{"report_id":"417e0425-7702-496e-9d18-d8002027b39c","version":6,"status":"done","tags":[],"date":"2026-03-24T13:24:59Z","url":{"schema":"http","addr":"mydevice-ifind.us/icloud_2026_passcode4_login","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":0,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"title":"iCloud","dom":{"size":16818,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (3552)","md5":"1b6d070a35bb1f44a8f0bdcf82943a9e","sha1":"423c8ed66d1ceef1a5980c530d1afe79d0ab6a60","sha256":"007e7fa764437678459c206c11c48e0162433fa20b9534a48d0d3dd5936b650e","sha512":"330752d8f33d0c3e7583fb2817d0e3cac11a1b98df95f7ef63322e5e1105efcd6be7fcc05d78c8ec4af252e7628665f267539f43751d04c0ebb6ca221c909c21","ssdeep":"384:fRDLXhFcavKv5HdC+oqp29uX1hIiUJ1EYQjUvu:Fv+Loqp2UX1aiUJGjUvu","tlshash":"9172f9a241f086656643c1d6ff646a19bf12c10bdd5bd680b9ef0aa55fe3dc1c823e2c","dom_hash":"domhash5aa9da43c097fae57e30064a4a7cb295","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"mydevice-ifind.us/icloud_2026_passcode4_login","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":0,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-04-28T13:24:59Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"mydevice-ifind.us","ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"domain_registered":"2026-03-03","domain_rank":0,"first_seen":"2026-03-24T13:25:00.965536Z","last_seen":"2026-03-24T13:25:00.965536Z","alert_count":40,"request_count":20,"received_data":3049172,"sent_data":11654,"comment":"","tags":null,"fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]},{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]}]},{"fqdn":"www.icloud.com","ip":{"addr":"2.20.166.31","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"domain_registered":"1999-01-15","domain_rank":8674,"first_seen":"2012-07-01T18:35:11Z","last_seen":"2026-03-20T03:18:50.445061Z","alert_count":0,"request_count":4,"received_data":3484,"sent_data":1935,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/js/6.main.js","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"465ddf7acab86aa7e6b2865cac3e6ca8","sha1":"363e5b71ebea69776cc0bcf9d478309356173bec","sha256":"b9da11c070e62fe1b27482a11a53206799d7862966a1242cf5c1eceb33ed9ac4","sha512":"0b325d2e8a44d5ea828b7f54a882fd7ae81e0e6b39afdc25484678bc4105cade0627e803327b86499cbc261b69fa0bdf8b1a96ae308715d2339c5ca4e2c89c21","ssdeep":"1536:R6Zi1zXyeShUKduObhyu4Zc8rZsDw12SzjSr9wdU6NLpnNoWAZ0ZXG:nVIhIDbW","tlshash":"10c31acdf691f09243a761f9907f210ff37a685cb41ca460e245d5c9bcaa40e932bf69","size":123413,"data":"","first_seen":"2025-12-10T09:38:23.387213Z","last_seen":"2026-04-07T10:46:50.287084Z","times_seen":150,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/js/2.main.js","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"deae935f339e6bdde0c6a3fd46025baa","sha1":"20ee661a3d1af22cef68f815bad1ee6d280be018","sha256":"51ef64ff3f7262761ee8f92fcb93b652d08ef60d5b387b2a882852df6a58c72e","sha512":"7ab9fa46a6ce7b804d185db9937a85003e5db6d275500f80f127a78c45b84d276d3e06cecbfd042c60ea2e700be74dab6268fc65bb81bc4a326f987fa79387a2","ssdeep":"3072:ch31sIRhaEI84E/FACVvGC8ZdEXkbugnMyeN3M4jYxeD2av39Ss:w31sIwEIq/FACVv3CupYxQ2+NSs","tlshash":"b334e8957a51e59c91eb02dba83e4928f6243f08f938d810a4e5cdcd796cbc4753ba33","size":239651,"data":"","first_seen":"2025-12-10T09:38:23.393926Z","last_seen":"2026-04-07T10:46:50.299409Z","times_seen":151,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/js/custom.js","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":false,"md5":"5ef77fa811e395b547cf43803aa4a9ce","sha1":"964a469f9a8c96c21df7b1fa4a6e2905e426eae2","sha256":"d09a6671521d253bf569702b8c3f88e79e8d96e1b98f8dba71fb4532763e1279","sha512":"3738ca0daed9df295e09499f7677d3cfe9d53bf919706137c98663dea70d7d114f31766b80524063fdd4f4f9173e506740217e2d3d2e0ce38a3955b436de5441","ssdeep":"96:s8cXOgqHjiLcDD+3/Lcj0eCZUyQ1NMmvpec7JE4v:s8ngwjiLGiPAAU31Ndv0cz","tlshash":"c8c1621922220831a57313fdbbe24245fe16487765c0a2a43cacce481fb1a5557fbfee","size":5698,"data":"","first_seen":"2026-03-24T13:12:06.294689Z","last_seen":"2026-03-24T13:35:56.926283Z","times_seen":49,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"c8772713ed0a82478162f9b6ba365830","sha1":"9d9568a932c31e4fe7fda07d369cd989c04d7a5c","sha256":"418b7bff616bdb4779e95432ad2597b16020c6891e55824e7564f8dac9673feb","sha512":"5895840140b72cedf9d05acd8d4e071053e57e7b7e78619ca9b92bdb2afe8a20ff77c48ba6e63aa33fae1555764979c6a15e34ea63ac076f2d15c255496c8d83","ssdeep":"","tlshash":"2fe06820d31c621892b741bf373d15d9185dca5f302044c5fd0b48b01c55c1166b4ef9","size":385,"data":"","first_seen":"2026-01-03T23:26:52.023264Z","last_seen":"2026-04-07T10:46:50.307494Z","times_seen":60,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null},"http":[{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/fonts/SF-Pro-Display/v3/sf-pro-display_semibold.woff2","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:38.987Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.icloud-id-device.us","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 22:08:47 GMT","end":"Fri, 19 Jun 2026 22:08:46 GMT"},"fingerprint":{"sha1":"25:8A:5A:34:E6:A7:DD:65:B1:51:E2:41:59:14:9B:87:59:36:96:F9","sha256":"E2:21:0B:91:0A:55:B8:F8:90:D9:18:52:37:C9:1B:F7:2E:C3:8A:32:64:40:0E:6D:CA:3D:6A:3C:A9:54:BF:36"}}},"request":{"raw":"GET /icloud_2026_passcode4_login/assets/fonts/SF-Pro-Display/v3/sf-pro-display_semibold.woff2 HTTP/1.1\r\nHost: mydevice-ifind.us\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://mydevice-ifind.us/icloud_2026_passcode4_login/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=23ab93b70d9667006c71936ad635c50a\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 28 Feb 2026 23:41:46 GMT\r\naccept-ranges: bytes\r\ncontent-length: 129484\r\ncontent-type: font/woff2\r\ndate: Tue, 24 Mar 2026 13:24:39 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":129484,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 129484, version 1.0","md5":"5071d158eb5ba0431b8922015ed930c6","sha1":"46a034ed9ff3728e11dc64a0c9940d552daf6083","sha256":"93c70675bf7a740fb2b357e085c31de4e1adcf2b6a636135aad9cf1d65d93b53","sha512":"6018008b75be892b1fc4609ca91b70357a756e93832b9327ce30a78c091fbca3bc43b14eb5555befc1268098e2e3641a59bb89eae61a82e2de149b4a833b2eab","ssdeep":"3072:GG0TPZl6kKpGuhPvj1xO1V7s7DHpMjbGnFRsLEekloxzlxlJy5yKat:IPZwGkvj7p7GbGnFRs4boxzPl5t","tlshash":"6cc312deb524a70da96e44ba508b47a30ff54212d2fe81b67f019cd37b12de3904e762","first_seen":"2024-10-26T16:56:26.218198Z","last_seen":"2026-04-12T23:16:07.059484Z","times_seen":1958,"resource_available":false,"data":null}},"time_used":907,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":605,"receive":302,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/js/6.main.js","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:38.990Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.icloud-id-device.us","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 22:08:47 GMT","end":"Fri, 19 Jun 2026 22:08:46 GMT"},"fingerprint":{"sha1":"25:8A:5A:34:E6:A7:DD:65:B1:51:E2:41:59:14:9B:87:59:36:96:F9","sha256":"E2:21:0B:91:0A:55:B8:F8:90:D9:18:52:37:C9:1B:F7:2E:C3:8A:32:64:40:0E:6D:CA:3D:6A:3C:A9:54:BF:36"}}},"request":{"raw":"GET /icloud_2026_passcode4_login/assets/js/6.main.js HTTP/1.1\r\nHost: mydevice-ifind.us\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mydevice-ifind.us/icloud_2026_passcode4_login/\r\nCookie: PHPSESSID=23ab93b70d9667006c71936ad635c50a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 28 Feb 2026 23:41:46 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-type: text/javascript\r\ndate: Tue, 24 Mar 2026 13:24:39 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":123413,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (64325)","md5":"465ddf7acab86aa7e6b2865cac3e6ca8","sha1":"363e5b71ebea69776cc0bcf9d478309356173bec","sha256":"b9da11c070e62fe1b27482a11a53206799d7862966a1242cf5c1eceb33ed9ac4","sha512":"0b325d2e8a44d5ea828b7f54a882fd7ae81e0e6b39afdc25484678bc4105cade0627e803327b86499cbc261b69fa0bdf8b1a96ae308715d2339c5ca4e2c89c21","ssdeep":"1536:R6Zi1zXyeShUKduObhyu4Zc8rZsDw12SzjSr9wdU6NLpnNoWAZ0ZXG:nVIhIDbW","tlshash":"10c31acdf691f09243a761f9907f210ff37a685cb41ca460e245d5c9bcaa40e932bf69","first_seen":"2025-12-10T09:38:23.387213Z","last_seen":"2026-04-07T10:46:50.287084Z","times_seen":150,"resource_available":true,"data":null}},"time_used":911,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":911,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/css/2.main.css","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:38.991Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.icloud-id-device.us","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 22:08:47 GMT","end":"Fri, 19 Jun 2026 22:08:46 GMT"},"fingerprint":{"sha1":"25:8A:5A:34:E6:A7:DD:65:B1:51:E2:41:59:14:9B:87:59:36:96:F9","sha256":"E2:21:0B:91:0A:55:B8:F8:90:D9:18:52:37:C9:1B:F7:2E:C3:8A:32:64:40:0E:6D:CA:3D:6A:3C:A9:54:BF:36"}}},"request":{"raw":"GET /icloud_2026_passcode4_login/assets/css/2.main.css HTTP/1.1\r\nHost: mydevice-ifind.us\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mydevice-ifind.us/icloud_2026_passcode4_login/\r\nCookie: PHPSESSID=23ab93b70d9667006c71936ad635c50a\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 28 Feb 2026 23:41:44 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-type: text/css\r\ndate: Tue, 24 Mar 2026 13:24:39 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":304690,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"f16a6c6faf85bacaa38fde2fe856e86e","sha1":"7adb28acaab659d9b82ed8fa71f31f3aac64dc82","sha256":"904dc16b71f575d3de5db1f780937d3e69ce53fc9f4749ed685214b9a2879821","sha512":"44801bddc9a325e435114c404716aacdc15fe6b713c3aed45793b2a56ae5745579f667ffe58f91e291514e50946fb9c7557ff82b089375214373a457cb4b7b4d","ssdeep":"1536:4iZp/6VioC8DSJmCDdXdEHBHQnE6OK9DSJ8whC60GWc0VXfeHLbRhk1f4Mqkw:896OB","tlshash":"8c54985b5820332cbeb78d31724677606320e4369a6125feadd1e649cfcf69d238261f","first_seen":"2025-12-10T09:38:23.390502Z","last_seen":"2026-04-07T10:46:50.285182Z","times_seen":151,"resource_available":false,"data":null}},"time_used":908,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":908,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.icloud.com/system/icloud.com/2546Build34/wallpaper.svg","fqdn":"www.icloud.com","domain":"icloud.com","tld":"com"},"ip":{"addr":"2.20.166.31","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:38.995Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.icloud.com","organization":"Apple Inc."},"issuer":{"commonName":"Apple Public EV Server RSA CA 1 - G1","organization":"Apple Inc."},"validity":{"start":"Tue, 24 Feb 2026 17:38:51 GMT","end":"Tue, 01 Sep 2026 19:55:33 GMT"},"fingerprint":{"sha1":"67:39:61:38:92:80:DC:81:78:9F:CE:08:E0:BD:B8:AA:57:D1:48:A0","sha256":"83:D2:C4:63:9A:D5:17:44:D0:CB:3D:2A:02:E6:82:37:F7:FE:F6:83:27:4D:36:06:DF:B8:6C:B1:49:E9:E1:D6"}}},"request":{"raw":"GET /system/icloud.com/2546Build34/wallpaper.svg HTTP/1.1\r\nHost: www.icloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mydevice-ifind.us/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: AppleHttpServer/a3fb6e96e80a\r\ncontent-type: text/html\r\ncontent-length: 1205\r\netag: \"19ccc43e2d84b5\"\r\ncontent-language: en-us\r\ncontent-encoding: br\r\nvary: accept-encoding\r\ncontent-version: V1\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nexpect-ct: max-age=30, report-uri=\"https://feedbackws.icloud.com/reportRaw\"\r\nx-robots-tag: none, noarchive\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\naccess-control-allow-origin: *\r\ncontent-security-policy: base-uri 'none'; default-src 'none'; form-action 'none'; frame-ancestors 'none'\r\nx-apple-request-uuid: fe2df7c2-ef32-4090-b6ce-90d637aac768\r\naccess-control-expose-headers: X-Apple-Request-UUID,Via\r\ndate: Tue, 24 Mar 2026 13:24:39 GMT\r\nset-cookie: x-apple-group=false; path=/; secure; HttpOnly\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-12T22:55:59.864883Z","times_seen":13680880,"resource_available":true,"data":null}},"time_used":87,"timings":{"blocked":19,"dns":20,"connect":1,"send":0,"wait":35,"receive":0,"ssl":9},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"www.icloud.com/system/icloud.com/2546Build34/favicons/default-favicon-dark-32x32.png","fqdn":"www.icloud.com","domain":"icloud.com","tld":"com"},"ip":{"addr":"2.20.166.31","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:40.332Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.icloud.com","organization":"Apple Inc."},"issuer":{"commonName":"Apple Public EV Server RSA CA 1 - G1","organization":"Apple Inc."},"validity":{"start":"Tue, 24 Feb 2026 17:38:51 GMT","end":"Tue, 01 Sep 2026 19:55:33 GMT"},"fingerprint":{"sha1":"67:39:61:38:92:80:DC:81:78:9F:CE:08:E0:BD:B8:AA:57:D1:48:A0","sha256":"83:D2:C4:63:9A:D5:17:44:D0:CB:3D:2A:02:E6:82:37:F7:FE:F6:83:27:4D:36:06:DF:B8:6C:B1:49:E9:E1:D6"}}},"request":{"raw":"GET /system/icloud.com/2546Build34/favicons/default-favicon-dark-32x32.png HTTP/1.1\r\nHost: www.icloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mydevice-ifind.us/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: AppleHttpServer/a3fb6e96e80a\r\ncontent-type: text/html\r\ncontent-length: 1205\r\netag: \"19ccc43e2d84b5\"\r\ncontent-language: en-us\r\ncontent-encoding: br\r\nvary: accept-encoding\r\ncontent-version: V1\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nexpect-ct: max-age=30, report-uri=\"https://feedbackws.icloud.com/reportRaw\"\r\nx-robots-tag: none, noarchive\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\naccess-control-allow-origin: *\r\ncontent-security-policy: base-uri 'none'; default-src 'none'; form-action 'none'; frame-ancestors 'none'\r\nx-apple-request-uuid: e0f675c0-2830-4330-b822-a191534a9855\r\naccess-control-expose-headers: X-Apple-Request-UUID,Via\r\ndate: Tue, 24 Mar 2026 13:24:40 GMT\r\nset-cookie: x-apple-group=false; path=/; secure; HttpOnly\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-12T22:55:59.864883Z","times_seen":13680880,"resource_available":true,"data":null}},"time_used":44,"timings":{"blocked":9,"dns":0,"connect":0,"send":0,"wait":35,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/files/fpo@1x.mp4","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:40.365Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.icloud-id-device.us","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 22:08:47 GMT","end":"Fri, 19 Jun 2026 22:08:46 GMT"},"fingerprint":{"sha1":"25:8A:5A:34:E6:A7:DD:65:B1:51:E2:41:59:14:9B:87:59:36:96:F9","sha256":"E2:21:0B:91:0A:55:B8:F8:90:D9:18:52:37:C9:1B:F7:2E:C3:8A:32:64:40:0E:6D:CA:3D:6A:3C:A9:54:BF:36"}}},"request":{"raw":"GET /icloud_2026_passcode4_login/assets/files/fpo@1x.mp4 HTTP/1.1\r\nHost: mydevice-ifind.us\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=1867776-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mydevice-ifind.us/icloud_2026_passcode4_login/\r\nCookie: PHPSESSID=23ab93b70d9667006c71936ad635c50a\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\nlast-modified: Sat, 28 Feb 2026 23:41:46 GMT\r\naccept-ranges: bytes\r\ncontent-length: 20243\r\ncontent-range: bytes 1867776-1888018/1888019\r\ncontent-type: video/mp4\r\ndate: Tue, 24 Mar 2026 13:24:40 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":20243,"size_decoded":0,"mime_type":"video/mp4","magic":"data","md5":"7c5c1549e087c3776baab424f278bf45","sha1":"6e6ac1bb50fb61f25ba39411ff2b8a814995516c","sha256":"27d827f5ac5c193a10ffc344884d3bbb1712365d76ed0c9fdbdce17f78fea909","sha512":"48a4b93abba77e9545984e3e531ec5a02d88aa043c71806b61c26af8b9969d3bd0989e0f7df6b56ccea5212c01cd94776a098ab80c0cc9c21aa72ae37d9b3d5a","ssdeep":"384:WAOGwlewlJrl5jX//Ggwumo0puuiCrUR83xid4UZ4aFHc3:rO1lJBNPuOHuiyNStc3","tlshash":"6892b34c03d3be1ec8a146f5ccd483fe76bad9d64b8a43e2530d621a9d092991cf90f9","first_seen":"2025-04-27T15:19:40.378953Z","last_seen":"2026-04-10T20:55:59.725785Z","times_seen":143,"resource_available":false,"data":null}},"time_used":266,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":265,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/fonts/SF-Pro-Display/v3/sf-pro-display_regular.woff2","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:38.984Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.icloud-id-device.us","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 22:08:47 GMT","end":"Fri, 19 Jun 2026 22:08:46 GMT"},"fingerprint":{"sha1":"25:8A:5A:34:E6:A7:DD:65:B1:51:E2:41:59:14:9B:87:59:36:96:F9","sha256":"E2:21:0B:91:0A:55:B8:F8:90:D9:18:52:37:C9:1B:F7:2E:C3:8A:32:64:40:0E:6D:CA:3D:6A:3C:A9:54:BF:36"}}},"request":{"raw":"GET /icloud_2026_passcode4_login/assets/fonts/SF-Pro-Display/v3/sf-pro-display_regular.woff2 HTTP/1.1\r\nHost: mydevice-ifind.us\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://mydevice-ifind.us/icloud_2026_passcode4_login/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=23ab93b70d9667006c71936ad635c50a\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 28 Feb 2026 23:41:46 GMT\r\naccept-ranges: bytes\r\ncontent-length: 117056\r\ncontent-type: font/woff2\r\ndate: Tue, 24 Mar 2026 13:24:39 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":117056,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 117056, version 1.0","md5":"86fd2ee9d4d410f95a501f45d2a4defe","sha1":"02579d7791d9a8149f1c9734eb0c6e1d0384074f","sha256":"53aeca952cf8dfa4e64e54956d4a8b6fcf75a9b75a4c41b2fa24de75334761a4","sha512":"d5324901357a818cbcbff2fae20402acabd754b78e290c5494e48c127e889af8e8eb0a00b6ae40c51f8f03627f71b90f7551468a7e19937df1707ce211215ad8","ssdeep":"3072:fsVBqpO7mU0bsA+oLAbzDrN2vCEkTm23DY:fs2pO7mUcvjyh2annDY","tlshash":"0fb312904c8e5f29e5d523fd2c1e561002463ec731f7e826d9f9dda1c6a8a30dd3a963","first_seen":"2024-10-26T16:56:26.206143Z","last_seen":"2026-04-12T23:16:07.058597Z","times_seen":1545,"resource_available":false,"data":null}},"time_used":608,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":304,"receive":304,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/fonts/SF-Pro-Text/v3/sf-pro-text_regular.woff2","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:38.986Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.icloud-id-device.us","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 22:08:47 GMT","end":"Fri, 19 Jun 2026 22:08:46 GMT"},"fingerprint":{"sha1":"25:8A:5A:34:E6:A7:DD:65:B1:51:E2:41:59:14:9B:87:59:36:96:F9","sha256":"E2:21:0B:91:0A:55:B8:F8:90:D9:18:52:37:C9:1B:F7:2E:C3:8A:32:64:40:0E:6D:CA:3D:6A:3C:A9:54:BF:36"}}},"request":{"raw":"GET /icloud_2026_passcode4_login/assets/fonts/SF-Pro-Text/v3/sf-pro-text_regular.woff2 HTTP/1.1\r\nHost: mydevice-ifind.us\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://mydevice-ifind.us/icloud_2026_passcode4_login/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=23ab93b70d9667006c71936ad635c50a\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 28 Feb 2026 23:41:46 GMT\r\naccept-ranges: bytes\r\ncontent-length: 220536\r\ncontent-type: font/woff2\r\ndate: Tue, 24 Mar 2026 13:24:39 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":220536,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 220536, version 1.0","md5":"059d2edeb663a16de959975d5ed21db8","sha1":"3674a0e6fbc086cf109a1b192ef5016d328fdfa5","sha256":"3231b77ee2775dadbaa76de85f95763976aff1091f63a67fa553d727a6edb933","sha512":"fc26a8fb8b2ee58fe21fb45a1812f6ccccfc5f8ed55b4acd49657c9e4de33fbfe0171c01a7a8fd13fc1e4090cc5d003c760054029f76af6004a0dd3462112cec","ssdeep":"3072:2CVJbxBgG+v9LhLHCl1w6xw5WRGJWXyCk3sXEAPV9v8LMEXJOxH81AYRtCjbR2q:2CVJbcGuphjQ1w6NRb144/LvEJVNtQ2q","tlshash":"b6241215f394a434b28f61505f818fa87364fa8185f69fe0b37b45ffabc2a14351a1ca","first_seen":"2023-05-01T11:03:15Z","last_seen":"2026-04-12T23:16:07.071458Z","times_seen":3299,"resource_available":false,"data":null}},"time_used":760,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":605,"receive":155,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/images/5f2eb96708c817d4da8f26e75916a38f.png","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:39.005Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.icloud-id-device.us","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 22:08:47 GMT","end":"Fri, 19 Jun 2026 22:08:46 GMT"},"fingerprint":{"sha1":"25:8A:5A:34:E6:A7:DD:65:B1:51:E2:41:59:14:9B:87:59:36:96:F9","sha256":"E2:21:0B:91:0A:55:B8:F8:90:D9:18:52:37:C9:1B:F7:2E:C3:8A:32:64:40:0E:6D:CA:3D:6A:3C:A9:54:BF:36"}}},"request":{"raw":"GET /icloud_2026_passcode4_login/assets/images/5f2eb96708c817d4da8f26e75916a38f.png HTTP/1.1\r\nHost: mydevice-ifind.us\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mydevice-ifind.us/icloud_2026_passcode4_login/\r\nCookie: PHPSESSID=23ab93b70d9667006c71936ad635c50a\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 28 Feb 2026 23:41:46 GMT\r\naccept-ranges: bytes\r\ncontent-length: 63271\r\ncontent-type: image/png\r\ndate: Tue, 24 Mar 2026 13:24:39 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":63271,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 486 x 205, 8-bit/color RGBA, interlaced","md5":"fab1fb6903dd2d66a9cb1336ec57fe37","sha1":"71cb6d53e49bcf26f758920baaee7b8c4e4fd547","sha256":"47bc2d921cb6670eae9aa24616a7a830fff8c288dc813caba22d3529371625ea","sha512":"4c2e187f99db07a92d194710398301e2ec3e2dc1fa15b5bd083e92820b0b420ebe0a52cbc372ec6ddf25cee4bfd8b8e76094742d7eba9e6df13962ce1e2c8ae0","ssdeep":"1536:Mo7mdQlyBHYCidNcahiCP75Jfcy1+bSqt:m1HYCCiCP759j1Fqt","tlshash":"fd5301a022cb2315de5858849b50c9b0ecf52dcef4352fa86d5c1f7b3e8175ca1c9a6e","first_seen":"2026-02-01T11:31:53.508836Z","last_seen":"2026-04-07T10:46:50.295396Z","times_seen":59,"resource_available":false,"data":null}},"time_used":1049,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":904,"receive":145,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/images/7cb9ecdad2b384754de394732519f658.png","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:39.006Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.icloud-id-device.us","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 22:08:47 GMT","end":"Fri, 19 Jun 2026 22:08:46 GMT"},"fingerprint":{"sha1":"25:8A:5A:34:E6:A7:DD:65:B1:51:E2:41:59:14:9B:87:59:36:96:F9","sha256":"E2:21:0B:91:0A:55:B8:F8:90:D9:18:52:37:C9:1B:F7:2E:C3:8A:32:64:40:0E:6D:CA:3D:6A:3C:A9:54:BF:36"}}},"request":{"raw":"GET /icloud_2026_passcode4_login/assets/images/7cb9ecdad2b384754de394732519f658.png HTTP/1.1\r\nHost: mydevice-ifind.us\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mydevice-ifind.us/icloud_2026_passcode4_login/\r\nCookie: PHPSESSID=23ab93b70d9667006c71936ad635c50a\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 28 Feb 2026 23:41:46 GMT\r\naccept-ranges: bytes\r\ncontent-length: 213358\r\ncontent-type: image/png\r\ndate: Tue, 24 Mar 2026 13:24:39 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":213358,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 1324 x 950, 8-bit/color RGBA, non-interlaced","md5":"616fa4b7b4ced3958818770ee3b68953","sha1":"2b073c5f80e1850830e2275819d18bbe70bb08c8","sha256":"c49b9b2a18f9009bf2781a3884833ea9404e7359fe01b812dc45b317a77a1ff9","sha512":"8634c127c44c7ea76d07d3ffeee3a79fc2a9dd2d9d0c8eef0b3c6e91d1da5741241815c732681a29468083123310dae770faf0933dc50976012ae212dbd0be39","ssdeep":"6144:I4h6XA9Yv2dvjX8jdrq64EYcay5NsT20P:I4/Nxa/w20P","tlshash":"1f2412d64a659bc8a8477993b7b183856a30747db53921306f7ca7fe45b3443cca08f2","first_seen":"2024-05-10T11:41:28Z","last_seen":"2026-04-11T19:05:14.441695Z","times_seen":391,"resource_available":false,"data":null}},"time_used":1057,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":903,"receive":154,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/css/main.css","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:39.008Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.icloud-id-device.us","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 22:08:47 GMT","end":"Fri, 19 Jun 2026 22:08:46 GMT"},"fingerprint":{"sha1":"25:8A:5A:34:E6:A7:DD:65:B1:51:E2:41:59:14:9B:87:59:36:96:F9","sha256":"E2:21:0B:91:0A:55:B8:F8:90:D9:18:52:37:C9:1B:F7:2E:C3:8A:32:64:40:0E:6D:CA:3D:6A:3C:A9:54:BF:36"}}},"request":{"raw":"GET /icloud_2026_passcode4_login/assets/css/main.css HTTP/1.1\r\nHost: mydevice-ifind.us\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mydevice-ifind.us/icloud_2026_passcode4_login/\r\nCookie: PHPSESSID=23ab93b70d9667006c71936ad635c50a\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 28 Feb 2026 23:41:46 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-type: text/css\r\ndate: Tue, 24 Mar 2026 13:24:39 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":761651,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"6d5c3c6d82fa74763101376d2249ad68","sha1":"1c070429f6f5acdf21df92d9c61aa05e1c2994f6","sha256":"08984336ec5ea421cdffeafd115c1b80902a0883dce8690166693d6a39eb6388","sha512":"b8d7eb60a0b0cc36bd6a7710ffd19d99235de2544c2cb81619a346a48ee2ac8155c8404a29a18e4a763fe3ae63a5bea8770676002c0d4ee35d4d0b4ad5800e0e","ssdeep":"1536:xH4ji8pr6MymbvoCR6YD/arjujiGi3raG85PedWTsLpUyTkjg62opiXpw6UzFWq3:xtjWG85PevLpUyT4g6PBWV1eD","tlshash":"3cf4a7bd14103339bdb7893ad15066249b35f1e2eb235efea89563c44bcf1a630d261b","first_seen":"2025-12-10T09:38:23.385794Z","last_seen":"2026-04-07T10:46:50.288889Z","times_seen":149,"resource_available":false,"data":null}},"time_used":902,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":902,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.icloud.com/system/icloud.com/2546Build34/favicons/default-favicon-dark-180x180.png","fqdn":"www.icloud.com","domain":"icloud.com","tld":"com"},"ip":{"addr":"2.20.166.31","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:40.330Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.icloud.com","organization":"Apple Inc."},"issuer":{"commonName":"Apple Public EV Server RSA CA 1 - G1","organization":"Apple Inc."},"validity":{"start":"Tue, 24 Feb 2026 17:38:51 GMT","end":"Tue, 01 Sep 2026 19:55:33 GMT"},"fingerprint":{"sha1":"67:39:61:38:92:80:DC:81:78:9F:CE:08:E0:BD:B8:AA:57:D1:48:A0","sha256":"83:D2:C4:63:9A:D5:17:44:D0:CB:3D:2A:02:E6:82:37:F7:FE:F6:83:27:4D:36:06:DF:B8:6C:B1:49:E9:E1:D6"}}},"request":{"raw":"GET /system/icloud.com/2546Build34/favicons/default-favicon-dark-180x180.png HTTP/1.1\r\nHost: www.icloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mydevice-ifind.us/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: AppleHttpServer/a3fb6e96e80a\r\ncontent-type: text/html\r\ncontent-length: 1205\r\netag: \"19ccc43e2d84b5\"\r\ncontent-language: en-us\r\ncontent-encoding: br\r\nvary: accept-encoding\r\ncontent-version: V1\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nexpect-ct: max-age=30, report-uri=\"https://feedbackws.icloud.com/reportRaw\"\r\nx-robots-tag: none, noarchive\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\naccess-control-allow-origin: *\r\ncontent-security-policy: base-uri 'none'; default-src 'none'; form-action 'none'; frame-ancestors 'none'\r\nx-apple-request-uuid: 63243689-174e-4ef4-bc92-1a1841db8353\r\naccess-control-expose-headers: X-Apple-Request-UUID,Via\r\ndate: Tue, 24 Mar 2026 13:24:40 GMT\r\nset-cookie: x-apple-group=false; path=/; secure; HttpOnly\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-12T22:55:59.864883Z","times_seen":13680880,"resource_available":true,"data":null}},"time_used":47,"timings":{"blocked":11,"dns":0,"connect":0,"send":0,"wait":35,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/files/fpo@1x.mp4","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:40.661Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.icloud-id-device.us","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 22:08:47 GMT","end":"Fri, 19 Jun 2026 22:08:46 GMT"},"fingerprint":{"sha1":"25:8A:5A:34:E6:A7:DD:65:B1:51:E2:41:59:14:9B:87:59:36:96:F9","sha256":"E2:21:0B:91:0A:55:B8:F8:90:D9:18:52:37:C9:1B:F7:2E:C3:8A:32:64:40:0E:6D:CA:3D:6A:3C:A9:54:BF:36"}}},"request":{"raw":"GET /icloud_2026_passcode4_login/assets/files/fpo@1x.mp4 HTTP/1.1\r\nHost: mydevice-ifind.us\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=425984-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mydevice-ifind.us/icloud_2026_passcode4_login/\r\nCookie: PHPSESSID=23ab93b70d9667006c71936ad635c50a\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\nlast-modified: Sat, 28 Feb 2026 23:41:46 GMT\r\naccept-ranges: bytes\r\ncontent-length: 1462035\r\ncontent-range: bytes 425984-1888018/1888019\r\ncontent-type: video/mp4\r\ndate: Tue, 24 Mar 2026 13:24:40 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":65536,"size_decoded":0,"mime_type":"video/mp4","magic":"data","md5":"1be247af4e207c53139fb230605971d7","sha1":"f0c19184c5006a731f41004147af087ee8d325f4","sha256":"de27f2326ca1d7cbe99290e878eabe5f1bbd3f21ad2ab83081c2f72f8735771f","sha512":"3e1a2f93039d9c4f9d503e967994eae94969cc3742d0a1ab18ef02b7ba9c12cf6a59954a9dfd4aaabaa6e08c3c690992236b1407968ca72c9211f1783a90af6b","ssdeep":"1536:9xlkekOIlOpsu0Uf7gSxvEn05bb1INMw3qobXN3kgp+:9xlktUsdgvE0RbSNxr6gQ","tlshash":"cc5312a78683727d6bd5aa5a351320e67c38fc867c4f16e3589d7041ec029bb7f0d019","first_seen":"2026-03-24T13:25:02.687332Z","last_seen":"2026-03-24T13:25:02.687332Z","times_seen":1,"resource_available":false,"data":null}},"time_used":158,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":155,"receive":3,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/fonts/SF-Pro-Text/v3/sf-pro-text_semibold.woff2","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"font","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:38.989Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.icloud-id-device.us","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 22:08:47 GMT","end":"Fri, 19 Jun 2026 22:08:46 GMT"},"fingerprint":{"sha1":"25:8A:5A:34:E6:A7:DD:65:B1:51:E2:41:59:14:9B:87:59:36:96:F9","sha256":"E2:21:0B:91:0A:55:B8:F8:90:D9:18:52:37:C9:1B:F7:2E:C3:8A:32:64:40:0E:6D:CA:3D:6A:3C:A9:54:BF:36"}}},"request":{"raw":"GET /icloud_2026_passcode4_login/assets/fonts/SF-Pro-Text/v3/sf-pro-text_semibold.woff2 HTTP/1.1\r\nHost: mydevice-ifind.us\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nReferer: https://mydevice-ifind.us/icloud_2026_passcode4_login/\r\nDNT: 1\r\nConnection: keep-alive\r\nCookie: PHPSESSID=23ab93b70d9667006c71936ad635c50a\r\nSec-Fetch-Dest: font\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 28 Feb 2026 23:41:46 GMT\r\naccept-ranges: bytes\r\ncontent-length: 234260\r\ncontent-type: font/woff2\r\ndate: Tue, 24 Mar 2026 13:24:39 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":234260,"size_decoded":0,"mime_type":"font/woff2","magic":"Web Open Font Format (Version 2), TrueType, length 234260, version 1.0","md5":"b37ecd8895b373064f6e8630804f08aa","sha1":"f2bfb2774a6294a641973b2920a9b2d7b2d863c9","sha256":"7b0041c48ba67087fcf5f6e8ec8d24e95db06cae9bf78c45b4542984bcb7208c","sha512":"5732de86b7022db347749e010e64a6b5a771cdd4d81d03f20593268028455cb2ea2b4047566cc742a00106584f7584bd7d5a79bad7fab09292c8dea4493542b3","ssdeep":"6144:e1+WZBHan60UAryv9uqI7l/i2c43oOBODy9HgW69FOdns:YRZdAr6PI7Zcm7Omlr69FOs","tlshash":"6234231774803114faaa7505df798a9a45835dfdccd0ca7cc8b6203cbe6b6d9e486c2e","first_seen":"2023-05-01T11:03:15Z","last_seen":"2026-04-12T23:16:07.067012Z","times_seen":2829,"resource_available":false,"data":null}},"time_used":912,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":604,"receive":308,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/js/2.main.js","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:38.993Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.icloud-id-device.us","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 22:08:47 GMT","end":"Fri, 19 Jun 2026 22:08:46 GMT"},"fingerprint":{"sha1":"25:8A:5A:34:E6:A7:DD:65:B1:51:E2:41:59:14:9B:87:59:36:96:F9","sha256":"E2:21:0B:91:0A:55:B8:F8:90:D9:18:52:37:C9:1B:F7:2E:C3:8A:32:64:40:0E:6D:CA:3D:6A:3C:A9:54:BF:36"}}},"request":{"raw":"GET /icloud_2026_passcode4_login/assets/js/2.main.js HTTP/1.1\r\nHost: mydevice-ifind.us\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mydevice-ifind.us/icloud_2026_passcode4_login/\r\nCookie: PHPSESSID=23ab93b70d9667006c71936ad635c50a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 28 Feb 2026 23:41:46 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-type: text/javascript\r\ndate: Tue, 24 Mar 2026 13:24:39 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":239651,"size_decoded":0,"mime_type":"text/javascript","magic":"JavaScript source, ASCII text, with very long lines (64325)","md5":"deae935f339e6bdde0c6a3fd46025baa","sha1":"20ee661a3d1af22cef68f815bad1ee6d280be018","sha256":"51ef64ff3f7262761ee8f92fcb93b652d08ef60d5b387b2a882852df6a58c72e","sha512":"7ab9fa46a6ce7b804d185db9937a85003e5db6d275500f80f127a78c45b84d276d3e06cecbfd042c60ea2e700be74dab6268fc65bb81bc4a326f987fa79387a2","ssdeep":"3072:ch31sIRhaEI84E/FACVvGC8ZdEXkbugnMyeN3M4jYxeD2av39Ss:w31sIwEIq/FACVv3CupYxQ2+NSs","tlshash":"b334e8957a51e59c91eb02dba83e4928f6243f08f938d810a4e5cdcd796cbc4753ba33","first_seen":"2025-12-10T09:38:23.393926Z","last_seen":"2026-04-07T10:46:50.299409Z","times_seen":151,"resource_available":true,"data":null}},"time_used":908,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":908,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/fonts/fonts?families=SF+Pro,v3","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:38.982Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.icloud-id-device.us","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 22:08:47 GMT","end":"Fri, 19 Jun 2026 22:08:46 GMT"},"fingerprint":{"sha1":"25:8A:5A:34:E6:A7:DD:65:B1:51:E2:41:59:14:9B:87:59:36:96:F9","sha256":"E2:21:0B:91:0A:55:B8:F8:90:D9:18:52:37:C9:1B:F7:2E:C3:8A:32:64:40:0E:6D:CA:3D:6A:3C:A9:54:BF:36"}}},"request":{"raw":"GET /icloud_2026_passcode4_login/assets/fonts/fonts?families=SF+Pro,v3 HTTP/1.1\r\nHost: mydevice-ifind.us\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mydevice-ifind.us/icloud_2026_passcode4_login/\r\nCookie: PHPSESSID=23ab93b70d9667006c71936ad635c50a\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 28 Feb 2026 23:41:46 GMT\r\naccept-ranges: bytes\r\ncontent-length: 16114\r\ndate: Tue, 24 Mar 2026 13:24:39 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":16114,"size_decoded":0,"mime_type":"text/css","magic":"Unicode text, UTF-8 text, with CRLF, LF line terminators","md5":"feb1c517c4b2e4d08c17c9108b64b40d","sha1":"5af79d5bec0852dd295760f0729b5f30981ecd0f","sha256":"f1af8af0b0c1be4a729c73d19762ca152599406989c955b43b09e066ab6b210a","sha512":"b2205c500c061c807bd4dbf327624cf2749c4523df9e6d2a51df013d7c3787718c9949ab3634ab1c1c992317b85cf4e9d483542a8496bdeeadacb338b2a7ebcb","ssdeep":"384:fPNhtXtjxKkmS33JSA4Zpk0XSJ+SqCOqmsWEm0YqNnvPcqUB9Vu9rog/8quq1Vh:fPNhtXtjxKkmS33JSA4HnXSgCOqmsWEL","tlshash":"6f72ba31511cfb36c7700962a3ea7f0b17057160562a6a9b3971b908bc57ceda290ffe","first_seen":"2026-01-03T23:26:52.009216Z","last_seen":"2026-04-07T10:46:50.29326Z","times_seen":99,"resource_available":false,"data":null}},"time_used":305,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":304,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/css/6.main.css","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:38.990Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.icloud-id-device.us","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 22:08:47 GMT","end":"Fri, 19 Jun 2026 22:08:46 GMT"},"fingerprint":{"sha1":"25:8A:5A:34:E6:A7:DD:65:B1:51:E2:41:59:14:9B:87:59:36:96:F9","sha256":"E2:21:0B:91:0A:55:B8:F8:90:D9:18:52:37:C9:1B:F7:2E:C3:8A:32:64:40:0E:6D:CA:3D:6A:3C:A9:54:BF:36"}}},"request":{"raw":"GET /icloud_2026_passcode4_login/assets/css/6.main.css HTTP/1.1\r\nHost: mydevice-ifind.us\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mydevice-ifind.us/icloud_2026_passcode4_login/\r\nCookie: PHPSESSID=23ab93b70d9667006c71936ad635c50a\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 28 Feb 2026 23:41:44 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 1026\r\ncontent-type: text/css\r\ndate: Tue, 24 Mar 2026 13:24:39 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":5663,"size_decoded":0,"mime_type":"text/css","magic":"ASCII text, with very long lines (5663), with no line terminators","md5":"f48af9d821b561e02ee6da0561adb9b8","sha1":"5968df082caef978398ceb9ae8cac4add6da4f51","sha256":"98d0f67d1555bef9535afe657207f47c397068a51fc02e71e32d0bd69e9bb4d0","sha512":"6a9ca31176ce64d47d0e95cb4c815781974fbd8608fda7e2bf9ecc6dce06daa5f88872c6b6f21b2bccd7c7d814d5bfbe1fa6f0a33239bb21efa71908ec87fec3","ssdeep":"48:D5X5mHEvv2kh/3gmvb2cg96Sa8VTno2G++Zu2OiYjbDjBmpP:D5X5+SuD+SjbDjS","tlshash":"00c175297cd17300fdfa496c70a13ae1b502b51d910e49fdca87b305df8a59f0a69a1f","first_seen":"2025-04-19T17:11:49.895713Z","last_seen":"2026-04-11T19:05:14.45572Z","times_seen":413,"resource_available":false,"data":null}},"time_used":912,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":911,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"www.icloud.com/system/icloud.com/2546Build34/wallpaper_dark.svg","fqdn":"www.icloud.com","domain":"icloud.com","tld":"com"},"ip":{"addr":"2.20.166.31","port":443,"asn":16625,"as":"AKAMAI-AS","country":"Norway","country_code":"NO"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:39.002Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"www.icloud.com","organization":"Apple Inc."},"issuer":{"commonName":"Apple Public EV Server RSA CA 1 - G1","organization":"Apple Inc."},"validity":{"start":"Tue, 24 Feb 2026 17:38:51 GMT","end":"Tue, 01 Sep 2026 19:55:33 GMT"},"fingerprint":{"sha1":"67:39:61:38:92:80:DC:81:78:9F:CE:08:E0:BD:B8:AA:57:D1:48:A0","sha256":"83:D2:C4:63:9A:D5:17:44:D0:CB:3D:2A:02:E6:82:37:F7:FE:F6:83:27:4D:36:06:DF:B8:6C:B1:49:E9:E1:D6"}}},"request":{"raw":"GET /system/icloud.com/2546Build34/wallpaper_dark.svg HTTP/1.1\r\nHost: www.icloud.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mydevice-ifind.us/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 404 Not Found\r\nserver: AppleHttpServer/a3fb6e96e80a\r\ncontent-type: text/html\r\ncontent-length: 1205\r\netag: \"19ccc43e2d84b5\"\r\ncontent-language: en-us\r\ncontent-encoding: br\r\nvary: accept-encoding\r\ncontent-version: V1\r\nx-frame-options: SAMEORIGIN\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nexpect-ct: max-age=30, report-uri=\"https://feedbackws.icloud.com/reportRaw\"\r\nx-robots-tag: none, noarchive\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\naccess-control-allow-origin: *\r\ncontent-security-policy: base-uri 'none'; default-src 'none'; form-action 'none'; frame-ancestors 'none'\r\nx-apple-request-uuid: f39164be-c7d4-4fb9-acc0-85d88383c292\r\naccess-control-expose-headers: X-Apple-Request-UUID,Via\r\ndate: Tue, 24 Mar 2026 13:24:39 GMT\r\nset-cookie: x-apple-group=false; path=/; secure; HttpOnly\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-12T22:55:59.864883Z","times_seen":13680880,"resource_available":true,"data":null}},"time_used":139,"timings":{"blocked":12,"dns":19,"connect":3,"send":0,"wait":96,"receive":0,"ssl":7},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/images/0e4e931e06552e87f2fdff2832e11bb9.png","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"imageset","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:39.003Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.icloud-id-device.us","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 22:08:47 GMT","end":"Fri, 19 Jun 2026 22:08:46 GMT"},"fingerprint":{"sha1":"25:8A:5A:34:E6:A7:DD:65:B1:51:E2:41:59:14:9B:87:59:36:96:F9","sha256":"E2:21:0B:91:0A:55:B8:F8:90:D9:18:52:37:C9:1B:F7:2E:C3:8A:32:64:40:0E:6D:CA:3D:6A:3C:A9:54:BF:36"}}},"request":{"raw":"GET /icloud_2026_passcode4_login/assets/images/0e4e931e06552e87f2fdff2832e11bb9.png HTTP/1.1\r\nHost: mydevice-ifind.us\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mydevice-ifind.us/icloud_2026_passcode4_login/\r\nCookie: PHPSESSID=23ab93b70d9667006c71936ad635c50a\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 28 Feb 2026 23:41:46 GMT\r\naccept-ranges: bytes\r\ncontent-length: 48202\r\ncontent-type: image/png\r\ndate: Tue, 24 Mar 2026 13:24:39 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":48202,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 430 x 388, 8-bit/color RGBA, non-interlaced","md5":"c214d8bfb5062d87cb9e36e4c26109d0","sha1":"68f3ff415a4adcee1461704f40fe07601b57a044","sha256":"771c00dc5a82559fd436c0ed9ba211b98021327c5e42f5b47bbf5fe5520057ff","sha512":"89dcf39c000814b951e32e764019d33f2a359d58b1f63b5267f5fde77973ad534dbe77402cfb1a7182eea950fb4b7390e52e7083254f2c4a072d83bb893f6478","ssdeep":"768:UKqrpw3bBpZrd5CmemUfHipma6uP8TIrgz5K4ZThxUts6QnSqLwXs97ZesZ:Uly/LEdfCKuePz5KUThxosbnSq8XAZeq","tlshash":"1123be1006c6f680d7b964f6d347a0f8bf767044f922599ea0b9a53b7e070be5c4acc9","first_seen":"2024-10-08T01:24:26Z","last_seen":"2026-04-11T19:05:14.459108Z","times_seen":258,"resource_available":false,"data":null}},"time_used":1049,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":905,"receive":144,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/js/custom.js","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:39.009Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.icloud-id-device.us","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 22:08:47 GMT","end":"Fri, 19 Jun 2026 22:08:46 GMT"},"fingerprint":{"sha1":"25:8A:5A:34:E6:A7:DD:65:B1:51:E2:41:59:14:9B:87:59:36:96:F9","sha256":"E2:21:0B:91:0A:55:B8:F8:90:D9:18:52:37:C9:1B:F7:2E:C3:8A:32:64:40:0E:6D:CA:3D:6A:3C:A9:54:BF:36"}}},"request":{"raw":"GET /icloud_2026_passcode4_login/assets/js/custom.js HTTP/1.1\r\nHost: mydevice-ifind.us\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mydevice-ifind.us/icloud_2026_passcode4_login/\r\nCookie: PHPSESSID=23ab93b70d9667006c71936ad635c50a\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nlast-modified: Sat, 28 Feb 2026 23:41:46 GMT\r\naccept-ranges: bytes\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 1900\r\ncontent-type: text/javascript\r\ndate: Tue, 24 Mar 2026 13:24:39 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":5698,"size_decoded":0,"mime_type":"text/javascript","magic":"ASCII text, with CRLF line terminators","md5":"5ef77fa811e395b547cf43803aa4a9ce","sha1":"964a469f9a8c96c21df7b1fa4a6e2905e426eae2","sha256":"d09a6671521d253bf569702b8c3f88e79e8d96e1b98f8dba71fb4532763e1279","sha512":"3738ca0daed9df295e09499f7677d3cfe9d53bf919706137c98663dea70d7d114f31766b80524063fdd4f4f9173e506740217e2d3d2e0ce38a3955b436de5441","ssdeep":"96:s8cXOgqHjiLcDD+3/Lcj0eCZUyQ1NMmvpec7JE4v:s8ngwjiLGiPAAU31Ndv0cz","tlshash":"c8c1621922220831a57313fdbbe24245fe16487765c0a2a43cacce481fb1a5557fbfee","first_seen":"2026-03-24T13:12:06.294689Z","last_seen":"2026-03-24T13:35:56.926283Z","times_seen":49,"resource_available":true,"data":null}},"time_used":1055,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":901,"receive":154,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/files/fpo@1x.mp4","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:40.150Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.icloud-id-device.us","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 22:08:47 GMT","end":"Fri, 19 Jun 2026 22:08:46 GMT"},"fingerprint":{"sha1":"25:8A:5A:34:E6:A7:DD:65:B1:51:E2:41:59:14:9B:87:59:36:96:F9","sha256":"E2:21:0B:91:0A:55:B8:F8:90:D9:18:52:37:C9:1B:F7:2E:C3:8A:32:64:40:0E:6D:CA:3D:6A:3C:A9:54:BF:36"}}},"request":{"raw":"GET /icloud_2026_passcode4_login/assets/files/fpo@1x.mp4 HTTP/1.1\r\nHost: mydevice-ifind.us\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mydevice-ifind.us/icloud_2026_passcode4_login/\r\nCookie: PHPSESSID=23ab93b70d9667006c71936ad635c50a\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-12T22:55:59.864883Z","times_seen":13680880,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/assets/files/fpo@1x.mp4","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"media","requested_by":"https://mydevice-ifind.us/icloud_2026_passcode4_login/","date":"2026-03-24T13:24:40.165Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.icloud-id-device.us","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 22:08:47 GMT","end":"Fri, 19 Jun 2026 22:08:46 GMT"},"fingerprint":{"sha1":"25:8A:5A:34:E6:A7:DD:65:B1:51:E2:41:59:14:9B:87:59:36:96:F9","sha256":"E2:21:0B:91:0A:55:B8:F8:90:D9:18:52:37:C9:1B:F7:2E:C3:8A:32:64:40:0E:6D:CA:3D:6A:3C:A9:54:BF:36"}}},"request":{"raw":"GET /icloud_2026_passcode4_login/assets/files/fpo@1x.mp4 HTTP/1.1\r\nHost: mydevice-ifind.us\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.5\r\nRange: bytes=0-\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://mydevice-ifind.us/icloud_2026_passcode4_login/\r\nCookie: PHPSESSID=23ab93b70d9667006c71936ad635c50a\r\nSec-Fetch-Dest: video\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nAccept-Encoding: identity\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 206 Partial Content\r\nlast-modified: Sat, 28 Feb 2026 23:41:46 GMT\r\naccept-ranges: bytes\r\ncontent-length: 1888019\r\ncontent-range: bytes 0-1888018/1888019\r\ncontent-type: video/mp4\r\ndate: Tue, 24 Mar 2026 13:24:40 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"206","status_text":"Partial Content","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":442125,"size_decoded":0,"mime_type":"video/mp4","magic":"ISO Media, MP4 v2 [ISO 14496-14]","md5":"a942c6908b3d534ec33edc6c462a49db","sha1":"02e74ba200fd744dd93583aadb39b00388b06e9c","sha256":"f887b368e5f901e0418eb240987edaecefbbdd462fc3f6b0ed8be86a4462fb04","sha512":"d86680264dd70ee0e05a8bfd8ba303a5d4f108bfd44e94d9e20eeb5c5416b23d71808b2c3e7bd9fe6438bc3636635aa6ce7804e3a5509124b798e6ef3623d50c","ssdeep":"6144:oTj84csF1FRD4OqJEGEcOKmyoSlyg/PB+9hS97WE1DZXbXVuQOCJMhbvpogc6:oTQdslRD49oJpyolCB+9kr1DZc9hbI6","tlshash":"279423bb2184346131cbcec1e2ca4563ef65a98add126b7d382198c6ec52f117b3df12","first_seen":"2026-03-24T13:25:02.707044Z","last_seen":"2026-03-24T13:25:02.707044Z","times_seen":1,"resource_available":false,"data":null}},"time_used":193,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":170,"receive":23,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-24T13:24:37.749Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.icloud-id-device.us","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 22:08:47 GMT","end":"Fri, 19 Jun 2026 22:08:46 GMT"},"fingerprint":{"sha1":"25:8A:5A:34:E6:A7:DD:65:B1:51:E2:41:59:14:9B:87:59:36:96:F9","sha256":"E2:21:0B:91:0A:55:B8:F8:90:D9:18:52:37:C9:1B:F7:2E:C3:8A:32:64:40:0E:6D:CA:3D:6A:3C:A9:54:BF:36"}}},"request":{"raw":"GET /icloud_2026_passcode4_login HTTP/1.1\r\nHost: mydevice-ifind.us\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\nlocation: https://mydevice-ifind.us/icloud_2026_passcode4_login/\r\ncontent-length: 302\r\ncontent-type: text/html; charset=iso-8859-1\r\ndate: Tue, 24 Mar 2026 13:24:38 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":16874,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-04-12T22:55:59.864883Z","times_seen":13680880,"resource_available":true,"data":null}},"time_used":1162,"timings":{"blocked":504,"dns":196,"connect":151,"send":0,"wait":153,"receive":0,"ssl":155},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"mydevice-ifind.us/icloud_2026_passcode4_login/","fqdn":"mydevice-ifind.us","domain":"mydevice-ifind.us","tld":"us"},"ip":{"addr":"199.79.63.68","port":443,"asn":46606,"as":"UNIFIEDLAYER-AS-1","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-03-24T13:24:38.428Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_256_GCM_SHA384","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.icloud-id-device.us","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Sat, 21 Mar 2026 22:08:47 GMT","end":"Fri, 19 Jun 2026 22:08:46 GMT"},"fingerprint":{"sha1":"25:8A:5A:34:E6:A7:DD:65:B1:51:E2:41:59:14:9B:87:59:36:96:F9","sha256":"E2:21:0B:91:0A:55:B8:F8:90:D9:18:52:37:C9:1B:F7:2E:C3:8A:32:64:40:0E:6D:CA:3D:6A:3C:A9:54:BF:36"}}},"request":{"raw":"GET /icloud_2026_passcode4_login/ HTTP/1.1\r\nHost: mydevice-ifind.us\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\nexpires: Thu, 19 Nov 1981 08:52:00 GMT\r\ncache-control: no-store, no-cache, must-revalidate\r\npragma: no-cache\r\nset-cookie: PHPSESSID=23ab93b70d9667006c71936ad635c50a; path=/\r\nvary: Accept-Encoding\r\ncontent-encoding: gzip\r\ncontent-length: 6379\r\ncontent-type: text/html; charset=UTF-8\r\ndate: Tue, 24 Mar 2026 13:24:38 GMT\r\nserver: Apache\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"PHP","description":"PHP is a general-purpose scripting language used for web development.","website":"https://php.net","common_platform_enumeration":"cpe:2.3:a:php:php:*:*:*:*:*:*:*:*","icon":"PHP.svg","categories":["Programming languages"]},{"name":"Apache HTTP Server","description":"Apache is a free and open-source cross-platform web server software.","website":"https://httpd.apache.org/","common_platform_enumeration":"cpe:2.3:a:apache:http_server:*:*:*:*:*:*:*:*","icon":"Apache.svg","categories":["Web servers"]}],"data":{"size":16874,"size_decoded":0,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (3552), with CRLF, LF line terminators","md5":"957b9378f8f3b99b74369a405caec3bd","sha1":"0c9cf76304fd8640e77a5d4c0ce57fc4d4cdcf40","sha256":"bb561ac5fa6e6f5d47dd893e2825946cd2b08b4eb37350978393209d73ee7ea0","sha512":"05eb533a24a776b2323fbdceef7fc2010eae863debf051b03fe888eed361f3ddae94e516d6160bcd6fbef1455343bffae381ec004f90fb7c66d2ca278fe5f15d","ssdeep":"384:hRDLXhFcavKv5HdC+oqp29uX1hIidIOsDEYQeUvG:bv+Loqp2UX1aidzFeUvG","tlshash":"9072e9a141e096656643c1d7ff646b19fe12c10bde9bd680b5ef0ba54fe3d81c823a2c","first_seen":"2026-03-24T13:12:06.299178Z","last_seen":"2026-04-07T10:46:50.301425Z","times_seen":58,"resource_available":true,"data":null}},"time_used":165,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":164,"receive":1,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-03-24","alert":"Sinkholed","trigger":"mydevice-ifind.us","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-03-24","alert":"Phishing Block","trigger":"mydevice-ifind.us","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}}]}