f4772ac7220ab82fdc","ssdeep":"12288:TfLmYQI/yjP+H8Xb29/nNUgE6te1R5WJW:TfCPalnNfE6taD","tlshash":"29f42b80b3b1b0b583c729a4143f6046f63af46a505840a8f659faf279f9d4c957bb3c","first_seen":"2023-03-07T12:58:29Z","last_seen":"2026-04-22T16:00:31.045906Z","times_seen":8407,"resource_available":true,"data":null}},"time_used":15,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":8,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/chunk.33.g81guv9v.js","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:54.219Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /chunk.33.g81guv9v.js HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:54 GMT\r\ncontent-type: application/javascript\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\netag: W/\"69cbc86b-3c8e03\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 159\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=nqG%2FHYNUEed%2Bce90zyoBJZzbN9x2nvv9%2B1rliMsZlBuu4z%2FQunZho5K5U7gh7StaGlbWqbT9u4H3Ox3RvRy7IERMQv7sqppGXan2jDJT7BLJTYgAf7Q91WRz31MmcsnviXazym%2BQaA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9e715fc5d823120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":3968515,"size_decoded":0,"mime_type":"application/javascript","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"db3e2274778cbbca987c4219067d8c21","sha1":"120c5437e637fbe41495f6c6686b95cf8cd7c410","sha256":"cd1f68a1eff99c9f1afa5f0e46a4f809a19d45daa2333f0823635e8ced1445ca","sha512":"4841bc9a7d0f530f22f95c6746d19fbc8c726ac0e78298c633ded5d5f614a2ff3576a500292dc6b02050ae77251609b0570c16ff98343f8f340b8a5602aa2f8a","ssdeep":"24576:E6iYRX4mnPsRMVP/+BBDC9V7PJIRA3mjWmB+XhCB:EruomnkRiWBBO9BJUnWmB+UB","tlshash":"142523d6e421d497646142bd26d61f5a2ddbc09c0ade2a37b480fcac37933e6d3cd682","first_seen":"2026-03-13T04:08:55.041201Z","last_seen":"2026-04-20T10:46:48.704605Z","times_seen":8,"resource_available":false,"data":null}},"time_used":97,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":86,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/index_1.html","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:56.617Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /index_1.html HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=y3sSBKul9jfqL%2B8Sg4RA7WYwZHfLBfjgTjxVqPVPHwMhw%2BitJ%2BeqcX6AqXs%2F8Q%2FjcmnCXqHb7cdsxldgdWcW33XV%2BiJsNI%2FNVEJt1MEvDT2fSgP3mNtyn%2F7h15vaoQ6v8XwH93kgmA%3D%3D\"}]}\r\npriority: u=4,i=?0\r\ncf-ray: 9e715fd4da94120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":247,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with no line terminators","md5":"ad2cbc5039bf4c89b4259508dd69bec9","sha1":"838709dcb9dff313633c6943b6b03b9a5c6ea4ef","sha256":"3a0d08b7b1c3321ba4a53d4b95e0f01c025bc2e35f7a7595a2cb5f4b8c13e02c","sha512":"fc7161d523c64e61c05075bf8e1511983fabd9608fddbe314895556fa5ee01b872fbbc3f7af647909a03afacc592162505c78de12bfc3e19f8970c7a9febf099","ssdeep":"","tlshash":"06d09732d54a440e9c014ad2caeaf1d9c443da2cff206e24bce53b60a65d233883162d","first_seen":"2026-03-25T20:56:01.348431Z","last_seen":"2026-04-11T18:00:32.044987Z","times_seen":4,"resource_available":false,"data":null}},"time_used":207,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":207,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/coincodex.svg","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:56.657Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /coincodex.svg HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: image/svg+xml\r\npriority: u=4,i=?0\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"69cbc86b-1fd8\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=k6weXBHqP0AwlsCXRMQ3Y2p5FUubfuV1QzOFZRAcpEacis%2B8ipBG7ORcqb9M3ocoWGystz13iyA7hkAsJ73NUyZ8reEYWLlw7kXDdrDeVgTr1kAD6R28f172yK3p%2BOI3NEmhpVnmrA%3D%3D\"}]}\r\ncf-ray: 9e715fd50a9e120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8152,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"69d6b57eb2eca26066c065c921bb935d","sha1":"998c366773c92aed73c2f75b4c8730531aa70453","sha256":"9d9da157c7ea0c63128bfa29ab350cdbb987df29c441eaec83677fae6bd168f4","sha512":"43c4dc2196953af37c4ff3358da5a257d96d2d50c97e0357164f6e7017471482114314bd96a5c255d2aa2fde4a9c8902550a7255e70738edbb7bf08028e7b8b7","ssdeep":"192:JzikIv47bAd8hyqqmegYU9SRaV0kDtbeOOJGSX/5d:Jik04/QmzEYDtmJGK/5d","tlshash":"00f184ef77d463f4a407a3f1e82105b6769f38fb77aadf68c3546e94a9120448888c50","first_seen":"2026-03-02T13:19:41.810209Z","last_seen":"2026-04-11T18:00:32.027718Z","times_seen":4,"resource_available":false,"data":null}},"time_used":166,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":166,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"rpc.ankr.com/bsc","fqdn":"rpc.ankr.com","domain":"ankr.com","tld":"com"},"ip":{"addr":"173.244.207.30","port":443,"asn":13213,"as":"UK-2 Limited","country":"Germany","country_code":"DE"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:58.590Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"shark.multi-rpc.com","organization":""},"issuer":{"commonName":"WR1","organization":"Google Trust Services"},"validity":{"start":"Mon, 23 Mar 2026 11:28:53 GMT","end":"Sun, 21 Jun 2026 11:28:52 GMT"},"fingerprint":{"sha1":"AE:1D:6B:AA:47:F3:E6:57:DE:8E:AE:96:E2:57:FD:59:C7:98:35:45","sha256":"E7:E9:5B:8C:16:7D:7C:6C:3F:CA:EE:53:6B:E2:1C:37:99:35:61:A9:23:2A:B7:B5:21:15:EE:7D:F2:99:FF:57"}}},"request":{"raw":"POST /bsc HTTP/1.1\r\nHost: rpc.ankr.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://deepsnitch-ai.claims/\r\nContent-Type: application/json\r\nContent-Length: 136\r\nOrigin: https://deepsnitch-ai.claims\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":136,"data":"{\"method\":\"eth_call\",\"params\":[{\"to\":\"0x158862Ec60B7934f1333e53AC1e148811A2E3BeB\",\"data\":\"0x53ed5143\"},\"latest\"],\"id\":1,\"jsonrpc\":\"2.0\"}"}},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Apr 2026 15:33:58 GMT\r\ncontent-type: application/json\r\ncontent-length: 229\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\naccess-control-allow-origin: *\r\naccess-control-allow-credentials: true\r\naccess-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS\r\naccess-control-allow-headers: DNT,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Authorization,solana-client,client-sdk-version,client-sdk-type,client-target-api-version,x-ton-client-version,x-client-name,x-client-version\r\naccess-control-max-age: 1728000\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":229,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"42e136a22281d105bd21fa496816706c","sha1":"bc02950079004b0d4f4bea3888dfd4517cddeeff","sha256":"ede226c79ae326ce9e4b099e9f4dbb4e3d7807da2b793bdfadfafeeb84d7175a","sha512":"a41403da8b9e698eb2823bbe0925160b68682c55d4c64e5c8b27193f8fd8bf4fd118179d26eadb446ed41c2c9c12d46523b6f5094caadaae8a03ba3c1d6bade5","ssdeep":"","tlshash":"33d02313c6470537e34f4633371567c4f559705071105f1b4e1c0315024f97b0255351","first_seen":"2025-04-07T11:34:31.00119Z","last_seen":"2026-04-23T08:42:22.76955Z","times_seen":2536,"resource_available":false,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":27,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/index-DjKQgynj.css","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:54.213Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /index-DjKQgynj.css HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:54 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\netag: W/\"69cbc86b-199f0\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 159\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=q8v9%2FxS8vJvFzRUVOWMydR06zHv%2Fth8dms5FdwqV8g7BG2x8ChJyPUu2bD7lAR%2FwSQVTeiLbmh4DMi9jaFrlqM6wZneJcarrKrqP%2FemzKjCVFKtH6FXmK2tPyPzciGDFdpOmQgQ%2FVA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9e715fc5c820120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":104944,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"19e26f5060f49ae4e9c34dad210fdbe1","sha1":"5aaa6ebfdab0ab6b15dc229aa242a5067b765406","sha256":"4244650005173237370bd3dabc2c775fccc6103ac0e18cc0c4505dc98429ad0a","sha512":"510118c571fd278260f651dcfa2257753b918fe6d6d861d24ee4148ab9ba037704650e8cd0a48eedfc49d311bad33512ba19468ba02fb9b0282289853011a1e1","ssdeep":"3072:G+Tpk5/h7haOY9JzTqKhLmf419/5soAKEPPMJX3iLIpA6Sr7ITnD:G+TpSh7haOY9JzTqKhLmf419/5soAKEq","tlshash":"63a372685b54103f7c17a0f5d6e4b99db22bb1c0df3a1aeabd82112197d23f60da7b10","first_seen":"2026-04-04T15:34:34.175113Z","last_seen":"2026-04-11T18:00:32.038026Z","times_seen":3,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":11,"receive":7,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/048e14eb2b95482c76745806dd19db4060504718.svg","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:56.491Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /048e14eb2b95482c76745806dd19db4060504718.svg HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/App-DqQskmkT.css\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: image/svg+xml\r\npriority: u=4,i=?0\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"69cbc86b-1e7\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=x2c6Vtv0XJQIkoXFPJUJfWuMOih4xcyGq%2Bbat%2F4i1I2ccra02%2B8pURv7HCpOk0Uy650B08qxjss9I66ZvjWvwz5OiiDk3G36fYL6SYII5s%2B407LmvUvT8ZLw3lIymOIZHX6ACvizKg%3D%3D\"}]}\r\ncf-ray: 9e715fd41a73120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":487,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"518dd39f7a8f571e7e7602de272e5de5","sha1":"048e14eb2b95482c76745806dd19db4060504718","sha256":"7147541fd5119361c2ed1f949f30cee2b556518309974523cfcb82c577165768","sha512":"24b5cfd57fd8f19215b9e0f457c74416e37ffcd9ec1a88d0b570a43734c96b19ff6fe41bfdade5e77b76682f3516e009f8e0acb81dd6548655694dd00673b8d6","ssdeep":"","tlshash":"f8f097e8a37d7049c78f9bb00cbcb8e3c8cc2291288c916c78e1439172053aa76f2d31","first_seen":"2026-03-02T13:19:41.807364Z","last_seen":"2026-04-11T18:00:32.022323Z","times_seen":4,"resource_available":false,"data":null}},"time_used":256,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":256,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/SuisseIntl-Bold.woff2","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:56.525Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /SuisseIntl-Bold.woff2 HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/index-DjKQgynj.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 52336\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\netag: \"69cbc86b-cc70\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=X5I9ELJboSDTXy7urgrX47U%2Bf3Obb7ZBwztNf44scadAz8eaZNCDDSsMhrc7GTFB%2FJZYZAZ%2FAgyDMfj7YGUCNhm2R8Xt5kUTk6Gh5xtVZlqEze9dun1mtGH3itPTtvhEXE61jLB5JA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9e715fd44a7d120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":52336,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 52336, version 1.0","md5":"b2d27f447304888b3208b1ee76b2ebcd","sha1":"56841defa612984924a9a5a3cbdcc26c070b0a19","sha256":"95dcb9637ec0cfa19d3f079676b879909ad9f4bf4e13b0f79eb379cd70859824","sha512":"6c3e79d1f3b2ef2465a80892dcc442365b3547352dc38a3fd68c8bb26056cd0379b2c12548e0553a6f243f9c798ffd6f9f4b5b02ed712a2c9ffd64d3a42f92ab","ssdeep":"768:QABx2e3uyxdDnHyn9aPvBQg4lcYlbitGeU4gpCNEOlBvzmEhBDeD9oN5xHwgtNgX:QAmeVjc2vBQg4lcYlb91UNEyP5ttNgX","tlshash":"1e33010558801216d076cb5a2ed792243d28dbf98c453f96e82ecd1f73ac779f5e6318","first_seen":"2024-01-26T15:34:00Z","last_seen":"2026-04-11T18:00:32.01799Z","times_seen":45,"resource_available":false,"data":null}},"time_used":301,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":234,"receive":67,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/coinmarketcap.svg","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:56.655Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /coinmarketcap.svg HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: image/svg+xml\r\npriority: u=4,i=?0\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"69cbc86b-3538\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8DqmzZQa%2FpEzORfB7qESOU07mbGQCbzBvaiXFj5A0mbExoupoiczPrbbocP9fL9NZ1RqnzMoFTUfztosL8FsOrJ4cqohWFkzunVJHDhG3Ff14o%2FXKkmZ51xKFjE8gqwstoN1oBDQhQ%3D%3D\"}]}\r\ncf-ray: 9e715fd50a9c120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":13624,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"3bb7ff5e6eaed2812a961894ed69d237","sha1":"b3b2e0a89da0453f300f9c0973cf1422fed86372","sha256":"fbabf628b4819b0c45616b419fc9a9c7ef997281a0b87175aad2e4ba2486dc73","sha512":"533d3eccddde9f2f70bf62742d1b5cae40f6421d090729c573e4ce96358686670702d7d21c02e1ec32b4e0f0aa86d6e78f11c2c31a8328a0fd61a60f310293b1","ssdeep":"384:mwvWZ5fIxM9TLiHf6/IISsu3DcSl05LkYOjG0f/Pt:FWjf6HS91EcL7Y","tlshash":"f85260fba7c4b2f0f107f3e4d51285a4765f38fe37a68b19c3599e84a612068898dc84","first_seen":"2026-03-02T13:19:41.812789Z","last_seen":"2026-04-11T18:00:32.046609Z","times_seen":4,"resource_available":false,"data":null}},"time_used":236,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":236,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/cryptonews.svg","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:56.659Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /cryptonews.svg HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: image/svg+xml\r\npriority: u=4,i=?0\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"69cbc86b-341a\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Vx36a0QHlKvYyy7ip2J8wp2ZGWc8PCQ%2B7rUxAvgdYud%2FgyL%2F6pwrkpd47fCdhqJyLQWEdedyKjXTq5Z69zfD0ZXTf96YiBAZm4ANosy8YavajOhZiHZc8AIgltnMI3EjhZxlScy0Uw%3D%3D\"}]}\r\ncf-ray: 9e715fd51a9f120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":13338,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"c455f44bf6c3bf8dacdc90de1d680d36","sha1":"aa2292aa35221d57fecf206addc4446c7440a5bb","sha256":"78abd1855e80f795ad9b2e4d8774b81e74b265f5b83047f5669529484eeb4e0f","sha512":"02bbbb8e28deb3bfe4dd0b4a0b1219deed3629d662d005c1ba574ad06ba98b83aea753d408bb7d67a87d89020df6980786206074cca36fe6bb47f2ff43d740b9","ssdeep":"192:OkFU43cuqeiIGlA03oDkYkA400QoOV0a54jLb9tRPJD0W:PdcuJZd03oYYZkROMXbwW","tlshash":"705297faa7e573f8f402ebe0d9224471769b38fd7b5a8714c3549ed4ba62064c8c88d1","first_seen":"2026-03-02T13:19:41.780188Z","last_seen":"2026-04-11T18:00:32.024102Z","times_seen":4,"resource_available":false,"data":null}},"time_used":260,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":260,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdnjs.cloudflare.com/ajax/libs/crypto-js/4.2.0/crypto-js.min.js","fqdn":"cdnjs.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.17.24.14","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:57.854Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cdnjs.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 14 Mar 2026 00:38:49 GMT","end":"Fri, 12 Jun 2026 01:38:45 GMT"},"fingerprint":{"sha1":"7A:4A:F6:D6:63:62:70:CA:51:C5:5A:06:41:17:71:BF:9D:2C:C9:42","sha256":"7F:F5:F5:FE:73:1F:E7:AF:1A:82:5B:59:EE:E8:E9:65:D6:87:68:61:8C:11:1E:94:4A:9A:C4:14:BD:4B:04:BA"}}},"request":{"raw":"GET /ajax/libs/crypto-js/4.2.0/crypto-js.min.js HTTP/1.1\r\nHost: cdnjs.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Apr 2026 15:33:57 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\ncontent-length: 19621\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.01,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=30672000\r\ncontent-encoding: br\r\netag: \"65384d58-4ca5\"\r\nlast-modified: Tue, 24 Oct 2023 23:03:52 GMT\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: *\r\nx-content-type-options: nosniff\r\ncf-cdnjs-via: cfworker/kv\r\nvary: Accept-Encoding\r\ncf-cache-status: HIT\r\nage: 889821\r\nexpires: Thu, 25 Mar 2027 15:33:57 GMT\r\naccept-ranges: bytes\r\nstrict-transport-security: max-age=15780000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jpQDSEaEXv5Nmih0P1JwmiUhH5NdZcdKKPuAKdmNC3LFquDYo%2B43rWSNcTMMengnuKD3Bcwgm0i3Y1HntAbeC%2BzvNDySNFkSGQFnHPkdhLCsJFYGAwETGTlgvmNVcxpw5gOQfHk3\"}]}\r\ncf-ray: 9e715fdcab07c272-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":60819,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (60819), with no line terminators","md5":"d9c6de0df2bf028d93924aff92487904","sha1":"6596050516dd12af52d9b0e7b18ed837f1d81300","sha256":"769a555de553babc35a3338f344dd7aa16260c93cea2c7db290707c90484e7cc","sha512":"6be4940eec0dcd70efcf85eb21c5c7b827f4f3dfe2240a0de259ab5c9835f179ddb8a2ba6250c73516a5bf8c9dd4de3438a23cd2d162745faba9314a18fa1615","ssdeep":"1536:R8K6Znxmj9rlvCOhI64j7AtSPtNPU9ArHMLlk:RV6+jKOh4z","tlshash":"65535bc0629c5491a3b76480087f740b7073353b0a1d5aacf658faefacacad6907cd39","first_seen":"2023-11-02T21:20:28Z","last_seen":"2026-04-23T19:46:17.629827Z","times_seen":29651,"resource_available":true,"data":null}},"time_used":40,"timings":{"blocked":15,"dns":1,"connect":1,"send":0,"wait":7,"receive":1,"ssl":13},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-04T15:33:53.705Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Apr 2026 15:33:54 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ufRwdGz9APT1xA%2B5t%2By3iXa10HdQ3cDLvgtEo6CuOoANFDMFRO6bgLKYv5qKBFAjedgcoC48G3UR5PoD5eKYbO9ighbO2qDpVoPWuCJ8mpbVYqI6Ot4uk6S%2BKk3jfITg%2FbTG4ib%2FLg%3D%3D\"}]}\r\nage: 66121\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: 9e715fc4c8d50afe-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Tag Manager","description":"Google Tag Manager is a tag management system (TMS) that allows you to quickly and easily update measurement codes and related code fragments collectively known as tags on your website or mobile app.","website":"https://www.google.com/tagmanager","common_platform_enumeration":"","icon":"Google Tag Manager.svg","categories":["Tag managers"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":208425,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (19554)","md5":"c072829b0f290310198996724b6464bc","sha1":"784ea35ab160923bd82599861c423b439d52aa6e","sha256":"1bbeecab287d0a5718cae62cabd0643f9158ceb0275d5592079d07c0bcfc9af7","sha512":"4f36bb9ee1b4b0074f3f2bf11636c26fc2210ea36c089e8fbdebadc49fe3de070e7ae8133995401891501cc5cb89b72f2336f8ab92253c8e44ff17e4f596eec7","ssdeep":"1536:TIJMx+KCr6q44444B44444PUmmYWChruHzSUw8gVlW4XAVTyOfJra2MHb4bRbn/t:oKCnhGJmAM8tzEkcq5pXEvlChSu","tlshash":"73140bb46361126e124745e4fff1e7bd525de25eda138c98b3ec03a6afcecd0a944a10","first_seen":"2026-04-04T15:34:34.185535Z","last_seen":"2026-04-11T18:00:32.022882Z","times_seen":3,"resource_available":true,"data":null}},"time_used":699,"timings":{"blocked":337,"dns":324,"connect":1,"send":0,"wait":21,"receive":0,"ssl":13},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/Agents-B_l4pjL9.css","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:54.217Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /Agents-B_l4pjL9.css HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:54 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\netag: W/\"69cbc86b-2aed\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 159\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HblBWpdaDthI1W%2BaGFnIcpPRVjFijnJl%2B02tfkYY9VFlmjvYMMmCM0KZnkBIb8llAoL8GkIe4xJFe%2Be8Mk9gWC%2FUQgJQjaSaGIU4Tx335iWxlPCBnDAz5U1ax9uxFA1IKFcjLxlXaA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9e715fc5d822120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10989,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (10988)","md5":"a453e3840bf9fea4fca2c86329bd924c","sha1":"81527587a8e8ac7c870627856089a215909ae594","sha256":"ab54ba117dd04a6f97b1028d43793378e39a6844c2a138538a81d3e319de42d9","sha512":"6181306415e8b38b495b297672b750149d23ac3e4d7816d1fad2699ed80389722a92e8acc7bd292b6d83acc5d16e867681a2a2e2331bb04170eb917f9ba79963","ssdeep":"192:dBJTJdKSme+jeH1ZpbwAr3zL4vIfb6913ZvOvY:LJFdKW+SVZpbzr3zHfOZmvY","tlshash":"7a329a985350282793134f3657b58bb8e67448c147d38e7e91c0ad98c6fbcb9236f2b9","first_seen":"2026-03-02T13:19:41.759499Z","last_seen":"2026-04-11T18:00:32.007089Z","times_seen":4,"resource_available":false,"data":null}},"time_used":11,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":9,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/fc32c7014a5d0cb74ec0a51949d4159d779934af.svg","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:56.484Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /fc32c7014a5d0cb74ec0a51949d4159d779934af.svg HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: image/svg+xml\r\npriority: u=4,i=?0\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"69cbc86b-ba\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mbKdd0Kd6EWqJidnUWpaD%2FgRqQBJwRw1tMCNO3i7KvCFyRTtOUAvXT6hknd5%2BoHKZ7v6Lmq04BNub4Pfpbi%2F3xfD5c0p2HUS%2Fpo4Qv38hcnRZfmz4sYr5m63Ux%2BYGHqDo2IfaK5XFw%3D%3D\"}]}\r\ncf-ray: 9e715fd40a72120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":186,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"023a14943649330b2dbd7d8b6cb93d76","sha1":"fc32c7014a5d0cb74ec0a51949d4159d779934af","sha256":"6d20339bbbafb53517412c8f48ae137749698d6136338aff9b8137a7b987ce28","sha512":"159e692982a48e5ea8708849afd89c38b3b4ba06e199474c9e0068bd93bc1eeaf69be544254b00a3396dae01180688c6084036eb835282fbcd26282be29b58ba","ssdeep":"","tlshash":"c3c012a583450d19d62893709aa9fd28842a64d02fa53146e957031cd31437b3d726bd","first_seen":"2026-03-02T13:19:41.779151Z","last_seen":"2026-04-11T18:00:32.02941Z","times_seen":4,"resource_available":false,"data":null}},"time_used":198,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":198,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/VT323-Regular.woff2","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:56.510Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /VT323-Regular.woff2 HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/index-DjKQgynj.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 31276\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\netag: \"69cbc86b-7a2c\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xvYYhgjIO7T2Y0m9ibffYRQ79Y60W3nCTXK3rRbcpnluX8lNJ%2FYTLH6yS4sXQpev1seDR7ygu0iDc4WITmtgIFZ3V3zG2KBFMJ3Jdncu2DqPY17NTOXNd5XaKzMNKkTLv5FiFNLfvA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9e715fd43a78120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":31276,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 31276, version 1.0","md5":"df66394e25abcc87bf61f2aabe3c9494","sha1":"1b5b3870d8af4c4d6bc280463098475e69a27de3","sha256":"5c3a61d7dde8dacd0d9a302afdcd3a2b168aa119f404307de579f980fdbc5731","sha512":"3213ebb777e9a5fa596f2e230c42dd16550f6680db1a93423220794b7c86aada12b56d416abcac042b9272e4dabbc0cb0cd6669df1b3435f43f0a3900a0b35c0","ssdeep":"768:s1HlvnlXfngZ1XErKFktfZKRJc9GJqv0VoZ33YG0oCqu:s1FlXfgZ10rKFktaOuqv0VoZ46Cqu","tlshash":"f7e2f20432055d82d9d2abb1136c943b8f979e7582cda4cedb52cadbd4c748982c17fd","first_seen":"2025-04-06T02:00:58.071238Z","last_seen":"2026-04-11T18:00:32.014033Z","times_seen":39,"resource_available":false,"data":null}},"time_used":253,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":217,"receive":36,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/solidproof.svg","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:56.650Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /solidproof.svg HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: image/svg+xml\r\npriority: u=4,i=?0\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"69cbc86b-24a2\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=uMxDgqbPxoRWIv%2F3aYzEREfGUmZ8R1KwgF1lBl3kjkcpBI%2FJljgkYVVckHTpKmasT71e%2Fq2gj%2FqQE0mSF76PivUkhwN1G%2B99gOdJv0wUTALaTK7KnrdCvQYQWAbumFj5ctaWdP67ag%3D%3D\"}]}\r\ncf-ray: 9e715fd50a9b120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9378,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"f293a92b91b7ae702fe2a986fb3bce63","sha1":"ef3a8e7d9b47299b676f5f061ffcf4e019b43139","sha256":"2be362d72a703a16625334585a95b462e4515e82314e4134a48c751802e49d6e","sha512":"532b33742d8eb1cf73e682c900cfda11f619f3e838b19a4fa0e060226ee680fd594d37604086e97aa4c112ec6f9d2fa844724addd2b31d9c3332bf72757afa90","ssdeep":"192:Jio6hfLQCsdR3VADc81sabO+oOQqEyyRHqAS3Xt+z6ONhQxgpF:uidR3VJ8RO+oOAy3rX1ONhQ4","tlshash":"6a127eb72b025f7f5616ea30bc2c0352cd94f4b1d9b0969ef1507295d0af8554d2913d","first_seen":"2026-03-02T13:19:41.809321Z","last_seen":"2026-04-11T18:00:32.045629Z","times_seen":4,"resource_available":false,"data":null}},"time_used":213,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":211,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/drone.png","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:56.663Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /drone.png HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: image/png\r\ncontent-length: 153387\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\netag: \"69cbc86b-2572b\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HMgl3BVQFT3EQvYYQ2IAC8HsegLO7e4KiAoL8ZO4samps1xN4mIO1TiD8TCxVho3XnOJK7%2FkiUV9lveQmsz4Fz%2FyYSMZGtytX%2F2REMy%2FHNjptkVIYqMCnY%2BP3HE6ED5puqLl%2F4abJA%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9e715fd51aa2120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":153387,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 962 x 620, 8-bit colormap, non-interlaced","md5":"8383d64bb53423c91e3f9fdc87f682be","sha1":"f7b814a56fc0c65ec6676641b30949354a178017","sha256":"550668aadf5f31098de2701869e0b43b6040c09cda0116af7e14fcb766309f47","sha512":"480286f9a77c48910ed860f4b4b9a14313cf4c090d9367107633e6ddc164a895f30c4f8272096902ca584d49698a742245444d7112f089f50b6a511c7d981bcd","ssdeep":"3072:+DDMMo9s6ZOXamUypNowYFBW76Wyhu00kDCReiYDWVQX3Bm7cse/HQNx:QDMM6qadyHZYFBW76Wyv6Rf1Va3Q7LeI","tlshash":"ade312bdb470b661cbf454316a8eac438c03256ede49fa8d61464bc8314e3a7c2ca6d7","first_seen":"2025-08-31T05:39:52.138752Z","last_seen":"2026-04-11T18:00:32.018599Z","times_seen":5,"resource_available":false,"data":null}},"time_used":427,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":274,"receive":153,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/player.css","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://deepsnitch-ai.claims/index_3.html","date":"2026-04-04T15:33:56.711Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /player.css HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/index_3.html\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\netag: W/\"69cbc86b-309b1\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ZbC6B8SFluU7uP%2FW%2FVCFBdthza7lXFX1eSGJq3fqTeAlU7CQ1LwWca6TEvITx6R%2Fns5gAGS3160qUtbTUMEGqHCzQaW0N4eCttKEf7sKJ%2Ftc7zZBWuQhP8L%2B8rxw2xaiWtsy%2BJyDnQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9e715fd56aac120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":199089,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with very long lines (65490)","md5":"553ffb86156834e568a890b9aa34e486","sha1":"5142c9018921f36ffd0da1210f075035a8e1562d","sha256":"52591bae21390bc7d64f172e8ad97c7ec09563127b95bb4d36da7188744e8414","sha512":"1c8650d6c0a049723d599b16c7d84f32256eb83de0f8a79d7af5b30275ff943af126a131d31ecd8abf3ab0423a953d8b5641370da1203113e0211128e8e1e522","ssdeep":"1536:td1fPBcFdFgF7FW8RT8RX8X98z98pl98pgv5BencLDZspnq6kMgLdvHIhRGWdNUc:rv5BLwnq6kMg5OxFfR","tlshash":"3d14a0d456f6292b645f6ee6f8c21848fcac43dc53225f4af00e79dd89ca1a60dfd206","first_seen":"2026-03-30T14:25:42.01949Z","last_seen":"2026-04-11T18:00:32.04051Z","times_seen":453,"resource_available":false,"data":null}},"time_used":261,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":229,"receive":32,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/2042027996-3b9dae93bded9ed1aa1c1bccc860c8a9ef3d51661f6692478257c4888bbf550c-d-1.jpg","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://deepsnitch-ai.claims/index_3.html","date":"2026-04-04T15:33:57.022Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /2042027996-3b9dae93bded9ed1aa1c1bccc860c8a9ef3d51661f6692478257c4888bbf550c-d-1.jpg HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/index_3.html\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:57 GMT\r\ncontent-type: image/jpeg\r\ncontent-length: 56286\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\netag: \"69cbc86b-dbde\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rq1a%2Bj%2ByiB0uWziq4iPmYMNFcgoi%2Bg28kACK%2BSujKxp2Q0C81up6xvLH%2B2EAA9w70pFoN3doFO3%2BGjbWy13OTTI6zZyqV%2BH2%2BoHwdJ0lLi%2Be7JXT9OogyHy3IOS3gJJZFLvTE%2FgxRw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9e715fd76ad3120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":56286,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 800x450, components 3","md5":"4069872cacdea3d8da0918ec648b8344","sha1":"c91b6c86e140c888bdc1316ec84bd4882b4ea878","sha256":"9d712e5060fdac924fb220b58d89f542c36823af758c9aa3809dd8b2ca7d8630","sha512":"3638b6df873420dc514ad0d52d0235888a43926924f6f593aabc76d713a4c5908bd72c63a3b0f269fc37940234ce38fcc524c5424d10d602c152ad2db6fbee94","ssdeep":"1536:e1zoqYTyme/faJIJ94iCNo3uvm3ZKAbeXE+ery3:ehoqfKqJbxz+ee","tlshash":"b74302ff6599218ad7c9b110dcc81835e8cc7047e5ef32b6077b4a02b6edb3498635a5","first_seen":"2026-04-04T15:34:34.197649Z","last_seen":"2026-04-11T18:00:32.028858Z","times_seen":3,"resource_available":false,"data":null}},"time_used":139,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":94,"receive":45,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/SuisseIntl-SemiBold.woff2","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:56.557Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /SuisseIntl-SemiBold.woff2 HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: identity\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/index-DjKQgynj.css\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: font/woff2\r\ncontent-length: 52304\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\netag: \"69cbc86b-cc50\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yk06BlICsFvdyqgrl75M%2FyLuOGuZfePEyfTFiAUkfflDGIInRhCN2DyRsivBFtZ5Sp7B2RBLgi3Crv78nGbpOtvdeluEf7c3%2BuiuRaVqfEDar%2BIfySHH0V7YLnvx4%2FsjnPnYqRM%2BRg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9e715fd47a8d120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":52304,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 52304, version 1.0","md5":"3ad99a5c100306be6c2ec31e047fcf1f","sha1":"549718e3a8da70946c6b5b0bf7ee9817d7477327","sha256":"2c8fbf5368e55ff0e5a02e4cf5bb9b827f9659af23485f8b064678f07f6ab7f6","sha512":"12435650a18b829669b6f368d207d3d8f0b31516d5d187771b4e64c8d336b025309bff8290685e170b5faaf8ca33fbc1b4efe0b31687ef4cd0ef70dfe2408307","ssdeep":"1536:54ppUZpIVv2qgAG7GBnyWbtO5IYaqFmCGiJygKY0kHNB:Up4qgDa1A5IYaqF1GiJyWHNB","tlshash":"8d33f2c2c09ef3b39c964cd6b40d9483401aac653d6d2491ec1eb1d189b99bfe5d8caa","first_seen":"2023-10-02T17:10:34Z","last_seen":"2026-04-23T04:10:39.89259Z","times_seen":42,"resource_available":false,"data":null}},"time_used":329,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":245,"receive":84,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"deepsnitch-ai.claims/coinsult.svg","fqdn":"deepsnitch-ai.claims","domain":"deepsnitch-ai.claims","tld":"claims"},"ip":{"addr":"104.21.79.69","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"lazy-imageset","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:56.645Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"deepsnitch-ai.claims","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 31 Mar 2026 12:26:53 GMT","end":"Mon, 29 Jun 2026 12:26:52 GMT"},"fingerprint":{"sha1":"75:06:E7:A6:8E:4E:3C:70:8B:90:7A:A3:99:4C:DC:10:53:A6:26:82","sha256":"8F:E9:DE:67:51:58:4C:09:97:14:4C:A3:A2:EC:4E:87:EB:0C:7C:8D:53:C2:7B:B8:0A:55:D3:79:92:35:DE:7A"}}},"request":{"raw":"GET /coinsult.svg HTTP/1.1\r\nHost: deepsnitch-ai.claims\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://deepsnitch-ai.claims/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Sat, 04 Apr 2026 15:33:56 GMT\r\ncontent-type: image/svg+xml\r\npriority: u=4,i=?0\r\ncast-mode: default\r\nlast-modified: Tue, 31 Mar 2026 13:13:15 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\netag: W/\"69cbc86b-1b96\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jRvCe35jw5VMA5tMBrnKmP5ZKKuYBxpwD1gZ4RZIhzWcOVx9yUlMLl59Z0NOTdqUhRDJhlVic0ayBsGdI7R%2BMGqUS%2F%2BPHvoapdte8N6Qopjwl4rTowRdAkrScOjfBXjP%2FdHNSIhqTg%3D%3D\"}]}\r\ncf-ray: 9e715fd50a9a120a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":7062,"size_decoded":0,"mime_type":"image/svg+xml","magic":"SVG Scalable Vector Graphics image","md5":"f95ed93b73ca4269cf496c2a9522fcc1","sha1":"24fc30da46f089ab4a390243f2b6ba6846ac7c65","sha256":"85f37b49287ce647bf96d0a593d472cc4fdaecdf2b50bf2fe952cd237953bd8e","sha512":"68939116c24246472e2efa413284f1bba3a2bc5989e4c736870f40b214e78fe0efddd7f585037892b84254fcaf4a5d56b8d5cec57614e50f06f569c514a48e9d","ssdeep":"192:9JuGd2cHTE2VWZD/GnRv6+riCUc+ScIpoeU:U0VWkyDCUzScI2","tlshash":"dfe1b6f563a4b3f4a107ebf8c42254b5791f38fa7b99cb898384de846a150909acccc4","first_seen":"2026-03-02T13:19:41.801208Z","last_seen":"2026-04-11T18:00:32.015705Z","times_seen":4,"resource_available":false,"data":null}},"time_used":197,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":196,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-04-04","alert":"Sinkholed","trigger":"deepsnitch-ai.claims","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.ipify.org/","fqdn":"api.ipify.org","domain":"ipify.org","tld":"org"},"ip":{"addr":"104.26.13.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:58.220Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ipify.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Mar 2026 16:45:18 GMT","end":"Sat, 30 May 2026 17:45:14 GMT"},"fingerprint":{"sha1":"EF:8D:ED:C7:B3:46:8A:91:47:71:92:F2:D9:B0:67:EA:C1:FC:5B:89","sha256":"01:CA:DB:EB:79:61:2D:B3:FE:2B:09:FE:44:84:EA:5B:6E:C1:3B:81:A1:0F:8C:9F:DE:2E:16:1E:59:45:06:D9"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: api.ipify.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://deepsnitch-ai.claims/\r\nOrigin: https://deepsnitch-ai.claims\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Apr 2026 15:33:58 GMT\r\ncontent-type: text/plain\r\ncontent-length: 12\r\nserver: cloudflare\r\naccess-control-allow-origin: *\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\ncf-ray: 9e715fdeedfe1a30-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"35b0bce9d250429df012c0426f88d0bd","sha1":"f81d80af9cbeb0011316fbba3da8002b32251f7a","sha256":"da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d","sha512":"32c9df1064e730e1a2358dae62aff741118007187d89510bfbdf93efaaa7356b71a570ea8c5d96bdc0b47155bbaa77df86b6847cc4d95d2d1b7fa2a1484a7144","ssdeep":"","tlshash":"dd600003000000000c00c00cc303030303c00003c30f0000ccc00f000c003300300000","first_seen":"2023-03-07T01:19:04Z","last_seen":"2026-04-23T19:56:18.94925Z","times_seen":25796,"resource_available":true,"data":null}},"time_used":123,"timings":{"blocked":9,"dns":3,"connect":1,"send":0,"wait":90,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.ipify.org/","fqdn":"api.ipify.org","domain":"ipify.org","tld":"org"},"ip":{"addr":"104.26.13.205","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://deepsnitch-ai.claims/","date":"2026-04-04T15:33:58.223Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"ipify.org","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sun, 01 Mar 2026 16:45:18 GMT","end":"Sat, 30 May 2026 17:45:14 GMT"},"fingerprint":{"sha1":"EF:8D:ED:C7:B3:46:8A:91:47:71:92:F2:D9:B0:67:EA:C1:FC:5B:89","sha256":"01:CA:DB:EB:79:61:2D:B3:FE:2B:09:FE:44:84:EA:5B:6E:C1:3B:81:A1:0F:8C:9F:DE:2E:16:1E:59:45:06:D9"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: api.ipify.org\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://deepsnitch-ai.claims/\r\nOrigin: https://deepsnitch-ai.claims\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Sat, 04 Apr 2026 15:33:58 GMT\r\ncontent-type: text/plain\r\ncontent-length: 12\r\nserver: cloudflare\r\naccess-control-allow-origin: *\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\ncf-ray: 9e715fdefe1c1a30-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12,"size_decoded":0,"mime_type":"text/plain","magic":"ASCII text, with no line terminators","md5":"35b0bce9d250429df012c0426f88d0bd","sha1":"f81d80af9cbeb0011316fbba3da8002b32251f7a","sha256":"da9add592d7eb9cca7705cb4870d7fd4e9718ccd51486c4261a727a8d566960d","sha512":"32c9df1064e730e1a2358dae62aff741118007187d89510bfbdf93efaaa7356b71a570ea8c5d96bdc0b47155bbaa77df86b6847cc4d95d2d1b7fa2a1484a7144","ssdeep":"","tlshash":"dd600003000000000c00c00cc303030303c00003c30f0000ccc00f000c003300300000","first_seen":"2023-03-07T01:19:04Z","last_seen":"2026-04-23T19:56:18.94925Z","times_seen":25796,"resource_available":true,"data":null}},"time_used":126,"timings":{"blocked":14,"dns":1,"connect":1,"send":0,"wait":92,"receive":0,"ssl":13},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}