{"report_id":"f7188ed2-d8d8-438a-a664-9c3ae9312004","version":6,"status":"done","tags":[],"date":"2025-11-20T15:49:41Z","url":{"schema":"http","addr":"slotdewa200j.com/","fqdn":"slotdewa200j.com","domain":"slotdewa200j.com","tld":"com"},"ip":{"addr":"104.21.33.130","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"chambersoftain.com/","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"title":"DEWA200 Link Judi Situs Slot Gacor Togel Toto Online","dom":{"size":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","dom_hash":"domhash1f07f384c75181c66badb60ab1ec770b","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"slotdewa200j.com/","fqdn":"slotdewa200j.com","domain":"slotdewa200j.com","tld":"com"},"ip":{"addr":"104.21.33.130","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null,"user":{"country_code":"zz"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2026-12-25T15:49:41Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"lbstatic.winwinwin168.net","ip":{"addr":"104.21.73.200","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2023-09-19","domain_rank":816302,"first_seen":"2023-09-23T00:27:06Z","last_seen":"2025-11-20T10:17:48.963313Z","alert_count":0,"request_count":15,"received_data":432756,"sent_data":7410,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"slotdewa200j.com","ip":{"addr":"172.67.145.49","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":0,"request_count":1,"received_data":6882,"sent_data":485,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"cdn.livechat-static.com","ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2016-05-30","domain_rank":339953,"first_seen":"2017-12-15T05:21:49Z","last_seen":"2025-11-18T13:22:48.891375Z","alert_count":0,"request_count":1,"received_data":372918,"sent_data":483,"comment":"","tags":null,"fingerprints":null},{"fqdn":"accounts.livechatinc.com","ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"domain_registered":"2005-10-31","domain_rank":44666,"first_seen":"2017-07-31T05:50:56Z","last_seen":"2025-11-17T01:40:48.570374Z","alert_count":0,"request_count":1,"received_data":1797,"sent_data":534,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"ik.imagekit.io","ip":{"addr":"54.240.174.23","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2016-01-17","domain_rank":153981,"first_seen":"2017-04-02T12:17:08Z","last_seen":"2025-11-17T08:56:12.804802Z","alert_count":0,"request_count":1,"received_data":647,"sent_data":519,"comment":"","tags":null,"fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"ImageKit","description":"ImageKit is a real-time image and video transformation, optimization, and delivery service with built-in digital asset management, powered by a global CDN.","website":"https://imagekit.io/","common_platform_enumeration":"","icon":"ImageKit.svg","categories":["CDN","Digital asset management"]}]},{"fqdn":"chambersoftain.com","ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2006-05-22","domain_rank":1886122,"first_seen":"2025-11-20T15:49:43.981261Z","last_seen":"2025-11-20T15:49:43.981261Z","alert_count":37,"request_count":37,"received_data":2179260,"sent_data":17045,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"AMP","description":"AMP, originally created by Google, is an open-source HTML framework developed by the AMP open-source Project. AMP is designed to help webpages load faster.","website":"https://www.amp.dev","common_platform_enumeration":"","icon":"Accelerated-Mobile-Pages.svg","categories":["JavaScript frameworks"]}]},{"fqdn":"api.livechatinc.com","ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"domain_registered":"2005-10-31","domain_rank":29526,"first_seen":"2013-12-20T14:27:35Z","last_seen":"2025-11-17T01:41:00.390829Z","alert_count":0,"request_count":5,"received_data":22731,"sent_data":3037,"comment":"","tags":null,"fingerprints":null},{"fqdn":"cdn.livechatinc.com","ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"domain_registered":"2005-10-31","domain_rank":36142,"first_seen":"2012-06-22T08:37:34Z","last_seen":"2025-11-17T01:40:48.482877Z","alert_count":0,"request_count":20,"received_data":1305651,"sent_data":9630,"comment":"","tags":null,"fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}]},{"fqdn":"cdn.files-text.com","ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"domain_registered":"2023-08-09","domain_rank":89437,"first_seen":"2024-04-10T05:26:58Z","last_seen":"2025-11-19T06:47:11.851944Z","alert_count":0,"request_count":1,"received_data":7204,"sent_data":571,"comment":"","tags":null,"fingerprints":null},{"fqdn":"lstatic.winwinwin168.net","ip":{"addr":"104.21.73.200","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2023-09-19","domain_rank":1456026,"first_seen":"2023-11-01T04:48:43Z","last_seen":"2025-11-07T06:47:48.502695Z","alert_count":0,"request_count":1,"received_data":2322,"sent_data":480,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"secure.livechatinc.com","ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"domain_registered":"2005-10-31","domain_rank":8212,"first_seen":"2012-08-20T19:27:12Z","last_seen":"2025-11-17T01:40:48.520477Z","alert_count":0,"request_count":1,"received_data":2002,"sent_data":717,"comment":"","tags":null,"fingerprints":null},{"fqdn":"api.chambersoftain.com","ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2006-05-22","domain_rank":0,"first_seen":"2025-11-20T15:49:43.97599Z","last_seen":"2025-11-20T15:49:43.97599Z","alert_count":28,"request_count":28,"received_data":543147,"sent_data":16323,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":[{"sensor_name":"suricata","description":"Suricata /w Emerging Threats Pro","alerts":null}],"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"chambersoftain.com/static/js/main.571c6acb.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"a67ac18d79b5f852c8f888a5ed94303d","sha1":"24f363b86ef2118550869666dbbccc49231ba1b5","sha256":"ece667ca26c998f9806e41491b1d8d34e8ecd37f91669e7efff55826d90efc84","sha512":"f8c5b929561302d281c2d3d8000e1cd5635b9ce439f81cef1cc203654f07f05f5c6468cc506a0c183229a5381fe69a409c0011ce9c5463d6ee9dafc1cd258c2d","ssdeep":"6144:4xBxIpSOaZxJxexrFIrIT9VO8xjdjeLqOM58gAZ7w8syZ3h8E79hcvVZg8XMbcxF:4xBxIYOaZxJxex4MN581ZiywDhjxF","tlshash":"7ff418c97292f0a257e350e5507f150bb37a191a380c8460f261ede5bcb994ea23bf7d","size":749324,"data":"","first_seen":"2025-11-20T15:49:54.542283Z","last_seen":"2025-11-24T17:32:12.118273Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/62592.213b80e2.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"7ca4c45a8ec457f19caf07ed48c616db","sha1":"e5c2caae7a2d32be607bfd8453bc04e0dd72a152","sha256":"b1082cbd34fdbb8a131d4f9ad97ee25ba382d5293abdf2d7dd632d0275b4042f","sha512":"7f36b1a8dd7f13bebfe37566e60019c80d985d22d6d57634f4aac42559095bbbeb3e03fbdcf25f8ba1c2346afa560cb2d81bd80cfefae5627290dabaefa061d9","ssdeep":"","tlshash":"1de0ebb0e200f0fe36bb1e8b942d55e2044a0251164af6636f008cec021e9ac102cfbc","size":293,"data":"","first_seen":"2025-10-31T05:45:31.268205Z","last_seen":"2026-01-21T14:38:11.567346Z","times_seen":44,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/96791.ce5a3fed.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0ed495f87f1db35c5fc6838a23ffd219","sha1":"9571286701a787cfc94c724a8c315b3427cf7f7c","sha256":"5660fc7ec426a6b7e13c48f6093a038ad7b34f407ef5d80aca93fd270228f512","sha512":"640204b05292465168c4681007a50a193fef5f6d1db278995184c39e32f01ee6fbddc9a7b7a94e64159006277325b148b188112b221cbd22f2cc95570e76ac4c","ssdeep":"192:uWTBmM9yhTUDmTxJeTTJHmaHs5k1DQzRMxdmyPQul:rTgiyhTUDmTxJeTTJGYsW1OWdmyjl","tlshash":"84e1b5c8308ab4d617e309f5c03f8247e33b25691d0de6109b62e9f4786946e7237e2d","size":6817,"data":"","first_seen":"2025-11-20T15:49:54.516497Z","last_seen":"2026-01-21T14:38:11.612444Z","times_seen":9,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/62210.c2ec7e86.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"ae2ce0da2bd91e1c194fee552fa3450c","sha1":"e040b2e8f1c6cbd0c0b3a2e6f07caee2eeee3f8f","sha256":"8d77dd387fec7c82f64d00d9c8da3e251f6cc81bacea12396c476b05bbbd1fb5","sha512":"34142e735bea1e7acb3fa6503f042f6cbf2f1fab087283e7c06418ac36c9f57a0a236bb953af720ce65fe6affafb93a3a5a3ee990430eb81ab45e50258759f4a","ssdeep":"768:gYo6Xt7zc7PEQOcv6Yw7WLqclYMiZm9PmALcr3neFMGZ2d:Ro6Xt7Rxcya/lIZMPm5TnoM2Y","tlshash":"12f2f1210a874b3f39d905eca5454a720cc74acf606c967599389db1a9937f0ae0a8fc","size":36438,"data":"","first_seen":"2025-10-31T05:45:31.248347Z","last_seen":"2025-12-04T04:42:58.696168Z","times_seen":25,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/18638.a3066aba.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"63aebd35e8af5d4cda36115b08a00549","sha1":"5f14b8c70dfb9b633e478d3f9a8fe9895e9358b9","sha256":"c18b0995937cc0954ea4aa3d8d91b4351fa3c1b26151ef919032251ad4f8f5c0","sha512":"254bf1ae8f6602e9597fe403564472911942490095ac6c9445ef415e6ecafc0aca57ec005654eeda8800077a222472b7f3a46e93c74b809e3f98f5757c2f9b0c","ssdeep":"384:3cgAL+BWLETwHhQbeE2OE2XhTlsjijNjd8aIq5M2KXVoiEWoPb3VeRnbkCCYgjuC:3cgA6kywHsNGShTlsjijNjKa1MFoiEFf","tlshash":"1c92bfb1d286f4c8f692545ae07b1479ed5c321763c89568b0bfaced420d3caf67243a","size":20690,"data":"","first_seen":"2025-11-20T15:49:54.564445Z","last_seen":"2025-11-29T12:21:54.958376Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/60147.2db7e20b.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"5ae27f9bf3da1c24a4e8c87beb9db9ff","sha1":"283ebff9b22ed1167c3f8b170815c22bd8ec20fb","sha256":"71097e8ae06b33e84b6c1422f551f31527982a31f9b477a38b26cfc098534770","sha512":"bdfdfec6bf22852fa1c7b160ff3843e4fd6b5753834c9fd0fb653d9ef7993c4f0b3a67f19b8b58c17a5b4abb2e7d990da679dba14273236cbbe1a3fb295d3fb3","ssdeep":"96:jmp1V+j5ALqBa4CBoracNQMnEpnmd1nW7BkVAEBoyqZEG4kR:jmp1V+j5ALqBaporagEmfnW7BuAEBBIr","tlshash":"eaa1b844f09718044eb386a99daf015b16ba2c5f7986801c389bd5f72ef388e7466ff4","size":5083,"data":"","first_seen":"2025-11-01T15:19:03.711273Z","last_seen":"2026-01-21T14:38:11.571633Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/201.fda2eb65.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"d21eb56a7833610d35e2c033745418c1","sha1":"452e3dba66ccbbb8ba9fd1290dba636d35abd38a","sha256":"659492f28c6f4d8afc1fc1f2457149093523464a672da0b29629a049d3d07710","sha512":"c7e3979e6ee05e6eba6547dffa5a4008f3e4d785fd208fce6bc28ec2cf6c835245ef8838727d75815bf91da441e98772c7389f0c0c82c02e52629153d5904fe1","ssdeep":"192:Go/zugNQOQTk1YqCjCzMdA1Mzo2sDvUv/EnEYcFLMvwN1xuQ3iGiYyPZLTkCO:GcS8QG1YqweMgxvUniEpavwbIaiGxeZy","tlshash":"3822e884f50af0f59bd705d1607f851eb33b7a55392e8400a02ae8e93b5b68df113fa9","size":10629,"data":"","first_seen":"2025-03-07T07:57:41.642825Z","last_seen":"2026-01-21T14:38:11.606379Z","times_seen":30,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/10754.a7c8ea20.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"bb43b79bb4d3d5ba09485abd24ad259d","sha1":"550224a6069d8836f224b36c1990defe777e1982","sha256":"7346a5ad6b84a471286a82b2922c27cbef77882ba15f4192c75a4a74b916a9b7","sha512":"80b728ba322e24e7b0982b23993ca749c2eb4b85aa3843267ce5fa166900ba90e49c04a4a716a64e778d45ad85499a1976fcd6d11690d65a39a041745fbe7e8f","ssdeep":"192:DP8jxU/RtGYPCWhnvP8grjcLM3+Fz71B0Etmq++I6+3kkv9bJCFhl2O1ObsqLtCG:DP8jxU/R0Y68nsUcLM3+Fzr0NqfS9yOb","tlshash":"2922c696414738895bc58a8c863b0168b10cd838390ccc59f27dfddea215edaf593fab","size":10505,"data":"","first_seen":"2025-11-06T17:17:13.197295Z","last_seen":"2025-12-22T13:49:01.678455Z","times_seen":19,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/81131.316934b8.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"43dfce7bc9a78c7868964d92d1d696be","sha1":"5cbf9f9bfa0d482d916ed3f1068a336ca1804791","sha256":"c3b62fabff7c5cb1fa7bcee46adfc9498b1b3df313ae1ca8bb774737b85d59ed","sha512":"61d942b76b6c454f3e9097d49ab6133fe8f7fc4b073e99106f304040f6e910b7494fe02fa4807f62b95604dd43d0378658562cf0274b5ab645c9d4513d34e89b","ssdeep":"768:gHB3wORYjIcd4COJAQhAFHT+Fa+hOHH8pgM3uCIwcWF/Xa0:KlyjIcdbOJAQABTZ+h08pgMefWF/q0","tlshash":"0853d8c9b6a1f0b643d310a5903f850bf3ba6d29a44dd050b361d8e47cb854e636bf7a","size":63009,"data":"","first_seen":"2025-11-01T02:26:38.28974Z","last_seen":"2026-01-21T14:38:11.568219Z","times_seen":36,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/51567.eba3b73e.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b55938b2601225d84067725effd11d87","sha1":"8aee97db7ce4c5e14c7a0b4836b18a3b670910b3","sha256":"92e4d4dfa487c6e633399e730d1e0fecb083aa09cc2feacea2a87b5fafca78b4","sha512":"d218ebd0c2791eaa21f6fc58cd11ba9b7a4f928b43def6b36f15c1afd29aaba76cbfccef01e1f5a463cf963a074cc100753d09d9cd032345f89f6f3b2cf5fea0","ssdeep":"1536:Wz/uaHCJv/7lYqNfxBtZlHlv/e1PpQpaRMipqXUTqIzH:SnH8Zf7v5aRWERT","tlshash":"a1c32a09e259b98ce52b8f8de16f041cb10f4418f7118dbcf2f9a92956578d83a47fe8","size":119052,"data":"","first_seen":"2025-11-20T15:49:54.54359Z","last_seen":"2025-11-20T15:49:54.54359Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/tracking.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"d2ff6ba54342aeb9a5c227d04d74c679","sha1":"d1bb5c5304667cd029ba9b0eab8c386d2529cd73","sha256":"252baf23bc47c395e5be1eb2e010e0df2a000cb0f4713857277bd35cee96669a","sha512":"0f5a782b41d958ed037bdcf40487915ddb8179818caf70572c8c8901f7c8bb514b9e7e72034f38fa9f4b1969d64bef90606f6ed80b8b1ef4a38eaa253e97da08","ssdeep":"1536:Ed2K8Xri/oEjWDcUiUeyLb7nl+DPtlcwp7petGYPnDGakmq9+:EIK8Xu/Ly8yLbB+DVVZYfaNm3","tlshash":"0fa328d67282b03053f786aaa17fa316b3392918340d8420f17cdd6a395adc79177f6e","size":102075,"data":"","first_seen":"2025-11-12T08:49:12.038623Z","last_seen":"2026-01-13T20:54:19.26493Z","times_seen":958,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/58928.0d23b6eb.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"e25c52d6083d592e706985467261b4b5","sha1":"a353a559ba46a5fa275657d6f068e5eccf4cc13a","sha256":"2e3ec3553d11ab9ccaeda2cd523ab3bbf144c0c29155e90c23543e12c2abf9b5","sha512":"9bd81707a394b580d73d64487b27462c0979ff1252c6a7655fa0a79891be93a96b38ea5cac284cd35cb19446356343927aa3add13b4015625f69f6de74fbcff0","ssdeep":"768:J+JpzAqzoxW5nsjnJxSJxcC/4143kt4K9bf4ffoNjSjDrLRfXr66jz6pCPInBOKs:2sjWJxupnf4WuDLudpysc","tlshash":"48232aae904578d866938ecde06b841cfa2b981deb01493473f16a5d02d69e9f713fcc","size":49115,"data":"","first_seen":"2025-11-20T15:49:54.547481Z","last_seen":"2025-11-20T15:49:54.547481Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.livechatinc.com/v3.5/customer/action/get_configuration?organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026version=157.0.1.5.13.311.1.1.1.21.1.16.1\u0026x-region=us-south1\u0026group_id=0\u0026jsonp=__lc_static_config","fqdn":"api.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"a874882df89e8bb010b7999714e74890","sha1":"e0b21be6f11fedafd04c067a394b8cc7decdbf50","sha256":"87332f1f6c0b8f9773fa92a0afa422017a7ff33dd1d41c835454ff03a20f4ade","sha512":"b83645f6ac4812190f19ae4156bb4fa37fa9d710851c704550fcb644857839795c97d0131b85760c029da2bca09cfa72a53d792a1d8f8ab02cf85f1a7696b001","ssdeep":"96:VhUwhUnhUsXhUAorIR5fDyACll+et0174Sr5WPJwUtJ7N700GoMwf3PJvCLq:VGwGnGsXGA9/DV14u56n0doMaxK2","tlshash":"18d1453a474fd8bbb377925a62dbb60e30085578a5e8593be460cb7071861c3d306fa9","size":6738,"data":"","first_seen":"2025-11-20T15:49:54.508209Z","last_seen":"2025-11-20T15:49:54.508209Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/4.C_rgEAoe.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"1771376dc07da48b3f03339d86d57b7b","sha1":"a5861ebfff23a92ccd1ce6b8a517b6f877d50a63","sha256":"6e148df31d721a0ff08563f2d676751786e01418c86ee54ee8f0e88aa46ae26a","sha512":"6038efed0774fd61c7bf6558d3ea24ccebfada1041fa2c1606263a19f8700043a18f6e368ed550fc61f644eb7b81f8cac01498f30cc56a103295911b28e436b0","ssdeep":"","tlshash":"afc022563060f3a502bb0ed00033e02af32a402cf0ebfa80a65cc4f020630530a26b1b","size":193,"data":"","first_seen":"2024-06-24T12:34:02Z","last_seen":"2026-04-09T10:49:40.045057Z","times_seen":23532,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/6.B0_QvnEW.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"bb2424b90285d46f921f699e7b3d17d5","sha1":"412e217bd4cfbafc553fc36b9094d0ece147a429","sha256":"2b1840010c419cf6839e4a18ffd0eec542b4c0d0c49ce5606bf93639afda5ff5","sha512":"f283f440d13fb69e25c115fd3e9dcab60cf937ed1ad964644f9719abba510e9f99ac82747ef2aba6991de08cbe10a8965c0d352c380dfa471d2b6753beba021f","ssdeep":"","tlshash":"a41100d93cc3d8b0d73bd4cc52a899e6d43c0e88a8fd41c0e4f86e853b155b18236ea8","size":886,"data":"","first_seen":"2025-11-05T08:48:35.692413Z","last_seen":"2026-02-25T11:20:48.331177Z","times_seen":7795,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"a26e77ddf66247b4b41a6a10f26a3ed3","sha1":"9df9987dbd8f1ee28823fb6d83b6cf4b4931a6c0","sha256":"35110c54899a671ca88c126e0db802dc58b5d74628af35d99ee088ecfaaadec1","sha512":"ecc98ad6ce95cf49ea3baeffdfe6f57eb796cce1f6a4d7815d4b5534ac68238a69b17191c9611935d6b09889fc302b11a69a058ac358423dd8bdac1ec7605a61","ssdeep":"","tlshash":"d9b01292411108f60e02616c1713f60de7830c3d08daddd06bca3a1100625227321546","size":101,"data":"","first_seen":"2025-11-20T15:49:54.583424Z","last_seen":"2025-11-20T15:49:54.583424Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"4315cbe04abc3735bbe169197624ae9b","sha1":"c3460325fbf0a930041f69a94e50b6f4974f7f30","sha256":"fab7be5ae1eae2807f16fa0448507777fb2334ff09377ebcb2f021eda8b534e6","sha512":"c17f0f02663f7af051fc94260f04fbf89dff750f66a500e454abdac1b59af2adcf0135775a11fd709bafee1d56c8e8e15be4875a482f8d04cb731ae9bfabd1b3","ssdeep":"","tlshash":"59b0127294224ce70d16b8781387930de682093c0c98ca4065490e0200322317351871","size":100,"data":"","first_seen":"2025-11-20T15:49:54.584491Z","last_seen":"2025-11-20T15:49:54.584491Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"1c84105818210d811b5f45b625bf593d","sha1":"431aea811991de3d51584157c09038038a922553","sha256":"d52ba94d6c53e5b9f35e698480929f858fd5d04de4e42b3ff335bc1391737416","sha512":"7d2ef848afa5729a8d94e4ddcb20bc188a4190aff75370a373963354df55bc65ed174dd6b337c2541b676081c8d572e523503ec084c82ede3059ae75d1f3b468","ssdeep":"","tlshash":"4ed09533845715133125528c51062f68c40351586dc259a75c430813b44127147fe37c","size":244,"data":"","first_seen":"2025-11-20T15:49:54.58585Z","last_seen":"2025-11-20T15:49:54.58585Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/16425.e2f2faba.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"edaa65c06c3ff10c8d21be64903e720a","sha1":"5281ac59c741bce0876569e62c2a4ed0e1786cce","sha256":"ab385d0090ae9e456c7c0814ca393148d514c8c5587404b959343f73c92ab076","sha512":"9159102d536543be5405678d20a658f9b23b79db8a23042d111c6352538ed568e82d26e7d8f7adb3b4fbe3504d5617f28fc36c1e94d1ec83a16002ed43ee349a","ssdeep":"1536:6Cy4x8+JBHskrv0CDZKZBH3EYckYjR7sUd+IAkAjQFQRbEXc:x1zlsQBsH/","tlshash":"55933ba8b2d2b03586d3b169a47f2189b2791a1c444dc429f633dcc528799dfe173f3a","size":90318,"data":"","first_seen":"2025-11-01T02:26:38.303836Z","last_seen":"2026-01-21T14:38:11.610316Z","times_seen":21,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/48429.56c1866c.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"732298688268e7a2ae3819ae5ac2ce07","sha1":"fffd7d22e906c811c2bb31086ff09be918a97e7f","sha256":"5643ef9aa6ff0278444b132db7c33ffd18ef050680f0a196fad9f9969d7ae57a","sha512":"ea02b4115af7a765bcbc623644f4d04ead13a264b22e0195df876a35bb0bcfc1b8caf5d9700833a750ee1b733bf2826fa84b89e5cd7879815668a993bc6e6017","ssdeep":"3072:MhG7/hAMxoanxwvxlUewCKfGs+3F5aIwN01pnA5NI:Iqlxoanx4xmis+GIFA5NI","tlshash":"06a38da181cbbc1572b6cd5cb0622111e4299f0cb3444c64bbe6ef5a579aaf6f011fb8","size":99828,"data":"","first_seen":"2025-11-20T15:49:54.546609Z","last_seen":"2025-11-24T17:32:12.096026Z","times_seen":3,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/39395.93ce345b.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"c562c34e1ceb937f43ba3a80dc76de1e","sha1":"42584fc76cc311cfcfdcf1d91ba5d35b7a9ee08d","sha256":"a9c98eb84bd53d98716ea08b23199388ccb4d332cd08fe13f4438f34966f8058","sha512":"a31d6541d53f447442d0a94c9b1d33a76435e66474f47e8f89a872727a589037f2df9f3570bc2eefc771f16049aab9f0668c0782a6dbfbccdd0d97289d835559","ssdeep":"768:TNWAR9XFKPYvX/BMARvVLb+hZoxeBv8EHN9AvZSCEgVurczCwXSx+E:T4AR9V3X/BZIhZOLM","tlshash":"c6e218c87289b0b54bdb92a790bf450eb3379524710e9400b159e5ed3836eeea03bd7d","size":32031,"data":"","first_seen":"2025-11-01T15:19:03.682213Z","last_seen":"2026-01-21T14:38:11.595602Z","times_seen":17,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"1991c1f5e2cb0946b4a7d05cca3a47ef","sha1":"bd4f39a7c03c4fde989acca10c4e501c86981891","sha256":"483ce59e8bf6157ebceca39da9db7032f33b62e132f63538f013e73bc68b220e","sha512":"2f2e9e10e9f9826482114d200262d40c825ad9c0048a970ac86bf61009aece556ccafdcf05d7cbe3f356000f766664d7ee387f147c49157633b2a0c32279e14a","ssdeep":"","tlshash":"2b011289fc42b076a6963228763bfa07516302251884a4336dfdc37fef32d87811368c","size":846,"data":"","first_seen":"2025-11-20T15:49:54.586988Z","last_seen":"2025-11-20T15:49:54.586988Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.livechatinc.com/global-mapper/lc_license_id/19196488/region?jsonp=__lc_region","fqdn":"api.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"b17346aced6298b7e1cadcd62f40003c","sha1":"c28b849fff4b4d9d006d803bc4d18368446ddce4","sha256":"a379b1707064386da00957301b6eb053249cfb462047d44e4fb6d52898f5b78b","sha512":"93be3c00856eedc8cedd0c7bd2b2a5873aa85dcf9e893d9e972421d122c568cbb1c9b4ca633497bc80900f688898040a218616dc69a4716fcd3d5a2dc93fb928","ssdeep":"","tlshash":"8080000e20002ae30a20ef3e8023ec0cb03e033223008288c302208228002b0822ae0b","size":35,"data":"","first_seen":"2025-05-16T12:26:33.454661Z","last_seen":"2026-06-10T13:52:27.74483Z","times_seen":27955,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"f1a0af047116355eda58126a1fc6677d","sha1":"8e305194bbbc51a4798782464d9a04077d126558","sha256":"9765db01f532cde4a02bed3054151b5270571e2851a9d0a31cf92c17cce29aa9","sha512":"dd2afb0015c18894aa3b4f025ad569f6dcf2ae7656b184a0a472bf23fd19179d8dcfed04d249a135941072093223b4cbb849307db75ee140f2a3e6e64bb036ab","ssdeep":"","tlshash":"26c0807262e539a9937007cd8e4375387052410d14e59057e1ff050bf45444f58512d4","size":167,"data":"","first_seen":"2025-11-20T15:49:54.588453Z","last_seen":"2025-11-20T15:49:54.588453Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"367cc825315beabaccf699f4f36c662c","sha1":"8a683aee5a8c068696f64701068ffc902f1e5d76","sha256":"aeb167cb2a83f05bdef2e531d15a2d59eca73ae6a6ab657d87be98eda18d80a1","sha512":"3ae43e35bc52618e5b77022c268cf2e8e34d574dad5b12881fc49c00625c43842170036a0c5fc7748af15a90be4786ba4a9df2bbc789d3c37b86a334235a54b4","ssdeep":"","tlshash":"0fd02eac8122ae8751b0060cd30333a0f52b02350b88606680888848b82392faa788e9","size":262,"data":"","first_seen":"2025-11-20T15:49:54.589821Z","last_seen":"2025-11-20T15:49:54.589821Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/27705.84726632.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"2b2c6b3129f9d5b91bc6cc91f2b45e80","sha1":"9584e511145d3c3027a3ef7d41b605d3de201638","sha256":"b15cab0f3906341c4ba595f544739e447441d73b0d1fdbc9bb5ffcef9990b28d","sha512":"e02c631200f032e75380f0555d974755e9619cdabffeda61c938712351b074abf3542826897d6680f0b880d0abb4ec4ac45912928279d8c39294e77d477571f3","ssdeep":"768:Na9kcqjKz+L80z3Ps1OXd37ZOyKuTz2fIUrXY:NSsPso/bzUjY","tlshash":"bdd2e123a8037f4d76eb051e705e504ace049348e82517087f84be75ba0d4a5bf8bbdd","size":28668,"data":"","first_seen":"2025-11-11T19:11:26.266632Z","last_seen":"2026-01-02T10:01:42.340906Z","times_seen":7,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?x-region=us-south1\u0026license_id=19196488\u0026client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5\u0026url=https%3A%2F%2Fchambersoftain.com%2F\u0026channel_type=code\u0026origin=livechat\u0026implementation_type=manual_onboarding\u0026jsonp=__j7hlr4wgfs","fqdn":"api.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"52ab737b1d0145534a790426821e0dc6","sha1":"8729fa371562a2b871fea96cb8d2922188f6975f","sha256":"f0f8936cdc6f98d6166f75a4a5e28a7f974e028cb948995961117cfc3e102efe","sha512":"4449c9dbcf0cce364dbf3b2553bde984808a54d69e2ef0ff5836a3f5c44548ed500b570ee45fe9ad960c4094ac36037ca7d843da4944ad246c9efa31b2ebbc45","ssdeep":"","tlshash":"29e06833b705a53097c1f2f49454b952aa7042b291101578f6a83300522f28c3720916","size":384,"data":"","first_seen":"2025-11-20T15:49:54.514637Z","last_seen":"2025-11-20T15:49:54.514637Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/9.qYTqns9Q.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"d541ce2d754402b833cc65b76eaea2c6","sha1":"c36a92a0f5cef497ce42b1e8b4c72c8d9bd3786b","sha256":"80353503e48ebf6c2ae9f70184d3e758f64bacf48afe147e039df807509200cb","sha512":"f8cd5cc49f9276c580419958bf312ee0a311194fd41d116ee709e56401d769511700031ec9f3e6151f8da6b7e13b16e374a231e31cb00b92413ce5c751c2a0b6","ssdeep":"","tlshash":"f090044530d334753111111c453f5c0551144c4c05d55730c010d5551f514f4571fc4c","size":40,"data":"","first_seen":"2024-07-04T09:32:22Z","last_seen":"2026-06-10T13:52:27.751505Z","times_seen":29839,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/10.Dr3I92Zs.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"28a698f0e5913fd0a8ae2da34f478b5f","sha1":"3eabafd09f5338936895ac1f31164fa54dee3412","sha256":"66025b875d38e4e16bd671b203c943039ac8e804d36b783797c96243ecc97e3c","sha512":"8bbee3881152a2cd9bb97bf6c7e87f6fdf0703bb22bed680fccfcb89eb1bd760739d7ba5a60bf9c42e11b447ff73fc55e4b42a4a58cd17350cbc3949f5068a85","ssdeep":"96:7+HmlKAJb2MLADeQA6Ob1NlDF3DM3maas1pFJpInNCzaNkQyyZFBXfFBXoQFddzs:iGD2CAHNgx3D6cuENqaNkQP7BXtBXoQ0","tlshash":"16a1c7fef355f97497e98cf5e5143043ec3b16a8f8ac85b0fa1c4e55214d1889022ba3","size":4900,"data":"","first_seen":"2025-11-11T13:17:33.991679Z","last_seen":"2025-11-25T06:09:31.382236Z","times_seen":1448,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/12.DJPUQwQu.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"640caab52100a1e9dfe618aaeb79838f","sha1":"4654776a82e5405614a595d40cb33ca2b5bae0b5","sha256":"fb8eb817d7251014c136b441bd4004fa6567908059013edbb938925f23b67ceb","sha512":"17d605182be517c5e797b2fd823b9ab7b6bd73d97bd2c3d11c5eb29d108cd350d789116528e351abaebdf3654cc65100b9e3353064ba38c9ab9008126c6a3061","ssdeep":"","tlshash":"00e08cbdfca8d92152f5e9f8c0b60822cb593b0e502382b0f60e6f4a9519199a552826","size":300,"data":"","first_seen":"2024-08-27T15:26:59Z","last_seen":"2026-06-10T13:52:27.77737Z","times_seen":29023,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/5.Czyav0-3.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"82fb4d0cc0dc82ad6fe41b60c425e684","sha1":"700b8d008d359071978d64371e76b190bc1f531c","sha256":"3bb0be8cf70708efd3dfdb4edc0ba4f949120e01afa04eb3acba8d9d948789f5","sha512":"982220a002ed41a54ed5d70af17ec4f7872ac3f2e2dcb024bc91253754bfa2e56985f49bbe4b5d8e38751c8d473abc17e6c4269f633644c306e300106f8a2ec6","ssdeep":"3072:qVzjYLKSRrZVxXLu+5FIXox57NPH0aONfpzksw7ou/vEmyI:U/wHRrZVxbuqx/ONfpzkzoyb","tlshash":"41145cc4b186b53587e734e6487f1002f33e6d19784c8564fa99eeb63da418a9233f2d","size":194044,"data":"","first_seen":"2025-11-11T13:17:33.738679Z","last_seen":"2025-11-25T06:09:31.351952Z","times_seen":1459,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"f455396ec6e2bf5b5c7d1704cd7b8201","sha1":"c5c0612eb3b4a6ec0c17bd338f9ad751a9c8a26c","sha256":"ae351b45b151830920783a73f26bdb1517c58dba4d7d891c8a2b2fa0ae092a13","sha512":"9236387e1b9d658bcd7f80efef66deaabb71af71d38cb1b49b6e02064014111ccea260b466fb5232612fa5e032bb319fbc64ecdf31e19ee05bc0ba666d36ef67","ssdeep":"","tlshash":"78a0021c103121ca5278031696273b207a0127054861187fc07cdb8034132d3cf917c1","size":71,"data":"","first_seen":"2025-03-04T10:24:36.96225Z","last_seen":"2026-06-11T00:35:22.274777Z","times_seen":91,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/79645.9216316d.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"cbb454c672bd1a140884c019af4f62cd","sha1":"9a599c61a93ffe8365430d298fceb185dbf0c6c1","sha256":"1ca9a0392c4c0ba70519784fb51788a93456a618b837dc6b7c5aa4adf847d9a1","sha512":"6e4fc1d51b9398a3591ba27d01b45213c93954b9ad499e10e6aa948ca93663d2231e4ce154fc397c9f36a11318b1c6138be49351d68871cf53d110e220d4eb2c","ssdeep":"96:2a6deMcZjEdRebQGTrOvDX9uncZ8Y68C4dUYj5VVGP2RzH5OhEmPU:2iMnjDX9+YbC4dUYjPKU","tlshash":"0ac14281e051f4f282f6ac05e19f4cd2f1561650d40ef990e7e6e9e0a43ea09f562bbe","size":5713,"data":"","first_seen":"2025-10-31T05:45:31.275801Z","last_seen":"2026-01-21T14:38:11.617731Z","times_seen":44,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/livechat.g7mJdFQw.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"db6e3f9083b9a9b4b5ff9621b8d57de2","sha1":"36d7519798c68870110931201db4c276160ad0c3","sha256":"1543d5fe8b7596afa9ebb0a9742ca021c2aa528930e67ba32c62f1d43159a03e","sha512":"d95c9508724c0b5b22e5df09fc0258ea09c46e7227a03613b0e7e58d8d8a01a5bf15abc2ad639e0d66d097e827df45881220425546f66214d64b70dffe3c13cb","ssdeep":"","tlshash":"26e095cbe6003debf2e9cce5c015e0e252f213a687a483a0d0cf87320301869ce56a67","size":432,"data":"","first_seen":"2025-11-12T08:49:11.940535Z","last_seen":"2025-11-21T09:57:17.797137Z","times_seen":834,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/3.DiEu57nc.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"47eb50052f15cfc1d88aa1554601e55e","sha1":"f805750b3d2e016885055b29a6e9ab8394c8599b","sha256":"7b86440589ee714b1c7a6d74e6d9a691f1280d57a36376c440cf949ceed5381e","sha512":"addcf2f225368a1dd929e431171096fd397be6d2175d4923be40eb5b8fa10d0934ce036b63bcb76b95444653e0b4db6d80c06885f4b3535c89e24b6420298da2","ssdeep":"1536:9gZQTsyz+6WzvhFCvB0Hx6J+vXlKAwTwH7nDPWnYlkChX8qg4JklHYD8b:9gKTsyzTWzvhFCp0UcDOnA5sFikRYD8b","tlshash":"dad3f8e83996f5626bf312b700af1817733c192b280c4990a211fdddb5b845ea17bf9d","size":138434,"data":"","first_seen":"2025-11-10T12:08:03.375538Z","last_seen":"2026-01-13T13:49:38.678696Z","times_seen":5241,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/2.DNGoWbi7.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"fc0eabfc6bd67b34fcca619a821cc3f2","sha1":"78f49f92de7bc8112696b0b04b0e7c9f5fa6e2da","sha256":"3ae3798f05be46ea4bf225ba8b135971daa6274e5c7bfd670f7cf2891dfae6eb","sha512":"9dd038df98e93db8c9197df0c2117981607fd360ec7dd4b0c543de87a29dc2066ca3823d37077d5a66da813b45db457710ce43dc36d6388fdf30154d2c8e31f0","ssdeep":"12288:fx0FfakC8BMQ+iHJkK1rq4imO+tGnXoSj94PhSCf+5EqbFve/1H9PBrF7/TMHauU:fx0FpiJ6","tlshash":"b7946be0b281b938d7e7c15790bb160df33d3d49b42e9660f1ade89e33944489267fa4","size":408063,"data":"","first_seen":"2025-11-12T08:49:11.872903Z","last_seen":"2025-11-21T09:57:17.807048Z","times_seen":843,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/1.6psiIc4J.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"6d71fb6800fe8d9a4d545a535e76c3a1","sha1":"f4c096e462dcda6ea2ad3f0996306181142b5aca","sha256":"8d9113cd90eead24ab21c7a980544f6f820bb38bc01ad9d10c2ab003d3155b4e","sha512":"dd27cb46e80511b7abf2f835d134803cc4d509bf1d372126203610a5c5b2952121fc6cb9f4f98c8abfda6dd7944408d68a054d5d00ef6f382ab33be97ff5dad3","ssdeep":"1536:Kdn3Ad+S65vjhbbBCrzifKVkotf0HRO3zH10zq:6n6xsbhkPi7otCRO6G","tlshash":"d9334dcef241753157e315f2a07fa106b636292c384c80b0f629dd9925de44ba26bfad","size":53069,"data":"","first_seen":"2025-11-12T08:49:12.005752Z","last_seen":"2025-11-21T09:57:17.761902Z","times_seen":843,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/15.Ds1NXQbV.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"c4b7def2c2b68b029cbf8eff6272373c","sha1":"992c8b0b873789f47beb6a2dda200752d09f2d18","sha256":"103c2ce2cd587b53e19695fe92d42e181f7dfc2c8b7d0dd5d83a62df9b4cc2ff","sha512":"d75f0fb41fb3936f34bd7ec2831f276257bdae4fad09f082803f1566f60344b253053f35c213bf401eb4795d7ebf09af48db504731c0aa745e8d767f039b5253","ssdeep":"","tlshash":"ab21d2deac08d9714bd44ce590a20c36da68535cb16bd5f0f15b1ed633064d312b3e57","size":1202,"data":"","first_seen":"2025-11-11T14:06:47.294747Z","last_seen":"2025-11-25T03:48:18.299559Z","times_seen":210,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/24563.c8122b38.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b058f53b195b37d71031927e328085f4","sha1":"e11788f7cfac2eb2684af63d6a8f695727df5bdf","sha256":"465d21be0d7885ffa8a997c301140fd1b710a3315c505c7a71fe8f5c1715550e","sha512":"aeb7e68312a30421120a5fc65fa76e645a4821ff408a2e37d6e544befb8ed9851bce3eaca70faec03d3b0988560cd6d02d24f0355c6127d0ecf7ad84540ae970","ssdeep":"384:hACENcxx7LfznNuvxAQxRjDl7nxxux7fFjmxzFt00ns1784ERpf/emxj3xqYjxeq:hACeKUDl7j6wxo0ns1784Mh/D3xpykRr","tlshash":"fe52b997d08a24c60ed08bd840b6065c7158f26ab9000645f374bd9d63bfdc6e6e2bbf","size":13704,"data":"","first_seen":"2025-11-20T15:49:54.525952Z","last_seen":"2026-01-21T14:38:11.536125Z","times_seen":11,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/38647.913149c1.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b7694d77da2dd4356671fd6294749aa4","sha1":"2e3502b92a717c94a2537eed896173659474b160","sha256":"71717fa2042d13c00886443e0008a041cf0e7c7e42286e626e45a2a8f74522e8","sha512":"76e632702ea9b768b8cb2ed7bc827609d736eb416f8e77711b0c0dbe4a77763d0f99a95084481f1aa3c604dc069c4526eceed5d269a5f19ebe87cc160edbdb29","ssdeep":"384:AARYMVau2Vdjrb//GLCxb3FJU2Q1/uwGW5EemfdJJHJenXiAQOFKfYW+8uwkQJCJ:AARYUau8djrb/uLCxzFJ01/NGW5EeYr4","tlshash":"2c927e9ac586788802b56cc5b03b6061e63dbb0832048416f1bbbdf19345be9fb65dfc","size":20139,"data":"","first_seen":"2025-11-20T15:49:54.510857Z","last_seen":"2025-11-21T10:45:51.030047Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/11.al-9NYxR.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"4a073c5805819d74eabd3e843372d502","sha1":"cb12e953dbee2d3ea08d35d86bcd2476a490bda9","sha256":"0cb3247cac5de8fcdfb226ebe2dc4960b6ed473966359f73ca13ca286309122b","sha512":"036da8fb3959ebbef26b546019535a9edb7a99227a28252878247a756d3a7ea693f48e9ffdaf5886faa7fb2cbe56292bbf9552db5dd1d26e6574d8034ee183ba","ssdeep":"","tlshash":"ebd0a78cb643b0b16276b138853f801fb035e984a44404f0d13ad9c03d7c1a97597c5d","size":236,"data":"","first_seen":"2025-11-04T08:39:27.95245Z","last_seen":"2026-06-10T13:52:27.74223Z","times_seen":16282,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/7.DYvQej5k.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"809443c5c1cc838af6f4fa62bb775320","sha1":"c2cdbaa55b930aacda95368cf3f9ba56c57c0422","sha256":"276e3b74be2afc4932e54d12aa3897d86e67cc7172c13583c9504696c3dec290","sha512":"9448db5d4d6f282cc20c7b188cf7da0495fd929530cbc8890bec28b865d30f54d55bc99b319376985cc94077cae2df9166abce49f2fe11995696bd773c6905d0","ssdeep":"384:mU5urbvY+4nmoqpXlrfO7npvW4PkT3pb9nxSHI0Wrs/j7JFHy4:7urbvY9opXl7O7pvW4Q3pxxSovrsDHy4","tlshash":"fd72c7c5f7aed93e53e7a4d1bc682003fa785a84f12c91a4f3984d66719e884c173b26","size":17078,"data":"","first_seen":"2025-11-11T13:17:33.842847Z","last_seen":"2025-11-25T06:09:31.40699Z","times_seen":1448,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/18.BDC9LGkT.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"2970cf653e848598753cf53f39c822cb","sha1":"d5ba966bea6805182b5d62126e430cc97f6027b1","sha256":"5ff77bd2bbcb08ffa2b555d61951a69547775baeb2cb149c13b011ab19c41af6","sha512":"bac5e279ea418c3b27d294e8a7931b0bcbd43d54777c2c1020defd23c063327a8a801fa1faf7aa17f1bc530bbd6b4611663c214a01f5fc6635eadc40ab672856","ssdeep":"192:rmIcs/+sXpRMzExyv5vHcj/pIWpIizfq7ovx7vc:rlcs/+sX7Mzpv8llbqs7vc","tlshash":"acf1f9dc1322eaedd9c29afe15381009b1696de97c36c245dfeec80970255c86d39db3","size":8044,"data":"","first_seen":"2025-11-12T09:54:27.786555Z","last_seen":"2025-11-21T09:10:06.567002Z","times_seen":92,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"c2a80acad773ae252c92e96568f14398","sha1":"bb071ee0616bc35a38c50382b6070ee41099ab97","sha256":"0f416ee4bfd8e3d800cb431298ba07d47e1cdbacd15a2e4077e7a6f8b3b2ba4c","sha512":"6392e2abf624042c175f8d2f21e3cd2640986e00b271a4525811c97b7a5d4c995ee0bdc638f7d2ceb051adab682563c04d200ec12c0e6c21b0f551e8c6438b08","ssdeep":"","tlshash":"e631cf66b52badfa9c329ffc522fb31cba076401d74b85600084a750353a67bd1232e0","size":1482,"data":"","first_seen":"2025-10-31T05:45:31.336311Z","last_seen":"2026-06-11T00:35:22.275565Z","times_seen":54,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/48181.01cf23fa.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"33e1bdee2542827bea0aabbf3f459fa5","sha1":"c6229d3e2e49778bd7f6f539546af3738b2eef8e","sha256":"1ed95292ed4646cd500790708650e76ae7a407b377fe8bdda32e0085a0105074","sha512":"103b8e564e69c25438603fbade3f5ffec31ac417da03e6f5448ced7df8baeb2658a9c3c31af6557482443746cf0fa2bccd201490ec86d82e24316fcd2399856c","ssdeep":"192:l/NWOkmwxToXZE1QeSpw/xuqPgfdFCz5ZwWzfQed2auFdM2bftogfqfRxSUY4k+/:ZXxwxTmbeSpw/xuqyd2xDQed2aam6ftC","tlshash":"004271813bd3ac853b3754850d3b8487f06f0ff2248ae595daa3999db058d49c063aa8","size":12073,"data":"","first_seen":"2025-10-31T05:45:31.278087Z","last_seen":"2026-01-21T14:38:11.611769Z","times_seen":44,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.livechatinc.com/v3.5/customer/action/get_localization?organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026version=3e484e3f8236c9d1f2239ff432260121_1a3d177afb0932752df227dc2b3d557e\u0026language=id\u0026x-region=us-south1\u0026group_id=0\u0026jsonp=__lc_localization","fqdn":"api.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":false,"md5":"a92b00842939e4cf2406aec632cf397f","sha1":"502d1042343ab6291cead657b28d875ff6ca3ee7","sha256":"100d07e01dacb99df8f70668ad575aa32d2610a882990307d369041bc3943eda","sha512":"dad866076dca853b298ee5835a60129312f7106d6731ecee14d524fecac50d4e30a6bd6c0e72655346479c426d31acd30a919c59f0c0e3d98c4b6e2aaa205d68","ssdeep":"384:k8hODwsgaFZmERbo5DQCBuLdAeAk+ezrJ0L:5XSFA/HuJAY+xL","tlshash":"c552f9640eaa79aa0b2753daf5db5d1e38ec33649b401a2fdd984f3042847c1735be39","size":14127,"data":"","first_seen":"2025-11-20T15:49:54.527882Z","last_seen":"2025-11-20T15:49:54.527882Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","fqdn":"secure.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"introduction_type":"scriptElement","is_inline":true,"md5":"d30bfddcdb3764a782b7c8584021d1d6","sha1":"64ed02149d0db57e6c1d68992361d7c1330a663a","sha256":"5a8894efd9ef253bc344f5587ea4fb4f4b8da39d4dbd49a390c2302898411623","sha512":"7f7061097e172e659abcf34d29c148da0bc746fde1307cefa2bcc88ee94db292ba498b3f287a8436b39f9e6d44d5e145350896e447ac7c3cfb281a91a5bc6c97","ssdeep":"","tlshash":"79b09222c200942a24ba8118239fa6073110537a80660c1b143c64a436e610f80a239f","size":105,"data":"","first_seen":"2025-03-02T06:33:06.481005Z","last_seen":"2026-06-10T13:52:27.828803Z","times_seen":26403,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/8.-BRvjCAf.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"10f24d6e8ddc89d8251204377fccd689","sha1":"65aafef3fa010f71c7b9920d5239604618e9ac43","sha256":"c2f0242a22a7515f533949dc064da3447adc8224c49c72901711b59867760b40","sha512":"a04caf9b9e19698ab9e2b1a12ac3f6a0dfcca56f1e505c5c2e2e997e3618429968e2df6bb16ff6ee10ea53826a6faebb0ba478b9cc76b3288cf87280bf1eb348","ssdeep":"","tlshash":"fee07dde60d2f0f34385bccc45205092d368df802bac81a0c06c9f9017100828d36ec9","size":310,"data":"","first_seen":"2025-11-11T13:17:33.816275Z","last_seen":"2025-11-25T06:09:31.407952Z","times_seen":1454,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/0.DIaqU0KN.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"933c252fc92473697d1c5bba0f4a1387","sha1":"ae880e06d6face91f2110b0ffc69e36a17ce3d3c","sha256":"8ffe52ceec19f5cd2888c35b9c4235a756ff7bd521bff51cdb87c315dd6705ed","sha512":"ca8ecbffb4d12829cfe84c77736a2464fd2c2cf3a0da55ed1ea56109bc2a4d804ffa925103d9f209d2edb42eb253cc0f7a0d93120f73fed29b6b0baa591a4f3a","ssdeep":"1536:DoYb9tkXt9AE2lg80nY37aG1ak1d5m7Qq7UfoXqhPtiux:DoYKteE2q8J1ak1d5m+qqhPtiC","tlshash":"f87307d1f686f5398be794e511785043fa267a18b82c8170f36cce20219e6c7a177f6b","size":74950,"data":"","first_seen":"2025-11-12T08:49:11.958053Z","last_seen":"2025-11-21T09:57:17.734368Z","times_seen":834,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"54d78e3b82edb989c029f1e3144a2175","sha1":"c2dd2ac68d1d9718ec1860f545e09c612c88cf29","sha256":"1f9a274e4d679839977e69b5d9852a7b85c028c1e8d53d6aa8b145d88841526c","sha512":"91268e32280ad01084bd985936024082dc76a65933cf9943fb5be17ce01ab4c18ffeb0398d42eab57295fb90f35bbec47128b745511099b3066fa38684752028","ssdeep":"","tlshash":"30d0c2c13d990c34cd9a004fa4698bec2aaa748cd512e011008c4638353cfc0e032b44","size":290,"data":"","first_seen":"2024-08-19T15:05:40.559055Z","last_seen":"2025-12-26T04:56:00.905827Z","times_seen":70,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/74086.5d386950.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"056f7a15aea2765ab6a86de0109c083a","sha1":"7a365c847a6cc72edf9c9124c40f6b1ce1ab4f28","sha256":"93268a6314cc76fc8a8c8921103d02a372f3c8006673f76af0d60687768cb854","sha512":"a8a5581ddb0381a83fb1be139ea5e009cfd0b7da7f3ee2cdd13f4e2d25f882c64475b382594be65f73a5a1241ba30dd0810ab32ff9c6a6a814549ea9fa274bca","ssdeep":"384:cmzF9PA5x0fJBNUQ5zU4aUF7es52CNHoBvT/+WxELFkCY6yRv+kCSfRdLjFdDRRA:BF9PA5x0TNUQ5zU43p1y/aFbY6UmbSDM","tlshash":"9482c49872e170d50be7e4d9807f5207b239b9003509c9a6d397f9907a6ceef9036e39","size":18716,"data":"","first_seen":"2025-10-31T05:45:31.292805Z","last_seen":"2026-01-21T14:38:11.600327Z","times_seen":44,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"Function","is_inline":false,"md5":"26a5c203fee6cc304b6236ecb40ec343","sha1":"9e23e4f79f29c02fe5ba58795fe878dc5f309495","sha256":"bac390e5fd8255ebe10b555e1fb079d64da6a233c79092a790391dae2f649012","sha512":"4ab715ad4f913bd647fad74e7f8ed154f3e09b37be72a2ad6cb1b7e711b572d770876653db0a8f9c62d5ef93feace98a1d7cf1d07a39f67918bff2cae4c2553d","ssdeep":"","tlshash":"8c11c089fc467076a6963268663bfa07516202251884a8335dfdc76fef32d97811368c","size":872,"data":"","first_seen":"2025-11-20T15:49:54.594135Z","last_seen":"2025-11-20T15:49:54.594135Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/19.D2DC3tai.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"7551b1ce45d06a8db013a5bc59eb22e5","sha1":"7a3e70e32bb0ae1166da2b73473e5368edb87c2a","sha256":"505cb66991f08a271a8442b255b3d18f729cc2f78e4e3f5aebfd8ae328461e92","sha512":"78683ac43c6e890aeaf0891e173bba080b02d68678f9498e393cd0b7b8cd98a20d26e9e2172b81ded577b29855365a8281ea0e68eea2021389dcc6e876476b99","ssdeep":"96:V0rUP2JJtLeIiEZ+7XqFw+X1ZV1iimS2jHN+3NtbNudHIbuHC:V0rU95Ew7OtX1divS2jt+9txpmC","tlshash":"6281d8ea32dcbd76e587c6e6907b4060135d0169680d4fd0d027cf9a00ba7d435e6f6b","size":4116,"data":"","first_seen":"2025-11-12T09:54:27.771588Z","last_seen":"2025-11-21T09:10:06.59609Z","times_seen":91,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/24.gkJzRvjM.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"importedModule","is_inline":false,"md5":"17dc780615486da37a1116b6c4e2a5c1","sha1":"9bfa722db902ac43d43d695a2f3988cda4c2477d","sha256":"e041258edabf2dfb3b9ae700292e9a48e4cd3f3d3d99cc7926e915181e956198","sha512":"a39700d8076c43c415f4d5533b8fdd674ef529195a9545d31b8525102a43e29449025f8c18a8a95f95ab217f62f239621cba598fbb579183c28cdab00bd27198","ssdeep":"3072:DALh4taXim7pbD5xfy5FYMPmatHZkckEgYasgYam3CXf3M5P53gIL:Et4taXim7pbD5xfy5FYgftHZkckEgYao","tlshash":"f8d35cc4b3a2f27ddbd7c1e4a0ab5405f37d3e59bc2a4350e1aa9c5a30989cc513af61","size":142405,"data":"","first_seen":"2025-11-12T09:54:27.775253Z","last_seen":"2025-11-21T09:10:06.595346Z","times_seen":92,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/20.vP7sCb-B.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"introduction_type":"scriptElement","is_inline":false,"md5":"d6b7b0ca1731deaf53138b501e58a6a8","sha1":"db6bee20311672df7a7552cf31ec966d770f014a","sha256":"e16cbdfb1cd1c07e4c1d279af9a0855ea25916ebe8eb3c8a5be8234c78e2ab15","sha512":"9d6ce34728c235be1092a2780ac665dc5bcefaa2bd8c269380dce3f7f8a3327f605b794179d03ff0972b4b8a3c8a6d40b5a7bf8d33581cd0a07fb56a4133eb03","ssdeep":"3072:nY+patShfUEZ8QMEr0zr4aXDxb4mhWDArgKr/XC2tZ3APc:n2tShfUETRIzr4aXDxcmhWDArgKr/XCy","tlshash":"39d33be07352bb3cdbd7c2d9a5a22544b33c6e85b82a4352f0af6c1d30d998461b1f97","size":138219,"data":"","first_seen":"2025-11-12T09:54:27.704697Z","last_seen":"2025-11-21T09:10:06.594551Z","times_seen":92,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/lottery-template1/colors/goldblack.js?ver=bfe9a517","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"b91e30b067ea367f53b0a2804e35ec82","sha1":"e216b0fd7682e711a0c8e0d2723cc6d9c6cb5a11","sha256":"d6570821dcb8b1b1cbe60f0d75ae81293f31e719e7741c0f7690661dcca35036","sha512":"a402403a1d5b10f66f1b340a8bbf921c547d45ce3877bae502d431e3d5427d7ef8ef9869db568eae11553a6d4c182fe1a40ee7149b50b5a387eed2985def9097","ssdeep":"192:pLEcddDBunoaqKDhHPaGMFzk+Tf6KPWeT:pNuoaqEd7o","tlshash":"a81254d78da0d837668dc5a438e9f2a405fd388fe0de4e6e24bcf099b53e4a45105b91","size":9694,"data":"","first_seen":"2025-09-27T02:14:36.089594Z","last_seen":"2025-11-20T15:49:54.554038Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"ac1ded31b199b0d6e1c558d5276735da","sha1":"80dfde845827d83115ba789b26e515cacf151cc3","sha256":"66f415da8eebcda0410ebb39c9fd06b76c58257a684dba1f9b77cf1cff625a52","sha512":"a0cd5fdfd171fc89c364b3ae3873e40cee2b0ca2b7f6dd99d7a1ba28c2955c9675abb38c9874ff95a1f9f4c1f6e134bb611425d54219bc33adc3587c95b58dea","ssdeep":"192:TgG2WszNLQ9Uknt+sa0onjLMMDON8WHiHi/LDHxQgGkPhpfy:3S3jLROMHi/LtQgGkPhpfy","tlshash":"6dd1513f41712329802bed6d4bb477074178d8667d6e67ea24135a19d7cba8309e338b","size":6526,"data":"","first_seen":"2025-11-20T15:49:54.595432Z","last_seen":"2025-11-20T15:49:54.595432Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"md5":"d288d3618d2b794fede1219d27cb2118","sha1":"b66fb0b9012fdba7942cbdca9bb99621a5b449e9","sha256":"3bdfaa3ec2eb38c704aaede27a95eca96587668acebf0a57a6e1da68a0c1adf6","sha512":"4877d482bdecacfc1fa6d384ecb77c344d934f50712bdddbc9ed030af1f27c06746755c93b0ffccf28a54605f070871dcbf29f07d1690da751359b7c6cb45fe0","ssdeep":"192:TgG2WszNLQ9Uknt+sa0onjLMMDON8WHsi/LDHI9QgGkPhpfy:3S3jLROSi/L0QgGkPhpfy","tlshash":"e5d1513f41612329802bed6d4bb477074178d8667d6e67ea24136a19d7cbb8305e338b","size":6528,"data":"","first_seen":"2025-11-20T15:49:54.596674Z","last_seen":"2025-11-20T15:49:54.596674Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"https","addr":"chambersoftain.com/lottery-template1/assets/home/casino-min.webp","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.499Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /lottery-template1/assets/home/casino-min.webp HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\ncontent-type: image/webp\r\ncontent-length: 6074\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:00:20 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\nage: 0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=ETZg29DUJBOL8nAhSHfkU12KMp2TUGOGhh%2BeKRqVN0dUEBMiZKlnNbMYTt4Bn4fDFOt0ecSKsH7xRBDVkDdAzPp2sgjioTBVyts8eQdTG9Y%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c95c375689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6074,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 190x180, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"7a292bd1a56ec2b7ba4d359bfb84519b","sha1":"4418411eaaf1fe914ee202608d18cffd5fc269b6","sha256":"e93dc61d3fe86af33d4d1e991bbfe9267ed328369849ed0d3abb8eca1638efaa","sha512":"0f0acf6b441c512c57477947b5069d8f0c15fcb3ca98122efca200bd497ec080e95462e34a3427bea8f27ea97afec418e5472eb5645c11d50553ba1da8145810","ssdeep":"96:+jA/eHDrVYn9fofjOMqlx1Vg1ahFOpjbWX11Oxl3xwUjQm4oqR9jHA3LTGIjsYXg:+jZDGnz1VBFOpjbWlOl3xwUTBq/AbTNQ","tlshash":"e6c1bf2325a4e1012cc5e42adbc7faa9e20cfc5074cc2bc710e76d82351fb2a3aa6c15","first_seen":"2024-06-29T09:31:12Z","last_seen":"2026-03-07T15:54:36.239279Z","times_seen":10,"resource_available":false,"data":null}},"time_used":371,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":370,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","fqdn":"secure.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.803Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1 HTTP/1.1\r\nHost: secure.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: text/html; charset=utf-8\r\ncross-origin-resource-policy: cross-origin\r\nvary: Accept-Encoding\r\ncontent-length: 759\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":1776,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (1776), with no line terminators","md5":"edf7eb68c705489ec8246e1b26caa4f9","sha1":"af7b22c5dd7a832701f7b793980156b3f6bc2acd","sha256":"78dcdf10f836c59bcadd8584637330d3452a92dfe5631487fd054a3c87612dbc","sha512":"527d3f9ff56ca596b3a3d3ba0b1717acd5829a08ba59952ba21a91f84a07b8131e2bfac44dce395b3141e8c476476bc1acd54f4d9408bd736f2f522b63b1defa","ssdeep":"","tlshash":"02316273aa00c91d7174c231fd8bb08e895d934e8644acf2b29412fe0ee0ed5c173e29","first_seen":"2025-11-12T08:49:11.919324Z","last_seen":"2025-11-21T09:57:17.78595Z","times_seen":826,"resource_available":false,"data":null}},"time_used":177,"timings":{"blocked":26,"dns":0,"connect":0,"send":0,"wait":150,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/pool/list","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.846Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"POST /apipub/pool/list HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nX-ACCOUNT-ID: 8813370\r\nFe-Version: f96ca1d92\r\nContent-Length: 29\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=awoldOXkTA%2BuhO%2Bygj2oNZjwiF%2FthaQjIBCTyeura5vjIRSC7ZhlV8Yxa45aa6QlxsjmA1QgvcctEogOvXuAMO99Ut%2F58%2BuyGzzu%2Bk5%2BytbdKNeh\"}]}\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918cb8c435689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9028,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"6c991bf5e592ee806c6dcaa900e4c4c9","sha1":"143ae6389e90f8d1a2ecd906bb566fbc787bb94c","sha256":"3313e60e23d9781f144d291966f4f56a2f45c35d46a88e622f4201e7060dacaa","sha512":"5ca513c862f06a06490ec463566e208387a4957acabe78d2e2273a71f4942415dccafa77e943a6ec6ef9c1a704bb0126005c9c87693460a1f866754746a036f9","ssdeep":"192:FXqanRRtsZ7Qm16MCqBtKc5RM2AvLMzmtYbO6/wLOpEqI29TF:FZR0jlvHfzrW6i2z","tlshash":"f31210de5f559d789ee616eb1a61df88dbf0381623ee4fa0fd8d4e898040641330e85e","first_seen":"2025-11-20T15:49:54.504356Z","last_seen":"2025-11-20T15:49:54.504356Z","times_seen":1,"resource_available":false,"data":null}},"time_used":285,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":285,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/home","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.253Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"OPTIONS /apipub/home HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,fe-version,x-account-id\r\nReferer: https://chambersoftain.com/\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\npriority: u=4,i=?0\r\naccess-control-allow-headers: content-type,fe-version,x-account-id\r\naccess-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\naccess-control-allow-origin: *\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=lXZM%2F6OxPOZvzPydC3omMG6MNSWypqcg1XYGjwPXPIqZQlsMXW15hfoNsNAuINzhx7Y9L2Mvl2Wx36ZjqOs%2BLt6xpT296uwG%2B%2BJB9tdgWhQWpM8D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c7dc1d5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":229,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":229,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/lottery-template1/assets/home/casino-min.webp","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.487Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /lottery-template1/assets/home/casino-min.webp HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.livechatinc.com/v3.5/customer/action/get_configuration?organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026version=157.0.1.5.13.311.1.1.1.21.1.16.1\u0026x-region=us-south1\u0026group_id=0\u0026jsonp=__lc_static_config","fqdn":"api.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.599Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /v3.5/customer/action/get_configuration?organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026version=157.0.1.5.13.311.1.1.1.21.1.16.1\u0026x-region=us-south1\u0026group_id=0\u0026jsonp=__lc_static_config HTTP/1.1\r\nHost: api.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript; charset=UTF-8\r\ncross-origin-resource-policy: cross-origin\r\nvary: Accept-Encoding\r\ncache-control: public, max-age=600\r\nexpires: Thu, 20 Nov 2025 15:59:21 GMT\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\ncontent-length: 2111\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":6738,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"Unicode text, UTF-8 text, with very long lines (6624), with no line terminators","md5":"a874882df89e8bb010b7999714e74890","sha1":"e0b21be6f11fedafd04c067a394b8cc7decdbf50","sha256":"87332f1f6c0b8f9773fa92a0afa422017a7ff33dd1d41c835454ff03a20f4ade","sha512":"b83645f6ac4812190f19ae4156bb4fa37fa9d710851c704550fcb644857839795c97d0131b85760c029da2bca09cfa72a53d792a1d8f8ab02cf85f1a7696b001","ssdeep":"96:VhUwhUnhUsXhUAorIR5fDyACll+et0174Sr5WPJwUtJ7N700GoMwf3PJvCLq:VGwGnGsXGA9/DV14u56n0doMaxK2","tlshash":"18d1453a474fd8bbb377925a62dbb60e30085578a5e8593be460cb7071861c3d306fa9","first_seen":"2025-11-20T15:49:54.508209Z","last_seen":"2025-11-20T15:49:54.508209Z","times_seen":1,"resource_available":true,"data":null}},"time_used":172,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":172,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/81131.316934b8.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:18.814Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/js/81131.316934b8.chunk.js HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=yiCz%2BZEPhe%2B5sKLqQapW%2BQyypiueI5hmISVVUORij2sflkR3r7wbyn%2FhJ0t2Oq6TR1FQsXOEICoTuQdoiL2epA50zYTlEYyfCWpvUzN4PiQ%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918b88b235689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":63009,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (62931)","md5":"43dfce7bc9a78c7868964d92d1d696be","sha1":"5cbf9f9bfa0d482d916ed3f1068a336ca1804791","sha256":"c3b62fabff7c5cb1fa7bcee46adfc9498b1b3df313ae1ca8bb774737b85d59ed","sha512":"61d942b76b6c454f3e9097d49ab6133fe8f7fc4b073e99106f304040f6e910b7494fe02fa4807f62b95604dd43d0378658562cf0274b5ab645c9d4513d34e89b","ssdeep":"768:gHB3wORYjIcd4COJAQhAFHT+Fa+hOHH8pgM3uCIwcWF/Xa0:KlyjIcdbOJAQABTZ+h08pgMefWF/q0","tlshash":"0853d8c9b6a1f0b643d310a5903f850bf3ba6d29a44dd050b361d8e47cb854e636bf7a","first_seen":"2025-11-01T02:26:38.28974Z","last_seen":"2026-01-21T14:38:11.568219Z","times_seen":36,"resource_available":true,"data":null}},"time_used":865,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":441,"receive":424,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/38647.913149c1.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:18.908Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/js/38647.913149c1.chunk.js HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JvTDPxRLaUwudBcaybC9LdzgR8r%2FJIxfLm88%2BuAs4kHHsXEs9WA1xbB%2FkWYRbLbE02kZhwRVEX%2FZvpAbdo3qpS%2Fs8KLUgGSHd2SpzlQjxhw%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918b8ab2e5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":20139,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (20139), with no line terminators","md5":"b7694d77da2dd4356671fd6294749aa4","sha1":"2e3502b92a717c94a2537eed896173659474b160","sha256":"71717fa2042d13c00886443e0008a041cf0e7c7e42286e626e45a2a8f74522e8","sha512":"76e632702ea9b768b8cb2ed7bc827609d736eb416f8e77711b0c0dbe4a77763d0f99a95084481f1aa3c604dc069c4526eceed5d269a5f19ebe87cc160edbdb29","ssdeep":"384:AARYMVau2Vdjrb//GLCxb3FJU2Q1/uwGW5EemfdJJHJenXiAQOFKfYW+8uwkQJCJ:AARYUau8djrb/uLCxzFJ01/NGW5EeYr4","tlshash":"2c927e9ac586788802b56cc5b03b6061e63dbb0832048416f1bbbdf19345be9fb65dfc","first_seen":"2025-11-20T15:49:54.510857Z","last_seen":"2025-11-21T10:45:51.030047Z","times_seen":2,"resource_available":true,"data":null}},"time_used":567,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":385,"receive":182,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/39395.93ce345b.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:20.188Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/js/39395.93ce345b.chunk.js HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:20 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=K7R6SHik3Gw%2FV%2Fa3h9y8XkVHH1Pq16nqpgB5AnngzLph6e%2F062SkMDo5gc6Zl4iQWUaxAU1e6WAzUBceQOQdf%2FskVvtMGmdFGTgwp1jQMCo%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c12bf65689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":32031,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (32031), with no line terminators","md5":"c562c34e1ceb937f43ba3a80dc76de1e","sha1":"42584fc76cc311cfcfdcf1d91ba5d35b7a9ee08d","sha256":"a9c98eb84bd53d98716ea08b23199388ccb4d332cd08fe13f4438f34966f8058","sha512":"a31d6541d53f447442d0a94c9b1d33a76435e66474f47e8f89a872727a589037f2df9f3570bc2eefc771f16049aab9f0668c0782a6dbfbccdd0d97289d835559","ssdeep":"768:TNWAR9XFKPYvX/BMARvVLb+hZoxeBv8EHN9AvZSCEgVurczCwXSx+E:T4AR9V3X/BZIhZOLM","tlshash":"c6e218c87289b0b54bdb92a790bf450eb3379524710e9400b159e5ed3836eeea03bd7d","first_seen":"2025-11-01T15:19:03.682213Z","last_seen":"2026-01-21T14:38:11.595602Z","times_seen":17,"resource_available":true,"data":null}},"time_used":570,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":386,"receive":184,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/member_tiers","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.885Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"POST /apipub/member_tiers HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nX-ACCOUNT-ID: 8813370\r\nFe-Version: f96ca1d92\r\nContent-Length: 2\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=2eW0uralE3FJKD%2BjCn1PD416JfrMh2VU3zj3xWzLK6VAgEnd6otdCDVC0kRB779nrfhud2ERiKKOErwPmIV7MXvSgdYXZ9CJtdFcupQsbdr9HXtd\"}]}\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918cbcc475689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":86,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"f9425718723daa87927623a4879320e9","sha1":"f4bcd042d7a38ee43913763c0d06f0e26d74b630","sha256":"c3cbd6f0c7e60e519a6e828bba959de9cd8feb9cec787097ce382b84eb7dd07b","sha512":"e9297cfb9ad3268bb623433aca1e17d9925e8ce902b30df7f9ab2a8ede3146edce3898b8bc49999eccaca0eadabbf0b6a99c97b632ee11aef9fdfc1e0b627e13","ssdeep":"","tlshash":"d1a01203040414cfc040d60083747d52334c583354012d2241485a3549d55f43293c26","first_seen":"2024-12-07T06:06:47.341597Z","last_seen":"2026-06-06T21:01:46.373736Z","times_seen":76,"resource_available":false,"data":null}},"time_used":227,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":227,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/script","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:20.669Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"POST /apipub/script HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nX-ACCOUNT-ID: 8813370\r\nFe-Version: f96ca1d92\r\nContent-Length: 29\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:20 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=EEyEqcdgFP1cQHDHtYXmY4YZdeWOL4sEfGXq5v%2Bh06ANXY1vcvA%2FvX9dz0%2BltXdh2yNQwcwVN9ugTec8dOaAnJ6UbM5kENIBLHYiv4vJuhDniMFW\"}]}\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\ncached: true\r\ncached-valid-util: Thu, 20 Nov 2025 22:49:30 SERVER_TZ\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c42c0c5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1249,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"653a3b4a825cb549dcbd73f8001488e0","sha1":"803c93426c7f2afafc901f369379d335f097326f","sha256":"35e0e288054e04486248fa66aa866b33f8d2051a751a4af793cdab87bddc66eb","sha512":"7f253c073ed435c9ca129fd643d85cdb93070803f513c9a7e7de8e9620b1e8272af25b1060ae20288020db1fb513b6f61ca20633a95072c25eac964bbfaad763","ssdeep":"","tlshash":"b221e066e840e5765e837a547e3bfa0b6152252c4c505073adfec36fc630ae74213548","first_seen":"2025-11-20T15:49:54.51353Z","last_seen":"2025-11-20T15:49:54.51353Z","times_seen":1,"resource_available":false,"data":null}},"time_used":229,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":229,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/mobile","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.393Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"OPTIONS /apipub/mobile HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,fe-version,x-account-id\r\nReferer: https://chambersoftain.com/\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\npriority: u=4,i=?0\r\naccess-control-allow-headers: content-type,fe-version,x-account-id\r\naccess-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\naccess-control-allow-origin: *\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=4u%2Fb6JQzJokM9ANkQNkUgbIbev5hUDUKYwa0VWS1Ttrsc%2FWJWDtYe0%2FrfIpqKSAQtpCquwHdS%2F7kMIcZJUItgwrmh4Gdncu0F73rxBrrx0IJccme\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c8bc2a5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":449,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":449,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.livechatinc.com/v3.6/customer/action/get_dynamic_configuration?x-region=us-south1\u0026license_id=19196488\u0026client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5\u0026url=https%3A%2F%2Fchambersoftain.com%2F\u0026channel_type=code\u0026origin=livechat\u0026implementation_type=manual_onboarding\u0026jsonp=__j7hlr4wgfs","fqdn":"api.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.195Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /v3.6/customer/action/get_dynamic_configuration?x-region=us-south1\u0026license_id=19196488\u0026client_id=c5e4f61e1a6c3b1521b541bc5c5a2ac5\u0026url=https%3A%2F%2Fchambersoftain.com%2F\u0026channel_type=code\u0026origin=livechat\u0026implementation_type=manual_onboarding\u0026jsonp=__j7hlr4wgfs HTTP/1.1\r\nHost: api.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-security-policy: frame-ancestors https://chambersoftain.com/;\r\ncontent-type: application/javascript; charset=UTF-8\r\ncross-origin-resource-policy: cross-origin\r\nvary: Accept-Encoding\r\nx-frame-options: allow-from https://chambersoftain.com/\r\ncontent-length: 384\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":384,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (384), with no line terminators","md5":"52ab737b1d0145534a790426821e0dc6","sha1":"8729fa371562a2b871fea96cb8d2922188f6975f","sha256":"f0f8936cdc6f98d6166f75a4a5e28a7f974e028cb948995961117cfc3e102efe","sha512":"4449c9dbcf0cce364dbf3b2553bde984808a54d69e2ef0ff5836a3f5c44548ed500b570ee45fe9ad960c4094ac36037ca7d843da4944ad246c9efa31b2ebbc45","ssdeep":"","tlshash":"29e06833b705a53097c1f2f49454b952aa7042b291101578f6a83300522f28c3720916","first_seen":"2025-11-20T15:49:54.514637Z","last_seen":"2025-11-20T15:49:54.514637Z","times_seen":1,"resource_available":true,"data":null}},"time_used":397,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":396,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/pool/list","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.394Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"OPTIONS /apipub/pool/list HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,fe-version,x-account-id\r\nReferer: https://chambersoftain.com/\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\npriority: u=4,i=?0\r\naccess-control-allow-headers: content-type,fe-version,x-account-id\r\naccess-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\naccess-control-allow-origin: *\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=I3%2BNvUNrYKD%2BJ7r%2FhyHSWLe%2FEiikxZHpvHPfzG%2FDXhTJji1avBs6N0OUJELq%2BCYGwbmkfTn%2F88rI4CjojysTdgFMc%2FyTsorOtNDNiwRMsX0%2F7GWo\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c8bc2b5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":448,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":448,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/css/main.0333844d.css","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:17.045Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/css/main.0333844d.css HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:17 GMT\r\ncontent-type: text/css; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=f1zRGt11GudxaXBi%2FmZp1dtqmTHMFW%2FBIQ9618nlCnoKODEh%2BjjDT7PZD86vMEuPTGISkpy%2BBgWD8xXt8KTALI%2BtkaCtD8b2cJb9ZkS%2BV4k%3D\"}]}\r\npriority: u=2,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918ad7a8e5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11719,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (11719), with no line terminators","md5":"a25a69c500567d7b9bff9e2d6b516f7d","sha1":"44dc842f1d238f71b477fab5602f6fb0eb76e662","sha256":"8baea3d72998ceca44746a7aceb1b6e3e9c918a4c36f4ca3808933d1039ebbef","sha512":"1f4ab3691cc243873b4a4699179c1391baebb3d43a8c152b90ea301e8caf1f46e4aae05c8a9cfc985d2196928ff58dae11b21075f392b35187165bb60debcc8a","ssdeep":"96:sJJR30QDgqkJmAOxbzqA4rSfpwSeE6M/KqC3B25UhGNTsM/s:iJeQDUcpq+fpwN9bb","tlshash":"f032ec04e9511d362c536ea647dcde5cc11bd0d388ef1aae3fdf208e42827ca1ba6746","first_seen":"2024-12-22T18:47:48.941853Z","last_seen":"2026-02-26T04:10:09.267979Z","times_seen":85,"resource_available":false,"data":null}},"time_used":398,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":398,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/96791.ce5a3fed.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:18.832Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/js/96791.ce5a3fed.chunk.js HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mc0jM8bktzAyWwLVMq%2F0honUUcWTuCEHa5oqRsu07ZRQyMuuaF02rsVeANXGffDuR6Jk2ZpQ3TjTi09nPULOZ1xLNJdtJLi0KuSDOG%2BroJQ%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918b89b275689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6817,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (6817), with no line terminators","md5":"0ed495f87f1db35c5fc6838a23ffd219","sha1":"9571286701a787cfc94c724a8c315b3427cf7f7c","sha256":"5660fc7ec426a6b7e13c48f6093a038ad7b34f407ef5d80aca93fd270228f512","sha512":"640204b05292465168c4681007a50a193fef5f6d1db278995184c39e32f01ee6fbddc9a7b7a94e64159006277325b148b188112b221cbd22f2cc95570e76ac4c","ssdeep":"192:uWTBmM9yhTUDmTxJeTTJHmaHs5k1DQzRMxdmyPQul:rTgiyhTUDmTxJeTTJGYsW1OWdmyjl","tlshash":"84e1b5c8308ab4d617e309f5c03f8247e33b25691d0de6109b62e9f4786946e7237e2d","first_seen":"2025-11-20T15:49:54.516497Z","last_seen":"2026-01-21T14:38:11.612444Z","times_seen":9,"resource_available":true,"data":null}},"time_used":499,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":499,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/0.DIaqU0KN.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:22.074Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/0.DIaqU0KN.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AOCedOF2yGG0tth5u16IofwY9EstFzaRH-C0jz4fNTqVBNMCRWRVB5XF78LSeryZKbUoitKP\r\nlast-modified: Wed, 12 Nov 2025 08:33:43 GMT\r\nx-goog-generation: 1762936423620164\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 74950\r\nx-goog-hash: crc32c=q7YnKQ==, md5=kzwlL8kkc2l9HFu6D0oThw==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncontent-length: 23570\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 20 Nov 2026 15:49:22 GMT\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":74950,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"933c252fc92473697d1c5bba0f4a1387","sha1":"ae880e06d6face91f2110b0ffc69e36a17ce3d3c","sha256":"8ffe52ceec19f5cd2888c35b9c4235a756ff7bd521bff51cdb87c315dd6705ed","sha512":"ca8ecbffb4d12829cfe84c77736a2464fd2c2cf3a0da55ed1ea56109bc2a4d804ffa925103d9f209d2edb42eb253cc0f7a0d93120f73fed29b6b0baa591a4f3a","ssdeep":"1536:DoYb9tkXt9AE2lg80nY37aG1ak1d5m7Qq7UfoXqhPtiux:DoYKteE2q8J1ak1d5m+qqhPtiC","tlshash":"f87307d1f686f5398be794e511785043fa267a18b82c8170f36cce20219e6c7a177f6b","first_seen":"2025-11-12T08:49:11.958053Z","last_seen":"2025-11-21T09:57:17.734368Z","times_seen":834,"resource_available":true,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/18.BDC9LGkT.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:29.513Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/18.BDC9LGkT.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AOCedOFdMGpwTuKekWwat4dkUlIwfb341nZJqie8VcwegIcQTVw-kV0roT7LVn-iLbzt94Gd888SzBs\r\nx-goog-generation: 1762936423628492\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 8044\r\nx-goog-hash: crc32c=oMvwrQ==, md5=KXDPZT6EhZh1PPU/Ocgiyw==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncontent-length: 3179\r\nlast-modified: Wed, 12 Nov 2025 08:33:43 GMT\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 20 Nov 2026 15:49:29 GMT\r\ndate: Thu, 20 Nov 2025 15:49:29 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":8044,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (8043)","md5":"2970cf653e848598753cf53f39c822cb","sha1":"d5ba966bea6805182b5d62126e430cc97f6027b1","sha256":"5ff77bd2bbcb08ffa2b555d61951a69547775baeb2cb149c13b011ab19c41af6","sha512":"bac5e279ea418c3b27d294e8a7931b0bcbd43d54777c2c1020defd23c063327a8a801fa1faf7aa17f1bc530bbd6b4611663c214a01f5fc6635eadc40ab672856","ssdeep":"192:rmIcs/+sXpRMzExyv5vHcj/pIWpIizfq7ovx7vc:rlcs/+sX7Mzpv8llbqs7vc","tlshash":"acf1f9dc1322eaedd9c29afe15381009b1696de97c36c245dfeec80970255c86d39db3","first_seen":"2025-11-12T09:54:27.786555Z","last_seen":"2025-11-21T09:10:06.567002Z","times_seen":92,"resource_available":true,"data":null}},"time_used":135,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":134,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/15.Ds1NXQbV.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:29.542Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/15.Ds1NXQbV.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AOCedOF_2s6yVKSYmxyLj-fIpaqIY1jGk78bDZ-ucdgftWDV0u3by-0FjFZ92BO5PQC8D0vSTNzDc2rkr76fMg\r\nlast-modified: Wed, 12 Nov 2025 08:33:43 GMT\r\nx-goog-generation: 1762936423609156\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 1202\r\nx-goog-hash: crc32c=3ivc5Q==, md5=xLfe8sK2iwKcv47/YnI3PA==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncontent-length: 583\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 20 Nov 2026 15:49:29 GMT\r\ndate: Thu, 20 Nov 2025 15:49:29 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":1202,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"Java source, ASCII text, with very long lines (1201)","md5":"c4b7def2c2b68b029cbf8eff6272373c","sha1":"992c8b0b873789f47beb6a2dda200752d09f2d18","sha256":"103c2ce2cd587b53e19695fe92d42e181f7dfc2c8b7d0dd5d83a62df9b4cc2ff","sha512":"d75f0fb41fb3936f34bd7ec2831f276257bdae4fad09f082803f1566f60344b253053f35c213bf401eb4795d7ebf09af48db504731c0aa745e8d767f039b5253","ssdeep":"","tlshash":"ab21d2deac08d9714bd44ce590a20c36da68535cb16bd5f0f15b1ed633064d312b3e57","first_seen":"2025-11-11T14:06:47.294747Z","last_seen":"2025-11-25T03:48:18.299559Z","times_seen":210,"resource_available":true,"data":null}},"time_used":2,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.files-text.com/api/accounts/avatars/c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff/f48d7c80-089f-4bf4-b587-2b5bd2121d1a/bc0d5a9d-16d9-4ee0-953f-bf41953cd2e1.jpeg","fqdn":"cdn.files-text.com","domain":"files-text.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:29.713Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /api/accounts/avatars/c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff/f48d7c80-089f-4bf4-b587-2b5bd2121d1a/bc0d5a9d-16d9-4ee0-953f-bf41953cd2e1.jpeg HTTP/1.1\r\nHost: cdn.files-text.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://secure.livechatinc.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 7050\r\ncontent-type: image/jpeg\r\ndate: Thu, 20 Nov 2025 15:49:29 GMT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":7050,"size_decoded":0,"mime_type":"image/jpeg","magic":"JPEG image data, baseline, precision 8, 225x224, components 3","md5":"83d7e2903362561b326d9ec4164ff5fe","sha1":"70b97bd8235c6216f9cb0b909d7d49d1abfc3c20","sha256":"e3f0a3d2f9cbba44a1eb3d6aa51daba01c4376c412ffa215abd84b263f2cbacf","sha512":"2846a9733c0d3e33d8469af6ffd5eaaad405afdcc32d4ef519a13c1a48470eabb5f52584a7a65491507c83433f1c1811368ac5fe97383189eaba88f51eb53fb0","ssdeep":"192:Okpp0EkKE2/V27i2fwnqhxZxcs9s2IlHHB48u4k+:/ppb27GnqhxZxVfwHHOV4k+","tlshash":"e8e19ea769f6418cc70f9731920a4957e0b8833278b89e396b101fa9e5f2d301d0be6d","first_seen":"2025-11-20T15:49:54.520197Z","last_seen":"2025-11-20T15:49:54.520197Z","times_seen":1,"resource_available":false,"data":null}},"time_used":241,"timings":{"blocked":40,"dns":0,"connect":0,"send":0,"wait":200,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/livechat.g7mJdFQw.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:22.030Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/livechat.g7mJdFQw.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://secure.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AOCedOGwvaPFJkD62e5h17uaaP3DDXPXFEZTqfcQ7SnpsQxBGw_ykXvserK7CuhdRqKRm9--63SyKw\r\nlast-modified: Wed, 12 Nov 2025 08:33:43 GMT\r\netag: \"db6e3f9083b9a9b4b5ff9621b8d57de2\"\r\nx-goog-generation: 1762936423654017\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 432\r\nx-goog-hash: crc32c=sjj1QA==, md5=224/kIO5qbS1/5YhuNV94g==\r\nx-goog-storage-class: STANDARD\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\nvary: Accept-Encoding\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 20 Nov 2026 15:49:22 GMT\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-length: 432\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":432,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"Java source, ASCII text, with very long lines (431)","md5":"db6e3f9083b9a9b4b5ff9621b8d57de2","sha1":"36d7519798c68870110931201db4c276160ad0c3","sha256":"1543d5fe8b7596afa9ebb0a9742ca021c2aa528930e67ba32c62f1d43159a03e","sha512":"d95c9508724c0b5b22e5df09fc0258ea09c46e7227a03613b0e7e58d8d8a01a5bf15abc2ad639e0d66d097e827df45881220425546f66214d64b70dffe3c13cb","ssdeep":"","tlshash":"26e095cbe6003debf2e9cce5c015e0e252f213a687a483a0d0cf87320301869ce56a67","first_seen":"2025-11-12T08:49:11.940535Z","last_seen":"2025-11-21T09:57:17.797137Z","times_seen":834,"resource_available":true,"data":null}},"time_used":37,"timings":{"blocked":17,"dns":1,"connect":1,"send":0,"wait":3,"receive":0,"ssl":13},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/lottery-template1/assets/home/slot-min.webp","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.498Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /lottery-template1/assets/home/slot-min.webp HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\ncontent-type: image/webp\r\ncontent-length: 5588\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:00:20 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\nage: 0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7htuEZiUyW8QEWMpWn0KevwYeGdoAKWVi2Prie1uA1An8BppOZHFCw%2BO2cVUL4oYTA1JT9cGGWdo7jTm5WI92F5mZ6xLrQrur%2BlLAYSjloQ%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c95c365689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5588,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 190x180, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"a606f7a00384ea0667825d02d14815d5","sha1":"c8ec10b68cbe12aaf7d6b1724a3bc6556750702b","sha256":"dfea23ed9f2d3c9d9812d58e881514b624ec683fb1c19d32be49b418ba4ca19f","sha512":"437e1416ff89cf0cbeb9e4b51f00b915718529c2ca6270b1917364a88318f0dc82f9d60f72be6aec5dbd8c0a89618d0958c965c03a25a7c0ace8d14a6250aed9","ssdeep":"96:kjGOMS6L3F/xMNFIi5v8099QtuhM+oM3UO5tFxiEoGOeyork69+XLjPnmUPU:sBD0WvjctuVoM3L5zwEoGPJo6IXP/mUM","tlshash":"a5b17ecac6c25908a65b4093673267444dec6949638a0fb41f32caa3327ca4f52e4bb9","first_seen":"2024-06-29T09:31:12Z","last_seen":"2026-03-07T15:54:36.331312Z","times_seen":10,"resource_available":false,"data":null}},"time_used":482,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":482,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lbstatic.winwinwin168.net/media//images/C7LvrttF3UTU1JIhKSIt.png?webp=true\u0026width=60","fqdn":"lbstatic.winwinwin168.net","domain":"winwinwin168.net","tld":"net"},"ip":{"addr":"104.21.73.200","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:26.688Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winwinwin168.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 25 Oct 2025 18:15:31 GMT","end":"Fri, 23 Jan 2026 19:13:17 GMT"},"fingerprint":{"sha1":"0C:AB:FA:39:B6:AC:C1:0A:75:EF:47:06:BC:ED:50:06:A1:79:19:58","sha256":"94:FF:F3:E8:BB:20:13:EE:BB:81:40:F1:53:92:40:63:3B:62:8F:E6:86:E0:B5:6E:94:3B:F4:DB:A5:F1:B0:D4"}}},"request":{"raw":"GET /media//images/C7LvrttF3UTU1JIhKSIt.png?webp=true\u0026width=60 HTTP/1.1\r\nHost: lbstatic.winwinwin168.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:27 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1806\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\nlast-modified: Mon, 28 Aug 2023 05:17:09 GMT\r\nvary: Origin, accept-encoding\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=idlnT4exIX9MUE8urioSya6%2FwHokdpeC2P%2FvZTtDNKzE5wU0eb48IBNDiXLMUpnJQqTyA8N0y%2Bst1F10LnGkHRDs1ynQY7CyZKTBWPqUWKgjn1yHRw%2Fne6k%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918e9cb978deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1806,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"73f5343b927aa81fde2067c697880a48","sha1":"466463fec13fc539bd0e9dd408699a07664b010b","sha256":"c76da162786c31bf7dafd501f269f2c25d675f5a256fb0a583f6fb968bdf3acf","sha512":"15de342969a94cdcdc5a0a2a9981460bb2ec5998f68f624325f5dfe74d21207f7fa5c8d3c39ecb9fd50e9d256833a44492a0e202cdc7d692532cc928e181192e","ssdeep":"","tlshash":"e1314d54c4bac904f9134c3a37c17df993c31074f40a9d22750f219866ea5db066c665","first_seen":"2023-11-01T05:49:18Z","last_seen":"2026-06-03T09:56:35.944547Z","times_seen":39,"resource_available":false,"data":null}},"time_used":442,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":442,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.livechatinc.com/global-mapper/lc_license_id/19196488/region?jsonp=__lc_region","fqdn":"api.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.023Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /global-mapper/lc_license_id/19196488/region?jsonp=__lc_region HTTP/1.1\r\nHost: api.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nuber-trace-id: 39cd1b04734f5de3b03603fc31f634cd:ce5c3cf193532e47:0:1\r\ncontent-length: 35\r\ncontent-type: text/plain; charset=utf-8\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":35,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"ASCII text, with no line terminators","md5":"b17346aced6298b7e1cadcd62f40003c","sha1":"c28b849fff4b4d9d006d803bc4d18368446ddce4","sha256":"a379b1707064386da00957301b6eb053249cfb462047d44e4fb6d52898f5b78b","sha512":"93be3c00856eedc8cedd0c7bd2b2a5873aa85dcf9e893d9e972421d122c568cbb1c9b4ca633497bc80900f688898040a218616dc69a4716fcd3d5a2dc93fb928","ssdeep":"","tlshash":"8080000e20002ae30a20ef3e8023ec0cb03e033223008288c302208228002b0822ae0b","first_seen":"2025-05-16T12:26:33.454661Z","last_seen":"2026-06-10T13:52:27.74483Z","times_seen":27955,"resource_available":true,"data":null}},"time_used":199,"timings":{"blocked":36,"dns":20,"connect":1,"send":0,"wait":127,"receive":0,"ssl":13},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/daily_spin_bonus/is_enabled","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.390Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"OPTIONS /apipub/daily_spin_bonus/is_enabled HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,fe-version,x-account-id\r\nReferer: https://chambersoftain.com/\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\npriority: u=4,i=?0\r\naccess-control-allow-headers: content-type,fe-version,x-account-id\r\naccess-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\naccess-control-allow-origin: *\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=imyfuVMTjn0l3Sh8PMNPCoqTIVfkGpEyBMJO0C46suESYtQFrS7ikMhl1SvZxq9vCWCVbUjHfX3pYIaM%2BCMWJxNfHpJOYDv7ikxZLxScwD8vuXTm\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c8ac285689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":508,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":508,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/daily_spin_bonus/is_enabled","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.899Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"POST /apipub/daily_spin_bonus/is_enabled HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nX-ACCOUNT-ID: 8813370\r\nFe-Version: f96ca1d92\r\nContent-Length: 2\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=QJSyjq8nYSYZNw9zh4Iy6tdDZPWrwqiw08vvmzCw2Xlfkp4u56A0SH1hfbCBFatDUfVcuvQ0ZZtKxkufFtYAHmSdXJVoef81AkBcbL1Uz3uv3obR\"}]}\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918cbdc495689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":97,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"afbfbe5deb68872a65e35dcec76a5c22","sha1":"e368617505ccdf216dd9248a43f21a12a372773c","sha256":"d7fb0cc6f0a10d5a063b41e2af757e8efd3ef08cd09ee537907edb44f84d6479","sha512":"9cae1f625a46adc496e49b12539042dbc9d0f3c8c862b1708c02aa8f2c1b06de55817f0c2f46272d51b8e508951713ae36cf3453d024c2697dee4c9758eade5a","ssdeep":"","tlshash":"05b0121f288011dcd4903a94d1736f5003ca0011b4817a30f7c52b016ec6051729103f","first_seen":"2024-12-22T18:47:48.915078Z","last_seen":"2026-06-11T00:35:22.233586Z","times_seen":49,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/10.Dr3I92Zs.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:22.136Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/10.Dr3I92Zs.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AOCedOGNI6wnxcoSzPdsibWhKPf_mZCkOw5oNnahSwICo588xBoYg_IHAUA7jksdGdPckPFF\r\nlast-modified: Wed, 12 Nov 2025 08:33:43 GMT\r\nx-goog-generation: 1762936423599054\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 4900\r\nx-goog-hash: crc32c=0UW1Bw==, md5=KKaY8OWRP9Cori2jT0eLXw==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncontent-length: 2031\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 20 Nov 2026 15:49:22 GMT\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":4900,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (4899)","md5":"28a698f0e5913fd0a8ae2da34f478b5f","sha1":"3eabafd09f5338936895ac1f31164fa54dee3412","sha256":"66025b875d38e4e16bd671b203c943039ac8e804d36b783797c96243ecc97e3c","sha512":"8bbee3881152a2cd9bb97bf6c7e87f6fdf0703bb22bed680fccfcb89eb1bd760739d7ba5a60bf9c42e11b447ff73fc55e4b42a4a58cd17350cbc3949f5068a85","ssdeep":"96:7+HmlKAJb2MLADeQA6Ob1NlDF3DM3maas1pFJpInNCzaNkQyyZFBXfFBXoQFddzs:iGD2CAHNgx3D6cuENqaNkQP7BXtBXoQ0","tlshash":"16a1c7fef355f97497e98cf5e5143043ec3b16a8f8ac85b0fa1c4e55214d1889022ba3","first_seen":"2025-11-11T13:17:33.991679Z","last_seen":"2025-11-25T06:09:31.382236Z","times_seen":1448,"resource_available":true,"data":null}},"time_used":2,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/19.D2DC3tai.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:29.516Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/19.D2DC3tai.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AOCedOEi5aHy4aoNAjkfR_Fn1qGD2MO1e_1-OqjbuLLIxOSpC8adUKP9qZDv5_nnsP8QtuT5dxMBKpE\r\nx-goog-generation: 1762936423620886\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 4116\r\nx-goog-hash: crc32c=4isXIQ==, md5=dVGxzkXQao2wE6W8Wesi5Q==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncontent-length: 1761\r\nlast-modified: Wed, 12 Nov 2025 08:33:43 GMT\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 20 Nov 2026 15:49:29 GMT\r\ndate: Thu, 20 Nov 2025 15:49:29 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":4116,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (4115)","md5":"7551b1ce45d06a8db013a5bc59eb22e5","sha1":"7a3e70e32bb0ae1166da2b73473e5368edb87c2a","sha256":"505cb66991f08a271a8442b255b3d18f729cc2f78e4e3f5aebfd8ae328461e92","sha512":"78683ac43c6e890aeaf0891e173bba080b02d68678f9498e393cd0b7b8cd98a20d26e9e2172b81ded577b29855365a8281ea0e68eea2021389dcc6e876476b99","ssdeep":"96:V0rUP2JJtLeIiEZ+7XqFw+X1ZV1iimS2jHN+3NtbNudHIbuHC:V0rU95Ew7OtX1divS2jt+9txpmC","tlshash":"6281d8ea32dcbd76e587c6e6907b4060135d0169680d4fd0d027cf9a00ba7d435e6f6b","first_seen":"2025-11-12T09:54:27.771588Z","last_seen":"2025-11-21T09:10:06.59609Z","times_seen":91,"resource_available":true,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/24563.c8122b38.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:18.834Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/js/24563.c8122b38.chunk.js HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Ap6eyyMokMcsvrcwezCL1YPKjjhNDbTJHVBaXUK1ufBbpaexjsoyjw6km3hoi4rNZl4Qam3dDK9qZHRwrgN%2BrEDN30sRMq2ocRlJc8Odd%2FE%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918b89b285689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":13704,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (13704), with no line terminators","md5":"b058f53b195b37d71031927e328085f4","sha1":"e11788f7cfac2eb2684af63d6a8f695727df5bdf","sha256":"465d21be0d7885ffa8a997c301140fd1b710a3315c505c7a71fe8f5c1715550e","sha512":"aeb7e68312a30421120a5fc65fa76e645a4821ff408a2e37d6e544befb8ed9851bce3eaca70faec03d3b0988560cd6d02d24f0355c6127d0ecf7ad84540ae970","ssdeep":"384:hACENcxx7LfznNuvxAQxRjDl7nxxux7fFjmxzFt00ns1784ERpf/emxj3xqYjxeq:hACeKUDl7j6wxo0ns1784Mh/D3xpykRr","tlshash":"fe52b997d08a24c60ed08bd840b6065c7158f26ab9000645f374bd9d63bfdc6e6e2bbf","first_seen":"2025-11-20T15:49:54.525952Z","last_seen":"2026-01-21T14:38:11.536125Z","times_seen":11,"resource_available":true,"data":null}},"time_used":384,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":384,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/lucky_spin_for_newcommer","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:20.714Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"POST /apipub/lucky_spin_for_newcommer HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nX-ACCOUNT-ID: 8813370\r\nFe-Version: f96ca1d92\r\nContent-Length: 2\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:20 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RDdKnf1kvvNT%2BBDtRC5Hprkx1NmAULAh8LaNsE74y2Hi5IAlI4l8F3Qll8BZLAXzo4Rul9F98xlurIJWeyeQSuDLbi%2BVj69%2BWV2DSp0cUiloixf1\"}]}\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\ncached: true\r\ncached-valid-util: Thu, 20 Nov 2025 22:49:23 SERVER_TZ\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c47c0d5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":164,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"b86db71f856ac900ff7ee3617dfeffd4","sha1":"f6975ce75fbc36acdebceb408687dd4182837cbc","sha256":"49f46fd14fd863aafe3c13d7b34493fcc7bbf82b4d57d84e5ce206aa5629a9fc","sha512":"679c34d9c8d3057030a74e96f8d46bbea36080fef58a3e26f58570292a0675a844f7b968ea6289efc5be4b1b76e72d1c2437929e2c2f45dcfa0fd1c964b0f14b","ssdeep":"","tlshash":"38c08c2924048ca5442b525101ad682473dcc523c15d1f10c4884f1868f436c6e2e70e","first_seen":"2025-01-05T05:52:41.57852Z","last_seen":"2026-06-11T00:35:22.218616Z","times_seen":101,"resource_available":false,"data":null}},"time_used":252,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":252,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lbstatic.winwinwin168.net/media//images/MrGKZ2qGeqAQpKUD8eeS.png?webp=true\u0026width=60","fqdn":"lbstatic.winwinwin168.net","domain":"winwinwin168.net","tld":"net"},"ip":{"addr":"104.21.73.200","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:30.884Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winwinwin168.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 25 Oct 2025 18:15:31 GMT","end":"Fri, 23 Jan 2026 19:13:17 GMT"},"fingerprint":{"sha1":"0C:AB:FA:39:B6:AC:C1:0A:75:EF:47:06:BC:ED:50:06:A1:79:19:58","sha256":"94:FF:F3:E8:BB:20:13:EE:BB:81:40:F1:53:92:40:63:3B:62:8F:E6:86:E0:B5:6E:94:3B:F4:DB:A5:F1:B0:D4"}}},"request":{"raw":"GET /media//images/MrGKZ2qGeqAQpKUD8eeS.png?webp=true\u0026width=60 HTTP/1.1\r\nHost: lbstatic.winwinwin168.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:31 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1280\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\nlast-modified: Mon, 28 Aug 2023 05:19:36 GMT\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=aEqQ8FgISwwF3saOgF4wA7S8Hhv64XnGvVOt0wNRRlQ%2FGGKzgQSq8IjiA63K4wSmVPWusTC182gVtZjtTQjkdMgJVB7v%2FKGXjPgN616tNLaaUXrPph7Q0EQ%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1919040f378deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1280,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"5c07a722cab45074a895b72c0fe14610","sha1":"cd3ab7cc2de941a698def3e793b511287f1a0a39","sha256":"6878055c6e2dfcc3ff574e593ec83f5f1f95548f92a90fd95b41e8ce5167b2d4","sha512":"a8ab9faa8d3ea739f592935a8d81c52ef3d40e42b8df99b9680c5ed3cae34986821aacc4652e74bfc214681c0f3e0dcfce0d7eb033688163bf9e612b54540453","ssdeep":"","tlshash":"c6211a89ef5fcadfdca5b84294709668b6de4485b026d56453fe2a4f9093371b03e0c0","first_seen":"2023-11-01T05:49:18Z","last_seen":"2026-03-07T15:54:36.235967Z","times_seen":21,"resource_available":false,"data":null}},"time_used":497,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":497,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.livechatinc.com/v3.5/customer/action/get_localization?organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026version=3e484e3f8236c9d1f2239ff432260121_1a3d177afb0932752df227dc2b3d557e\u0026language=id\u0026x-region=us-south1\u0026group_id=0\u0026jsonp=__lc_localization","fqdn":"api.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.805Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /v3.5/customer/action/get_localization?organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026version=3e484e3f8236c9d1f2239ff432260121_1a3d177afb0932752df227dc2b3d557e\u0026language=id\u0026x-region=us-south1\u0026group_id=0\u0026jsonp=__lc_localization HTTP/1.1\r\nHost: api.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-encoding: gzip\r\ncontent-type: application/javascript; charset=UTF-8\r\ncross-origin-resource-policy: cross-origin\r\nvary: Accept-Encoding\r\ncache-control: public, max-age=600\r\nexpires: Thu, 20 Nov 2025 15:59:21 GMT\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\ncontent-length: 4896\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":14127,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"Unicode text, UTF-8 text, with very long lines (14125), with no line terminators","md5":"a92b00842939e4cf2406aec632cf397f","sha1":"502d1042343ab6291cead657b28d875ff6ca3ee7","sha256":"100d07e01dacb99df8f70668ad575aa32d2610a882990307d369041bc3943eda","sha512":"dad866076dca853b298ee5835a60129312f7106d6731ecee14d524fecac50d4e30a6bd6c0e72655346479c426d31acd30a919c59f0c0e3d98c4b6e2aaa205d68","ssdeep":"384:k8hODwsgaFZmERbo5DQCBuLdAeAk+ezrJ0L:5XSFA/HuJAY+xL","tlshash":"c552f9640eaa79aa0b2753daf5db5d1e38ec33649b401a2fdd984f3042847c1735be39","first_seen":"2025-11-20T15:49:54.527882Z","last_seen":"2025-11-20T15:49:54.527882Z","times_seen":1,"resource_available":true,"data":null}},"time_used":149,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":149,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/4.C_rgEAoe.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:22.110Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/4.C_rgEAoe.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AOCedOFt3hZiidbkk-KR83PO_8JDqKDr9eXTRmCjt013XBmxFc5ejopUaplE6OcHZdLJAjbmMfdR0Qw\r\nlast-modified: Wed, 12 Nov 2025 08:33:43 GMT\r\netag: \"1771376dc07da48b3f03339d86d57b7b\"\r\nx-goog-generation: 1762936423643683\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 193\r\nx-goog-hash: crc32c=C03sAA==, md5=F3E3bcB9pIs/AzOdhtV7ew==\r\nx-goog-storage-class: STANDARD\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\nvary: Accept-Encoding\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 20 Nov 2026 15:49:22 GMT\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-length: 193\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]}],"data":{"size":193,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text","md5":"1771376dc07da48b3f03339d86d57b7b","sha1":"a5861ebfff23a92ccd1ce6b8a517b6f877d50a63","sha256":"6e148df31d721a0ff08563f2d676751786e01418c86ee54ee8f0e88aa46ae26a","sha512":"6038efed0774fd61c7bf6558d3ea24ccebfada1041fa2c1606263a19f8700043a18f6e368ed550fc61f644eb7b81f8cac01498f30cc56a103295911b28e436b0","ssdeep":"","tlshash":"afc022563060f3a502bb0ed00033e02af32a402cf0ebfa80a65cc4f020630530a26b1b","first_seen":"2024-06-24T12:34:02Z","last_seen":"2026-04-09T10:49:40.045057Z","times_seen":23532,"resource_available":true,"data":null}},"time_used":2,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/7.DYvQej5k.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:22.124Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/7.DYvQej5k.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AOCedOHuzgoLds2TGiCoLlxnIRhZIzV_aXrZPrJQxHBR316VSXuLABhIEXQX3u4MRC1scawdYLzNuAP3TgSvIw\r\nlast-modified: Wed, 12 Nov 2025 08:33:43 GMT\r\nx-goog-generation: 1762936423651824\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 17078\r\nx-goog-hash: crc32c=+IgB1w==, md5=gJRDxcHMg4r29Ppiu3dTIA==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 20 Nov 2026 15:49:22 GMT\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-length: 5361\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":17078,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (17077)","md5":"809443c5c1cc838af6f4fa62bb775320","sha1":"c2cdbaa55b930aacda95368cf3f9ba56c57c0422","sha256":"276e3b74be2afc4932e54d12aa3897d86e67cc7172c13583c9504696c3dec290","sha512":"9448db5d4d6f282cc20c7b188cf7da0495fd929530cbc8890bec28b865d30f54d55bc99b319376985cc94077cae2df9166abce49f2fe11995696bd773c6905d0","ssdeep":"384:mU5urbvY+4nmoqpXlrfO7npvW4PkT3pb9nxSHI0Wrs/j7JFHy4:7urbvY9opXl7O7pvW4Q3pxxSovrsDHy4","tlshash":"fd72c7c5f7aed93e53e7a4d1bc682003fa785a84f12c91a4f3984d66719e884c173b26","first_seen":"2025-11-11T13:17:33.842847Z","last_seen":"2025-11-25T06:09:31.40699Z","times_seen":1448,"resource_available":true,"data":null}},"time_used":2,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lbstatic.winwinwin168.net/media//images/Fp6ejruQNzfVSUaILlx9.png?webp=true\u0026width=60","fqdn":"lbstatic.winwinwin168.net","domain":"winwinwin168.net","tld":"net"},"ip":{"addr":"104.21.73.200","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:34.907Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winwinwin168.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 25 Oct 2025 18:15:31 GMT","end":"Fri, 23 Jan 2026 19:13:17 GMT"},"fingerprint":{"sha1":"0C:AB:FA:39:B6:AC:C1:0A:75:EF:47:06:BC:ED:50:06:A1:79:19:58","sha256":"94:FF:F3:E8:BB:20:13:EE:BB:81:40:F1:53:92:40:63:3B:62:8F:E6:86:E0:B5:6E:94:3B:F4:DB:A5:F1:B0:D4"}}},"request":{"raw":"GET /media//images/Fp6ejruQNzfVSUaILlx9.png?webp=true\u0026width=60 HTTP/1.1\r\nHost: lbstatic.winwinwin168.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:35 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2916\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\nlast-modified: Mon, 28 Aug 2023 05:18:04 GMT\r\nvary: Origin, accept-encoding\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=sb3ft8gpzXnssog6L2hQDfiFfyh5G4I9aRTrdyaclXf8BvaY4%2FJnzgWFRD1tTUe%2FfG%2FmRd0pU6kMKXLoEE2lfQsjVfbnHxw2XKR2IS4xPrbf4DMvkifnPSU%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a19191d2abb8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2916,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"858fb5216d5504f018a2728a594226d6","sha1":"a7187e5f4536dc39ca69278ff3cdb21303db2e4d","sha256":"d46efba02d32ab7a693ee879d50136d02128ff8392baa16b5764ff28ada2ccd7","sha512":"8d7d5054e5e118cc8ed4b15e62f30e866ad4329aa0d5566e5761009d589b0610342f7243df0328ba680f3cea0cedaaacb2af275d274c57abb957cd87f346a744","ssdeep":"","tlshash":"85513bbf3cc4a94b642d79050a4c53e3a149180fa560c20e05cf2449b4d99fec72f9fd","first_seen":"2023-11-01T05:49:18Z","last_seen":"2026-03-07T15:54:36.244139Z","times_seen":21,"resource_available":false,"data":null}},"time_used":499,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":498,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/16425.e2f2faba.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:18.796Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/js/16425.e2f2faba.chunk.js HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NayU2Rb1xnRRtd%2BnMI7P9ns724%2F0x829gAidQm5ptFEBIhyusv3X4g43TnxJHSxoUiRJMYLerO4kaxwFGRHeZ%2BauaQPbqzsZgjOVA7K%2BAF0%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918b87b215689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":90318,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"edaa65c06c3ff10c8d21be64903e720a","sha1":"5281ac59c741bce0876569e62c2a4ed0e1786cce","sha256":"ab385d0090ae9e456c7c0814ca393148d514c8c5587404b959343f73c92ab076","sha512":"9159102d536543be5405678d20a658f9b23b79db8a23042d111c6352538ed568e82d26e7d8f7adb3b4fbe3504d5617f28fc36c1e94d1ec83a16002ed43ee349a","ssdeep":"1536:6Cy4x8+JBHskrv0CDZKZBH3EYckYjR7sUd+IAkAjQFQRbEXc:x1zlsQBsH/","tlshash":"55933ba8b2d2b03586d3b169a47f2189b2791a1c444dc429f633dcc528799dfe173f3a","first_seen":"2025-11-01T02:26:38.303836Z","last_seen":"2026-01-21T14:38:11.610316Z","times_seen":21,"resource_available":true,"data":null}},"time_used":776,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":395,"receive":381,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/metadata","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"172.67.158.210","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:19.510Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"POST /apipub/metadata HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nX-ACCOUNT-ID: 8813370\r\nFe-Version: f96ca1d92\r\nContent-Length: 39\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Qf4T%2F426GE9DgKp04fFwsolK33pyzAKyhqrC3ZtT47cL7hC%2B11XJdR7TpltVAykSm08tllyKymjljDyH%2FStMGJadU35dvZIwuKmTGIo7EDdvEn13sbA%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9a1918bce8524e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10005,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"5e174c82a3317c375497cc606ea5f546","sha1":"9af7f50cee55c979c4cb61665b9abc5cdd645a0f","sha256":"0230cce30193497d5fb0bf1d8770485f97e096c13d484df86279052183b9d3b9","sha512":"17219472375883add52b606ae7276cb0a23094aceee2aa6060b0c6de352f8c8879f2f782bfe16650952c475c4a73b14e387ca1ea297f10adf39d87070d43768c","ssdeep":"96:OXEJ/Rs2La2sWJmYs2t3hEbuqxjvJgZEoAVzHkQ+n9PTXWYuBFpvxcGPPCT1SZ/O:xpsGaXkhsA3hMuqxTyVHbALG6dq","tlshash":"1822459788b46fabad978224cc73f32fa0d52adc1759466b0c33ba5ec75770843113a9","first_seen":"2025-11-20T15:49:54.530671Z","last_seen":"2025-11-20T15:49:54.530671Z","times_seen":1,"resource_available":false,"data":null}},"time_used":255,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":255,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/script","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:20.665Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"POST /apipub/script HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nX-ACCOUNT-ID: 8813370\r\nFe-Version: f96ca1d92\r\nContent-Length: 29\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:20 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BHHYUoyO3rDP3N85NznBbXWiXd3bBg%2FiaGruHD6L7eBklotXX7BlfINxACN8s%2BqXkxIAt5Ei4hilK8HG9CjuPnhZ3GHebXVrJ%2BT1ZqrwlbB%2BHz%2BN\"}]}\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c42c0b5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1249,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"653a3b4a825cb549dcbd73f8001488e0","sha1":"803c93426c7f2afafc901f369379d335f097326f","sha256":"35e0e288054e04486248fa66aa866b33f8d2051a751a4af793cdab87bddc66eb","sha512":"7f253c073ed435c9ca129fd643d85cdb93070803f513c9a7e7de8e9620b1e8272af25b1060ae20288020db1fb513b6f61ca20633a95072c25eac964bbfaad763","ssdeep":"","tlshash":"b221e066e840e5765e837a547e3bfa0b6152252c4c505073adfec36fc630ae74213548","first_seen":"2025-11-20T15:49:54.51353Z","last_seen":"2025-11-20T15:49:54.51353Z","times_seen":1,"resource_available":false,"data":null}},"time_used":228,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":228,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/12.DJPUQwQu.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:22.143Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/12.DJPUQwQu.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AOCedOEO3xfxJ7QxqkV7qbDif3Ytv4PWTzPMIPkbl2civkEu0AJxGeqiCXVq7BTM62Wn51bQ\r\nlast-modified: Wed, 12 Nov 2025 08:33:43 GMT\r\netag: \"640caab52100a1e9dfe618aaeb79838f\"\r\nx-goog-generation: 1762936423599091\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 300\r\nx-goog-hash: crc32c=IuJCUg==, md5=ZAyqtSEAoenf5hiq63mDjw==\r\nx-goog-storage-class: STANDARD\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\nvary: Accept-Encoding\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 20 Nov 2026 15:49:22 GMT\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-length: 300\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":300,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text","md5":"640caab52100a1e9dfe618aaeb79838f","sha1":"4654776a82e5405614a595d40cb33ca2b5bae0b5","sha256":"fb8eb817d7251014c136b441bd4004fa6567908059013edbb938925f23b67ceb","sha512":"17d605182be517c5e797b2fd823b9ab7b6bd73d97bd2c3d11c5eb29d108cd350d789116528e351abaebdf3654cc65100b9e3353064ba38c9ab9008126c6a3061","ssdeep":"","tlshash":"00e08cbdfca8d92152f5e9f8c0b60822cb593b0e502382b0f60e6f4a9519199a552826","first_seen":"2024-08-27T15:26:59Z","last_seen":"2026-06-10T13:52:27.77737Z","times_seen":29023,"resource_available":true,"data":null}},"time_used":3,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"wss","addr":"api.livechatinc.com/v3.5/customer/rtm/ws?organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026x-region=us-south1","fqdn":"api.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.83","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"websocket","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:22.350Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /v3.5/customer/rtm/ws?organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026x-region=us-south1 HTTP/1.1\r\nHost: api.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nSec-WebSocket-Version: 13\r\nOrigin: https://secure.livechatinc.com\r\nSec-WebSocket-Extensions: permessage-deflate\r\nSec-WebSocket-Key: fcdXpX52O6P/GLIz+vdElA==\r\nDNT: 1\r\nConnection: keep-alive, Upgrade\r\nSec-Fetch-Dest: websocket\r\nSec-Fetch-Mode: websocket\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\nUpgrade: websocket\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/1.1 101 Switching Protocols\r\nsec-websocket-accept: uw2EmL2IXJfqhCKKr2agdzwQ2fQ=\r\nAccess-Control-Allow-Credentials: true\r\nAccess-Control-Allow-Origin: https://secure.livechatinc.com\r\nDate: Thu, 20 Nov 2025 15:49:22 GMT\r\nUpgrade: websocket\r\nConnection: Upgrade\r\n\r\n","headers":null,"cookies":null,"status_code":"101","status_text":"Switching Protocols","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":159,"timings":{"blocked":-1,"dns":1,"connect":1,"send":0,"wait":140,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"slotdewa200j.com/","fqdn":"slotdewa200j.com","domain":"slotdewa200j.com","tld":"com"},"ip":{"addr":"172.67.145.49","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-11-20T15:49:15.795Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"slotdewa200j.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Fri, 17 Oct 2025 10:04:18 GMT","end":"Thu, 15 Jan 2026 11:03:06 GMT"},"fingerprint":{"sha1":"55:76:12:E1:6F:2C:A8:07:9D:19:BC:A2:94:F3:F4:3F:A1:6B:BB:F3","sha256":"04:57:3B:91:93:5A:1A:2C:F5:2F:34:B3:95:5D:17:2F:8D:90:A3:FA:F4:4E:1F:BE:03:15:61:76:58:7C:30:2F"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: slotdewa200j.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Thu, 20 Nov 2025 15:49:16 GMT\r\ncontent-type: text/html; charset=iso-8859-1\r\nlocation: https://chambersoftain.com/\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7FF8FDhRmwV2qUx%2FxqwWaRQPoxCdO16aCtprcmAuIXaqez4uGKTAUA1hKcPz0Bu%2FpxUas6BIuFkyzY07Ag0kh2JiG10ov3EcFIPjmYgDoQQ%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncf-ray: 9a1918a60c6fc759-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6306,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":646,"timings":{"blocked":50,"dns":32,"connect":1,"send":0,"wait":546,"receive":0,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lstatic.winwinwin168.net/ZYx2qmzTOXvnP0ji0n6Y.png?webp=true\u0026width=60","fqdn":"lstatic.winwinwin168.net","domain":"winwinwin168.net","tld":"net"},"ip":{"addr":"104.21.73.200","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:20.255Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winwinwin168.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 25 Oct 2025 18:15:31 GMT","end":"Fri, 23 Jan 2026 19:13:17 GMT"},"fingerprint":{"sha1":"0C:AB:FA:39:B6:AC:C1:0A:75:EF:47:06:BC:ED:50:06:A1:79:19:58","sha256":"94:FF:F3:E8:BB:20:13:EE:BB:81:40:F1:53:92:40:63:3B:62:8F:E6:86:E0:B5:6E:94:3B:F4:DB:A5:F1:B0:D4"}}},"request":{"raw":"GET /ZYx2qmzTOXvnP0ji0n6Y.png?webp=true\u0026width=60 HTTP/1.1\r\nHost: lstatic.winwinwin168.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:20 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1618\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\nlast-modified: Mon, 28 Aug 2023 04:18:35 GMT\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=otZpjQaT%2FAzJdspNl%2B%2FeSOUemTEeHWZHU4%2F%2BldfSnLtkk1T9Ny8aQkuC304XiqewH4vSV%2Fihxh%2BBucRd1ek1wv9Qu%2BO1h9i2wszbo%2FykKu7rUscdpd9uKg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c1beb38deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1618,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"235297dca600529ea8bf885b7c5eb8b1","sha1":"f651129cd0b1e5e9c44822a35f71b84e97e741b8","sha256":"eeb467b0042ba6240dc7fe6582cc6daa0e0735b4743cff9e19a52f93c93deeb9","sha512":"3e434faaa3f4fed9c58a883563850c6bbda3e1b7cced0be90582484c127f9b200d8701daee1707fe1b276cf99af9db7f794d9d03b700603d98c35847abdb7607","ssdeep":"","tlshash":"af31e812610a79a8c828cce261ff40ee0b63535f508da9818311e25edbef5808a17e98","first_seen":"2023-11-01T05:49:18Z","last_seen":"2026-01-07T03:10:52.011663Z","times_seen":7,"resource_available":false,"data":null}},"time_used":471,"timings":{"blocked":22,"dns":0,"connect":0,"send":0,"wait":448,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/promo_info","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.249Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"OPTIONS /apipub/promo_info HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,fe-version,x-account-id\r\nReferer: https://chambersoftain.com/\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\npriority: u=4,i=?0\r\naccess-control-allow-headers: content-type,fe-version,x-account-id\r\naccess-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\naccess-control-allow-origin: *\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=PhNbM04FKR6dLSt2aYzRnNMhUBrzoEJumhCTO3%2FXdrBaB%2BRD6zO%2FXVrzbOlKkA%2FTJaI15f3BNGpOTNllZpmIHqYXZNpA7270P7FNcV27Scr1HGhH\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c7cc1c5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":227,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":227,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/captcha/generate","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.888Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"POST /apipub/captcha/generate HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nX-ACCOUNT-ID: 8813370\r\nFe-Version: f96ca1d92\r\nContent-Length: 109\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Qc6AUezse8OXKaA9JjHDRRUXd1%2BhRlBBYaybTsIjOyC%2BMInnPn%2FfLkLXwV%2FkHN1R4spKSM9FRfRO9UwNBVnSEkNSfnVQlygCizkBNNTObHQ9xpEN\"}]}\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918cbcc485689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1187,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"98d8afff9f1fe48089b0a53f29236374","sha1":"2050b0567f6fd1f7ef8233552936aa9bd174218f","sha256":"871d272cbd0552e170ec14c3fce9cc09af8258f061311fdd16c81af6a9b0f741","sha512":"3d7cef1bf447ecb5ccff91368ca7067b920957819ddf7e87746484fd56a220f81596cefc886d8bf6c501e341236b9be9780625762293bb96a708777e4bb6c929","ssdeep":"","tlshash":"4221072e88438eacf3d6858c30bd2c5dfeda1c8a913972a57904bc18843e0c332a7258","first_seen":"2025-11-20T15:49:54.532836Z","last_seen":"2025-11-20T15:49:54.532836Z","times_seen":1,"resource_available":false,"data":null}},"time_used":251,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":251,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lbstatic.winwinwin168.net/media/images/YOopVqTZFmUUGTlzdK1F.jpg?webp=true\u0026width=1180","fqdn":"lbstatic.winwinwin168.net","domain":"winwinwin168.net","tld":"net"},"ip":{"addr":"104.21.73.200","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:30.527Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winwinwin168.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 25 Oct 2025 18:15:31 GMT","end":"Fri, 23 Jan 2026 19:13:17 GMT"},"fingerprint":{"sha1":"0C:AB:FA:39:B6:AC:C1:0A:75:EF:47:06:BC:ED:50:06:A1:79:19:58","sha256":"94:FF:F3:E8:BB:20:13:EE:BB:81:40:F1:53:92:40:63:3B:62:8F:E6:86:E0:B5:6E:94:3B:F4:DB:A5:F1:B0:D4"}}},"request":{"raw":"GET /media/images/YOopVqTZFmUUGTlzdK1F.jpg?webp=true\u0026width=1180 HTTP/1.1\r\nHost: lbstatic.winwinwin168.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:30 GMT\r\ncontent-type: image/webp\r\ncontent-length: 49946\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\nlast-modified: Wed, 04 Jun 2025 02:48:11 GMT\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=8ySFmJzudzQVEVzgljNt%2B8qyCY5sydlQkmQBoZAg7yKoBLG1b%2FBvG6ggIzfU7y0iUpSdS3zfOvDKNV3lEWqEHakvPB3DUKfg%2BFcIHL2kLwsYNJJmnevuv0U%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a191901cee88deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":49946,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1180x412, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"c79cc4c5abdbfa9956cfada9205a52a8","sha1":"7e4d926a521a0c75bf8cb18bada3294afc94af26","sha256":"fb407471329238364840ff04a9b6a5f1cda806787e743816e9a2482ec7f04a43","sha512":"770bffc88ebca423686bf4d3b902042cec023acdd7396124f2799b3a8cc179274991e72774fc3958011e9fc7698d92c44c2d1063fe21e5106549dd2bfbf0b2bb","ssdeep":"768:UGzShaH1nlXNaapMoMM9KfvEfe9XceAJpz6JKk7zACJZNRWkEaoJvvR/:7b1l9a+Mo3w5ceAJKACJNeJh/","tlshash":"112301f64c050dcec5f9a482a4efe310ec43d486a276b1367b435db39ce09522d65f50","first_seen":"2025-11-20T15:49:54.533642Z","last_seen":"2025-11-20T15:49:54.533642Z","times_seen":1,"resource_available":false,"data":null}},"time_used":887,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":449,"receive":438,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lbstatic.winwinwin168.net/media/images/zCIzcmoiqiGPUSsraDj3.jpg?webp=true\u0026width=1180","fqdn":"lbstatic.winwinwin168.net","domain":"winwinwin168.net","tld":"net"},"ip":{"addr":"104.21.73.200","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:35.085Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winwinwin168.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 25 Oct 2025 18:15:31 GMT","end":"Fri, 23 Jan 2026 19:13:17 GMT"},"fingerprint":{"sha1":"0C:AB:FA:39:B6:AC:C1:0A:75:EF:47:06:BC:ED:50:06:A1:79:19:58","sha256":"94:FF:F3:E8:BB:20:13:EE:BB:81:40:F1:53:92:40:63:3B:62:8F:E6:86:E0:B5:6E:94:3B:F4:DB:A5:F1:B0:D4"}}},"request":{"raw":"GET /media/images/zCIzcmoiqiGPUSsraDj3.jpg?webp=true\u0026width=1180 HTTP/1.1\r\nHost: lbstatic.winwinwin168.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:35 GMT\r\ncontent-type: image/webp\r\ncontent-length: 76486\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\nlast-modified: Thu, 23 Oct 2025 11:01:02 GMT\r\nvary: Origin, accept-encoding\r\nage: 0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2B1IHhE9TDGJg%2FeHyIPaTi8WbuhRrJnna6x83WCd4GuR%2Fe9VYI4C8VJrJDlt6YSaMZHmJliMdDJttkKnuNHGBxp4x03QEcURcMoC94UEf0hgVGZnhiFhlAeg%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a19191e4ae98deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":76486,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1180x412, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"f159f594ab6741b485b251bc3d0059b7","sha1":"090142f68abd4ef83c7040d42e5ed506b952ff50","sha256":"6a40a296e333a4a30571b013ff387eb780fd3d1bbe0c9daad0bd185d0dda6526","sha512":"11759f63ba6a0edfa29bd9ac4f7a241c41d7770420fb64468ba590076ada08765ca7b27f21eab052dbe0570c904feca5ef818c9dfc15ed81de14d3ff369afe2e","ssdeep":"1536:DOTpccs/fBF4B7xC+LD1Q/LlJ5kng4ClSThzeurkHAsmhfHdp8uykBbtU:DOTpW/fBCNBLD1CynElizeONsmjpsubO","tlshash":"e67312d177142a31e3b294b351c2b966263d2c55ef30f92f44c105789e32b7b9fa07a5","first_seen":"2025-11-20T15:49:54.534479Z","last_seen":"2025-11-20T15:49:54.534479Z","times_seen":1,"resource_available":false,"data":null}},"time_used":876,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":436,"receive":440,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/62592.213b80e2.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:18.821Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/js/62592.213b80e2.chunk.js HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FozABiaekYLMS1q%2BXbKzcPXgnrtH5xZgYmZvtfeTKIqzstmTTDPbtW9uO2ontLprETD5%2F%2BjDNs%2BPMq%2BJB%2BLUqoQzdaOdG75HkqNmVaSJtRM%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918b88b245689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":293,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with no line terminators","md5":"7ca4c45a8ec457f19caf07ed48c616db","sha1":"e5c2caae7a2d32be607bfd8453bc04e0dd72a152","sha256":"b1082cbd34fdbb8a131d4f9ad97ee25ba382d5293abdf2d7dd632d0275b4042f","sha512":"7f36b1a8dd7f13bebfe37566e60019c80d985d22d6d57634f4aac42559095bbbeb3e03fbdcf25f8ba1c2346afa560cb2d81bd80cfefae5627290dabaefa061d9","ssdeep":"","tlshash":"1de0ebb0e200f0fe36bb1e8b942d55e2044a0251164af6636f008cec021e9ac102cfbc","first_seen":"2025-10-31T05:45:31.268205Z","last_seen":"2026-01-21T14:38:11.567346Z","times_seen":44,"resource_available":true,"data":null}},"time_used":450,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":450,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/base","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"172.67.158.210","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:19.495Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"POST /apipub/base HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nX-ACCOUNT-ID: 8813370\r\nFe-Version: f96ca1d92\r\nContent-Length: 2\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\ncontent-type: application/json\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccess-control-allow-origin: *\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=db72JXqQxGYXXGZdv4gzwSb1N8xMWtCpQZBqxacp12DyTSZIBzJm3DH2hzmpdp0I37NjUg%2FnyW93UlggOYBvQly4VpkM9N1qaruxfr7iVrUaOQFBJI4%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9a1918bcd8134e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":18522,"size_decoded":0,"mime_type":"application/json","magic":"Unicode text, UTF-8 text, with very long lines (18497)","md5":"ad3639ee88b73f0a6cec6e6b583fba98","sha1":"fdde50dea3bd67203c457a26de44a2dbe68f629a","sha256":"58ff59405f7fbab3c5109d7f73ad7c5c33d6f7459e719680596c4c1284947783","sha512":"586b006fd11ea11a55581df817a1fa20294533368e7b45676489f4d530ccfdfe047f08997fd40dd72070d2a9b0802d9a30cd10a40a2f38cb28a335dfadfc199d","ssdeep":"192:3BYjDg2jP7x+oM/EO66DMqF66/+p8T0UldMDDZfAV:xY/h+oKPX/","tlshash":"2b825b3bc25d8c6687e15fa03fef1d0ce4dc482a59c8dd9de96a4d34c122d927ab18d2","first_seen":"2025-11-20T15:49:54.536148Z","last_seen":"2025-11-20T15:49:54.536148Z","times_seen":1,"resource_available":false,"data":null}},"time_used":252,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":252,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lbstatic.winwinwin168.net/media//images/BWrunMiqkXKELVsRBDSJ.png?webp=true\u0026width=60","fqdn":"lbstatic.winwinwin168.net","domain":"winwinwin168.net","tld":"net"},"ip":{"addr":"104.21.73.200","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:24.636Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winwinwin168.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 25 Oct 2025 18:15:31 GMT","end":"Fri, 23 Jan 2026 19:13:17 GMT"},"fingerprint":{"sha1":"0C:AB:FA:39:B6:AC:C1:0A:75:EF:47:06:BC:ED:50:06:A1:79:19:58","sha256":"94:FF:F3:E8:BB:20:13:EE:BB:81:40:F1:53:92:40:63:3B:62:8F:E6:86:E0:B5:6E:94:3B:F4:DB:A5:F1:B0:D4"}}},"request":{"raw":"GET /media//images/BWrunMiqkXKELVsRBDSJ.png?webp=true\u0026width=60 HTTP/1.1\r\nHost: lbstatic.winwinwin168.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:25 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2848\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\nlast-modified: Mon, 28 Aug 2023 05:17:02 GMT\r\nvary: Origin, accept-encoding\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HPPvzcT9TCTEZE0eWumeUU5XnL0JB29ZbzxXnbs61AyK6a4t83tfnz8VKrnNk42D20izeA4IRTBpA0q4z3M64SAzD08KBuP4b%2F32Ydvzawsq2BrT2mlG4%2Bk%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918dcf99f8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2848,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"617ebf89da8fc4bc4d41a8c5e5590287","sha1":"441bb61db856ab5104c4cdab394d411989b781b9","sha256":"a8603ae42b01a5f88795fa4887d12a8f2de33546b84e5814047328739572e414","sha512":"a847da6bcd5c1e205af7d4048c046dd9f41329f7d370740c40cae41cab2533957eb7abc341f9e341fa69c34b829973f5a60e34938a02f32375d3ef9a4842e53c","ssdeep":"","tlshash":"ef517e80cfec980024b53925d7925366c891594f74eef8ec117d9865c7f730cd46a640","first_seen":"2023-11-01T05:49:18Z","last_seen":"2026-03-07T15:54:36.346261Z","times_seen":32,"resource_available":false,"data":null}},"time_used":498,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":497,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/base","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"172.67.158.210","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:18.941Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"OPTIONS /apipub/base HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,fe-version,x-account-id\r\nReferer: https://chambersoftain.com/\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\nserver: cloudflare\r\naccess-control-allow-headers: content-type,fe-version,x-account-id\r\naccess-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\naccess-control-allow-origin: *\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=7OEaGBmsZSJtY%2BgePC8z0F5ZiAMLgCPfdXGU0jLIkSIWy0gnGi9kWzpR%2Fp5KJ%2BxyHPMU%2Bq8zWJ6qJznluyRSkDVH4SouQUVSFJDOekD%2BzFP6xGvf%2Fi8%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918b9be854e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":617,"timings":{"blocked":59,"dns":27,"connect":4,"send":0,"wait":492,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/60147.2db7e20b.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:20.186Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/js/60147.2db7e20b.chunk.js HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:20 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HnHuAKJMKYHqFCZx7kjzQOkJZicPTkxjzgDeL4lc54UV%2B8jCDVpp9EaEmeaZ%2BLlDc0lzbMtdhGYCIxFHWRd1d0aMdLkzIYjEtL8UfUX5HWc%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c12bf45689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5083,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (5083), with no line terminators","md5":"5ae27f9bf3da1c24a4e8c87beb9db9ff","sha1":"283ebff9b22ed1167c3f8b170815c22bd8ec20fb","sha256":"71097e8ae06b33e84b6c1422f551f31527982a31f9b477a38b26cfc098534770","sha512":"bdfdfec6bf22852fa1c7b160ff3843e4fd6b5753834c9fd0fb653d9ef7993c4f0b3a67f19b8b58c17a5b4abb2e7d990da679dba14273236cbbe1a3fb295d3fb3","ssdeep":"96:jmp1V+j5ALqBa4CBoracNQMnEpnmd1nW7BkVAEBoyqZEG4kR:jmp1V+j5ALqBaporagEmfnW7BuAEBBIr","tlshash":"eaa1b844f09718044eb386a99daf015b16ba2c5f7986801c389bd5f72ef388e7466ff4","first_seen":"2025-11-01T15:19:03.711273Z","last_seen":"2026-01-21T14:38:11.571633Z","times_seen":17,"resource_available":true,"data":null}},"time_used":253,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":253,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/promo_info","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.482Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"POST /apipub/promo_info HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nX-ACCOUNT-ID: 8813370\r\nFe-Version: f96ca1d92\r\nContent-Length: 2\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=9z%2Fwea3f3mwS5MLZ3y2hpGoDqweppps%2B7vDOGQ6TXC6Fk1OmZcPB%2B5LtvkHHJ5BgmqAtMxDHFGBowJAAExAOQSrvgkXi3nSYIEqTiapVywGKwUUe\"}]}\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c93c315689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":56,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"04e39c0a4b1bbf475ba549bb35c3d4e7","sha1":"74619f6a3311db9606f76820ec110e10093d2103","sha256":"80211745fca6c4c80c83f8a674008e78f0ae0250d405d2464cd7229ed0a2898e","sha512":"c66d59ed9092b5d7bf2baef3a46e1ab0b46d0adbc8fee0902545524d02ea076c62aba198a2f2ec0efc3c20d87f46f61a00f80e7ed64fc87117fa80d3fdaaaa9e","ssdeep":"","tlshash":"729022022b800c0c0c00328c0288280200cc808302200020c080af2cc0c20b0a000008","first_seen":"2023-11-16T10:36:08Z","last_seen":"2026-06-11T00:35:22.20505Z","times_seen":117,"resource_available":false,"data":null}},"time_used":229,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":229,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/lottery-template1/assets/home/slot-min.webp","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.485Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /lottery-template1/assets/home/slot-min.webp HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechat-static.com/api/file/lc/img/rich-greetings/handwave.gif","fqdn":"cdn.livechat-static.com","domain":"livechat-static.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:29.737Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /api/file/lc/img/rich-greetings/handwave.gif HTTP/1.1\r\nHost: cdn.livechat-static.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://secure.livechatinc.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncontent-length: 372763\r\ncontent-type: image/gif\r\ndate: Thu, 20 Nov 2025 15:49:29 GMT\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":null,"data":{"size":372763,"size_decoded":0,"mime_type":"image/gif","magic":"GIF image data, version 89a, 460 x 300","md5":"b833044c92652fa9fab0e3210c3a57c4","sha1":"47e4ab00ff06878f861d731ee9f0891beb7bad88","sha256":"d368f73655941321fa294f8c0f5d63f0a6caaab3dccac499800b4e2e49358a51","sha512":"4f46bb8319c32dba7db576462cf6ed7329950c0bcebc80f14517a157d1b244526145ddda41814a83f0b41806a4fb4cc4ec33cadef82511daf46540f77884666b","ssdeep":"6144:Crs32NvcWwZlIhPDqvN4GS4bDzKTzIsiMB8etGHL7RNnADttE:yvcFbINsN4GScKnIsiVztNADta","tlshash":"d784126127a95f3efd3a38b4452e52aaa01c5802dcedc13e5ce8f2d167833168865ef5","first_seen":"2023-04-09T13:57:14Z","last_seen":"2026-06-07T02:15:14.371873Z","times_seen":3440,"resource_available":false,"data":null}},"time_used":99,"timings":{"blocked":81,"dns":0,"connect":0,"send":0,"wait":5,"receive":13,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/74086.5d386950.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:18.824Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/js/74086.5d386950.chunk.js HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=K194zT3wcILggrMGSoQL6DyPSQCp%2F%2B3tLjLpf67%2Ft3QZ%2FBwpVusnvcPDUH3MB7CELJkifeYXR3RlN6a3gO4MLowBn0o6CTmLC0QdXLK6zeQ%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918b89b255689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":18716,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (18716), with no line terminators","md5":"056f7a15aea2765ab6a86de0109c083a","sha1":"7a365c847a6cc72edf9c9124c40f6b1ce1ab4f28","sha256":"93268a6314cc76fc8a8c8921103d02a372f3c8006673f76af0d60687768cb854","sha512":"a8a5581ddb0381a83fb1be139ea5e009cfd0b7da7f3ee2cdd13f4e2d25f882c64475b382594be65f73a5a1241ba30dd0810ab32ff9c6a6a814549ea9fa274bca","ssdeep":"384:cmzF9PA5x0fJBNUQ5zU4aUF7es52CNHoBvT/+WxELFkCY6yRv+kCSfRdLjFdDRRA:BF9PA5x0TNUQ5zU43p1y/aFbY6UmbSDM","tlshash":"9482c49872e170d50be7e4d9807f5207b239b9003509c9a6d397f9907a6ceef9036e39","first_seen":"2025-10-31T05:45:31.292805Z","last_seen":"2026-01-21T14:38:11.600327Z","times_seen":44,"resource_available":true,"data":null}},"time_used":651,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":442,"receive":209,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/metadata","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"172.67.158.210","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:18.939Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"OPTIONS /apipub/metadata HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,fe-version,x-account-id\r\nReferer: https://chambersoftain.com/\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/2 204 No Content\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\nserver: cloudflare\r\naccess-control-allow-headers: content-type,fe-version,x-account-id\r\naccess-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\naccess-control-allow-origin: *\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=m6JUt70m4A3IrD9APpfsLSI1ltzpi6q%2FXq8YgHJeLfoQ0x%2Ba4jgzUz2zNy7rVAP9kGPEKynGHSMT%2F1fHoiaxShLLgtts8o3V4X2Yd2%2F0s%2F80X8b3ruM%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918b9be524e4c-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":624,"timings":{"blocked":53,"dns":25,"connect":1,"send":0,"wait":513,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/2.DNGoWbi7.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:22.093Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/2.DNGoWbi7.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AOCedOHEN6BinbQDyu6Peg7yLL28Bs1MCoqzUdDnlotQO9zmP-2TdaRxHEoxhMKGVpl78up_\r\nlast-modified: Wed, 12 Nov 2025 08:33:43 GMT\r\nx-goog-generation: 1762936423716049\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 408063\r\nx-goog-hash: crc32c=qVQtWQ==, md5=/A6r/GvWezT8ymGaghzD8g==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncontent-length: 116112\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 20 Nov 2026 15:49:22 GMT\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":408063,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"fc0eabfc6bd67b34fcca619a821cc3f2","sha1":"78f49f92de7bc8112696b0b04b0e7c9f5fa6e2da","sha256":"3ae3798f05be46ea4bf225ba8b135971daa6274e5c7bfd670f7cf2891dfae6eb","sha512":"9dd038df98e93db8c9197df0c2117981607fd360ec7dd4b0c543de87a29dc2066ca3823d37077d5a66da813b45db457710ce43dc36d6388fdf30154d2c8e31f0","ssdeep":"12288:fx0FfakC8BMQ+iHJkK1rq4imO+tGnXoSj94PhSCf+5EqbFve/1H9PBrF7/TMHauU:fx0FpiJ6","tlshash":"b7946be0b281b938d7e7c15790bb160df33d3d49b42e9660f1ade89e33944489267fa4","first_seen":"2025-11-12T08:49:11.872903Z","last_seen":"2025-11-21T09:57:17.807048Z","times_seen":843,"resource_available":true,"data":null}},"time_used":6,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lbstatic.winwinwin168.net/media/images/zCIzcmoiqiGPUSsraDj3.jpg?webp=true\u0026width=1180","fqdn":"lbstatic.winwinwin168.net","domain":"winwinwin168.net","tld":"net"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:35.072Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winwinwin168.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 25 Oct 2025 18:15:31 GMT","end":"Fri, 23 Jan 2026 19:13:17 GMT"},"fingerprint":{"sha1":"0C:AB:FA:39:B6:AC:C1:0A:75:EF:47:06:BC:ED:50:06:A1:79:19:58","sha256":"94:FF:F3:E8:BB:20:13:EE:BB:81:40:F1:53:92:40:63:3B:62:8F:E6:86:E0:B5:6E:94:3B:F4:DB:A5:F1:B0:D4"}}},"request":{"raw":"GET /media/images/zCIzcmoiqiGPUSsraDj3.jpg?webp=true\u0026width=1180 HTTP/1.1\r\nHost: lbstatic.winwinwin168.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/css/45126.cc109995.chunk.css","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:18.865Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/css/45126.cc109995.chunk.css HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\ncontent-type: text/css; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2FZRdojipKchjUzH8E0RqGHJMe39dTAF1cl6mPj60rA1%2BuSdYnmwZTvQyDbBfiYM9gBjF34YB1oU6K3Uys2AQaMXazYN%2BtqkA5xE0G4adkoo%3D\"}]}\r\npriority: u=2,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918b8ab2a5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":20184,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"ASCII text, with very long lines (20061)","md5":"b251b457926b24de2aada84d5eb5f4f7","sha1":"2917b969190764305a341b66da88e7b1bae3a719","sha256":"7a1a248a8000f74c466283f90ef88b262bd116cab4b7969177d8be9a776c685e","sha512":"8810e746518d4559c0f9961733abc38c4f3604e0d33e9d9a3ff07d2244cba565b0c124d7a1c47bed9a3816e88abbc6881218b98ed3a3b5cf62b22df725dbe13b","ssdeep":"192:GS+zvYvWjRj++X3qaukHhwen77BoExKgcMVXCX1rGbmLoxd6GO5JEHAmeJ9uF:7+zvYv+Bo2KgwxGbmLoxd6GOwiuF","tlshash":"9292d21efd5718ff523a943ed14522d06fcafb73b0d3529af091e98516ee0680369a2c","first_seen":"2024-06-29T09:31:12Z","last_seen":"2026-02-26T04:10:09.302055Z","times_seen":108,"resource_available":false,"data":null}},"time_used":746,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":503,"receive":243,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/tracking.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:20.913Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /tracking.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AOCedOFI2OGE5KcGtBBlT8LJDikNJVtU8Vu-JVZR-dMZ1ddK9HgnbN-hB7CVsiAi8QQ3YNj1\r\nlast-modified: Wed, 12 Nov 2025 08:33:43 GMT\r\nx-goog-generation: 1762936423708247\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 102075\r\nx-goog-hash: crc32c=ATU3xQ==, md5=0v9rpUNCrrmlwifQTXTGeQ==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncontent-length: 33242\r\ncache-control: public, max-age=28800\r\nexpires: Thu, 20 Nov 2025 23:49:20 GMT\r\ndate: Thu, 20 Nov 2025 15:49:20 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":102075,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"data","md5":"d2ff6ba54342aeb9a5c227d04d74c679","sha1":"d1bb5c5304667cd029ba9b0eab8c386d2529cd73","sha256":"252baf23bc47c395e5be1eb2e010e0df2a000cb0f4713857277bd35cee96669a","sha512":"0f5a782b41d958ed037bdcf40487915ddb8179818caf70572c8c8901f7c8bb514b9e7e72034f38fa9f4b1969d64bef90606f6ed80b8b1ef4a38eaa253e97da08","ssdeep":"1536:Ed2K8Xri/oEjWDcUiUeyLb7nl+DPtlcwp7petGYPnDGakmq9+:EIK8Xu/Ly8yLbB+DVVZYfaNm3","tlshash":"0fa328d67282b03053f786aaa17fa316b3392918340d8420f17cdd6a395adc79177f6e","first_seen":"2025-11-12T08:49:12.038623Z","last_seen":"2026-01-13T20:54:19.26493Z","times_seen":958,"resource_available":true,"data":null}},"time_used":82,"timings":{"blocked":38,"dns":21,"connect":1,"send":0,"wait":5,"receive":1,"ssl":14},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/bank/list","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.254Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"OPTIONS /apipub/bank/list HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,fe-version,x-account-id\r\nReferer: https://chambersoftain.com/\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\npriority: u=4,i=?0\r\naccess-control-allow-headers: content-type,fe-version,x-account-id\r\naccess-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\naccess-control-allow-origin: *\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eRXiSt3gIZmfEgbV3pt0H1Eq%2BRWuEDt6R81agZ9oKaC%2FF9rdSs9qIfQ1vD0VGhpFM1Gsi%2BRpch5f%2Bz71g2zlY3F%2FR5Nzpd1mDSgSIyRdNqh3v0vT\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c7dc1e5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":259,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":251,"receive":8,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/media/Segoe-UI-Black.c5d87c65438ea156ebc9.ttf","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.367Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/media/Segoe-UI-Black.c5d87c65438ea156ebc9.ttf HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\ncontent-type: font/ttf\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LAs%2FMTABTq%2Fm59s3BauPqz6r2fFPSFR3AquG9hiZlqmW45RZVwQF697UCYGXWtM%2B3HSTFOA%2FBZVbJaPb4TRajjfLrEnckIF2X82IZXfj628%3D\"}]}\r\npriority: u=4,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c88c255689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":323400,"size_decoded":0,"mime_type":"font/ttf","magic":"TrueType Font data, digitally signed, 20 tables, 1st \"DSIG\", 14 names, Microsoft, language 0x409, � 2013 Microsoft Corporation. All Rights Reserved.Segoe UI BlackRegularVersion 2.00SegoeUIBlackS","md5":"a7e432d8873d584fe29fa20d46b634e8","sha1":"544213373cd00b9c7ba642a54b18f96c79a445ec","sha256":"4098759bea7de30a5d9d38f90e8d0efd1d2fbba59046d35bf37269d717fa775c","sha512":"5adf2f1cd81e293a1c3030ae52c4d51720e6fc74f0735a5017f21d36320922041d3ca380812a6373b1063617b95b0ec3dd46b751540a7656c348317c5e8651c6","ssdeep":"6144:+4ADBZR+sAr2OqdNd0FT9EUmhcRKx6iXGkgiDj:+1Rer2Rd0FhmhccxFJb","tlshash":"76647c0af341af1ef352797ec051b3c20fa1bd11a7b6c31f66964266e1895b89dd2bc0","first_seen":"2023-09-21T16:26:48Z","last_seen":"2026-04-17T14:41:17.502745Z","times_seen":37,"resource_available":false,"data":null}},"time_used":1348,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":456,"receive":892,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/member_tiers","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.391Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"OPTIONS /apipub/member_tiers HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,fe-version,x-account-id\r\nReferer: https://chambersoftain.com/\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\npriority: u=4,i=?0\r\naccess-control-allow-headers: content-type,fe-version,x-account-id\r\naccess-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\naccess-control-allow-origin: *\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vV0GzIxBWE1y%2B0OytdvfAqUeH0J2XV6uZoOL1FfBFJiX7eHfvBhmzknLvq22O%2Bpjk6ZasJzlGNndcjSLbHK79QqUfSJ5vFQeDq2Qg2l58KoaDfMA\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c8ac295689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":494,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":494,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/1.6psiIc4J.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:22.082Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/1.6psiIc4J.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AOCedOEVdZZoUqSpKTDasCOkO4CgSU9ZH0U2aTMZgB-rEErN_wKFllFDE81IdR4IxatjnLhywXk7Vdo-ZF_JQA\r\nx-goog-generation: 1762936423620007\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 53069\r\nx-goog-hash: crc32c=IFdH5A==, md5=bXH7aAD+jZpNVFpTXnbDoQ==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncontent-length: 19232\r\nlast-modified: Wed, 12 Nov 2025 08:33:43 GMT\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 20 Nov 2026 15:49:22 GMT\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":53069,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (36617)","md5":"6d71fb6800fe8d9a4d545a535e76c3a1","sha1":"f4c096e462dcda6ea2ad3f0996306181142b5aca","sha256":"8d9113cd90eead24ab21c7a980544f6f820bb38bc01ad9d10c2ab003d3155b4e","sha512":"dd27cb46e80511b7abf2f835d134803cc4d509bf1d372126203610a5c5b2952121fc6cb9f4f98c8abfda6dd7944408d68a054d5d00ef6f382ab33be97ff5dad3","ssdeep":"1536:Kdn3Ad+S65vjhbbBCrzifKVkotf0HRO3zH10zq:6n6xsbhkPi7otCRO6G","tlshash":"d9334dcef241753157e315f2a07fa106b636292c384c80b0f629dd9925de44ba26bfad","first_seen":"2025-11-12T08:49:12.005752Z","last_seen":"2025-11-21T09:57:17.761902Z","times_seen":843,"resource_available":true,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":3,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/main.571c6acb.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:17.043Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/js/main.571c6acb.js HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:17 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=B4IiP7i1Jv4t73ydv2J3xQ%2FZqTT3A5eQLyZM7cqm%2BHjPVqS2ZUI74OwwHcyepONqLWGInYsqq6GfichUr6CoVwWatM8uPyDOMEaJZzay%2BFE%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918ad7a8d5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":749324,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65465)","md5":"a67ac18d79b5f852c8f888a5ed94303d","sha1":"24f363b86ef2118550869666dbbccc49231ba1b5","sha256":"ece667ca26c998f9806e41491b1d8d34e8ecd37f91669e7efff55826d90efc84","sha512":"f8c5b929561302d281c2d3d8000e1cd5635b9ce439f81cef1cc203654f07f05f5c6468cc506a0c183229a5381fe69a409c0011ce9c5463d6ee9dafc1cd258c2d","ssdeep":"6144:4xBxIpSOaZxJxexrFIrIT9VO8xjdjeLqOM58gAZ7w8syZ3h8E79hcvVZg8XMbcxF:4xBxIYOaZxJxex4MN581ZiywDhjxF","tlshash":"7ff418c97292f0a257e350e5507f150bb37a191a380c8460f261ede5bcb994ea23bf7d","first_seen":"2025-11-20T15:49:54.542283Z","last_seen":"2025-11-24T17:32:12.118273Z","times_seen":3,"resource_available":true,"data":null}},"time_used":1520,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":449,"receive":1071,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/48181.01cf23fa.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:18.830Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/js/48181.01cf23fa.chunk.js HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=CT%2BQlPidOzZqTSPg7qGaKphcr2x7vbPRcna8Q9qQQIw1FtX0yMlnOtRiJLMKGCfBAyay5bXUGBhvhwpf02nWa5Vpht9llDsh6J8vIqscXok%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918b89b265689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":12073,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (12073), with no line terminators","md5":"33e1bdee2542827bea0aabbf3f459fa5","sha1":"c6229d3e2e49778bd7f6f539546af3738b2eef8e","sha256":"1ed95292ed4646cd500790708650e76ae7a407b377fe8bdda32e0085a0105074","sha512":"103b8e564e69c25438603fbade3f5ffec31ac417da03e6f5448ced7df8baeb2658a9c3c31af6557482443746cf0fa2bccd201490ec86d82e24316fcd2399856c","ssdeep":"192:l/NWOkmwxToXZE1QeSpw/xuqPgfdFCz5ZwWzfQed2auFdM2bftogfqfRxSUY4k+/:ZXxwxTmbeSpw/xuqyd2xDQed2aam6ftC","tlshash":"004271813bd3ac853b3754850d3b8487f06f0ff2248ae595daa3999db058d49c063aa8","first_seen":"2025-10-31T05:45:31.278087Z","last_seen":"2026-01-21T14:38:11.611769Z","times_seen":44,"resource_available":true,"data":null}},"time_used":450,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":450,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/51567.eba3b73e.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:18.926Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/js/51567.eba3b73e.chunk.js HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=0AP%2BoKmnadDFIDmDJuAeuPsxirxmsCwnwLJ9OuZKGEI0RUFkpOd%2FVsbmZvAyUkBzGVFxKLqsKQyoxrwzwRHbikJiGGlp0S%2BL8JvwvSPN8TM%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918b90b335689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":119052,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"b55938b2601225d84067725effd11d87","sha1":"8aee97db7ce4c5e14c7a0b4836b18a3b670910b3","sha256":"92e4d4dfa487c6e633399e730d1e0fecb083aa09cc2feacea2a87b5fafca78b4","sha512":"d218ebd0c2791eaa21f6fc58cd11ba9b7a4f928b43def6b36f15c1afd29aaba76cbfccef01e1f5a463cf963a074cc100753d09d9cd032345f89f6f3b2cf5fea0","ssdeep":"1536:Wz/uaHCJv/7lYqNfxBtZlHlv/e1PpQpaRMipqXUTqIzH:SnH8Zf7v5aRWERT","tlshash":"a1c32a09e259b98ce52b8f8de16f041cb10f4418f7118dbcf2f9a92956578d83a47fe8","first_seen":"2025-11-20T15:49:54.54359Z","last_seen":"2025-11-20T15:49:54.54359Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1249,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":510,"receive":739,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lbstatic.winwinwin168.net/media/images/Xgr4ss2xi1LyT9mLMry7.png","fqdn":"lbstatic.winwinwin168.net","domain":"winwinwin168.net","tld":"net"},"ip":{"addr":"104.21.73.200","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:20.094Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winwinwin168.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 25 Oct 2025 18:15:31 GMT","end":"Fri, 23 Jan 2026 19:13:17 GMT"},"fingerprint":{"sha1":"0C:AB:FA:39:B6:AC:C1:0A:75:EF:47:06:BC:ED:50:06:A1:79:19:58","sha256":"94:FF:F3:E8:BB:20:13:EE:BB:81:40:F1:53:92:40:63:3B:62:8F:E6:86:E0:B5:6E:94:3B:F4:DB:A5:F1:B0:D4"}}},"request":{"raw":"GET /media/images/Xgr4ss2xi1LyT9mLMry7.png HTTP/1.1\r\nHost: lbstatic.winwinwin168.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:20 GMT\r\ncontent-type: image/png\r\ncontent-length: 180153\r\npriority: u=6,i=?0\r\naccept-ranges: bytes\r\nlast-modified: Mon, 02 Jun 2025 11:43:16 GMT\r\nvary: Origin, accept-encoding\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=AGICv54rlpZIEcVSx6GWnDssUIGbbwUqMLs3DTj3esGNw%2B9YjZQz4LvXgcaPLtgZ2zqvHf1tDjJy7YyIYZPd7bkPox2gDuKZURPbIoPH4W5vMJqaVqQPfL8%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c09e9c8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":180153,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced","md5":"3f72d1aa62db73fcb9d447824b86e94d","sha1":"47fce6c3e74671bc67acb4c9f493b29c191c7a87","sha256":"736b75147eb0d6d7f99e5fe3eaccbc69ad834a6c6389a543dd62377fbbb442d2","sha512":"17002da10fb1171095efea4787cb58565fcaa18aca88e0666f012f24a787f628e98f0149323bed75e2f6513da6d44221a53ce59bd6e1f06e2b37fc384f7bb477","ssdeep":"3072:uBx8bUzuBax1eBNOfY0kkV8fxeCGj1Dck2nMfvMnFep/wy/T5jJCbiV55E1J:ujoUzuMeBNOfzBVIcCa1Irn3nFrEVC3J","tlshash":"1304230e607f5631b1fd97aa91cebcfe7312ea4c20c8e7acb1a0539d43f566510564a3","first_seen":"2025-07-16T06:05:37.469721Z","last_seen":"2026-06-06T06:48:22.833807Z","times_seen":3,"resource_available":false,"data":null}},"time_used":474,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":461,"receive":13,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lbstatic.winwinwin168.net/media/images/j0SpytWW3EYZ40ZBxq2n.png?webp=true\u0026width=320","fqdn":"lbstatic.winwinwin168.net","domain":"winwinwin168.net","tld":"net"},"ip":{"addr":"104.21.73.200","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.533Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winwinwin168.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 25 Oct 2025 18:15:31 GMT","end":"Fri, 23 Jan 2026 19:13:17 GMT"},"fingerprint":{"sha1":"0C:AB:FA:39:B6:AC:C1:0A:75:EF:47:06:BC:ED:50:06:A1:79:19:58","sha256":"94:FF:F3:E8:BB:20:13:EE:BB:81:40:F1:53:92:40:63:3B:62:8F:E6:86:E0:B5:6E:94:3B:F4:DB:A5:F1:B0:D4"}}},"request":{"raw":"GET /media/images/j0SpytWW3EYZ40ZBxq2n.png?webp=true\u0026width=320 HTTP/1.1\r\nHost: lbstatic.winwinwin168.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-type: image/webp\r\ncontent-length: 21240\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\nlast-modified: Mon, 02 Jun 2025 11:45:11 GMT\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=tAWzWkCN3pPd9xX%2BPDfkUBYAmMyZlZ7xsU8MWSvp1T47QOtPVtwBqmTgNx6n4Ncozf2ZaVARqT0jBwblEGnvyBOg1N%2FI3b3bjmaqY27ZbvB73rPWHh5IqdI%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c99f9c8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":21240,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"74ff07487fb82ed8e2f5c27b874586d2","sha1":"aaaeb969a3d2bb28de5b6c46431cda6044b2ef1a","sha256":"ecbfa80fffda2f4f90697cdad4385231f916fd4b6e6f792c35574ad3ee211040","sha512":"e85d3e64770df25893a061f71b26da9be0c784faaa45b8235e417eb4db97217a59a98f5c88b4cfdce75df9a9b7c8e92f37b545750c7fc869f955a22b9cc99dca","ssdeep":"384:WJDRepaigN+v+n9kXfOPfcpVuyOd0bJO/bG/jjIAM0vZnFEUgHxiSc:WtcpaijW+mPAgp0dOUxMYZnAc","tlshash":"4c92d18a95831b74ef4a17eb9b0481d277d0f527b5628119c282f342e6b153e26f339d","first_seen":"2025-07-16T06:05:37.506255Z","last_seen":"2026-06-06T06:48:22.819718Z","times_seen":4,"resource_available":false,"data":null}},"time_used":740,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":497,"receive":243,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/48429.56c1866c.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:18.884Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/js/48429.56c1866c.chunk.js HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=DMBcxLtBRhvpYOwbPEjcrS8wbvRD8MJi%2B1otlwQBgXb01AaOlMnXXWYtIbPzi57paNLnzhemor%2B3%2Btzb1%2FxRRN65ce%2Fc0SF9dNqHkgUIaN8%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918b8ab2b5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":99828,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"732298688268e7a2ae3819ae5ac2ce07","sha1":"fffd7d22e906c811c2bb31086ff09be918a97e7f","sha256":"5643ef9aa6ff0278444b132db7c33ffd18ef050680f0a196fad9f9969d7ae57a","sha512":"ea02b4115af7a765bcbc623644f4d04ead13a264b22e0195df876a35bb0bcfc1b8caf5d9700833a750ee1b733bf2826fa84b89e5cd7879815668a993bc6e6017","ssdeep":"3072:MhG7/hAMxoanxwvxlUewCKfGs+3F5aIwN01pnA5NI:Iqlxoanx4xmis+GIFA5NI","tlshash":"06a38da181cbbc1572b6cd5cb0622111e4299f0cb3444c64bbe6ef5a579aaf6f011fb8","first_seen":"2025-11-20T15:49:54.546609Z","last_seen":"2025-11-24T17:32:12.096026Z","times_seen":3,"resource_available":true,"data":null}},"time_used":785,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":401,"receive":384,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/58928.0d23b6eb.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:20.189Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/js/58928.0d23b6eb.chunk.js HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:20 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=XZ6dmiwd3qg3p9DlW4Z5xKDx16K1eeEsT0kUtZqdBRCr%2BkEXAzaNWRTTzMsgDqUsl56Hgwz%2F0XCI5QeiGkbLRmOAX310fy9GL99aiDmGz0A%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c12bf75689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":49115,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (49115), with no line terminators","md5":"e25c52d6083d592e706985467261b4b5","sha1":"a353a559ba46a5fa275657d6f068e5eccf4cc13a","sha256":"2e3ec3553d11ab9ccaeda2cd523ab3bbf144c0c29155e90c23543e12c2abf9b5","sha512":"9bd81707a394b580d73d64487b27462c0979ff1252c6a7655fa0a79891be93a96b38ea5cac284cd35cb19446356343927aa3add13b4015625f69f6de74fbcff0","ssdeep":"768:J+JpzAqzoxW5nsjnJxSJxcC/4143kt4K9bf4ffoNjSjDrLRfXr66jz6pCPInBOKs:2sjWJxupnf4WuDLudpysc","tlshash":"48232aae904578d866938ecde06b841cfa2b981deb01493473f16a5d02d69e9f713fcc","first_seen":"2025-11-20T15:49:54.547481Z","last_seen":"2025-11-20T15:49:54.547481Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1006,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":511,"receive":495,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/79645.9216316d.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:18.811Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/js/79645.9216316d.chunk.js HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GuSdon9oRJMSt1ZshAiP9%2BfNhVlYrfMOKQAynbUAQYPTKnQFkbg4XjMQzq0ZBwOHHCvIMWCHzy%2Fy0vxy%2FeywIc4k5J%2Bt9FIPNb7HGAXuHRw%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918b88b225689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5713,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (5713), with no line terminators","md5":"cbb454c672bd1a140884c019af4f62cd","sha1":"9a599c61a93ffe8365430d298fceb185dbf0c6c1","sha256":"1ca9a0392c4c0ba70519784fb51788a93456a618b837dc6b7c5aa4adf847d9a1","sha512":"6e4fc1d51b9398a3591ba27d01b45213c93954b9ad499e10e6aa948ca93663d2231e4ce154fc397c9f36a11318b1c6138be49351d68871cf53d110e220d4eb2c","ssdeep":"96:2a6deMcZjEdRebQGTrOvDX9uncZ8Y68C4dUYj5VVGP2RzH5OhEmPU:2iMnjDX9+YbC4dUYjPKU","tlshash":"0ac14281e051f4f282f6ac05e19f4cd2f1561650d40ef990e7e6e9e0a43ea09f562bbe","first_seen":"2025-10-31T05:45:31.275801Z","last_seen":"2026-01-21T14:38:11.617731Z","times_seen":44,"resource_available":true,"data":null}},"time_used":223,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":222,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/lottery-template1/assets/home/sports-min.webp","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.497Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /lottery-template1/assets/home/sports-min.webp HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\ncontent-type: image/webp\r\ncontent-length: 5702\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:00:20 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\nage: 0\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=WpTFCQX0nkxCkVEgas%2BjXs4ojY8KyH61RybbyyEUZfmhqmU3sYLk2sSGwAnGcaV89IhzDFWpPlsjXgr073muu0XPggFZF932VLOoXFozVxQ%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c95c355689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5702,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 190x180, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"eec25417adb6f8210d6fa15f9dd472e8","sha1":"76251382cbb97cd871686694b48fc86a1a0d120d","sha256":"7a3026829ae42ba288060812a91e16c1da8ebd240a76d50f47ce328f4af5e745","sha512":"94579e7d23987ff82c4c7cbec236ac835e5d4f16e5301e08e7582683c60b71d643b3a346dbf09fbc972a93c594fbb2fdd574b77f977467dc447eeedd80b6913f","ssdeep":"96:YcYghLahaiILOdD9tmsjOiXnQ3q386tdldPLaqa5E+Udbt59I883iR0OW/r:YcUara/jO/aFKqae3bFIN3iqOWT","tlshash":"67c19ea9c62d407f2fb0c05d4925d06b7836a1744a53fe87330c3ae2702aa58e9a49a7","first_seen":"2024-06-29T09:31:12Z","last_seen":"2026-03-07T15:54:36.295028Z","times_seen":10,"resource_available":false,"data":null}},"time_used":248,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":248,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/27705.84726632.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:18.919Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/js/27705.84726632.chunk.js HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=e1b%2BAdbJyEun%2FVDMGvqlbmxmqmlYWq%2Bm%2FxGfEQ3i4RO3zWtbgWIvxZpUcqkRT%2B%2FF3ztodws%2FJB%2F8NR2t1czWGPRNkvqmh2QKi2cT8tKkjhc%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918b8bb305689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":28668,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (28668), with no line terminators","md5":"2b2c6b3129f9d5b91bc6cc91f2b45e80","sha1":"9584e511145d3c3027a3ef7d41b605d3de201638","sha256":"b15cab0f3906341c4ba595f544739e447441d73b0d1fdbc9bb5ffcef9990b28d","sha512":"e02c631200f032e75380f0555d974755e9619cdabffeda61c938712351b074abf3542826897d6680f0b880d0abb4ec4ac45912928279d8c39294e77d477571f3","ssdeep":"768:Na9kcqjKz+L80z3Ps1OXd37ZOyKuTz2fIUrXY:NSsPso/bzUjY","tlshash":"bdd2e123a8037f4d76eb051e705e504ace049348e82517087f84be75ba0d4a5bf8bbdd","first_seen":"2025-11-11T19:11:26.266632Z","last_seen":"2026-01-02T10:01:42.340906Z","times_seen":7,"resource_available":true,"data":null}},"time_used":669,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":447,"receive":222,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/lottery-template1/assets/home/sports-min.webp","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.480Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /lottery-template1/assets/home/sports-min.webp HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/lottery-template1/assets/home/togel-min.webp","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.499Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /lottery-template1/assets/home/togel-min.webp HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-type: image/webp\r\ncontent-length: 5152\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:00:20 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=%2BAyPIKsPuUE5FOZS%2BaBcn5wDTUXJNG7NP8CucjwHSJzyF%2BiTbLCyM2805Yr2Xkygx0C6pV36pTRNqZTcAKPfqlWagp%2Fji%2BBNiCcg8QkE9qE%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c95c385689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5152,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 190x180, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"2765c7d612d9898b4ea81a80b024c739","sha1":"36f68e55706c87fc1adffae5d8bdf2655b2e75bc","sha256":"6670e00215d0cc4092680ba14cc390727701a6de8f5786c51da03bfcfa9ed7a2","sha512":"dcf6fd6f43eba2c9e0a052324a54b4e16becfb8cedf235e8712787e09455008821ce523525524cae9a43bac1f513893a76a132ccc529a2d1d3ada258141001a7","ssdeep":"96:3MD673UjsPLQuVyPAh8dH/b8WFe4CfgSt8S:Q593PC8dfwWw4CfD8S","tlshash":"30b18e2d9359e321d6bf818f79bb04fa52171d35046079ab5a0ce38a40275d3a79345f","first_seen":"2024-06-29T09:31:12Z","last_seen":"2026-03-07T15:54:36.241679Z","times_seen":10,"resource_available":false,"data":null}},"time_used":521,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":521,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/mobile","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.844Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"POST /apipub/mobile HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nX-ACCOUNT-ID: 8813370\r\nFe-Version: f96ca1d92\r\nContent-Length: 2\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=JhSfaDl0G%2FZR3%2FSSVAd7QVEqAxxKwit2IG9uu%2B3zfDNBmDKqS9WQwmhBGRtdQ9p5KcudehxLa3bpzAnx1Dl7Wr2nS0CDdqNozhyjLUkYJk1N9aAg\"}]}\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918cb8c425689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":130,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"c192b3da3132ad39300dd434b81f7fa7","sha1":"7773f1850fdde5616cdd50cea4b6ca363f4b87a4","sha256":"b89fe936f32cb224a2ca9e4e04c6ac20ad750106467768f1b83bcf0bf3ff12d2","sha512":"11a5d279021699f0c9a7125c5ac8ef481056a55ae78a1cf930c2f535b2371df247860c4e9f80489524c7d5435a16052359f3aa9d5b259d923dcd40442bae13b1","ssdeep":"","tlshash":"f9c02b1b0b4406479244604133ec321ec84117270064cc4a111cc51ca83053070c0a1f","first_seen":"2025-11-20T15:49:54.551471Z","last_seen":"2025-11-20T15:49:54.551471Z","times_seen":1,"resource_available":false,"data":null}},"time_used":231,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":231,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/5.Czyav0-3.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:22.112Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/5.Czyav0-3.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AOCedOEoI7g3QL-n8gweZJ5t3oxMlmhK6O4PW6nts-Wy2fMJ1ok-utjnLIA5dSw_91L0siV5\r\nlast-modified: Wed, 12 Nov 2025 08:33:43 GMT\r\nx-goog-generation: 1762936423681618\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 194044\r\nx-goog-hash: crc32c=7+l17g==, md5=gvtNDMDcgq1v5BtgxCXmhA==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncontent-length: 60960\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 20 Nov 2026 15:49:22 GMT\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":194044,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (65500), with no line terminators","md5":"82fb4d0cc0dc82ad6fe41b60c425e684","sha1":"700b8d008d359071978d64371e76b190bc1f531c","sha256":"3bb0be8cf70708efd3dfdb4edc0ba4f949120e01afa04eb3acba8d9d948789f5","sha512":"982220a002ed41a54ed5d70af17ec4f7872ac3f2e2dcb024bc91253754bfa2e56985f49bbe4b5d8e38751c8d473abc17e6c4269f633644c306e300106f8a2ec6","ssdeep":"3072:qVzjYLKSRrZVxXLu+5FIXox57NPH0aONfpzksw7ou/vEmyI:U/wHRrZVxbuqx/ONfpzkzoyb","tlshash":"41145cc4b186b53587e734e6487f1002f33e6d19784c8564fa99eeb63da418a9233f2d","first_seen":"2025-11-11T13:17:33.738679Z","last_seen":"2025-11-25T06:09:31.351952Z","times_seen":1459,"resource_available":true,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/6.B0_QvnEW.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:22.120Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/6.B0_QvnEW.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AOCedOE0XQnouTF70sQd_8AItwCmvL4eOqI6KsxM7iv0O-EBgs_EP_vXuQ6DJicFY3sRYU2v\r\nlast-modified: Wed, 12 Nov 2025 08:33:43 GMT\r\netag: \"bb2424b90285d46f921f699e7b3d17d5\"\r\nx-goog-generation: 1762936423639919\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 886\r\nx-goog-hash: crc32c=LRbwvg==, md5=uyQkuQKF1G+SH2meez0X1Q==\r\nx-goog-storage-class: STANDARD\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\nvary: Accept-Encoding\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 20 Nov 2026 15:49:22 GMT\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-length: 886\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]}],"data":{"size":886,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"data","md5":"bb2424b90285d46f921f699e7b3d17d5","sha1":"412e217bd4cfbafc553fc36b9094d0ece147a429","sha256":"2b1840010c419cf6839e4a18ffd0eec542b4c0d0c49ce5606bf93639afda5ff5","sha512":"f283f440d13fb69e25c115fd3e9dcab60cf937ed1ad964644f9719abba510e9f99ac82747ef2aba6991de08cbe10a8965c0d352c380dfa471d2b6753beba021f","ssdeep":"","tlshash":"a41100d93cc3d8b0d73bd4cc52a899e6d43c0e88a8fd41c0e4f86e853b155b18236ea8","first_seen":"2025-11-05T08:48:35.692413Z","last_seen":"2026-02-25T11:20:48.331177Z","times_seen":7795,"resource_available":true,"data":null}},"time_used":5,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/9.qYTqns9Q.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:22.127Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/9.qYTqns9Q.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AOCedOGFomGNM_LW3wc3Za2xndSTSSAxwXnGpRlQatNguFu6KdSdU5veL1htSqORT57U4Q-sFo7xTPQ\r\nlast-modified: Wed, 12 Nov 2025 08:33:43 GMT\r\netag: \"d541ce2d754402b833cc65b76eaea2c6\"\r\nx-goog-generation: 1762936423662136\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 40\r\nx-goog-hash: crc32c=jQQqwg==, md5=1UHOLXVEArgzzGW3bq6ixg==\r\nx-goog-storage-class: STANDARD\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\nvary: Accept-Encoding\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 20 Nov 2026 15:49:22 GMT\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-length: 40\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":40,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"ASCII text","md5":"d541ce2d754402b833cc65b76eaea2c6","sha1":"c36a92a0f5cef497ce42b1e8b4c72c8d9bd3786b","sha256":"80353503e48ebf6c2ae9f70184d3e758f64bacf48afe147e039df807509200cb","sha512":"f8cd5cc49f9276c580419958bf312ee0a311194fd41d116ee709e56401d769511700031ec9f3e6151f8da6b7e13b16e374a231e31cb00b92413ce5c751c2a0b6","ssdeep":"","tlshash":"f090044530d334753111111c453f5c0551144c4c05d55730c010d5551f514f4571fc4c","first_seen":"2024-07-04T09:32:22Z","last_seen":"2026-06-10T13:52:27.751505Z","times_seen":29839,"resource_available":true,"data":null}},"time_used":12,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":12,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/lottery-template1/colors/goldblack.js?ver=bfe9a517","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:17.041Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /lottery-template1/colors/goldblack.js?ver=bfe9a517 HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:17 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=qAmbMQ%2F54PZmFMVvemL7BqkWovmiu52d2YznOp0UTnvTP%2Bn7b5FhE6Uh1eG747PCBUHowRd8zhf1kUJIAB7xXqEGTReoQPschjO%2BS3BLc%2Fo%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:00:20 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918ad7a8c5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9694,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (9694), with no line terminators","md5":"b91e30b067ea367f53b0a2804e35ec82","sha1":"e216b0fd7682e711a0c8e0d2723cc6d9c6cb5a11","sha256":"d6570821dcb8b1b1cbe60f0d75ae81293f31e719e7741c0f7690661dcca35036","sha512":"a402403a1d5b10f66f1b340a8bbf921c547d45ce3877bae502d431e3d5427d7ef8ef9869db568eae11553a6d4c182fe1a40ee7149b50b5a387eed2985def9097","ssdeep":"192:pLEcddDBunoaqKDhHPaGMFzk+Tf6KPWeT:pNuoaqEd7o","tlshash":"a81254d78da0d837668dc5a438e9f2a405fd388fe0de4e6e24bcf099b53e4a45105b91","first_seen":"2025-09-27T02:14:36.089594Z","last_seen":"2025-11-20T15:49:54.554038Z","times_seen":2,"resource_available":true,"data":null}},"time_used":472,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":472,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/62210.c2ec7e86.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:18.837Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/js/62210.c2ec7e86.chunk.js HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SxvLJPPMK6ZTjB5hLl30g12eIPI%2FGkAs%2BAZvOmsPFkl40COoB47EWb69y5zL%2Fw6Sbewelk6gUcyAyS3GX9Ppnq%2FlYCp0OnNclke7n%2BdSDJk%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918b89b295689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":36438,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (36438), with no line terminators","md5":"ae2ce0da2bd91e1c194fee552fa3450c","sha1":"e040b2e8f1c6cbd0c0b3a2e6f07caee2eeee3f8f","sha256":"8d77dd387fec7c82f64d00d9c8da3e251f6cc81bacea12396c476b05bbbd1fb5","sha512":"34142e735bea1e7acb3fa6503f042f6cbf2f1fab087283e7c06418ac36c9f57a0a236bb953af720ce65fe6affafb93a3a5a3ee990430eb81ab45e50258759f4a","ssdeep":"768:gYo6Xt7zc7PEQOcv6Yw7WLqclYMiZm9PmALcr3neFMGZ2d:Ro6Xt7Rxcya/lIZMPm5TnoM2Y","tlshash":"12f2f1210a874b3f39d905eca5454a720cc74acf606c967599389db1a9937f0ae0a8fc","first_seen":"2025-10-31T05:45:31.248347Z","last_seen":"2025-12-04T04:42:58.696168Z","times_seen":25,"resource_available":true,"data":null}},"time_used":593,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":402,"receive":191,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/captcha/generate","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.379Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"OPTIONS /apipub/captcha/generate HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,fe-version,x-account-id\r\nReferer: https://chambersoftain.com/\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\npriority: u=4,i=?0\r\naccess-control-allow-headers: content-type,fe-version,x-account-id\r\naccess-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\naccess-control-allow-origin: *\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mkKi7oVKTQYPdPkuZGzF65wEDeJUTIBxrvsh0ZgsQLEo%2BkZ%2BbPqfk4shxpr8eWqg3to6aE9snKctJNdP%2BpLc6IZ8tGe%2ByJWgieGO73jop5tpy9KZ\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c89c265689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":508,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":508,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/bank/list","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.514Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"POST /apipub/bank/list HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nX-ACCOUNT-ID: 8813370\r\nFe-Version: f96ca1d92\r\nContent-Length: 2\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vgzb%2BDVxb0o%2FdR9hyocgEUNUeF1qCpxcD%2FElVxn2DJgm6p74xD0q0vKbj%2F0u0HG1bXuahpnFnePZ6v15HocQUFddGZPTvtVg0q76sLTtsVePGiz2\"}]}\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c97c395689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":8058,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"ba418b1fb96926fe152feef55acd0603","sha1":"75f419a47648b99b4fd5029cc2a66f6263013f25","sha256":"efd9d97342b1bf35ebf6cf975b6b824dbeb8f71b0074e57bdaa9ad5e3b2a0909","sha512":"e2919bd310808aa3ee1e41d451392896edf1cc553ccb71bc8120873cb23529be40204a130a1c54379ac0fcd2068575c5081fcc4cd29c7a83d8f36452e18b98b4","ssdeep":"96:PfBf1N45ofis0v7UpFGrqvEQlMyF7EcMswM+xfnzJcA0sBQz7bVAd8XDds8r/vt:XZzcoaRkUec6M0zbfIz2B0ivo8C+Ht","tlshash":"6cf17c12c4089d4acac0c2361ac7af1fe6bc652ed8c68f49d5486c35c39bdbbf285953","first_seen":"2025-11-20T15:49:54.556056Z","last_seen":"2025-11-20T15:49:54.556056Z","times_seen":1,"resource_available":false,"data":null}},"time_used":250,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":250,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/app_notification","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.877Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"POST /apipub/app_notification HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nX-ACCOUNT-ID: 8813370\r\nFe-Version: f96ca1d92\r\nContent-Length: 2\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Lg6md5n5yt20vCBob66yyubNK0MbI6bfCjM6GBCRx0hGVSzWSTOsiB9AmMrrBcVkvVTcEqlN7YPHtZMEEZxIbaadGB0sSGDifv3RCRgV8ckrd%2B5g\"}]}\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918cbbc455689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":89,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"6f4226532eb21256a5c48113bea7824a","sha1":"a47ca50dc1d60dbaab1aa87a5a7d5e19cefa28d5","sha256":"47680877971185a375beb8745cfc58ba96f40a75ab4a18fe96f92232435be15c","sha512":"ddc5374501a729a993eff769d1972432d1a112c7f52c49193986cb1cadb2203b0439e9f7fac5325009eb928d8f07c4c558b9378cf12d6c3e9af35234c1dae4f7","ssdeep":"","tlshash":"44b012633d050991df41726040a63e0046cc70330d011a10c0e46f098a90422f00282d","first_seen":"2024-06-29T09:31:12Z","last_seen":"2026-06-11T00:35:22.238561Z","times_seen":113,"resource_available":false,"data":null}},"time_used":229,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":229,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/media/Segoe-UI-Bold.b00928e669b804136004.ttf","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.354Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/media/Segoe-UI-Bold.b00928e669b804136004.ttf HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\ncontent-type: font/ttf\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=r31ehpBP9NFGYyv4pMhGfCU5jfawakYR6pg6v7LTH7sisLZEG7AZJevQE66dldnSuOS2KuzDKax0nSRmb74VzKNvNYfXuKXxFMVilswBUsY%3D\"}]}\r\npriority: u=4,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c87c225689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":36056,"size_decoded":0,"mime_type":"font/ttf","magic":"TrueType Font data, 18 tables, 1st \"FFTM\", 72 names, Macintosh","md5":"65099f98c7cb19b3dac57b15a6a708cf","sha1":"b2b26ea5a35f7c2f107d358f584985aa14218c4d","sha256":"3084cb39c0f24d7dfa6b576014ec75d0c3b9e852e1a545eaa96253e087f02a2b","sha512":"2896944647f9df85f48af9c92fce064a58d61417e7110b524807201266cfa24600ab1f3adfd3c847815cd3526c9a2d4153f34254b3c1f5a3f44a547f49ea3635","ssdeep":"768:3U7s5rJJvlEdk4vZh56zW1jZWvdJajdccc1JhfR:k7sFIVZhrj+UwZ","tlshash":"02f22942e3d6920df1bb0e7848b8638bd776fe311a76c34f509d669dda420d42c3279a","first_seen":"2023-04-05T14:29:51Z","last_seen":"2026-06-10T23:21:19.833767Z","times_seen":402,"resource_available":false,"data":null}},"time_used":391,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":203,"receive":188,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lbstatic.winwinwin168.net/media//images/vWua3uXF0ApXlm3zBr8C.png?webp=true\u0026width=60","fqdn":"lbstatic.winwinwin168.net","domain":"winwinwin168.net","tld":"net"},"ip":{"addr":"104.21.73.200","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:28.741Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winwinwin168.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 25 Oct 2025 18:15:31 GMT","end":"Fri, 23 Jan 2026 19:13:17 GMT"},"fingerprint":{"sha1":"0C:AB:FA:39:B6:AC:C1:0A:75:EF:47:06:BC:ED:50:06:A1:79:19:58","sha256":"94:FF:F3:E8:BB:20:13:EE:BB:81:40:F1:53:92:40:63:3B:62:8F:E6:86:E0:B5:6E:94:3B:F4:DB:A5:F1:B0:D4"}}},"request":{"raw":"GET /media//images/vWua3uXF0ApXlm3zBr8C.png?webp=true\u0026width=60 HTTP/1.1\r\nHost: lbstatic.winwinwin168.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:29 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1510\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\nlast-modified: Mon, 28 Aug 2023 05:28:25 GMT\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=mCc6TVZgUwlrJ6swSjCgJR1EkHcugAy%2BDWLPNyW8rx2YvEmha%2BV9406DeMOLbcX8Ty7JoqMa6sjjleiQkXk%2FAvOEDrB4TeMeHRO4OIDLRaKB68%2F6Xd%2BJL50%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918f6ad128deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1510,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"0dfc4b8dfbe20529ab3aac76569a1a00","sha1":"441b59fd944c928cc1c33a202c4ca7eea3d24ebf","sha256":"54f5554779c1d8692d4fcff811cf0ecb0ddb234ffd121896297f2e1f27024335","sha512":"2492dd6c2f59da2d4a00db726c2aaa312e6c17ac491a13fc3f8bff2ef104d64e8de831534d89cfad967f3ed5aea8bfe48a748aabc0cfc023838310aa7ca7b525","ssdeep":"","tlshash":"4c311cb21b91363a8e13cd738c91151827a07a0cab5f3add95ad2093e3bf1414d0d515","first_seen":"2023-11-01T05:49:18Z","last_seen":"2026-03-07T15:54:36.169752Z","times_seen":26,"resource_available":false,"data":null}},"time_used":452,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":452,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/201.fda2eb65.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:20.178Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/js/201.fda2eb65.chunk.js HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:20 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=NAvZwqiDvlYHR4%2B%2BHvmc2dhM3rn2BYNTI58l3hsifx%2F9Hq69IGRvwKQUYAYeDxGI1Bj37F8Dv6Jnn6kDqKC%2BtAFzGANrqYxPKKOe9qxsrc4%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c11bf35689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10629,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (10629), with no line terminators","md5":"d21eb56a7833610d35e2c033745418c1","sha1":"452e3dba66ccbbb8ba9fd1290dba636d35abd38a","sha256":"659492f28c6f4d8afc1fc1f2457149093523464a672da0b29629a049d3d07710","sha512":"c7e3979e6ee05e6eba6547dffa5a4008f3e4d785fd208fce6bc28ec2cf6c835245ef8838727d75815bf91da441e98772c7389f0c0c82c02e52629153d5904fe1","ssdeep":"192:Go/zugNQOQTk1YqCjCzMdA1Mzo2sDvUv/EnEYcFLMvwN1xuQ3iGiYyPZLTkCO:GcS8QG1YqweMgxvUniEpavwbIaiGxeZy","tlshash":"3822e884f50af0f59bd705d1607f851eb33b7a55392e8400a02ae8e93b5b68df113fa9","first_seen":"2025-03-07T07:57:41.642825Z","last_seen":"2026-01-21T14:38:11.606379Z","times_seen":30,"resource_available":true,"data":null}},"time_used":395,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":395,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/media/impact-bold.393c8a0b905e3208112c.ttf","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.365Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/media/impact-bold.393c8a0b905e3208112c.ttf HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\ncontent-type: font/ttf\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=y4Ubxeh4Zd%2Fbf8SM59k0xjuHquNn9Fd9dQdpWT8ACUmdDRDtWDyIOhpkukhkC0uzByazac%2FKidOUrI9WsZDQYUcRhVAXceJ7j5AJjEp4UR0%3D\"}]}\r\npriority: u=4,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c88c245689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":206784,"size_decoded":0,"mime_type":"font/ttf","magic":"TrueType Font data, digitally signed, 23 tables, 1st \"DSIG\", 47 names, Macintosh, � 2011 The Monotype Corporation. All Rights Reserved. Impact is a trademark of Stephenson Blake ","md5":"f12902024f7b77ee4c34557ee6f3818b","sha1":"a539dd4feed027f9511e5061cb56da83d0d6bcf5","sha256":"d8bbdb72e3f930157824b2e59677d3a912d4512c14a948e6656a2e3fb0c935ad","sha512":"8cb617ba11bf9a548a25b934de4caeb38a73fb358613fcf58fbb9982b252d11018ddbf1cc78898afc7606360f361ad7d366f6a1bbc707487e03429dae854a1f5","ssdeep":"3072:93CHEBrt2E3OKjurLElowt2rr4O94iYtSmaEjcRNClvVim59cq:NH3FKgO2t9a+cvm59b","tlshash":"0d147d62e3122b0bda667035c438d36616dbb8b7a363c7dfbd0844b6d46a1d8de006d3","first_seen":"2023-11-01T05:49:18Z","last_seen":"2026-06-07T01:54:31.019338Z","times_seen":100,"resource_available":false,"data":null}},"time_used":917,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":237,"receive":680,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/3.DiEu57nc.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:22.105Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/3.DiEu57nc.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AOCedOG7jDHQnzd7nb9Ico9DNBhA7ZJ8UaA79XI0xJnkhCpKrBluWJUiPdKhhWjrvcQlHciFxmO55CSmABFYAQ\r\nlast-modified: Wed, 12 Nov 2025 08:33:43 GMT\r\nx-goog-generation: 1762936423680641\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 138434\r\nx-goog-hash: crc32c=qbZ6Bw==, md5=R+tQBS8Vz8HYiqFVRgHlXg==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncontent-length: 43575\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 20 Nov 2026 15:49:22 GMT\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":138434,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (48031)","md5":"47eb50052f15cfc1d88aa1554601e55e","sha1":"f805750b3d2e016885055b29a6e9ab8394c8599b","sha256":"7b86440589ee714b1c7a6d74e6d9a691f1280d57a36376c440cf949ceed5381e","sha512":"addcf2f225368a1dd929e431171096fd397be6d2175d4923be40eb5b8fa10d0934ce036b63bcb76b95444653e0b4db6d80c06885f4b3535c89e24b6420298da2","ssdeep":"1536:9gZQTsyz+6WzvhFCvB0Hx6J+vXlKAwTwH7nDPWnYlkChX8qg4JklHYD8b:9gKTsyzTWzvhFCp0UcDOnA5sFikRYD8b","tlshash":"dad3f8e83996f5626bf312b700af1817733c192b280c4990a211fdddb5b845ea17bf9d","first_seen":"2025-11-10T12:08:03.375538Z","last_seen":"2026-01-13T13:49:38.678696Z","times_seen":5241,"resource_available":true,"data":null}},"time_used":4,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/24.gkJzRvjM.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:29.502Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/24.gkJzRvjM.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AOCedOH9tiXSllVm_CGX-Ik9mdikz8zsEFx9Inl6kJfLKeDjAuScrqKPin8txuXU3HSqx9a2\r\nx-goog-generation: 1762936423668572\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 142405\r\nx-goog-hash: crc32c=UhNM5Q==, md5=F9x4BhVIbaN6ERa2xOKlwQ==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\nlast-modified: Wed, 12 Nov 2025 08:33:43 GMT\r\ncontent-length: 44644\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 20 Nov 2026 15:49:29 GMT\r\ndate: Thu, 20 Nov 2025 15:49:29 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]}],"data":{"size":142405,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (64136)","md5":"17dc780615486da37a1116b6c4e2a5c1","sha1":"9bfa722db902ac43d43d695a2f3988cda4c2477d","sha256":"e041258edabf2dfb3b9ae700292e9a48e4cd3f3d3d99cc7926e915181e956198","sha512":"a39700d8076c43c415f4d5533b8fdd674ef529195a9545d31b8525102a43e29449025f8c18a8a95f95ab217f62f239621cba598fbb579183c28cdab00bd27198","ssdeep":"3072:DALh4taXim7pbD5xfy5FYMPmatHZkckEgYasgYam3CXf3M5P53gIL:Et4taXim7pbD5xfy5FYgftHZkckEgYao","tlshash":"f8d35cc4b3a2f27ddbd7c1e4a0ab5405f37d3e59bc2a4350e1aa9c5a30989cc513af61","first_seen":"2025-11-12T09:54:27.775253Z","last_seen":"2025-11-21T09:10:06.595346Z","times_seen":92,"resource_available":true,"data":null}},"time_used":4,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2025-11-20T15:49:16.399Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 20 Nov 2025 15:49:16 GMT\r\ncontent-type: text/html; charset=utf-8\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=BpE63u92ycbTGHKs4e6fww%2FTk1%2FhLcj993du2xsZqPaijYpLqJZL4xk98cLd2h%2BOw6ICSOHPBQct0FF1LCRQPJPI3IIbLiMiu%2Bi4E8VHZ3o%3D\"}]}\r\nlast-modified: Thu, 20 Nov 2025 15:49:16 GMT\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9a1918a9e89f56c6-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"AMP","description":"AMP, originally created by Google, is an open-source HTML framework developed by the AMP open-source Project. AMP is designed to help webpages load faster.","website":"https://www.amp.dev","common_platform_enumeration":"","icon":"Accelerated-Mobile-Pages.svg","categories":["JavaScript frameworks"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":6306,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, ASCII text, with very long lines (3881)","md5":"eb7066449be1b7116f47964c30afec16","sha1":"b8ef11a1d7f5c26268fa759a4a9efce46b27c0b3","sha256":"c43e80a5ac6b42f21cd38baf360db52880c05041ee0b116488bd64c63d7489df","sha512":"3776c8f706e661d97d846bd3b006a601b4a428bc673241749c422b075f86f8d7e50a6e1d52b9aebd0cc775660b2dd8dfea848671e93a28b7dacaee82fde909ea","ssdeep":"192:UfsIaPOs6/kmiX1YGJYpGYE+868C4iKOBdNwRmy8d:UZ8K/piX13SGYE+8t1iBBvhyW","tlshash":"f8d1b833ac068daf2631879c5563f71ce72754189e45dc8094d42e5b78a3babd6333e2","first_seen":"2025-11-20T15:49:54.563473Z","last_seen":"2025-11-20T15:49:54.563473Z","times_seen":1,"resource_available":false,"data":null}},"time_used":526,"timings":{"blocked":64,"dns":40,"connect":1,"send":0,"wait":397,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/18638.a3066aba.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:18.912Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/js/18638.a3066aba.chunk.js HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=WK0CZ6XhT3EZdV%2BVK3HrhC5xDJx%2B%2FEAQ%2F0jVSJfuFcJknnATgbPDXm73sC2qzxbl1uedpf7K1%2Fnye8IKrMPwkzfoT9OjAZuvlKf%2BmJUa4mg%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918b8bb2f5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":20690,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (20690), with no line terminators","md5":"63aebd35e8af5d4cda36115b08a00549","sha1":"5f14b8c70dfb9b633e478d3f9a8fe9895e9358b9","sha256":"c18b0995937cc0954ea4aa3d8d91b4351fa3c1b26151ef919032251ad4f8f5c0","sha512":"254bf1ae8f6602e9597fe403564472911942490095ac6c9445ef415e6ecafc0aca57ec005654eeda8800077a222472b7f3a46e93c74b809e3f98f5757c2f9b0c","ssdeep":"384:3cgAL+BWLETwHhQbeE2OE2XhTlsjijNjd8aIq5M2KXVoiEWoPb3VeRnbkCCYgjuC:3cgA6kywHsNGShTlsjijNjKa1MFoiEFf","tlshash":"1c92bfb1d286f4c8f692545ae07b1479ed5c321763c89568b0bfaced420d3caf67243a","first_seen":"2025-11-20T15:49:54.564445Z","last_seen":"2025-11-29T12:21:54.958376Z","times_seen":4,"resource_available":true,"data":null}},"time_used":740,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":500,"receive":240,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/script","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:20.206Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"OPTIONS /apipub/script HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,fe-version,x-account-id\r\nReferer: https://chambersoftain.com/\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:20 GMT\r\npriority: u=4,i=?0\r\naccess-control-allow-headers: content-type,fe-version,x-account-id\r\naccess-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\naccess-control-allow-origin: *\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=Qw%2BWOfVIW3DSx1xhowuoGT9SELYKHk%2BcYBUSdY%2FrmScljGcxwLMvz2NTNdwERf92Tqknj9g6JC0AX4sRNVwSPbeR%2BjPPGLyQreOcDZ%2BD7YAXQ%2FM2\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c14bf85689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":457,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":457,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/media/Segoe-UI.45472284dc36b2486ce2.ttf","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:20.215Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/media/Segoe-UI.45472284dc36b2486ce2.ttf HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:20 GMT\r\ncontent-type: font/ttf\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=TKXSYRaKULitTW%2FbzwaktLAIJtwcZf4MpwoNQofug18M8AoHvkDo51WqK9GlXNkP3YWwqjlkHXREUwfifLN19G5gzkF93q7euikzVPQ3CZs%3D\"}]}\r\npriority: u=4,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c15bfc5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":34164,"size_decoded":0,"mime_type":"font/ttf","magic":"TrueType Font data, 18 tables, 1st \"FFTM\", 48 names, Macintosh","md5":"0e7e9a9b5c4abaadef7bc8f4e4574084","sha1":"995e37cfba0e3df9a716891a4cf9a05b38b118f9","sha256":"3745c347d168dd938971aed573ab2140b6a766f658c4f353f06ddc05e976ff7a","sha512":"3d9aaeb1e2f5c6ad4eed10c1ff6ea13b970dd851e16d7ff098336352af1e4d9c62fd58ab6926bc04072deee5ce6ad99788ed441abf06b46f12028757758b102b","ssdeep":"768:nX5rMT8BQQIBOO8V5u4PnPajdcccC/IoTROkYP:XyxQYD8TnIFIgq","tlshash":"3fe25b46f3e5a718e5bb0a7848b51392d37afc365b27cb4f004d269edd820e60917b87","first_seen":"2023-04-05T14:03:22Z","last_seen":"2026-06-10T09:16:48.116798Z","times_seen":754,"resource_available":false,"data":null}},"time_used":754,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":508,"receive":246,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/home","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.492Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"POST /apipub/home HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/json, text/plain, */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: application/json\r\nX-ACCOUNT-ID: 8813370\r\nFe-Version: f96ca1d92\r\nContent-Length: 21\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=IMKUVYN6FFOaxO1PqySIAVqtj%2BkTK6PW038Sn%2B8NFlCogHFJlg8sly8nSNpsfktZbZHqaKdPaHITuD4mCsCVXhe023hYel71wdzeeq%2BJiQ2TSvsH\"}]}\r\npriority: u=3,i=?0\r\naccess-control-allow-origin: *\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c94c345689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":474101,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"daf55da2b8c9433f660f9aab7e4b495d","sha1":"5876aa783f26055312c3e9f328d6c678542ec90e","sha256":"c58676910d28331c6f0e97752f2b021808971e590e4df31cc9ecc90e4f758dea","sha512":"687acd0fa72dd4a57ba7c976f0ba2c975fd9966b6b00ce6ddb8ee51709bcc4d76954d85a8ebfe0b71f1b7d3c7dfaa929b83a7647de3ac3fc38931ec9b6b69dba","ssdeep":"1536:kOMuSuCyu4u0uxu7ukuMumutunukuvu/ueUdKHX1UIpI6woI7IYISIWIyIUIxRq2:klcHXZw1Z08J6","tlshash":"aaa4e02b822ddc6781731d8105ef3b88e5fd0d2748f84994fbb58efc841e6229793999","first_seen":"2025-11-20T15:49:54.568136Z","last_seen":"2025-11-20T15:49:54.568136Z","times_seen":1,"resource_available":false,"data":null}},"time_used":1392,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":246,"receive":1146,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"accounts.livechatinc.com/v2/customer/token","fqdn":"accounts.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"2.22.225.11","port":443,"asn":20940,"as":"Akamai International B.V.","country":"France","country_code":"FR"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:22.340Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"POST /v2/customer/token HTTP/1.1\r\nHost: accounts.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 225\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://secure.livechatinc.com/\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-credentials: true\r\naccess-control-allow-origin: https://secure.livechatinc.com\r\ncache-control: no-cache, no-store, max-age=0, must-revalidate\r\ncontent-type: application/json\r\nexpires: Fri, 01 Jan 1990 00:00:00 GMT\r\npragma: no-cache\r\ncontent-length: 201\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\nset-cookie: __lc_cid=da111f81-5467-405c-b10f-892c2ac7efa1; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Sat, 20 Nov 2027 15:49:22 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned\n__lc_cst=9a066d922dbe8736919cc27052f6afd30ebaca568fe702a28170a20d1cec59819c0ed424cf3e0d43f28b625ba32952113dec6fceafc75801309e44ef5394; Path=/v2/customer/token; Domain=accounts.livechatinc.com; Expires=Sat, 20 Nov 2027 15:49:22 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned\n__lc_cid=da111f81-5467-405c-b10f-892c2ac7efa1; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Sat, 20 Nov 2027 15:49:22 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned\n__lc_cst=9a066d922dbe8736919cc27052f6afd30ebaca568fe702a28170a20d1cec59819c0ed424cf3e0d43f28b625ba32952113dec6fceafc75801309e44ef5394; Path=/customer/token; Domain=accounts.livechatinc.com; Expires=Sat, 20 Nov 2027 15:49:22 GMT; Max-Age=63072000; HttpOnly; Secure; SameSite=None; Partitioned\n__oauth_redirect_detector=counter=1\u0026t=1763653792\u0026tag=41cacc3548340648e74789d741cfa099198ae590; Path=/; Expires=Thu, 20 Nov 2025 15:49:52 GMT; HttpOnly; Secure; SameSite=None\r\nstrict-transport-security: max-age=86400 ; includeSubDomains\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":201,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"e6012c03b02bd215d319a91f32089d73","sha1":"aaec0e29bdd8806bd9559ce69054c49739164793","sha256":"4534b4535de615acf235568894f483ba0ce4eee5ee022119f30293831b179af2","sha512":"808c6e3145e95a6afb8fd36220d7ea16247a344443704d910de4cc131b0e24b9c85ab93ecdbc0c5d3d8d5d4861164afce88ded780364858180047b1c0c6d4ed4","ssdeep":"","tlshash":"9fd0c08aa20b3ec88be40f5bcb82caac9c3401b18a84408d43f0f2640c280327307f24","first_seen":"2025-11-20T15:49:54.570812Z","last_seen":"2025-11-20T15:49:54.570812Z","times_seen":1,"resource_available":false,"data":null}},"time_used":136,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":136,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lbstatic.winwinwin168.net/media//images/0lL7ug46QDzY2ynjDZsR.png?webp=true\u0026width=60","fqdn":"lbstatic.winwinwin168.net","domain":"winwinwin168.net","tld":"net"},"ip":{"addr":"104.21.73.200","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:22.355Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winwinwin168.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 25 Oct 2025 18:15:31 GMT","end":"Fri, 23 Jan 2026 19:13:17 GMT"},"fingerprint":{"sha1":"0C:AB:FA:39:B6:AC:C1:0A:75:EF:47:06:BC:ED:50:06:A1:79:19:58","sha256":"94:FF:F3:E8:BB:20:13:EE:BB:81:40:F1:53:92:40:63:3B:62:8F:E6:86:E0:B5:6E:94:3B:F4:DB:A5:F1:B0:D4"}}},"request":{"raw":"GET /media//images/0lL7ug46QDzY2ynjDZsR.png?webp=true\u0026width=60 HTTP/1.1\r\nHost: lbstatic.winwinwin168.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1504\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\nlast-modified: Mon, 28 Aug 2023 05:14:18 GMT\r\nvary: Origin, accept-encoding\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=eUmp2gJxjSv42%2FRBxqgu%2BhrgyHuwIjdEU%2BBqe2Kz4bGtD4OdXo81h1fqUvqnLfYi4URzDx8uxyyqtN5q%2B%2BeTpb5nTktcSKp%2FFnIV6BbXQflbhAW%2F69vRYjI%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918ceb8308deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1504,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"ce8d73c2d3f346c0ea1ce461835cd3ba","sha1":"ef9cc9c9744b2fafab349f9669585f7247bf09bf","sha256":"61715efeacfda4bbda41c9291879f09012527e8ba541ce927afbcf21880f45fc","sha512":"d3108bfc9221bf66136c98a0d1e105e6a4e43356e6437ad6e5130da44f2c68cf5c246a9fb975db4f5c7ae5c4edb0a4f46474bc975e64d6b42534e71c7c54d32e","ssdeep":"","tlshash":"bb311c7cc682165af543662867a17f27e3c50008b61ee51159d16f4ad083eda3ff7708","first_seen":"2023-11-01T05:49:18Z","last_seen":"2026-03-07T15:54:36.1654Z","times_seen":21,"resource_available":false,"data":null}},"time_used":452,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":452,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lbstatic.winwinwin168.net/media//images/yDDMDcYWgAsGiUhmZN5y.png?webp=true\u0026width=60","fqdn":"lbstatic.winwinwin168.net","domain":"winwinwin168.net","tld":"net"},"ip":{"addr":"104.21.73.200","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:32.880Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winwinwin168.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 25 Oct 2025 18:15:31 GMT","end":"Fri, 23 Jan 2026 19:13:17 GMT"},"fingerprint":{"sha1":"0C:AB:FA:39:B6:AC:C1:0A:75:EF:47:06:BC:ED:50:06:A1:79:19:58","sha256":"94:FF:F3:E8:BB:20:13:EE:BB:81:40:F1:53:92:40:63:3B:62:8F:E6:86:E0:B5:6E:94:3B:F4:DB:A5:F1:B0:D4"}}},"request":{"raw":"GET /media//images/yDDMDcYWgAsGiUhmZN5y.png?webp=true\u0026width=60 HTTP/1.1\r\nHost: lbstatic.winwinwin168.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:33 GMT\r\ncontent-type: image/webp\r\ncontent-length: 2052\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\nlast-modified: Mon, 28 Aug 2023 05:29:08 GMT\r\nvary: Origin, accept-encoding\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=p0vCGmCgqZEUaky6WUpAYUVfkbPJ9OFK7V3AMQjljYIENP1Qlby6i4ZhRODORnkPwQTCBfzGYrZ6OJ6p7yMuDeok3IfmFJXGRd9tW07rGJ38O6SjgAuSE7E%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a19191078798deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":2052,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"989d956f379d92e1328db68238ea3bef","sha1":"7f0f78c0f65a7d126347d016480e818d8faa5811","sha256":"0554ae233be585fcef0995118ccf4f1dd59f32591345585e31e848b70fbf0d84","sha512":"fd161b1429f83906a4d6f7ee4d624605030f85dbdf0dc60f3171c8cdd60402edb5b0d60d5c77aa3575527f4d68b9bcb698997c49cabcd507c923b1989eb49f2f","ssdeep":"","tlshash":"23413adeab1a40a747927b44be2833a01fd049da40f8e1912a243170ba21b8751c1f01","first_seen":"2023-11-01T05:49:18Z","last_seen":"2026-03-07T15:54:36.289632Z","times_seen":29,"resource_available":false,"data":null}},"time_used":454,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":453,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/app_notification","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.382Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"OPTIONS /apipub/app_notification HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,fe-version,x-account-id\r\nReferer: https://chambersoftain.com/\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\npriority: u=4,i=?0\r\naccess-control-allow-headers: content-type,fe-version,x-account-id\r\naccess-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\naccess-control-allow-origin: *\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=kBUmd0fAeBIDGXM68flSAWrp5jxIPa1vyXhpiin316u06%2BR3ySS8jJHlGCPQXOXgsgWKc4viAh3aK%2BCA3fY1BkOHxK3u800YGAWM9%2FpFAK563HH5\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c8ac275689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":493,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":493,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"lbstatic.winwinwin168.net/media//images/jCHN2fLHi3nuQfXv5NZu.png?webp=true\u0026width=60","fqdn":"lbstatic.winwinwin168.net","domain":"winwinwin168.net","tld":"net"},"ip":{"addr":"104.21.73.200","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:22.354Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winwinwin168.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 25 Oct 2025 18:15:31 GMT","end":"Fri, 23 Jan 2026 19:13:17 GMT"},"fingerprint":{"sha1":"0C:AB:FA:39:B6:AC:C1:0A:75:EF:47:06:BC:ED:50:06:A1:79:19:58","sha256":"94:FF:F3:E8:BB:20:13:EE:BB:81:40:F1:53:92:40:63:3B:62:8F:E6:86:E0:B5:6E:94:3B:F4:DB:A5:F1:B0:D4"}}},"request":{"raw":"GET /media//images/jCHN2fLHi3nuQfXv5NZu.png?webp=true\u0026width=60 HTTP/1.1\r\nHost: lbstatic.winwinwin168.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-type: image/webp\r\ncontent-length: 1402\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\nlast-modified: Mon, 28 Aug 2023 05:25:17 GMT\r\nvary: Origin, accept-encoding\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=xRPagJ0mCllZuaEjdFuKITLPu2ioJJgI6LAJIsKMQFJd334m%2B%2B7PjaCYPfVx4c8HXgvobWvHDbk7oD3HiWQ7%2Bs7HuM1A%2FpskdlYkiE3fI4XeRgXbsKmuly8%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918ceb8318deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":1402,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"aeb7dd3c8985775ae3af253c286a0e3d","sha1":"0ad8c49c6df9ca65c0430e48721e8022a706aece","sha256":"048732ade5d26caab98916e2cd7e5c281134fcd77978cc99c88e16e68cbd9740","sha512":"12fe3f966fb25a0ea35828f8b987b7eeeb735a48ff850b0cb40e1e95bf92796f1ca2a8174d92614f962c849ed6e48bcaeea4d27a12768f9f3bea6535980edaa9","ssdeep":"","tlshash":"0421e6ba99a52bc2cf916e20c1cde6e1470b088e5174a580b9e7432e29bad4cae01071","first_seen":"2023-11-01T05:49:18Z","last_seen":"2026-03-07T15:54:36.266615Z","times_seen":33,"resource_available":false,"data":null}},"time_used":451,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":450,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lbstatic.winwinwin168.net/media/images/TnsmNKtuWqUDfGTyQGKb.jpg?webp=true\u0026width=1180","fqdn":"lbstatic.winwinwin168.net","domain":"winwinwin168.net","tld":"net"},"ip":{"addr":"104.21.73.200","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:26.065Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winwinwin168.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 25 Oct 2025 18:15:31 GMT","end":"Fri, 23 Jan 2026 19:13:17 GMT"},"fingerprint":{"sha1":"0C:AB:FA:39:B6:AC:C1:0A:75:EF:47:06:BC:ED:50:06:A1:79:19:58","sha256":"94:FF:F3:E8:BB:20:13:EE:BB:81:40:F1:53:92:40:63:3B:62:8F:E6:86:E0:B5:6E:94:3B:F4:DB:A5:F1:B0:D4"}}},"request":{"raw":"GET /media/images/TnsmNKtuWqUDfGTyQGKb.jpg?webp=true\u0026width=1180 HTTP/1.1\r\nHost: lbstatic.winwinwin168.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:26 GMT\r\ncontent-type: image/webp\r\ncontent-length: 39888\r\npriority: u=4,i=?0\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\nlast-modified: Fri, 06 Jun 2025 07:46:32 GMT\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=65bDnNDqzE%2B0BMfAQAsj5l2h%2B4uAsrVQXR679FCe%2B1osN6Mix2WWsuO9LEClEmGQMIfkzFxBeGbu0gwp9MwKKvI6SPpYNJlrsWeSg9ol8EaorJdM1%2B5F3ZQ%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918e5eaec8deb-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":39888,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1180x412, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"3e07bda5bda90194ea95540237869c07","sha1":"fedb4cb0f111258d7496b5a0847c758485a22950","sha256":"f7d27d4f92bc4b095718c9c37c22c6437540434f1881bed7db8ea3a4a6fec26e","sha512":"37a4cfd35ef128553cf38161e842d4d93835a7e39b1cd6653dc60a689912f2130c4f951c107976d97a4783f2ea293e45bcb5d821eac84964f65d8ce1b37438d5","ssdeep":"768:5nHUgi6ZNi4fkKviCeVd28RWhZ0iMLWXeefRE5iCG9rvexBjkex0qK9P:5HUgZM2k8a2H0ibWoafRx0J","tlshash":"2c03f10852b4f8f5ac9011efc4136116f35a291d3ac7d73c50ed1bacdee6aaae06700b","first_seen":"2025-11-20T15:49:54.575504Z","last_seen":"2025-11-20T15:49:54.575504Z","times_seen":1,"resource_available":false,"data":null}},"time_used":770,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":519,"receive":251,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/js/10754.a7c8ea20.chunk.js","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:18.892Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/js/10754.a7c8ea20.chunk.js HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=jkvTFgLgds%2BW5lhofe4HJmux8StJnJq6i5I47nP0nI1%2FTW5ld8G17AxVY6pXHkXhiCatYqH1vLKwyCxCz2M%2BTKhtp4jHgUh%2FNUT16iOWXZ0%3D\"}]}\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918b8ab2c5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":10505,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (10505), with no line terminators","md5":"bb43b79bb4d3d5ba09485abd24ad259d","sha1":"550224a6069d8836f224b36c1990defe777e1982","sha256":"7346a5ad6b84a471286a82b2922c27cbef77882ba15f4192c75a4a74b916a9b7","sha512":"80b728ba322e24e7b0982b23993ca749c2eb4b85aa3843267ce5fa166900ba90e49c04a4a716a64e778d45ad85499a1976fcd6d11690d65a39a041745fbe7e8f","ssdeep":"192:DP8jxU/RtGYPCWhnvP8grjcLM3+Fz71B0Etmq++I6+3kkv9bJCFhl2O1ObsqLtCG:DP8jxU/R0Y68nsUcLM3+Fzr0NqfS9yOb","tlshash":"2922c696414738895bc58a8c863b0168b10cd838390ccc59f27dfddea215edaf593fab","first_seen":"2025-11-06T17:17:13.197295Z","last_seen":"2025-12-22T13:49:01.678455Z","times_seen":19,"resource_available":true,"data":null}},"time_used":399,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":399,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/locales-fo/id/common.json?ver=e9aa3dcf","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:18.942Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /locales-fo/id/common.json?ver=e9aa3dcf HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://chambersoftain.com/\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\ncontent-type: application/json\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=pmKumsqE2d4IcHXtBA8KrO1k%2FjsrL3wfWUkmIx9MgHolL9z5kiur3lgy3MZKlPOu%2F4tpB4FnMVN8%2BH%2BzwVz4HKNdma8imAUYfbWdhHqnVtM%3D\"}]}\r\npriority: u=4,i=?0\r\ncontent-encoding: br\r\nlast-modified: Thu, 20 Nov 2025 07:00:20 GMT\r\nvary: Origin\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918b95b355689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":82068,"size_decoded":0,"mime_type":"application/json","magic":"JSON text data","md5":"9d253b72602d016031c3fa050c6dc8ff","sha1":"71fabad8bf11840d0670113fac151a928439b9e5","sha256":"6605418113e987d8a783659cf7d8c303dd2d569d0aafc15b8c5a4899eb162440","sha512":"1a8851a9c2f484bf465c96f6f3b8bd39b3dbce5f08b6d433587e958df79e7740b6b7edafc044d845b1d4c07cfb799b5be6a29fba0fb649c2e06912b2cb36b405","ssdeep":"1536:rZ9O6Q1EC8R7R/17sxhsSH+5vQ4LTyiZZhRjWj9QHzZL+erOZysMq872/otHZG:fO6Q1E517sxe55vQ4yahRjiQh+LpMRv0","tlshash":"12833826a10502a325c477fdbacf2ecb361d23565740896e782d0dbac7cb5fe242b706","first_seen":"2025-11-17T09:53:23.55195Z","last_seen":"2025-11-21T10:45:51.0436Z","times_seen":5,"resource_available":false,"data":null}},"time_used":583,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":202,"receive":381,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/script","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:20.210Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"OPTIONS /apipub/script HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,fe-version,x-account-id\r\nReferer: https://chambersoftain.com/\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:20 GMT\r\npriority: u=4,i=?0\r\naccess-control-allow-headers: content-type,fe-version,x-account-id\r\naccess-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\naccess-control-allow-origin: *\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=6QLckxBZyuBQMDc2PgOjuf%2BdZ2TdCHCy0cpiJdNu%2FX2UKUshPPb1PsehO0XVryp3eN%2B0B%2Fm68aogZnhU081BBL6mhiqLfqVv4DZppUgeikl%2BNwn4\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c15bf95689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":458,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":457,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"api.chambersoftain.com/apipub/lucky_spin_for_newcommer","fqdn":"api.chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:20.212Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"OPTIONS /apipub/lucky_spin_for_newcommer HTTP/1.1\r\nHost: api.chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nAccess-Control-Request-Method: POST\r\nAccess-Control-Request-Headers: content-type,fe-version,x-account-id\r\nReferer: https://chambersoftain.com/\r\nOrigin: https://chambersoftain.com\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"OPTIONS"},"response":{"raw":"HTTP/3 204 No Content\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:20 GMT\r\npriority: u=4,i=?0\r\naccess-control-allow-headers: content-type,fe-version,x-account-id\r\naccess-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE\r\naccess-control-allow-origin: *\r\nvary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers\r\ncf-cache-status: DYNAMIC\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=uQdnmBFcOrb2spg7oTuf0gS%2B4PtOGfMP305dgFk8fMKd3Clg0ECYzehcZX5rVscagoi%2BSRG%2FioECPd8i00jMl3ZkA6MZRWSqp6Glut06VYB0BNo1\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918c15bfa5689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":500,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":499,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"api.chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/8.-BRvjCAf.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:22.126Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/8.-BRvjCAf.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AOCedOG9a-vutFVtB8WomzNGXA500GytnW_U61YSVkE35V7Yr59XjwBvpvR6Vq7eY5yZ0iw8yW4YeyNyGPTJ2A\r\nlast-modified: Wed, 12 Nov 2025 08:33:43 GMT\r\netag: \"10f24d6e8ddc89d8251204377fccd689\"\r\nx-goog-generation: 1762936423665728\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 310\r\nx-goog-hash: crc32c=Zv+Dqg==, md5=EPJNbo3cidglEgQ3f8zWiQ==\r\nx-goog-storage-class: STANDARD\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\nvary: Accept-Encoding\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 20 Nov 2026 15:49:22 GMT\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-length: 310\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]}],"data":{"size":310,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"Java source, ASCII text, with very long lines (309)","md5":"10f24d6e8ddc89d8251204377fccd689","sha1":"65aafef3fa010f71c7b9920d5239604618e9ac43","sha256":"c2f0242a22a7515f533949dc064da3447adc8224c49c72901711b59867760b40","sha512":"a04caf9b9e19698ab9e2b1a12ac3f6a0dfcca56f1e505c5c2e2e997e3618429968e2df6bb16ff6ee10ea53826a6faebb0ba478b9cc76b3288cf87280bf1eb348","ssdeep":"","tlshash":"fee07dde60d2f0f34385bccc45205092d368df802bac81a0c06c9f9017100828d36ec9","first_seen":"2025-11-11T13:17:33.816275Z","last_seen":"2025-11-25T06:09:31.407952Z","times_seen":1454,"resource_available":true,"data":null}},"time_used":2,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/20.vP7sCb-B.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:29.458Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/20.vP7sCb-B.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AOCedOFfiUJCwj9cXsKj0ndfuKyDICiQmEnjz3fGL1C-O_vuspKnDkR2U9h2md4KJrHKpvyM\r\nx-goog-generation: 1762936423676465\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 138219\r\nx-goog-hash: crc32c=coau2A==, md5=1rewyhcx3q9TE4tQHlimqA==\r\nx-goog-storage-class: STANDARD\r\naccept-ranges: bytes\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\ncontent-encoding: br\r\ncontent-length: 42278\r\nlast-modified: Wed, 12 Nov 2025 08:33:43 GMT\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 20 Nov 2026 15:49:29 GMT\r\ndate: Thu, 20 Nov 2025 15:49:29 GMT\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]}],"data":{"size":138219,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (65488), with no line terminators","md5":"d6b7b0ca1731deaf53138b501e58a6a8","sha1":"db6bee20311672df7a7552cf31ec966d770f014a","sha256":"e16cbdfb1cd1c07e4c1d279af9a0855ea25916ebe8eb3c8a5be8234c78e2ab15","sha512":"9d6ce34728c235be1092a2780ac665dc5bcefaa2bd8c269380dce3f7f8a3327f605b794179d03ff0972b4b8a3c8a6d40b5a7bf8d33581cd0a07fb56a4133eb03","ssdeep":"3072:nY+patShfUEZ8QMEr0zr4aXDxb4mhWDArgKr/XC2tZ3APc:n2tShfUETRIzr4aXDxcmhWDArgKr/XCy","tlshash":"39d33be07352bb3cdbd7c2d9a5a22544b33c6e85b82a4352f0af6c1d30d998461b1f97","first_seen":"2025-11-12T09:54:27.704697Z","last_seen":"2025-11-21T09:10:06.594551Z","times_seen":92,"resource_available":true,"data":null}},"time_used":3,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":2,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"chambersoftain.com/static/css/51567.1e026f4e.chunk.css","fqdn":"chambersoftain.com","domain":"chambersoftain.com","tld":"com"},"ip":{"addr":"104.21.49.46","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:18.921Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"chambersoftain.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 08 Nov 2025 08:07:36 GMT","end":"Fri, 06 Feb 2026 09:06:22 GMT"},"fingerprint":{"sha1":"FC:5B:7C:CD:58:8F:49:4C:C6:D0:2C:85:DB:E0:D4:1B:CC:36:0D:F4","sha256":"38:28:7A:A9:9E:17:96:BB:CB:04:04:53:FA:C5:56:D8:98:19:C6:94:82:2D:69:32:C7:D1:13:FE:E2:93:CD:1D"}}},"request":{"raw":"GET /static/css/51567.1e026f4e.chunk.css HTTP/1.1\r\nHost: chambersoftain.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Thu, 20 Nov 2025 15:49:19 GMT\r\ncontent-type: text/css; charset=utf-8\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=j2QftdAPIXU8fQANXa%2BjD%2Bgg0Kq8l4IyAr8pxphbMNkd5%2B1JZoYgnttpY2gYHswhMZcaGVTNt%2FDtnxK%2BQ1FaL0SUn4BgtpSiHaeI2qlskEo%3D\"}]}\r\npriority: u=2,i=?0\r\ncontent-encoding: br\r\ncache-control: public, max-age=14400, must-revalidate, proxy-revalidate\r\nexpires: max\r\nlast-modified: Thu, 20 Nov 2025 07:02:28 GMT\r\npragma: public\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9a1918b8bb315689-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":9079,"size_decoded":0,"mime_type":"text/css; charset=utf-8","magic":"Unicode text, UTF-8 text, with very long lines (9069), with no line terminators","md5":"4fc8bf670f86242f5cfb317f3ab40a88","sha1":"3ff5696956a4345b3075a17238868159f7f0c6db","sha256":"f83014ba775f89c2a9112508292288e98351c9cbc9363886eef17b8922b94e72","sha512":"ab3501ab8b4f69947e5f2ed501d5f036fd14d68656c65f89ccb024d7c1faa2a551689d9d2791eb3ecb20d59f03df3e0343864c970576ba56017cbfba47b479fd","ssdeep":"192:qcLFjPifrMYO2zwtjf1+Wp+WY4yhdStlh5POjzAl:qdDMYNBl+yW9","tlshash":"48123a795293388640179a31324bf3143cc7beab76361be4f8599324c4ce4a51ff4a26","first_seen":"2024-06-29T09:31:12Z","last_seen":"2026-02-26T04:10:09.228641Z","times_seen":80,"resource_available":false,"data":null}},"time_used":452,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":452,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2025-11-20","alert":"Sinkholed","trigger":"chambersoftain.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"ik.imagekit.io/y7ltkcqiu/WhatsApp%20Image%202025-08-16%20at%2019.22.30_4b344864.jpg?updatedAt=1755348837484","fqdn":"ik.imagekit.io","domain":"imagekit.io","tld":"io"},"ip":{"addr":"54.240.174.23","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:21.259Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.imagekit.io","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M02","organization":"Amazon"},"validity":{"start":"Sun, 22 Dec 2024 00:00:00 GMT","end":"Tue, 20 Jan 2026 23:59:59 GMT"},"fingerprint":{"sha1":"61:BF:F1:A1:C3:63:69:98:40:72:23:FE:9D:C6:A8:42:2E:10:3F:B0","sha256":"56:10:8F:3D:13:E7:1E:52:E3:42:C0:94:B7:DE:1A:07:D4:8E:E9:60:05:30:AF:FB:1E:83:90:CB:7E:DE:39:4E"}}},"request":{"raw":"GET /y7ltkcqiu/WhatsApp%20Image%202025-08-16%20at%2019.22.30_4b344864.jpg?updatedAt=1755348837484 HTTP/1.1\r\nHost: ik.imagekit.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 403 Forbidden\r\ncontent-type: text/plain; charset=utf-8\r\ncontent-length: 9\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET\r\naccess-control-allow-headers: *\r\ntiming-allow-origin: *\r\nx-server: ImageKit.io\r\nx-request-id: b8df2bf1-827f-47f4-8fe8-ca3d57c522e9\r\nik-error: EACCES - account suspended\r\netag: W/\"9-PatfYBLj4Um1qTm5zrukoLhNyPU\"\r\ndate: Thu, 20 Nov 2025 15:49:21 GMT\r\nx-cache: Error from cloudfront\r\nvia: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: OSL50-P1\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-amz-cf-id: pqxI7wZ8t6RNraFf6frgyHZ8c2yiM0AEQTiuiSw3ffPpItXMoi1E9w==\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"Forbidden","fingerprints":[{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]},{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"ImageKit","description":"ImageKit is a real-time image and video transformation, optimization, and delivery service with built-in digital asset management, powered by a global CDN.","website":"https://imagekit.io/","common_platform_enumeration":"","icon":"ImageKit.svg","categories":["CDN","Digital asset management"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain; charset=utf-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-11T02:58:52.640491Z","times_seen":16315450,"resource_available":true,"data":null}},"time_used":358,"timings":{"blocked":77,"dns":69,"connect":1,"send":0,"wait":204,"receive":0,"ssl":5},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"lbstatic.winwinwin168.net/media/images/5eu6Be3mhZSYJpiXT2gz.jpg?webp=true\u0026width=1180","fqdn":"lbstatic.winwinwin168.net","domain":"winwinwin168.net","tld":"net"},"ip":{"addr":"104.21.73.200","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://chambersoftain.com/","date":"2025-11-20T15:49:17.447Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"winwinwin168.net","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 25 Oct 2025 18:15:31 GMT","end":"Fri, 23 Jan 2026 19:13:17 GMT"},"fingerprint":{"sha1":"0C:AB:FA:39:B6:AC:C1:0A:75:EF:47:06:BC:ED:50:06:A1:79:19:58","sha256":"94:FF:F3:E8:BB:20:13:EE:BB:81:40:F1:53:92:40:63:3B:62:8F:E6:86:E0:B5:6E:94:3B:F4:DB:A5:F1:B0:D4"}}},"request":{"raw":"GET /media/images/5eu6Be3mhZSYJpiXT2gz.jpg?webp=true\u0026width=1180 HTTP/1.1\r\nHost: lbstatic.winwinwin168.net\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://chambersoftain.com/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 20 Nov 2025 15:49:18 GMT\r\ncontent-type: image/webp\r\ncontent-length: 40030\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\nlast-modified: Wed, 04 Jun 2025 02:39:55 GMT\r\nvary: Origin, accept-encoding\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=a6NPVCO7WWqjUIzIlhDV8VXCpz0OaMZje1dyBOBbSzSo1c3PPF%2BgwhxKjnUk%2BUbe3NIAQvAec06F%2BWT0g55RSt9epDTnPiyMieTA1nEJNdqxi%2FyhYz8X\"}]}\r\ncf-ray: 9a1918b04c1fb521-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":40030,"size_decoded":0,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image, VP8 encoding, 1180x412, Scaling: [none]x[none], YUV color, decoders should clamp","md5":"1d237cab4e818d6ffdff460a231281d5","sha1":"7e5ced695fc3585c2132ba4b2aa1932b60f1d5f5","sha256":"f009b029380e38b450b5ef2ccb2b64237c6758ac26830aa42ff612fb7e36c6fe","sha512":"89c286bee63d185f4a44a07ace7b8e076d87dac44a10cc612ca1bfdc892290136fa6fd0095b99c695e18161f0e5a1012bdcec8e299e701fea809bfc845c18900","ssdeep":"768:C7pBO0AlevLvvwgvumqDBwh7rwyXzY9Ai6WSRbzSjGHoK9foy8OtpTXXC:C3JvLlnqDBwh7MmY36WAvSjcBoy8OXTi","tlshash":"4603f12a0b863b985b52ec5d74e8d3557f92f807815dbc4bb680b2c70c78b7c03a95e5","first_seen":"2025-11-20T15:49:54.58152Z","last_seen":"2025-11-20T15:49:54.58152Z","times_seen":1,"resource_available":false,"data":null}},"time_used":854,"timings":{"blocked":42,"dns":23,"connect":1,"send":0,"wait":519,"receive":250,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cdn.livechatinc.com/widget/static/js/11.al-9NYxR.chunk.js","fqdn":"cdn.livechatinc.com","domain":"livechatinc.com","tld":"com"},"ip":{"addr":"23.36.77.179","port":443,"asn":20940,"as":"Akamai International B.V.","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://secure.livechatinc.com/customer/action/open_chat?license_id=19196488\u0026group=0\u0026embedded=1\u0026widget_version=3\u0026unique_groups=0\u0026organization_id=c02bfc82-aa82-4b0f-ae5f-b6b7c64736ff\u0026use_parent_storage=1\u0026x-region=us-south1","date":"2025-11-20T15:49:22.137Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"livechat.com","organization":"LIVECHAT, INC."},"issuer":{"commonName":"DigiCert Global G3 TLS ECC SHA384 2020 CA1","organization":"DigiCert Inc"},"validity":{"start":"Wed, 11 Jun 2025 00:00:00 GMT","end":"Thu, 11 Jun 2026 23:59:59 GMT"},"fingerprint":{"sha1":"66:A3:6F:A0:92:9E:A2:01:91:16:68:AA:27:A9:41:28:FC:25:27:68","sha256":"03:FC:5A:F6:F7:06:15:5B:0F:31:DB:6C:4E:D7:E4:1B:69:80:1F:C3:5A:E3:85:5A:FF:8D:22:81:92:ED:25:2F"}}},"request":{"raw":"GET /widget/static/js/11.al-9NYxR.chunk.js HTTP/1.1\r\nHost: cdn.livechatinc.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nOrigin: https://secure.livechatinc.com\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://cdn.livechatinc.com/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nx-guploader-uploadid: AOCedOFltlsj_w9JHxTmgnwa_LwPYPyCBlvacVtjcmHfnKY74gmIaEjIIr-eRa1B4kFsDrPc9KWOp-8\r\nlast-modified: Wed, 12 Nov 2025 08:33:43 GMT\r\netag: \"4a073c5805819d74eabd3e843372d502\"\r\nx-goog-generation: 1762936423608172\r\nx-goog-metageneration: 1\r\nx-goog-stored-content-encoding: identity\r\nx-goog-stored-content-length: 236\r\nx-goog-hash: crc32c=6eM7Vg==, md5=Sgc8WAWBnXTqvT6EM3LVAg==\r\nx-goog-storage-class: STANDARD\r\naccess-control-expose-headers: *, Content-Length, Date, Server, Transfer-Encoding, X-GUploader-UploadID, X-Google-Trace\r\nserver: UploadServer\r\nvary: Accept-Encoding\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 20 Nov 2026 15:49:22 GMT\r\ndate: Thu, 20 Nov 2025 15:49:22 GMT\r\ncontent-length: 236\r\ncontent-type: application/javascript; charset=utf-8\r\naccess-control-allow-origin: *\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Google Cloud Storage","description":"Google Cloud Storage allows world-wide storage and retrieval of any amount of data at any time.","website":"https://cloud.google.com/storage","common_platform_enumeration":"","icon":"google-cloud-storage.svg","categories":["Miscellaneous"]}],"data":{"size":236,"size_decoded":0,"mime_type":"application/javascript; charset=utf-8","magic":"JavaScript source, ASCII text","md5":"4a073c5805819d74eabd3e843372d502","sha1":"cb12e953dbee2d3ea08d35d86bcd2476a490bda9","sha256":"0cb3247cac5de8fcdfb226ebe2dc4960b6ed473966359f73ca13ca286309122b","sha512":"036da8fb3959ebbef26b546019535a9edb7a99227a28252878247a756d3a7ea693f48e9ffdaf5886faa7fb2cbe56292bbf9552db5dd1d26e6574d8034ee183ba","ssdeep":"","tlshash":"ebd0a78cb643b0b16276b138853f801fb035e984a44404f0d13ad9c03d7c1a97597c5d","first_seen":"2025-11-04T08:39:27.95245Z","last_seen":"2026-06-10T13:52:27.74223Z","times_seen":16282,"resource_available":true,"data":null}},"time_used":2,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":2,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}