{"report_id":"133e7372-edb9-40b4-afbc-256042957f1f","version":6,"status":"done","tags":[],"date":"2026-02-27T07:05:34Z","url":{"schema":"https","addr":"xcomwallet.finance/","fqdn":"xcomwallet.finance","domain":"xcomwallet.finance","tld":"finance"},"ip":{"addr":"104.21.19.203","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"xcomwallet.finance/","fqdn":"xcomwallet.finance","domain":"xcomwallet.finance","tld":"finance"},"title":"X Wallet","dom":{"size":101494,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (558)","md5":"0cd34b1ab01815dff9cf196c84647f29","sha1":"7878e53992cbd55b4a1c94498a9567b12897f91d","sha256":"1c00e4a71e4781e327e5fb5cc597f78cf74fb2e6b94ee502b7856285f76db47f","sha512":"3ca6bb4205c0e3b2ae1ca0ad419cedd9cf54acc5c4fcdaaca6e7e8a9a74f8cebda956dec99f23b0815a59aaf77af5b0f0c02ff75c471741b323537eaf2c4543d","ssdeep":"1536:BJhNmOCnMLAOTNIkhdxG2vVtDtdoQ6gH2dNjpV+i6RhYTGkYC/Go6B5sIYnFk21Q:BLdqGkYCkZ","tlshash":"0ca3c62432e115395467c3a1fbe5a72dda38e683e6279d1af39c00e24f87ca49d173d8","dom_hash":"domhash99c4c651c1462888f135b5d148f61540","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"xcomwallet.finance/","fqdn":"xcomwallet.finance","domain":"xcomwallet.finance","tld":"finance"},"ip":{"addr":"104.21.19.203","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-03T07:05:34Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":0}},"detection":{"ids":null,"analyzer":null,"urlquery":null},"summary":[{"fqdn":"xcomwallet.finance","ip":{"addr":"172.67.190.45","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-02-27T05:54:49.655326Z","last_seen":"2026-02-27T05:54:49.655326Z","alert_count":0,"request_count":6,"received_data":864781,"sent_data":2849,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"xcomwallet.finance/","fqdn":"xcomwallet.finance","domain":"xcomwallet.finance","tld":"finance"},"ip":{"addr":"172.67.190.45","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"c51379d5b7714586d74aeb863acd2dc8","sha1":"a7a08a88726da0c29a6fd3fd207a74d717e94b3a","sha256":"866efa1560cc5a272dd22ceaea8b27386f47aa0eca615ca56983cb82d3c8c289","sha512":"5a90daf0c846c7b3e8bed72d946f02d0750fe1d577e9f9298ffc88e530269a03899c2c583fdc0b19192d8b3093f0401ab2203afbc62366867596016559c125b2","ssdeep":"","tlshash":"f5d097285e6610f826733091c71e7240d87000331041cc02fd0cb1860fc0e1438b0fc8","size":268,"data":"","first_seen":"2025-12-08T16:10:19.533937Z","last_seen":"2026-03-13T05:42:16.698337Z","times_seen":40,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xcomwallet.finance/","fqdn":"xcomwallet.finance","domain":"xcomwallet.finance","tld":"finance"},"ip":{"addr":"172.67.190.45","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"8b30b1e9e60e529c9f86d0970858831b","sha1":"fd5070e5ebebf8153ee139543d915593b0deb438","sha256":"098080ee83652fae9d004c0b0f691c0bae557dd8479f82cbae5ef59fa79c00d6","sha512":"bfdd04bdd4ceb29f5acde0ce1b6bf48dfba6bfe8faa1ac3cfe4e02bc201dba5cfea275e4080de9e3a3483e7fb1a4620be3e678effbba302dfddb1d2b3fa800f0","ssdeep":"","tlshash":"ccd022ac2eaa133827337124872fa28137f4800364e1f8067a0cb1c70fe0e2000be8db","size":239,"data":"","first_seen":"2025-12-08T16:10:19.535238Z","last_seen":"2026-03-13T05:42:16.699028Z","times_seen":40,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xcomwallet.finance/","fqdn":"xcomwallet.finance","domain":"xcomwallet.finance","tld":"finance"},"ip":{"addr":"172.67.190.45","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"3eebce735083825b2ebf370f42d2a5d0","sha1":"ec9f84839aa627c0c5df2af376c79f022d74767a","sha256":"06bc5798c5161aab98a3a3230ee498d3b925f29663be2c9a5ae9e2c711368aeb","sha512":"a7c8dcd928b4f86d513d9a22fcf5cbe59312524823ce9399b491443126601078e1bcfe28715cd10acc2635bc9010d882782372777f90d7398e693d57dc10f732","ssdeep":"","tlshash":"9ed0a93e36b62634093be83b870fa38a7eb2106b2006cc0b3d4c40460fa0f1038f2988","size":258,"data":"","first_seen":"2025-12-08T16:10:19.536347Z","last_seen":"2026-02-27T07:05:35.74694Z","times_seen":35,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xcomwallet.finance/secureproxy?s=%2Fipfs%2FCGWudKfhKRCzDe14hHIQwQ10f16f6d5827a9f60df526868cab1e43%3Ft%3D1772175912709","fqdn":"xcomwallet.finance","domain":"xcomwallet.finance","tld":"finance"},"ip":{"addr":"172.67.190.45","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"f2a7256e5a40f7634778503ddf0abbf1","sha1":"ce7f881c152ad32f23bf40fed2660705326aaed7","sha256":"0088799ee4445c95c5bdfd2909d3f7e7e25b6aa6b997cbabbf90861977ea8e80","sha512":"6474c86bc302b1846f700eab0cb192a7efb255049733064b6dc38301d7cfdaffbd5a6c667fc28caacd62d39cb13936ca46ab0d22cd3f54ba1f2dd51b41d08c61","ssdeep":"6144:Eh5gD8QE9P64UfKfyFsr8a1Zn8/B+ZFHk2IWUdiH/j/wbU2PEdd8FYjh/W:ks8t9Pj8K6cxIWUcjt2T","tlshash":"6cc4d9e8874a9577a490a2b52463506fff8a0f5b792f8b9893d01c93d3fb70308e5d19","size":596575,"data":"","first_seen":"2026-02-27T07:05:35.744684Z","last_seen":"2026-02-27T07:05:35.744684Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xcomwallet.finance/","fqdn":"xcomwallet.finance","domain":"xcomwallet.finance","tld":"finance"},"ip":{"addr":"172.67.190.45","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"f56dab89de21da45f1df688d92e68d5b","sha1":"c4430bbc4f3fbfba708d0f9cb38d51fc300cc7a8","sha256":"c69dcc12e61f46e7efd09830bbf1e8876927d1573119457c5d57ffcd51fb43f0","sha512":"f44304bb34b624c2063b8e7ae71af71c69ebb3d6a4590f37b0e82142cd0231cdf4aa3ef435cc86b6bef0887614fb807136b3d8a20d8870b2df9486276bcdf4f3","ssdeep":"","tlshash":"bec080d9c7749eb0475810a750b492987890775d6252a19bc6fdcd8658ccf815e48420","size":186,"data":"","first_seen":"2026-02-24T23:25:00.273053Z","last_seen":"2026-02-27T07:05:35.747449Z","times_seen":6,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"xcomwallet.finance/secureproxy?s=%2Fjmpd%2F","fqdn":"xcomwallet.finance","domain":"xcomwallet.finance","tld":"finance"},"ip":{"addr":"172.67.190.45","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://xcomwallet.finance/","date":"2026-02-27T07:05:15.113Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xcomwallet.finance","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 22:34:48 GMT","end":"Wed, 27 May 2026 22:34:47 GMT"},"fingerprint":{"sha1":"BF:04:87:C6:8C:F4:DC:98:16:44:3F:4B:7B:CF:D7:E5:1E:2E:F6:FC","sha256":"2C:BA:BD:99:F8:07:C6:77:10:2E:D6:FC:0F:7D:76:4B:A7:98:2D:20:81:11:AF:C2:D9:50:F7:54:A8:3B:BA:4F"}}},"request":{"raw":"POST /secureproxy?s=%2Fjmpd%2F HTTP/1.1\r\nHost: xcomwallet.finance\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://xcomwallet.finance/\r\ncontent-type: application/json\r\nContent-Length: 1402\r\nOrigin: https://xcomwallet.finance\r\nDNT: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":1402,"data":"{\"route\":\"n9POyFeFG1tUtiSU-z9JOx3n\",\"payload\":\"0hqM-6_N52QB0gLyAhcACACyAvoCIAAMAyAAAgABIwMAAO8nhn2XtsKCAbq4L-2NqFstKDbjRWkCAAAzLz2vdhps-JgMERxC1JTY3tB2X8lmNj9pKJwPslYLTdqWegHViPbtKdVcN9V0pKlxhuycAQ2wN0lZREyYTWE_0MFvvYxo3gze5QuHc4rySUkHc4KfxFHcOYfhGIqOiZiJ95IN_k8zYf8XlC34SxPJcB26F6Z7n3s0DOco7VMpOAQyfR1OdEPKaLhYH_8XAhom041hR0-TtTbkwobcZEpVKEUagWGVdWShxwUK8ZW3NKhpxT6M26j7XxNQ11CNcBW5sCQufIp4N7Mv-N-izWaF0n6PBaUXqOmErA63IEx6BkUcMuu8VQPywCTz4ic0NpObA_rVUKKbDp349nSY6oce3fctPL9llJF5ivELtqsf9Qz__qigmwOvagnrMkrju_9bkC8g57BQPQVZwTib1GPRrJrPXMyCsR0sJgm67d03nR7b-OtQFVR235lXN-HT2XgeVt4I8Hm4IkLmElPh1ASHpYKDmo1SIQsu5v7O5CWrOWIrgqYcux79acmUSidB1ChhJrEjZJlZd_1cdoz5F3CCqHoccxBuOA-NibeKTngTNhzZiSMTV1TR8rgNjn9L2vrCs0cZlrnL1YZOnW0wYyBAVkDBrk0vMmdsjDC998-_Ch_JYbvATBjFrfhe7xNeNEuEWYY2XFiiH3JUWa-RV3P0ImyRLnn_rTY9ISchu-Hfmelhm6Sqk0qe98PfjAD8IwCNwMsYisv6xbPq9FMuQQ2dNn3zSDTPo9of-w565o7qbV12VMviqChtnWf9T41RUYYjQm2Xa4PB6Dr9f_CUA2wom3w0oXv9dvKBRvurA9YOIa-wKeoxXBF4NUhyIwXBsAN24Q57CQcm_fBoJ7OzhEU8Ar8ZB0ElhOc0JuX0jTtbR5t55MnPoQFksKIF2F6GSJ1-6kzQptRDEbKaGyQBjvfaTznwT2wnwwnE-G3POrWi4SqV4wKNO6TShdqWmQGTcR2lNvAFmyNYYIlB9UpuTcQsKQimZwWb9aLVjo51K0oGfuqZjE6hODF9cojpg0wpa8hjWF6-00jcA12rOxgBM2YnpC-5OsQuCm5Qd8mFulN_gu9EmFydme-LiU8HaLdpGUYFpUDO1mKpJw_xEA\",\"challenge\":\"eyJpZCI6ImtBajdZTUJxSTFfVFQzOXhEOFVseFEiLCJub25jZSI6NTM0LCJoYXNoIjoiMDBkMTU2ODllMjVmYjQ1ODc5MWQ2ODU2YzdhMzM2NzU5Y2EyZTY3NTg0YWFiMzg2NDRiZGE4MjI3YTQwZDc1MyJ9\"}"}},"response":{"raw":"HTTP/3 204 No Content\r\nserver: cloudflare\r\ndate: Fri, 27 Feb 2026 07:05:16 GMT\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\ncdn-pullzone: 4623665\r\ncdn-requestcountrycode: NL\r\ncache-control: no-cache\r\netag: W/\"a-bAsFyilMr4Ra1hIU5PyoyFRunpI\"\r\nx-ratelimit-limit: 10000\r\nx-ratelimit-remaining: 9999\r\nx-ratelimit-reset: 1772175975304\r\ncdn-proxyver: 1.47\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 204\r\ncdn-cachedat: 02/27/2026 07:05:15\r\ncdn-edgestorageid: 879\r\ncdn-requestid: 35a24386a69f3a25b44ac4df2b7f7839\r\ncdn-requesttime: 0\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncf-cache-status: DYNAMIC\r\npriority: u=4,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=GFkws992s84SrXOBQE7E7uE7AKsUv%2BM9Rl1PNrpsz6RaVJTlNjVrLW%2FJaGlVeyfzap40ASVXxjqETpvQQF0VsIOt4gfjEhKyM4Xbj7dLMTK24A%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d45d52d7bc05ebd-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"204","status_text":"No Content","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/plain","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-27T11:20:15.172321Z","times_seen":14276551,"resource_available":true,"data":null}},"time_used":900,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":900,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xcomwallet.finance/","fqdn":"xcomwallet.finance","domain":"xcomwallet.finance","tld":"finance"},"ip":{"addr":"172.67.190.45","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-27T07:05:12.346Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xcomwallet.finance","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 22:34:48 GMT","end":"Wed, 27 May 2026 22:34:47 GMT"},"fingerprint":{"sha1":"BF:04:87:C6:8C:F4:DC:98:16:44:3F:4B:7B:CF:D7:E5:1E:2E:F6:FC","sha256":"2C:BA:BD:99:F8:07:C6:77:10:2E:D6:FC:0F:7D:76:4B:A7:98:2D:20:81:11:AF:C2:D9:50:F7:54:A8:3B:BA:4F"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: xcomwallet.finance\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Fri, 27 Feb 2026 07:05:12 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\ncast-mode: default\r\nlast-modified: Thu, 26 Feb 2026 23:27:29 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=W66R2yx8QykRpMHhXGlPZKVjPtl2Pk4i2JvsrngTvyCmbEzMAlHk%2BTiHvefyV%2B0lc4iS7ho14ZjFZljRkBhGNX9V1ydaF4ASFGgofdFR8%2FAq%2Fg%3D%3D\"}]}\r\nage: 4244\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nvary: accept-encoding\r\ncontent-encoding: br\r\ncf-ray: 9d45d51ca9745ebd-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":101637,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (558)","md5":"a6ff7ddf4888ebe08e47f30bbd4c816b","sha1":"2662dfe05c6d2689111a9dfe33362f35174af34c","sha256":"007d90c7c375d333245785926e022e1cc2459ea5ec3e3e1344e36b0c21ac3412","sha512":"f9226002eda7af8b1cc84c2b105cd5aac48cc9f21c1896133401ed6c2724f94052d2953850bc3c5318a23b5f016a7878c0d8bd217507795f17978074ae1fd826","ssdeep":"1536:HJhNmOCnMLAOTNIkhdWG2vVtDtdoQ6Ij2dNjpV+i6RhYTGkYC/Go6B5sIYnFk21b:HLdBGkYCkg","tlshash":"f5a3c62432e115395467c3a1fbd5a72dda38e683ea279d1af39c00a24f87ca4dc177d8","first_seen":"2026-02-24T23:25:00.260607Z","last_seen":"2026-02-27T07:05:35.743181Z","times_seen":6,"resource_available":false,"data":null}},"time_used":190,"timings":{"blocked":84,"dns":67,"connect":1,"send":0,"wait":18,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xcomwallet.finance/grok-logo.png","fqdn":"xcomwallet.finance","domain":"xcomwallet.finance","tld":"finance"},"ip":{"addr":"172.67.190.45","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://xcomwallet.finance/","date":"2026-02-27T07:05:12.663Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xcomwallet.finance","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 22:34:48 GMT","end":"Wed, 27 May 2026 22:34:47 GMT"},"fingerprint":{"sha1":"BF:04:87:C6:8C:F4:DC:98:16:44:3F:4B:7B:CF:D7:E5:1E:2E:F6:FC","sha256":"2C:BA:BD:99:F8:07:C6:77:10:2E:D6:FC:0F:7D:76:4B:A7:98:2D:20:81:11:AF:C2:D9:50:F7:54:A8:3B:BA:4F"}}},"request":{"raw":"GET /grok-logo.png HTTP/1.1\r\nHost: xcomwallet.finance\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xcomwallet.finance/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 27 Feb 2026 07:05:12 GMT\r\ncontent-type: image/png\r\ncontent-length: 30968\r\ncast-mode: default\r\nlast-modified: Thu, 26 Feb 2026 23:27:29 GMT\r\netag: \"69a0d6e1-78f8\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\nage: 4244\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=vCBZB%2FDV629xVtA0aRbkt9TdBs9ZV6pf3zuMoJYT%2Fhuvp1CFlhNB6jSKX32rvUW6eKxLMRhPOawJE0ErYakJGcOPKBIu0sHvtCLW%2FlatyKhEiw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=4,i=?0\r\ncf-ray: 9d45d51e29625ebd-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":30968,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1024 x 1024, 8-bit/color RGBA, non-interlaced","md5":"18b63ae0449e9a94083435cfd1ee64de","sha1":"208c3ccd26aaa62496fe7d097289df13846899b9","sha256":"36eb518517fbff7718f7a72d765142b7e1e5403b3c6c6a3a8dace520e79d63ed","sha512":"00b11a4229c986b25b659be830ad477bef7e517a76297ba5cf7862100e4ab94426f1e54cba732897278a0f96d102df36d4b2b6f0d7b09abf5fef276c7c847ba4","ssdeep":"768:Ndf+RMCPskk8POI8BFN4UCguGO56bJ+eynGBwUA:NK3PskeI8zN47NB8TTA","tlshash":"ecd2d02a922ad434c6b2d9bcda7de1bf4e53fa5be66848cb758c51c701214b90f601e8","first_seen":"2025-11-29T10:23:48.816719Z","last_seen":"2026-03-19T00:03:44.268298Z","times_seen":27,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":14,"receive":4,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xcomwallet.finance/index-DP4QsOZX.css","fqdn":"xcomwallet.finance","domain":"xcomwallet.finance","tld":"finance"},"ip":{"addr":"172.67.190.45","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://xcomwallet.finance/","date":"2026-02-27T07:05:12.661Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xcomwallet.finance","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 22:34:48 GMT","end":"Wed, 27 May 2026 22:34:47 GMT"},"fingerprint":{"sha1":"BF:04:87:C6:8C:F4:DC:98:16:44:3F:4B:7B:CF:D7:E5:1E:2E:F6:FC","sha256":"2C:BA:BD:99:F8:07:C6:77:10:2E:D6:FC:0F:7D:76:4B:A7:98:2D:20:81:11:AF:C2:D9:50:F7:54:A8:3B:BA:4F"}}},"request":{"raw":"GET /index-DP4QsOZX.css HTTP/1.1\r\nHost: xcomwallet.finance\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xcomwallet.finance/\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 27 Feb 2026 07:05:12 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Thu, 26 Feb 2026 23:27:29 GMT\r\netag: W/\"69a0d6e1-1bbe0\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nage: 4244\r\npriority: u=2,i=?0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=es23xwDpy%2FwiML9QngoGdpCPchwWLlQzYtK5ZESbKluVmYekA4kMYsV24h1FvryrP%2FbnmXbFDjTlfp4oPY1S1tnkv2sA%2BXztLEviut3bBe%2F2Xw%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nvary: accept-encoding\r\ncf-ray: 9d45d51e19605ebd-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":113632,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"c11e2697941278b237297ed2e7893f0b","sha1":"a5bb8f4755bc49d6b52326a5b32592bb3b4125a4","sha256":"1ddfc7693a174ba170ad683e89eba0b07eeeff5539ae1427f16b8bad230836de","sha512":"efc1b17168681ce0f69aff3fa6bd611e39cb544c9a33858e8dbf44d95cd25fdee66d30e9fda4ee23e0c53f6317030f7508d126c418cecdb63fe0bc65c9ad2496","ssdeep":"3072:wsshIesz/wGIuIokIgWUUtGzCU378VQZkt5Ff+nou:w5hIesz/wGIuIokIgfCU378VQZkt5FfS","tlshash":"bcb38569a969607f7c27b1e4c3cc79acb51ef1c0de3a06b9bd86411427e23f60c6b914","first_seen":"2026-02-24T23:25:00.265123Z","last_seen":"2026-02-27T07:05:35.744169Z","times_seen":6,"resource_available":false,"data":null}},"time_used":18,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":13,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xcomwallet.finance/secureproxy?s=%2Fipfs%2FCGWudKfhKRCzDe14hHIQwQ10f16f6d5827a9f60df526868cab1e43%3Ft%3D1772175912709","fqdn":"xcomwallet.finance","domain":"xcomwallet.finance","tld":"finance"},"ip":{"addr":"172.67.190.45","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://xcomwallet.finance/","date":"2026-02-27T07:05:12.715Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xcomwallet.finance","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 22:34:48 GMT","end":"Wed, 27 May 2026 22:34:47 GMT"},"fingerprint":{"sha1":"BF:04:87:C6:8C:F4:DC:98:16:44:3F:4B:7B:CF:D7:E5:1E:2E:F6:FC","sha256":"2C:BA:BD:99:F8:07:C6:77:10:2E:D6:FC:0F:7D:76:4B:A7:98:2D:20:81:11:AF:C2:D9:50:F7:54:A8:3B:BA:4F"}}},"request":{"raw":"GET /secureproxy?s=%2Fipfs%2FCGWudKfhKRCzDe14hHIQwQ10f16f6d5827a9f60df526868cab1e43%3Ft%3D1772175912709 HTTP/1.1\r\nHost: xcomwallet.finance\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xcomwallet.finance/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 27 Feb 2026 07:05:13 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncast-mode: default\r\ncontent-security-policy: frame-ancestors http: https:, frame-ancestors http: https:\r\naccess-control-allow-origin: *\r\naccess-control-allow-methods: GET,PUT,POST,DELETE,PATCH,OPTIONS\r\naccess-control-allow-headers: Content-Type, Authorization, Content-Length, X-Requested-With, Accept, Origin\r\naccess-control-allow-credentials: true\r\nvary: Accept-Encoding\r\ncdn-pullzone: 4623665\r\ncdn-requestcountrycode: NL\r\ncache-control: max-age=2592000\r\netag: W/\"91a5f-zn+IHBUq0y8jv0D+0mYHBTJqrtc\"\r\nexpires: 0\r\npragma: no-cache\r\ncontent-disposition: attachment; filename=baXhK1kmzu8FVsJo5gXpGA.js\r\ncdn-proxyver: 1.47\r\ncdn-requestpullsuccess: True\r\ncdn-requestpullcode: 200\r\ncdn-cachedat: 02/27/2026 07:05:13\r\ncdn-edgestorageid: 883\r\ncdn-requestid: 2e77870b35b69e676cc84eacec1cc228\r\ncdn-cache: MISS\r\ncdn-status: 200\r\ncdn-requesttime: 0\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\ncontent-encoding: gzip\r\npriority: u=3,i=?0\r\ncf-cache-status: MISS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=OKPgT272Ir0Z%2BWc6mQLR3hW1Cj6XEueo38d1vzKi%2BNWTHzl9TJdiyGh1fivhnOSMfFL6dK6QhZ9EL7AKL8FabGPhxV%2BdjM3Zq67zI7daArDqwg%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: 9d45d51e79785ebd-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":596575,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"ASCII text, with very long lines (39148)","md5":"f2a7256e5a40f7634778503ddf0abbf1","sha1":"ce7f881c152ad32f23bf40fed2660705326aaed7","sha256":"0088799ee4445c95c5bdfd2909d3f7e7e25b6aa6b997cbabbf90861977ea8e80","sha512":"6474c86bc302b1846f700eab0cb192a7efb255049733064b6dc38301d7cfdaffbd5a6c667fc28caacd62d39cb13936ca46ab0d22cd3f54ba1f2dd51b41d08c61","ssdeep":"6144:Eh5gD8QE9P64UfKfyFsr8a1Zn8/B+ZFHk2IWUdiH/j/wbU2PEdd8FYjh/W:ks8t9Pj8K6cxIWUcjt2T","tlshash":"6cc4d9e8874a9577a490a2b52463506fff8a0f5b792f8b9893d01c93d3fb70308e5d19","first_seen":"2026-02-27T07:05:35.744684Z","last_seen":"2026-02-27T07:05:35.744684Z","times_seen":1,"resource_available":true,"data":null}},"time_used":1186,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":1058,"receive":128,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"xcomwallet.finance/favicon.ico","fqdn":"xcomwallet.finance","domain":"xcomwallet.finance","tld":"finance"},"ip":{"addr":"172.67.190.45","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://xcomwallet.finance/","date":"2026-02-27T07:05:12.957Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"xcomwallet.finance","organization":""},"issuer":{"commonName":"E8","organization":"Let's Encrypt"},"validity":{"start":"Thu, 26 Feb 2026 22:34:48 GMT","end":"Wed, 27 May 2026 22:34:47 GMT"},"fingerprint":{"sha1":"BF:04:87:C6:8C:F4:DC:98:16:44:3F:4B:7B:CF:D7:E5:1E:2E:F6:FC","sha256":"2C:BA:BD:99:F8:07:C6:77:10:2E:D6:FC:0F:7D:76:4B:A7:98:2D:20:81:11:AF:C2:D9:50:F7:54:A8:3B:BA:4F"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: xcomwallet.finance\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://xcomwallet.finance/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 OK\r\nserver: cloudflare\r\ndate: Fri, 27 Feb 2026 07:05:12 GMT\r\ncontent-type: image/x-icon\r\npriority: u=6,i=?0\r\nlast-modified: Thu, 26 Feb 2026 23:27:29 GMT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: br\r\nage: 4244\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\netag: W/\"69a0d6e1-3c2e\"\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=TEj8cbCSeP%2FYrae4DPH0yNM6y1lT20U41%2Bf0svKu%2FqCdOau7zHmyPAOFHKWAnz7oS%2FsK7usgDIKpx9zTcHKV5Gg4pVK3XW4rOcXzeHdJq0Kt3w%3D%3D\"}]}\r\ncf-ray: 9d45d51ff9ab5ebd-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":15406,"size_decoded":0,"mime_type":"image/x-icon","magic":"MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel","md5":"532f82ed03b58777ada242c83b9aa35e","sha1":"e64f6fc4d9f812146f0ba8fd94e338494472fc7a","sha256":"a11cc18bbbdbce3a95f332edd9b39820321915ede69abd0cc5695789b4562bbd","sha512":"33980d7d0537699b23e5fbcbfa93d95294bad8de66c7bb6898277531c2419de8d7683b67e0cdde8b9fca7f34257019042bbb1f81ca6f6c61cc418fb0dfafb959","ssdeep":"96:/lmWXeLotQHKq/VedE60U3oD1dYCPj7Si:YW69HRK0oqHJ","tlshash":"3362530a67f31d25c540923d9f62c3311322dc8d41268b0b57e49da37fcfb9b2c165a8","first_seen":"2026-01-16T14:26:06.978518Z","last_seen":"2026-03-19T00:03:44.267265Z","times_seen":29,"resource_available":false,"data":null}},"time_used":13,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":11,"receive":2,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}}]}