{"report_id":"0ee627c7-917f-42e2-902e-c18ea9c8a259","version":0,"status":"done","tags":[],"date":"2026-07-12T17:16:10Z","url":{"schema":"http","addr":"appcf-e.top","fqdn":"appcf-e.top","domain":"appcf-e.top","tld":"top"},"ip":{"addr":"145.223.98.16","port":0,"asn":0,"as":"","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"appcf-e.top/","fqdn":"appcf-e.top","domain":"appcf-e.top","tld":"top"},"title":"Kiwi WiFi - Buscador gratis de contraseñas WiFi para Android 10.0+","dom":{"size":28215,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text","md5":"266bedc7474e0cb269d6fc73c633a799","sha1":"40968d6d17ebd4bdd4352b3c7a54c994ac74277b","sha256":"fddd183ad211448946349721148aa7be41a2bae89687c26779280ec9c42512a3","sha512":"c6b131cd95ea95ef911786798107625d70a56914974cc82ee7547d1eabbc93a336a8f8372da2787bcaa6a85405e2c8e3e066bf9d06e8fb00f29bbebcdef89c1c","ssdeep":"192:ZsKNhdHBAorVtuXFBlMlB1dXQs8hi7gB/tVhmAmxQSoNjeI/43GO2+Im9C9wIW04:ZNQlMGuBOi6SO6PobZziB","tlshash":"8bc2849a5af365b67823e1e56feb2b063760d003c049c9197fdd535c8f858d8a8a3b0d","dom_hash":"domhashaa8a55493826169e4e3880396daf940d","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"appcf-e.top","fqdn":"appcf-e.top","domain":"appcf-e.top","tld":"top"},"ip":{"addr":"145.223.98.16","port":0,"asn":0,"as":"","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-16T17:16:10Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"appcf-e.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"appcf-e.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"appcf-e.top","ip":{"addr":"145.223.98.16","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"domain_registered":"2026-07-02","domain_rank":0,"first_seen":"2026-07-11T06:19:12.249713Z","last_seen":"2026-07-11T06:19:12.249713Z","alert_count":8,"request_count":4,"received_data":204260,"sent_data":1997,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"appcf-e.top/","fqdn":"appcf-e.top","domain":"appcf-e.top","tld":"top"},"ip":{"addr":"145.223.98.16","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"aba8b7cd34559a2c243b464ae3ed0714","sha1":"373a59e8f2f4b19da374d61eb2cd38ceb8fdaf1b","sha256":"024b4022559f057d32f7d3a44c2120a34dfe2e24e5eda4c2f1299e66d6fdeb37","sha512":"abf4d40d22d6569d6afd10e20ba2fcafe23621aed7f64a9a14e6be8a4eb147f5e28121983c7daab1d103dc5b206aa58480ab37d3449cfffba99b31e5a1025c74","ssdeep":"","tlshash":"191100ef1893a49357e77429c76f560b732202036441ed48bb0c85907fe822c8497f8f","size":1017,"data":"","first_seen":"2026-07-11T06:19:16.02927Z","last_seen":"2026-07-12T17:16:11.124245Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"appcf-e.top/","fqdn":"appcf-e.top","domain":"appcf-e.top","tld":"top"},"ip":{"addr":"145.223.98.16","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-07-12T17:15:42.985Z","timestamp":1783876542985,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"appcf-e.top","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Jul 2026 23:49:37 GMT","end":"Tue, 29 Sep 2026 23:49:36 GMT"},"fingerprint":{"sha1":"72:AF:49:0F:B5:9B:BB:05:DF:88:18:7F:42:7A:05:5C:1F:46:35:9A","sha256":"5F:1C:21:F6:87:58:84:BC:E0:65:FA:C0:A6:6D:A7:99:7B:10:3E:20:F1:74:4F:62:DC:2B:C3:9F:5A:28:B0:2E"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: appcf-e.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sun, 12 Jul 2026 17:15:43 GMT\r\ncontent-type: text/html\r\nlast-modified: Sat, 04 Jul 2026 20:14:27 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a4969a3-6e14\"\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":28180,"size_decoded":6540,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with CRLF, LF line terminators","md5":"0d6419a996f27bf4845be45b556f4941","sha1":"06d21625d3c27d98cac6f11451bbaa092bb13a47","sha256":"7b0edb599ade454f0848b3dfa813a7463f938adf36f4fc1a0f0427cf058b598f","sha512":"0a5c3e75223c26960da822fa8200559eaafd4bf64b3fdad019422eab065e1d493bd1aa1895e4e7002192ab037ede9f77357c6d8062a91b411b90542da88b562c","ssdeep":"192:D6NhdHa3AorVtuXFAlMlB1dXQs8hi7gB/tVhmAmxQSoNjeI/43GO2+Im9C9wIW0d:D+mlMGuBOi6ShsSzziP","tlshash":"7bc284aa5af355b67823e1e56feb2b063761d003c049c9197fdd535c8f858d8a8a3b0c","first_seen":"2026-07-11T06:19:16.026078Z","last_seen":"2026-07-12T17:16:11.115474Z","times_seen":2,"resource_available":true,"data":null}},"time_used":184,"timings":{"blocked":0,"dns":96,"connect":21,"send":0,"wait":21,"receive":0,"ssl":46},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"appcf-e.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"appcf-e.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"appcf-e.top/wifi-brand/logo.png","fqdn":"appcf-e.top","domain":"appcf-e.top","tld":"top"},"ip":{"addr":"145.223.98.16","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://appcf-e.top/","date":"2026-07-12T17:15:43.600Z","timestamp":1783876543600,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"appcf-e.top","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Jul 2026 23:49:37 GMT","end":"Tue, 29 Sep 2026 23:49:36 GMT"},"fingerprint":{"sha1":"72:AF:49:0F:B5:9B:BB:05:DF:88:18:7F:42:7A:05:5C:1F:46:35:9A","sha256":"5F:1C:21:F6:87:58:84:BC:E0:65:FA:C0:A6:6D:A7:99:7B:10:3E:20:F1:74:4F:62:DC:2B:C3:9F:5A:28:B0:2E"}}},"request":{"raw":"GET /wifi-brand/logo.png HTTP/1.1\r\nHost: appcf-e.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://appcf-e.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sun, 12 Jul 2026 17:15:43 GMT\r\ncontent-type: image/png\r\nlast-modified: Fri, 03 Jul 2026 16:57:09 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a47e9e5-7bbd\"\r\nexpires: Tue, 11 Aug 2026 17:15:43 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":31677,"size_decoded":28909,"mime_type":"image/png","magic":"PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced","md5":"e307297ff24c2605b9b9be877e65ca47","sha1":"94e0d4d4f95b562587e90988750fee2427f9d2e7","sha256":"a67c57c7c02d84bb5e7fac30b3e9f2a004344c73a6984bcdef77c7029a7b804a","sha512":"1501a04412b9e39b2b8dafbd2627d17f9c90df77bc7c155a1ad0cd6db0632d933590b3fafbcf5113098e730422449281c051af78a346fe39e5ec7820acdbbdd2","ssdeep":"768:AM57k4KJLlIiZKOBBmyH3ODh+XoCCita8TZ5Ji:As7RKRlTZ/n3ODdULt5Ji","tlshash":"51e2e0f2b7950f23faf461f026c317212dd72834a9126c5f9728e994eeca6061f59709","first_seen":"2026-07-11T06:19:16.02726Z","last_seen":"2026-07-12T17:16:11.116778Z","times_seen":2,"resource_available":false,"data":null}},"time_used":48,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":48,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"appcf-e.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"appcf-e.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"appcf-e.top/hero-mexico-wifi.jpg","fqdn":"appcf-e.top","domain":"appcf-e.top","tld":"top"},"ip":{"addr":"145.223.98.16","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://appcf-e.top/","date":"2026-07-12T17:15:43.602Z","timestamp":1783876543602,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"appcf-e.top","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Jul 2026 23:49:37 GMT","end":"Tue, 29 Sep 2026 23:49:36 GMT"},"fingerprint":{"sha1":"72:AF:49:0F:B5:9B:BB:05:DF:88:18:7F:42:7A:05:5C:1F:46:35:9A","sha256":"5F:1C:21:F6:87:58:84:BC:E0:65:FA:C0:A6:6D:A7:99:7B:10:3E:20:F1:74:4F:62:DC:2B:C3:9F:5A:28:B0:2E"}}},"request":{"raw":"GET /hero-mexico-wifi.jpg HTTP/1.1\r\nHost: appcf-e.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://appcf-e.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\nserver: nginx\r\ndate: Sun, 12 Jul 2026 17:15:43 GMT\r\ncontent-type: image/jpeg\r\nlast-modified: Sat, 04 Jul 2026 20:14:27 GMT\r\nvary: Accept-Encoding\r\netag: W/\"6a4969a3-22d2c\"\r\nexpires: Tue, 11 Aug 2026 17:15:43 GMT\r\ncache-control: max-age=2592000\r\nstrict-transport-security: max-age=31536000\r\nalt-svc: quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\"\r\ncontent-encoding: gzip\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":142636,"size_decoded":142695,"mime_type":"image/jpeg","magic":"JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 572x925, components 3","md5":"cb4dfc7de05ccb33cbac4dda4c22e4c4","sha1":"6c258d9750f018f0deb83c883609dc0400655946","sha256":"36a3de3e9da7373af28400ce5f49331e3bae108f6eeffe10267891e1f0d5aa52","sha512":"be2801185c3619f51abb4af632fa3ba824bb0690df9eb208bd99ff87dc49a36b24f88ff09e2cceb980ba7171617ef9e5a72ec905922f2d758c545250e82619be","ssdeep":"3072:lSiitO0b5SUjp/cChNwQX/MhsxtP7aKrkKKWYcdQXyQRI6Uut1G:lSiijb55dcCjwduvzanKFpee6UYG","tlshash":"63d3122c321ed182e77c047cf8f80b2464649aa2e9216d750a9388417ed4fffaeb1946","first_seen":"2026-07-11T06:19:16.028219Z","last_seen":"2026-07-12T17:16:11.118081Z","times_seen":2,"resource_available":false,"data":null}},"time_used":67,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":67,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"appcf-e.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"appcf-e.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"appcf-e.top/favicon.ico","fqdn":"appcf-e.top","domain":"appcf-e.top","tld":"top"},"ip":{"addr":"145.223.98.16","port":443,"asn":0,"as":"","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://appcf-e.top/","date":"2026-07-12T17:15:43.702Z","timestamp":1783876543702,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"appcf-e.top","organization":""},"issuer":{"commonName":"YR1","organization":"Let's Encrypt"},"validity":{"start":"Wed, 01 Jul 2026 23:49:37 GMT","end":"Tue, 29 Sep 2026 23:49:36 GMT"},"fingerprint":{"sha1":"72:AF:49:0F:B5:9B:BB:05:DF:88:18:7F:42:7A:05:5C:1F:46:35:9A","sha256":"5F:1C:21:F6:87:58:84:BC:E0:65:FA:C0:A6:6D:A7:99:7B:10:3E:20:F1:74:4F:62:DC:2B:C3:9F:5A:28:B0:2E"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: appcf-e.top\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://appcf-e.top/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 \r\nserver: nginx\r\ndate: Sun, 12 Jul 2026 17:15:43 GMT\r\ncontent-type: text/html\r\ncontent-length: 138\r\netag: \"6a45b35a-8a\"\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"","fingerprints":[{"name":"Nginx","description":"Nginx is a web server that can also be used as a reverse proxy, load balancer, mail proxy and HTTP cache.","website":"https://nginx.org/en","common_platform_enumeration":"cpe:2.3:a:f5:nginx:*:*:*:*:*:*:*:*","icon":"Nginx.svg","categories":["Web servers","Reverse proxies"]}],"data":{"size":138,"size_decoded":292,"mime_type":"text/html","magic":"HTML document, ASCII text","md5":"7389d931c86b3d7bb6b8af46d8c4172b","sha1":"8d2a4760aa0b47984d11cd1a66448719177fb791","sha256":"301bd9f16f94feedfae7a946a14bac38cb73c43efe6117bc5586835af03d7d6f","sha512":"dd6d1511e4fcd5bc09d821ffe091fb5946ac9654c48664aed504e479e9ac20c1cad44b6df90f42190d47e28f5f96bfb09d24056df6b950243d68ee8100a9a889","ssdeep":"","tlshash":"d9c09b5d755366449913155167c33641d196837f689a84510941c593f0cf69ac4c73a9","first_seen":"2023-03-13T12:56:15Z","last_seen":"2026-07-13T13:18:21.456971Z","times_seen":312000,"resource_available":true,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"appcf-e.top","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"appcf-e.top","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}
