{"report_id":"b09717be-5f60-4ac8-bcc8-ecb6048b471d","version":0,"status":"done","tags":[],"date":"2026-07-12T17:51:29Z","url":{"schema":"https","addr":"checker-secondfi.app/","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"172.67.141.78","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"checker-secondfi.app/","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"title":"SecondFi Wallet Checker — Were You Affected?","dom":{"size":401766,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (14986)","md5":"d87fbe579fb1b46029c003fc06af4892","sha1":"a2d9fd71254d905ad494e615cea8e0f1e8a00642","sha256":"b0d7ba06ba44e84fe6b03620819cf5a47816e063cc35f37b811610d1bdac4444","sha512":"2f6072cbbd4b65b3dc7c201ee509615132a786d5a918d830303a066f81c498726e62c26bab021c25aee0f39b8f14021ca2e7ca1cf251026675b92e641027172a","ssdeep":"6144:OeWi8M0k87flfA++VzyJSv3DxNiVD2syrtqE:Ov7R7daVzyJEa0qE","tlshash":"53846d98317911396ea702e6a0af6506b1383413b40d88b1f51cfc696bf49d634b7faf","dom_hash":"domhashab3d45a5a51bf9233a589cef3f179b63","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"checker-secondfi.app/","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"172.67.141.78","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-08-16T17:51:29Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"qguvgzjxzsgb3vs"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":2}},"detection":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-12","alert":"Phishing Block","trigger":"checker-secondfi.app","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"checker-secondfi.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null},"summary":[{"fqdn":"checker.secondfi.io","ip":{"addr":"104.21.66.250","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2026-01-29","domain_rank":0,"first_seen":"2026-07-10T10:30:50.908917Z","last_seen":"2026-07-10T10:30:50.908917Z","alert_count":0,"request_count":2,"received_data":4686,"sent_data":1101,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Cloud Trace","description":"Google Cloud Trace is a distributed tracing system that collects latency data from applications and displays it in the Google Cloud Console.","website":"https://cloud.google.com/trace","common_platform_enumeration":"","icon":"google-cloud-trace.svg","categories":["Performance"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"Express","description":"Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.","website":"https://expressjs.com","common_platform_enumeration":"cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*","icon":"Express.svg","categories":["Web frameworks","Web servers"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]}]},{"fqdn":"files.manuscdn.com","ip":{"addr":"143.204.238.95","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"2025-02-27","domain_rank":1414307,"first_seen":"2025-03-12T08:00:03.578177Z","last_seen":"2026-07-12T02:25:40.991291Z","alert_count":0,"request_count":1,"received_data":9227,"sent_data":576,"comment":"","tags":null,"fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}]},{"fqdn":"checker-secondfi.app","ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-07-10T10:30:50.913559Z","last_seen":"2026-07-10T10:30:50.913559Z","alert_count":36,"request_count":18,"received_data":1698791,"sent_data":18112,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"challenges.cloudflare.com","ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2009-02-17","domain_rank":11393,"first_seen":"2021-10-20T05:02:03Z","last_seen":"2026-07-05T23:33:46.327486Z","alert_count":0,"request_count":4,"received_data":830871,"sent_data":2858,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"checker-secondfi.app/?__cf_chl_rt_tk=TU.BhQQ3AO60CemW.ceKoSMvwNarlQ7RzTltEAr9Mco-1783878660-1.0.1.1-GqwrBMjhYZzEWTgwY50mHNnAMou8BBl9Z5XYLDYIb2A","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-07-17T01:37:42.893756Z","times_seen":777207,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-07-17T01:37:42.893756Z","times_seen":777207,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"about","addr":"about:blank","fqdn":"","domain":"","tld":""},"ip":{"addr":"0.0.0.0","port":0,"asn":0,"as":"","country":"","country_code":"ZZ"},"introduction_type":"scriptElement","is_inline":false,"md5":"1607e29891b3268a5f9ac908f2e0a782","sha1":"ec8bfde945a06fa7dca19b74fb96c67e6afc928a","sha256":"2863b54b84e7790a704d5d696d942bcbc735b347cbf902bf7d2f195f0e3c8827","sha512":"ed0e8e2e724ca4b92d00b56661b89c833b1b134ebd1115e86f51688e0cc242ce2264aaa401fe3b9a44864e5e44b64b65d50713443e6361804163630712379e51","ssdeep":"","tlshash":"1cd0a7561df984307198014a10b9e399667120907651550185d9dc2a6a20dd304f2598","size":217,"data":"","first_seen":"2026-07-12T17:51:34.294206Z","last_seen":"2026-07-12T17:51:34.294206Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/4ff46571-1d07-4362-9c69-14c792461983","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"7276e9e60bb27ccbf4c91c350e0ffbc1","sha1":"3527cc6fb6c067314c03ca3ab0ef2771fa879fff","sha256":"16f9fabe64a292dd85ba76d962fcc4867ca8321468c04e39a3f45ab972b3752c","sha512":"24df718d0a1062962a7958f297616967248c671426fab7d29bcdbdd30b89d8bc30c96361c55ca8728af9b5ea8847d49f1d65f90587c96650247de455779c638b","ssdeep":"","tlshash":"88d0cd093d71d60982a251337c7f3521c1616268650952445375cef9cb50aaf6514f54","size":291,"data":"","first_seen":"2026-07-09T15:59:03.562627Z","last_seen":"2026-07-13T11:08:20.546696Z","times_seen":2733,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"5b4d1ccf6c261b4de57babbeb9cb046b","sha1":"81476e7015288449bc57abfebc1d4ff4c67aba7e","sha256":"8ef65bae2f7b4edabfdcc9638b1ebccbee5ebdd7353b99a8ab203b35de3ff4b8","sha512":"eb1045f1e391557c530aa491449b958a6baa27e9a8a0e562a7f760061a38519d603508b3e696e4388dc1a739fbe847015e416a075df734a02bc49a8952e4d64d","ssdeep":"3072:8cdGQyzUYWocDEtoz6vcA0HLwJgrtZgy1jU+JDtzbRkZExqCJ01:8mczUYWreowJetZZblJI","tlshash":"2334298abdc3b40a37a5bdb7006770ddfa196c844c8c1608e911c9f43c6e3dd56bae4a","size":244904,"data":"","first_seen":"2026-07-12T17:51:34.298823Z","last_seen":"2026-07-12T17:51:34.298823Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/turnstile/v0/g/73f5d73b1f13/api.js?onload=Jdvdh0\u0026render=explicit","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"15221d51bd292126fd260c66336db19c","sha1":"d0ca22a3b568b71997d266bf6fe48bdedd932807","sha256":"90acf284e78ceb1183e080909b7558617bd981480fd3000ae1b433d5eb28c459","sha512":"7477e39dc11f4c71e65ca6192e71a74cad6d93b8b4ba702fdac40ea0af2029b6b8f395aae2b20c0c39a8f31d1e1f32db92a9b41632e4e2da5624d7b0d9fddb8f","ssdeep":"1536:tM5A+jXSq5RDMDpydrdopXOe1H05V46MlsgV0Dixw5MB:tEuYR0ydrMXOe1U8lP0Dixw5MB","tlshash":"81732bc472aa7862139ac0f4913b6753b3257d3aa84c8850d467dc653b7cd869233fba","size":75049,"data":"","first_seen":"2026-07-09T15:43:08.802758Z","last_seen":"2026-07-13T11:08:19.965925Z","times_seen":6436,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"977d9be8a0164320e80a08281b5b1c39","sha1":"9cdbc53236c44d7d5d76de04e76dbfdf2c368521","sha256":"5a92db68036b7b06212ead2efac8959a3c16e52d47509a213ed667e0a36e61fe","sha512":"e06e3771c448b43a68dab4b567e6f7e5031a41fe3634c3037753d62d676800ad7847e46b809042245f91308f36b82a00fcfb09873b0e2db558fdcca802933ba6","ssdeep":"3:N/BKL1XC+:eL1J","tlshash":"f25504d47d4074f00431d405d17514155035151013150513705d15d4173000404505d1","size":1337359,"data":"","first_seen":"2026-07-12T17:51:34.300586Z","last_seen":"2026-07-12T17:51:34.300586Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"f18f565fbaf764de559d056857b411a9","sha1":"50e6c3e7eda3aa59e580d1f268146065e8468373","sha256":"c31f53ae6b2142925838ce94413a28b7859c98b1ff0019b7ab2b660a993e37b0","sha512":"40f20040d4177339b3d927eacb167b6ae57285b94e18a2a1fcc9ea8402db460e6490a82daebe0f9e43131187803615027310750adf82c13b6519be6b93d13805","ssdeep":"3:N/BKL1XCPVT:eL1gVT","tlshash":"505504c07d41f4700431c444d155141d5015151017150401705d14d417300040c505d0","size":1337359,"data":"","first_seen":"2026-07-12T17:51:34.302056Z","last_seen":"2026-07-12T17:51:34.302056Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"fb3aa103f56affa38fbdea3d8f2371d9","sha1":"3545433e57b782332aa4669d9ddaa9c61f4044b1","sha256":"bf2432d8ce79e838249f00540d61261abe77793d678cb605ab799a4a9ae443b8","sha512":"97e0b8fab8b4a8bb4c293121968efebd72fc2e32c49d5e8636259ed23df6b6ddbec0d5beee8604b98aa0555ed64d6cd9c1af7da6a68480501bfacbfad348f502","ssdeep":"3:N/BKL1XCq:eL1Z","tlshash":"f35504c07f4074700c30d405d15514157415151013155403f05d15d4173000404505d1","size":1337359,"data":"","first_seen":"2026-07-12T17:51:34.303303Z","last_seen":"2026-07-12T17:51:34.303303Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"24ff232e8db6a975dbc22b96e3e84870","sha1":"5fe057f5180c6a07f433c5c49bf4bfab3c3ad913","sha256":"8e3a4a7fd93d8e2c0c32d458f3f3415124b247b207b5b9be9413e0a74bfcfad3","sha512":"8a6e5f13f9ed294d782a8e88f7b3c746855f12dd07293c64ce2b43606b752cd71e1a783e53a165e8ec59be1076d3cd8eb8572ae7a5c9f60c1a72a65493a8685c","ssdeep":"","tlshash":"fec09b883bc5e015c755363a5daf4286f639efa04c585053e052514ab7b0751439ef5f","size":136,"data":"","first_seen":"2026-07-09T15:59:03.578942Z","last_seen":"2026-07-13T11:08:20.551598Z","times_seen":2797,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/a67f570e-0f35-4622-96ae-c2c8ef38a17d","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"","is_inline":false,"md5":"7276e9e60bb27ccbf4c91c350e0ffbc1","sha1":"3527cc6fb6c067314c03ca3ab0ef2771fa879fff","sha256":"16f9fabe64a292dd85ba76d962fcc4867ca8321468c04e39a3f45ab972b3752c","sha512":"24df718d0a1062962a7958f297616967248c671426fab7d29bcdbdd30b89d8bc30c96361c55ca8728af9b5ea8847d49f1d65f90587c96650247de455779c638b","ssdeep":"","tlshash":"88d0cd093d71d60982a251337c7f3521c1616268650952445375cef9cb50aaf6514f54","size":291,"data":"","first_seen":"2026-07-09T15:59:03.562627Z","last_seen":"2026-07-13T11:08:20.546696Z","times_seen":2733,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/cdn-cgi/challenge-platform/scripts/jsd/main.js","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"0343d12b9bdcbcdf3039eb6e179b4319","sha1":"17cfaa5bc0364f5e99c487b560923075d7684b42","sha256":"9a03ae1e3e28d7b3efb89995cf7ccb56936b31b8ec7d6649e6bdc73fb9e42bad","sha512":"0025626b0c1c39d062f012fce80dc8b912fe98f2301bfa2fa2ce04d0c93461546ffa516ab1cf548431a2f4c2bf12a1365a2049e042a3b6028e3f823aff1f2609","ssdeep":"384:oGlhJJkQzF5fDp6RcZUWgDYnr87Tp7kmmMtIZQ/al0orDnY4kL15na8:lltk2F1DtPbnWTp7Hmq/aXvnY4gtH","tlshash":"e3a2a78e3cc9b549134fb47b40d7b4da71ad8c98904c4a09c221d6e9b5ffb6b939bc48","size":21384,"data":"","first_seen":"2026-07-12T17:51:34.283081Z","last_seen":"2026-07-12T18:18:26.190499Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"9e925e9341b490bfd3b4c4ca3b0c1ef2","sha1":"c2543fff3bfa6f144c2f06a7de6cd10c0b650cae","sha256":"1eb79602411ef02cf6fe117897015fff89f80face4eccd50425c45149b148408","sha512":"1f4be9bd3c61e621ef43bb2e0a2d7836786f730e4e0e6aa546899bceab0571904dfc6efc94c1324b1a22ae446f0a995b533054b1dbd09d0cda03e0985786d59a","ssdeep":"","tlshash":"2a30000000000003000c00000000000000000000000000000000000000000000000000","size":4,"data":"","first_seen":"2023-03-07T01:03:43Z","last_seen":"2026-07-17T01:37:42.893756Z","times_seen":777207,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"24ff232e8db6a975dbc22b96e3e84870","sha1":"5fe057f5180c6a07f433c5c49bf4bfab3c3ad913","sha256":"8e3a4a7fd93d8e2c0c32d458f3f3415124b247b207b5b9be9413e0a74bfcfad3","sha512":"8a6e5f13f9ed294d782a8e88f7b3c746855f12dd07293c64ce2b43606b752cd71e1a783e53a165e8ec59be1076d3cd8eb8572ae7a5c9f60c1a72a65493a8685c","ssdeep":"","tlshash":"fec09b883bc5e015c755363a5daf4286f639efa04c585053e052514ab7b0751439ef5f","size":136,"data":"","first_seen":"2026-07-09T15:59:03.578942Z","last_seen":"2026-07-13T11:08:20.551598Z","times_seen":2797,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=a1a1e4b92b2fb50b","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"71599b36e0d2d78085ff7af79f9e97cc","sha1":"f15188faefe39d47f5eae0b1a53d65e75db967d2","sha256":"8e2f544f45c34007e2fb3b07389055e644a75f5377a9d3411a311a7043cb3581","sha512":"07c04250d7baaa3dd63337d2fb9790318e00d9e5a02fb961d8f15d5bebbc328e0fc4ed074db75cb83089ef816b3b3d804dfb02d3dd1f0df550dbbccbc3f8c718","ssdeep":"3072:y7xmO1v6aD8MzlH9NWJbPq0UmyNlHZKPUnRmmaR9gONhR9:y7xmO1v6aYQH9Kq0kNl5KPcmmW9gONH9","tlshash":"ba2408ccbdc3794b323bb27580373156ea3e0c584889e60eb51161d9bd51728972fafa","size":215849,"data":"","first_seen":"2026-07-12T17:51:34.260004Z","last_seen":"2026-07-12T17:51:34.260004Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"eval","is_inline":false,"md5":"077022273b71de25a06ce006515741ed","sha1":"f500a524c7354eb5453ff26bb32eb1555d94674b","sha256":"a9d28e8ec7e61920803c7ba2f8ce6d36c84640e301b4776e5ca4da7be38a212d","sha512":"13b9c3aabf50221e68804cc3e0bc85aa5288e03782902eb3bc4d84f1709c22ea4646ad49739db53e9f2fc99f805f5eda498e447b05e7e27b3071324727c5ffb3","ssdeep":"3:N/BKL1XCln:eL1C","tlshash":"515504c07dc074f00430d504d155141550155f1053150403705d37d4173000404505d1","size":1337359,"data":"","first_seen":"2026-07-12T17:51:34.31105Z","last_seen":"2026-07-12T17:51:34.31105Z","times_seen":1,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":[{"level":"log","text":"map[actor:server1.conn0.watcher14.process8//obj180 class:RegExp displayString:/.*.*=.*/ extensible:true frozen:false isError:false ownPropertyLength:2 sealed:false type:object]","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":143358},{"level":"log","text":"map[actor:server1.conn0.watcher14.process8//obj183 class:BoundFunctionObject extensible:true frozen:false isError:false ownPropertyLength:3 preview:map[kind:Object ownProperties:map[toString:map[configurable:true enumerable:true value:map[actor:server1.conn0.watcher14.process8//obj184 class:BoundFunctionObject extensible:true frozen:false isError:false ownPropertyLength:2 sealed:false type:object] writable:true]] ownPropertiesLength:3] sealed:false type:object]","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":143358},{"level":"log","text":"map[actor:server1.conn0.watcher14.process8//obj186 class:HTMLAnchorElement contentDomReference:map[browsingContextId:1.5032385538e+10 id:0.022521884828053396] extensible:true frozen:false isError:false ownPropertyLength:1 preview:map[attributes:map[] attributesLength:0 isConnected:false kind:DOMNode nodeName:a nodeType:1] sealed:false type:object]","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":143358},{"level":"debug","text":"0","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":167163},{"level":"error","text":"0","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":167163},{"level":"info","text":"0","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":167163},{"level":"log","text":"0","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":167163},{"level":"warn","text":"0","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":167163},{"level":"debug","text":"","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":143358},{"level":"log","text":"map[actor:server1.conn0.watcher14.process8//obj178 class:RegExp displayString:/.*.*=.*/ extensible:true frozen:false isError:false ownPropertyLength:2 sealed:false type:object]","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":143358},{"level":"log","text":"map[actor:server1.conn0.watcher14.process8//obj181 class:BoundFunctionObject extensible:true frozen:false isError:false ownPropertyLength:3 preview:map[kind:Object ownProperties:map[toString:map[configurable:true enumerable:true value:map[actor:server1.conn0.watcher14.process8//obj182 class:BoundFunctionObject extensible:true frozen:false isError:false ownPropertyLength:2 sealed:false type:object] writable:true]] ownPropertiesLength:3] sealed:false type:object]","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":143358},{"level":"log","text":"map[actor:server1.conn0.watcher14.process8//obj185 class:HTMLAnchorElement contentDomReference:map[browsingContextId:1.5032385538e+10 id:0.022521884828053396] extensible:true frozen:false isError:false ownPropertyLength:1 preview:map[attributes:map[] attributesLength:0 isConnected:false kind:DOMNode nodeName:a nodeType:1] sealed:false type:object]","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":143358},{"level":"debug","text":"0","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":167163},{"level":"error","text":"0","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":167163},{"level":"info","text":"0","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":167163},{"level":"log","text":"0","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":167163},{"level":"warn","text":"0","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":167163},{"level":"debug","text":"","filename":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","line_number":1,"column_number":143358}]},"http":[{"url":{"schema":"https","addr":"checker-secondfi.app/cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=a1a1e4b92b2fb50b","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:00.271Z","timestamp":1783878660271,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-secondfi.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jul 2026 15:51:01 GMT","end":"Sun, 04 Oct 2026 16:49:22 GMT"},"fingerprint":{"sha1":"5F:43:A3:B2:5E:D7:3B:FA:22:8E:30:9E:AC:C1:1F:8B:4C:16:E9:C0","sha256":"81:6D:A2:A9:00:B7:E1:75:ED:8A:F8:2E:3D:DF:A0:71:33:38:39:C7:D5:67:6B:57:9C:35:94:D5:31:3A:5F:BD"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/g/orchestrate/chl_page/v1?ray=a1a1e4b92b2fb50b HTTP/1.1\r\nHost: checker-secondfi.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://checker-secondfi.app/?__cf_chl_rt_tk=TU.BhQQ3AO60CemW.ceKoSMvwNarlQ7RzTltEAr9Mco-1783878660-1.0.1.1-GqwrBMjhYZzEWTgwY50mHNnAMou8BBl9Z5XYLDYIb2A\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ncontent-type: application/javascript; charset=UTF-8\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\ncontent-encoding: zstd\r\ndate: Sun, 12 Jul 2026 17:51:00 GMT\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\ncf-ray: a1a1e4babb44b50b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":215849,"size_decoded":78136,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (41693)","md5":"71599b36e0d2d78085ff7af79f9e97cc","sha1":"f15188faefe39d47f5eae0b1a53d65e75db967d2","sha256":"8e2f544f45c34007e2fb3b07389055e644a75f5377a9d3411a311a7043cb3581","sha512":"07c04250d7baaa3dd63337d2fb9790318e00d9e5a02fb961d8f15d5bebbc328e0fc4ed074db75cb83089ef816b3b3d804dfb02d3dd1f0df550dbbccbc3f8c718","ssdeep":"3072:y7xmO1v6aD8MzlH9NWJbPq0UmyNlHZKPUnRmmaR9gONhR9:y7xmO1v6aYQH9Kq0kNl5KPcmmW9gONH9","tlshash":"ba2408ccbdc3794b323bb27580373156ea3e0c584889e60eb51161d9bd51728972fafa","first_seen":"2026-07-12T17:51:34.260004Z","last_seen":"2026-07-12T17:51:34.260004Z","times_seen":1,"resource_available":true,"data":null}},"time_used":16,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":10,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-12","alert":"Phishing Block","trigger":"checker-secondfi.app","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"checker-secondfi.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/cdn-cgi/challenge-platform/h/g/fo/579935577:1783875914:CkvzKi4aREAgXjG3yfloh4L8EvvelbbY3akqZ-S4mLA/a1a1e4b92b2fb50b/w53rYt7r3vgie1.RwYOflZXSjwSxZAZTnZmGZfUPxMY-1783878660-1.2.1.1-Q44t9D9KNIU.qo5NjiXYby87mzj5vYourGHlL3WiJUGJIRoihwdtcN7j46MLO4lE","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:00.564Z","timestamp":1783878660564,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-secondfi.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jul 2026 15:51:01 GMT","end":"Sun, 04 Oct 2026 16:49:22 GMT"},"fingerprint":{"sha1":"5F:43:A3:B2:5E:D7:3B:FA:22:8E:30:9E:AC:C1:1F:8B:4C:16:E9:C0","sha256":"81:6D:A2:A9:00:B7:E1:75:ED:8A:F8:2E:3D:DF:A0:71:33:38:39:C7:D5:67:6B:57:9C:35:94:D5:31:3A:5F:BD"}}},"request":{"raw":"POST /cdn-cgi/challenge-platform/h/g/fo/579935577:1783875914:CkvzKi4aREAgXjG3yfloh4L8EvvelbbY3akqZ-S4mLA/a1a1e4b92b2fb50b/w53rYt7r3vgie1.RwYOflZXSjwSxZAZTnZmGZfUPxMY-1783878660-1.2.1.1-Q44t9D9KNIU.qo5NjiXYby87mzj5vYourGHlL3WiJUGJIRoihwdtcN7j46MLO4lE HTTP/1.1\r\nHost: checker-secondfi.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://checker-secondfi.app/\r\ncf-chl: w53rYt7r3vgie1.RwYOflZXSjwSxZAZTnZmGZfUPxMY-1783878660-1.2.1.1-Q44t9D9KNIU.qo5NjiXYby87mzj5vYourGHlL3WiJUGJIRoihwdtcN7j46MLO4lE\r\ncf-chl-ra: 0\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 2060\r\nOrigin: https://checker-secondfi.app\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2060,"data":"ZrEqC9Xr-IC2KE3YXyYweaVrNre2$sytUycz3-hRLzR5-EzA6wKcXwUpZfaZydqc5QCWw+WgH3lNal$S$UFcBwtGAmOXRoM93RcB0f$ixDPR1y3Ajcng0XvI+JDBpTghW$y6bNGBt9og15eWn4i$BCoymhcp-6BHMe$KXW55ywte0cUh3j9E-HlpWH6iPWtwJeXF67awcNQDoN$IcIA3HjHcQ9lI+2f$WjFfFQcyorm3SqAxXxV5cw14LeQ2qXM+XscXQUL638bx3ic744-fZBac2SO-F2Ulr2TpObOPmTPeyETCtwyZHcawpGKoQL+Tpp80Ks4SE5qlZo6xBeDrRBvRU-EO6Trq+GCCPwwJdH9w1S3G$45unxMjzSFJTbfQ$FtV8W4ejSejZLi23HNg3NdKazj6SggYLjgbcJUsXEwtuBd5S-G6iYdMf6cEw8obPhKXbH5+XBGR2Nlih3HjE3b2i4jdX7ZAcst1dpaKtJHbLhuChjPMtseZaLlDOZMmEJh1ziufz3iizQjWumMNSOeAv2Lgqs2GX7AbXJNiwveUdaNmepQjRYNWdRQQMeTXNc2mXXfIdQfipZATeZAgap0qrVb7eEpDTizLPZc1B2fnqLOxMl7+1xV4N7-8YPK0tNdYLoeJQ$5A5C+pD9nwAnuxDyXOpOV5UKD9Ur6+bs-hohUm3bEE+MvXTqoN3o3bavWKIdnO+75Xl9D6+vLnjSuasqPrBKGdCAqPaiJ8n$9Ne4pNCmGwXxllNtAUEmZ7K$yI01R3G7o0OnENHZGMbXsABdgHUjC5a34erODGb2C3CpLNwCjKzmcAIQXvgBsJV8EDTyWbub-CZNo58ECu6e9NROj5AuvsDLhKurNu9uDYmgl2f1M836g0MbQ6VqFd74U$zoaJpKji7pyvcH3OgtqrgJvVdVqZ-zmV$UbxsxjgqsCv7So5wzFxO0dFXi6OCZW1pv+CYUun9vdwSMuGajlqsHbzmedoapuiuctbrZOpBv6i6KAI2GK8x0wpWg$xGwJ4KcqHM3QVlfQ6w0dsNxZbDspASmX3eH+ir5X5-g77naShUQz$vA9l6$CZrctCmPfPY3mfq4MvllTziGvc4LOI2Fo0GFmVB6P0cOWaKZPmlENn+o+GvAyNU2a53Zt1D0MECbSanYvjF6rzWSip4X34$lR1U+e9moQ4ica3GJOaaJXjQn29CIS7bV2VAPJ0oQsUE-T$s9L7S0+1GTrAp$WT5cebFyP9V71+2vbTJhK8rybqNvBuOez4e+6hRm6LJe4juXUoHSRy36rL6b4OY-odyW3noOVN64V5zhB4wYztiEz26slDKAyIhxYNAS0qxaoALSl1b7sKD-I5LCsCpIcz2jlh4MfVHmbDF$V2yVMlamUcoiQsSlPbNpJNdUtDIMYlMemGjOZrJL$1JyV9G4G7yiL+fBEl8Y3ir42ExrsgWXX6jwrJ63EtKGnhOJDtoEccypppIoTBUxChOLOlvrWlZ88eyz7tTuY5wb5wQ18Zu+6qLKwEZE8CRF0yRiAlP8IpnRzpoZpP3QxPBe-a+$JVrSRCoZPw1rmwKHnjNt9f6AnTh2h5N9HZuWJBDnRvBY-OlvtyqUP3eyCiDLtZUb8-DcKD$aR4tSzxz32JgmRRLYDzhpKLRfjnH5HO0YECFim$SnRi6l+eP6+aOLfuib4buI29gwQHWJJd-aJoBOXcV9UdwS+x44BZccLHuuhFbrB+miDLLUA-gidqNIGKnR-$aj7E3X8S$F8CXyAbYFbpggeUJ5EnYNV8vIoa7yeErj2h3x-azsaueufJs1rsHnXNL8Pp4BH5yYwcPKC-UlZqGMbptx2YZA2AJhh6ujtDmPh$MwzlYOpYJ$EcqIfP31TmXr8t56ry8x2eaO90tOSgRh9fou1mLh60tmira1mt-YohC95uKUuNhQ5QwKFD$84hX9l7wDNGL86amibrG6OPAQ$4SwyGntmrARjbeEJ+dwVQpQuwy5rElLnJN7eeCng$xLT1$rZuGfMoHi55Zv+e2Zsvt-0taEaSRd8ys12A3FYU4grDuwLa"}},"response":{"raw":"HTTP/3 200 \r\ncontent-type: text/plain; charset=UTF-8\r\ncf-chl-gen: 870C/uiBsg3cHoagqjb/fGM1BdlL9h0vjSEySue1vss=$KJUkIwkkMtvFbhCnEY086g==\r\ntiming-allow-origin: https://checker-secondfi.app\r\ncontent-encoding: zstd\r\ndate: Sun, 12 Jul 2026 17:51:00 GMT\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\ncf-ray: a1a1e4bc8b4db50b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":101232,"size_decoded":27661,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"4c4024b211e111c6b338a80b3245dd17","sha1":"ca60318ba9f50394c2421dbfbbd9c38ffa6a5662","sha256":"70fca4256b20165c2c3032ca3aa2313b0abdc912bd7ad6211166b464c95b4bd2","sha512":"857c9268152b03a75e9407cbb4462236360b4cd7b316a8f1e4b74b13ee8ed8680c72b287b74120e60ae6b930077c38d266f013235106d1dd57231d1e17bec236","ssdeep":"768:e4/Li4qRt6FXN4If2SKCt6VqP2Bol88pyODa+++++u0XqdUdUdUdUdUdUdUdUdUo:e4z8gXC2bt6gUy8CyO2+++++u0/VXa","tlshash":"47a39d47e1f1f9aca756ae5b35485c3a2ee11488d8192444772c9de0c3f2e4fd6cbb82","first_seen":"2026-07-12T17:51:34.262152Z","last_seen":"2026-07-12T17:51:34.262152Z","times_seen":1,"resource_available":false,"data":null}},"time_used":20,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":20,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-12","alert":"Phishing Block","trigger":"checker-secondfi.app","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"checker-secondfi.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/SecondFi%20Wallet%20Checker%20%E2%80%94%20Were%20You%20Affected__files/open-sauce-one","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:07.548Z","timestamp":1783878667548,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-secondfi.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jul 2026 15:51:01 GMT","end":"Sun, 04 Oct 2026 16:49:22 GMT"},"fingerprint":{"sha1":"5F:43:A3:B2:5E:D7:3B:FA:22:8E:30:9E:AC:C1:1F:8B:4C:16:E9:C0","sha256":"81:6D:A2:A9:00:B7:E1:75:ED:8A:F8:2E:3D:DF:A0:71:33:38:39:C7:D5:67:6B:57:9C:35:94:D5:31:3A:5F:BD"}}},"request":{"raw":"GET /SecondFi%20Wallet%20Checker%20%E2%80%94%20Were%20You%20Affected__files/open-sauce-one HTTP/1.1\r\nHost: checker-secondfi.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://checker-secondfi.app/\r\nCookie: cf_clearance=.K4B0bRYO1Oqg1ZTL__NBbIlxPw6JB4KtAEdTZ3D2gU-1783878667-1.2.1.1-U_MpWNYTxJfHTnSRLyPb.6DGa.Gs1GOdyUMAwmdAP9x2QSBylCMfLtfeHqr.zxqqntY.IywBabfgANUcP15Q.8KOYEKDcUe9gSbTnuTza8Eq3wRyhuhtxDy9_iAr87ky_8f55tBljaNnGL7Vam0OvPwsW6xKnelI2F_fp1aC5PyAdrWtD.bfQvTXyuvXAEBUCq2QpGd2iknIYzWXPoUZ50.p.z6MxrWkhBY.hH97gh2WVWnhhLHOufs3sBsqr.yPT0x5OtafH9JuOP52caldMGaJKQNa5l8buO.q7GxcqpNfZT9WNW8NgYXaSR8CFL.THkkWKJpawOzFEgVUjhN0._RxaN1l4oEJf1KKJpmY8EC8A6SlBJk_11VJiDvZ0F7lY.ebBsOm.F7PZUt0_VRpezo9kCKpjhKYRDx462VvzniNAT_GRwiO96ZnFn1KBJkFa3iDuho9mXZ_dTDBkrnitL43p5bhHayaGhO1zAEW2uHQM8_QR7hWVsGOTW2QkJMi\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 17:51:07 GMT\r\ncontent-type: application/octet-stream\r\nserver-timing: cfExtPri\r\ncast-mode: default\r\nlast-modified: Fri, 03 Jul 2026 15:54:38 GMT\r\netag: \"6a47db3e-2393\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=TQqWsJolHEpm%2Bv%2FGKn7YcA6CigzAO%2BTrQ%2BFUQKhZm3gjZ%2FuK5gtjSn%2BieQ2NdADojz6%2BizkSORi9KoU%2FXhOQFV0M41kvs2jLoRPz7QCqcpzS29VjzjyQWuD%2FUqd5WQMea1XMJiG1Nw%3D%3D\"}]}\r\ncf-ray: a1a1e4e82d99b50b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 9107\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/octet-stream","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-17T01:40:15.71791Z","times_seen":17302606,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-12","alert":"Phishing Block","trigger":"checker-secondfi.app","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"checker-secondfi.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/favicon.ico","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:00.302Z","timestamp":1783878660302,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-secondfi.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jul 2026 15:51:01 GMT","end":"Sun, 04 Oct 2026 16:49:22 GMT"},"fingerprint":{"sha1":"5F:43:A3:B2:5E:D7:3B:FA:22:8E:30:9E:AC:C1:1F:8B:4C:16:E9:C0","sha256":"81:6D:A2:A9:00:B7:E1:75:ED:8A:F8:2E:3D:DF:A0:71:33:38:39:C7:D5:67:6B:57:9C:35:94:D5:31:3A:5F:BD"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: checker-secondfi.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://checker-secondfi.app/?__cf_chl_rt_tk=TU.BhQQ3AO60CemW.ceKoSMvwNarlQ7RzTltEAr9Mco-1783878660-1.0.1.1-GqwrBMjhYZzEWTgwY50mHNnAMou8BBl9Z5XYLDYIb2A\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 17:51:00 GMT\r\ncontent-type: text/html\r\nlast-modified: Mon, 06 Jul 2026 16:56:04 GMT\r\nvary: accept-encoding\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\npriority: u=6,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=puCgfT5c7YOzrnpMN%2BjjQFc9Ni7YtpP0ZuDPCRxP7lUkl1OrXzbrvVNDbWRj3e8O73yUu7hBXVAoXsO2%2BWSvRX3XfK3RfCwcon16kGchs%2BH3fNA8ikWsrW4fs8qvrz6k2rCYlqYlJA%3D%3D\"}]}\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a1a1e4baeb46b50b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":435419,"size_decoded":120317,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (14986), with CRLF line terminators","md5":"ee724687e97e3d9a6a653732af0462b4","sha1":"9ba5306ab323f228047239cb4b86b72b9359b91a","sha256":"6ff1c5de1f914bcb3fd0724d39f3f9c616c1699b752df022f12c365fc8b3d756","sha512":"89772ac6129feb15b30f201ebfbd1ee392db4cac72b31aef9fe3caee318479c7b540f8efe0af3b2621579b3d43dc3a281429fbb065cb0b2799accadc469adf46","ssdeep":"6144:7eRf8M0k87fafA++VzyJS63DxNiVD7syrtoQprJ:7ykR7yaVzyJTadT","tlshash":"a4947d983268113d6e7342e6e0af6606b1383453f80d88b1f518f8756bf56d624b3f9e","first_seen":"2026-07-10T10:30:57.640551Z","last_seen":"2026-07-12T17:51:34.265033Z","times_seen":2,"resource_available":false,"data":null}},"time_used":295,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":220,"receive":75,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"checker-secondfi.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-12","alert":"Phishing Block","trigger":"checker-secondfi.app","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/SecondFi%20Wallet%20Checker%20%E2%80%94%20Were%20You%20Affected__files/css2","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:07.545Z","timestamp":1783878667545,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-secondfi.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jul 2026 15:51:01 GMT","end":"Sun, 04 Oct 2026 16:49:22 GMT"},"fingerprint":{"sha1":"5F:43:A3:B2:5E:D7:3B:FA:22:8E:30:9E:AC:C1:1F:8B:4C:16:E9:C0","sha256":"81:6D:A2:A9:00:B7:E1:75:ED:8A:F8:2E:3D:DF:A0:71:33:38:39:C7:D5:67:6B:57:9C:35:94:D5:31:3A:5F:BD"}}},"request":{"raw":"GET /SecondFi%20Wallet%20Checker%20%E2%80%94%20Were%20You%20Affected__files/css2 HTTP/1.1\r\nHost: checker-secondfi.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://checker-secondfi.app/\r\nCookie: cf_clearance=.K4B0bRYO1Oqg1ZTL__NBbIlxPw6JB4KtAEdTZ3D2gU-1783878667-1.2.1.1-U_MpWNYTxJfHTnSRLyPb.6DGa.Gs1GOdyUMAwmdAP9x2QSBylCMfLtfeHqr.zxqqntY.IywBabfgANUcP15Q.8KOYEKDcUe9gSbTnuTza8Eq3wRyhuhtxDy9_iAr87ky_8f55tBljaNnGL7Vam0OvPwsW6xKnelI2F_fp1aC5PyAdrWtD.bfQvTXyuvXAEBUCq2QpGd2iknIYzWXPoUZ50.p.z6MxrWkhBY.hH97gh2WVWnhhLHOufs3sBsqr.yPT0x5OtafH9JuOP52caldMGaJKQNa5l8buO.q7GxcqpNfZT9WNW8NgYXaSR8CFL.THkkWKJpawOzFEgVUjhN0._RxaN1l4oEJf1KKJpmY8EC8A6SlBJk_11VJiDvZ0F7lY.ebBsOm.F7PZUt0_VRpezo9kCKpjhKYRDx462VvzniNAT_GRwiO96ZnFn1KBJkFa3iDuho9mXZ_dTDBkrnitL43p5bhHayaGhO1zAEW2uHQM8_QR7hWVsGOTW2QkJMi\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 17:51:07 GMT\r\ncontent-type: application/octet-stream\r\nserver-timing: cfExtPri\r\ncast-mode: default\r\nlast-modified: Fri, 03 Jul 2026 15:54:36 GMT\r\netag: \"6a47db3c-136c\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SgxHENvlcaDyh9FNa9knz33mMrnHpUHRPMEsLkLQ42iR8CKPWEiDPvFYyGqg%2FP%2BXZ3%2Bvluncj4sPNeIJjPCQrqwbvejtqFuOU3%2B26vKh6tKIdB5sVQ5ot46M8ELtoIgldrNj8EUlCw%3D%3D\"}]}\r\ncf-ray: a1a1e4e82d97b50b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 4972\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/octet-stream","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-17T01:40:15.71791Z","times_seen":17302606,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"checker-secondfi.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-12","alert":"Phishing Block","trigger":"checker-secondfi.app","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-07-12T17:50:59.966Z","timestamp":1783878659966,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-secondfi.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jul 2026 15:51:01 GMT","end":"Sun, 04 Oct 2026 16:49:22 GMT"},"fingerprint":{"sha1":"5F:43:A3:B2:5E:D7:3B:FA:22:8E:30:9E:AC:C1:1F:8B:4C:16:E9:C0","sha256":"81:6D:A2:A9:00:B7:E1:75:ED:8A:F8:2E:3D:DF:A0:71:33:38:39:C7:D5:67:6B:57:9C:35:94:D5:31:3A:5F:BD"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: checker-secondfi.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: none\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 403 \r\naccept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\ncf-mitigated: challenge\r\ncontent-type: text/html; charset=UTF-8\r\ncontent-security-policy: default-src 'none'; script-src 'nonce-Lw64cPaNrkVXzuTG3a5g2s' 'unsafe-eval' https://challenges.cloudflare.com; script-src-attr 'none'; style-src 'unsafe-inline'; img-src 'self' https://challenges.cloudflare.com; connect-src 'self' https://challenges.cloudflare.com; frame-src 'self' https://challenges.cloudflare.com blob:; child-src 'self' https://challenges.cloudflare.com blob:; worker-src blob:; form-action http: https:; base-uri 'self'\r\nserver: cloudflare\r\ncritical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\ncross-origin-embedder-policy: require-corp\r\ncross-origin-opener-policy: same-origin\r\ncross-origin-resource-policy: same-origin\r\norigin-agent-cluster: ?1\r\npermissions-policy: accelerometer=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=(),xr-spatial-tracking=*\r\nreferrer-policy: same-origin\r\nserver-timing: chlray;desc=\"a1a1e4b92b2fb50b\", cfExtPri\r\nx-content-type-options: nosniff\r\nx-frame-options: SAMEORIGIN\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=H0MKXiYkX7%2BL3tN60ikmTdr9rB5EXWZHGqvMv%2Fd3bKIhdJlTI2MpVyWn9u1YIGI9pExMOhP26WP4uJmTX7Oad3kgKZH4NwIxwHXRw7hgxsBP9SdRTQa33gPWBK%2BaZ76uKj3AC6h2hQ%3D%3D\"}]}\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ndate: Sun, 12 Jul 2026 17:51:00 GMT\r\npriority: u=0,i\r\ncontent-encoding: zstd\r\ncf-ray: a1a1e4b92b2fb50b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\n\r\n","headers":null,"cookies":null,"status_code":"403","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":5581,"size_decoded":5553,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (5581), with no line terminators","md5":"fd24ce38ce63358e8dcf921021fb9083","sha1":"e3945444d253c90b2a33d1088c975167e3d514ba","sha256":"a9cdd5d76309f2517af37c66f4415fed33ea2433a41c3668b0af2b9dad481a28","sha512":"f623ea251ca6a553e8fcbe1e52452759bbed164d410a79dfae4a6161cb2b91c60176a71969fca3ce8b2ec54dc40556c4b724f3e4c96392eebfc2c01e8527e0ce","ssdeep":"96:PNytHtoXZzIEb0EaW87eekpq8SqWhdQESnFp0sLIpaqM1MtQwN5uDCxr1JD6vYzc:PNUtkCBkA6WGnFpBEpaM0e3nyyw","tlshash":"74b119e3f935b0364bf61b9cb0bbb318833576097b04508eaa65d7add2def0b8059095","first_seen":"2026-07-12T17:51:34.266939Z","last_seen":"2026-07-12T17:51:34.266939Z","times_seen":1,"resource_available":true,"data":null}},"time_used":71,"timings":{"blocked":-1,"dns":41,"connect":15,"send":0,"wait":14,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-12","alert":"Phishing Block","trigger":"checker-secondfi.app","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"checker-secondfi.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"subdocument","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:00.630Z","timestamp":1783878660630,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Jun 2026 20:15:28 GMT","end":"Mon, 14 Sep 2026 21:15:13 GMT"},"fingerprint":{"sha1":"77:27:72:42:CF:51:E8:8C:7C:3E:8C:4C:A1:F0:9A:86:96:B9:0A:16","sha256":"ED:7C:F7:38:B3:0F:00:86:32:D1:14:CE:C0:FF:CA:0E:7C:86:EE:49:51:EF:A4:4B:AA:5C:B6:7C:00:B5:3D:F3"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: iframe\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Sun, 12 Jul 2026 17:51:00 GMT\r\ncontent-type: text/html; charset=UTF-8\r\ncache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0\r\npermissions-policy: accelerometer=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=(),xr-spatial-tracking=*\r\ncontent-security-policy: default-src 'none'; script-src 'nonce-8Gy7VzywzS9IvMn4igByqV' 'unsafe-eval'; script-src-attr 'none'; worker-src blob:; style-src 'unsafe-inline'; img-src 'self'; connect-src 'self' https://hagen.challenges.cloudflare.com https://brunhild.challenges.cloudflare.com; frame-src 'self' blob:; child-src 'self' blob:; form-action 'none'; base-uri 'self'; trusted-types WMqk0 default; require-trusted-types-for 'script'; sandbox allow-same-origin allow-scripts allow-popups allow-forms\r\ncross-origin-embedder-policy: require-corp\r\ncross-origin-opener-policy: same-origin\r\ncross-origin-resource-policy: cross-origin\r\norigin-agent-cluster: ?1\r\naccept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\ncritical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA\r\nreferrer-policy: same-origin\r\ndocument-policy: js-profiling\r\npriority: u=6,i=?0\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: a1a1e4bcfc481525-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: 6u0bnlvb;dur=262623, cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":262623,"size_decoded":102588,"mime_type":"text/html; charset=UTF-8","magic":"HTML document, ASCII text, with very long lines (65536), with no line terminators","md5":"e201ba16167ba6edd6bd0c894b32f4ed","sha1":"1042f71890aaa2c51ffbe05b95483bababf94e3b","sha256":"54c631f1f912a7b0c8d70186328d4b676a345b5281cd151075a18c48d4fd1b99","sha512":"167ca734a97343debbac0825def09c1ed98020ca801ea1d24b89794fe4e47090ba252419bac87b2f2ffddb3f0ab94ccb5a4325dbd49df3d0ed2d34ea1adb0f7b","ssdeep":"3072:pcdGQyzUYWocDEtoz6vcA0HLwJgrtZgy1jU+JDtzbRkZExqCJ0F:pmczUYWreowJetZZblJI","tlshash":"86442a86bdc7b40a37a5bdb7006770ddf6296c848c4c560ce911cab43c6e3dd16b6e8a","first_seen":"2026-07-12T17:51:34.268925Z","last_seen":"2026-07-12T17:51:34.268925Z","times_seen":1,"resource_available":false,"data":null}},"time_used":22,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":16,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/cdn-cgi/challenge-platform/scripts/jsd/main.js","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:08.032Z","timestamp":1783878668032,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-secondfi.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jul 2026 15:51:01 GMT","end":"Sun, 04 Oct 2026 16:49:22 GMT"},"fingerprint":{"sha1":"5F:43:A3:B2:5E:D7:3B:FA:22:8E:30:9E:AC:C1:1F:8B:4C:16:E9:C0","sha256":"81:6D:A2:A9:00:B7:E1:75:ED:8A:F8:2E:3D:DF:A0:71:33:38:39:C7:D5:67:6B:57:9C:35:94:D5:31:3A:5F:BD"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1\r\nHost: checker-secondfi.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: cf_clearance=.K4B0bRYO1Oqg1ZTL__NBbIlxPw6JB4KtAEdTZ3D2gU-1783878667-1.2.1.1-U_MpWNYTxJfHTnSRLyPb.6DGa.Gs1GOdyUMAwmdAP9x2QSBylCMfLtfeHqr.zxqqntY.IywBabfgANUcP15Q.8KOYEKDcUe9gSbTnuTza8Eq3wRyhuhtxDy9_iAr87ky_8f55tBljaNnGL7Vam0OvPwsW6xKnelI2F_fp1aC5PyAdrWtD.bfQvTXyuvXAEBUCq2QpGd2iknIYzWXPoUZ50.p.z6MxrWkhBY.hH97gh2WVWnhhLHOufs3sBsqr.yPT0x5OtafH9JuOP52caldMGaJKQNa5l8buO.q7GxcqpNfZT9WNW8NgYXaSR8CFL.THkkWKJpawOzFEgVUjhN0._RxaN1l4oEJf1KKJpmY8EC8A6SlBJk_11VJiDvZ0F7lY.ebBsOm.F7PZUt0_VRpezo9kCKpjhKYRDx462VvzniNAT_GRwiO96ZnFn1KBJkFa3iDuho9mXZ_dTDBkrnitL43p5bhHayaGhO1zAEW2uHQM8_QR7hWVsGOTW2QkJMi\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 302 \r\nlocation: /cdn-cgi/challenge-platform/h/g/scripts/jsd/73f5d73b1f13/main.js?\r\ncache-control: max-age=300, stale-if-error=10800, stale-while-revalidate=10800, public\r\naccess-control-allow-origin: *\r\nserver-timing: cfExtPri\r\ndate: Sun, 12 Jul 2026 17:51:08 GMT\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\ncf-ray: a1a1e4eb3dc6b50b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 0\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/javascript; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-17T01:40:15.71791Z","times_seen":17302606,"resource_available":true,"data":null}},"time_used":5,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":5,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"checker-secondfi.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-12","alert":"Phishing Block","trigger":"checker-secondfi.app","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker.secondfi.io/favicon.ico","fqdn":"checker.secondfi.io","domain":"secondfi.io","tld":"io"},"ip":{"addr":"104.21.66.250","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:08.028Z","timestamp":1783878668028,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker.secondfi.io","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 01 Jul 2026 06:22:17 GMT","end":"Tue, 29 Sep 2026 07:22:08 GMT"},"fingerprint":{"sha1":"EC:69:70:83:52:2F:3C:CB:62:ED:BA:5E:56:B3:66:3E:26:6F:0B:05","sha256":"7D:26:16:06:AC:F1:C1:A8:12:64:DD:A9:62:FA:04:45:9E:BE:F3:E1:5D:53:46:18:76:DC:3D:6A:C3:A8:2F:3D"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: checker.secondfi.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://checker-secondfi.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 302 \r\ndate: Sun, 12 Jul 2026 17:51:08 GMT\r\ncontent-length: 0\r\nlocation: https://files.manuscdn.com/user_upload_by_module/web_dev_logo/310519663384387180/cNToByZtrhvpksaP.png\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nserver: cloudflare\r\ncf-cache-status: BYPASS\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=M2cNUP3cgIFV%2BLWuYPvuqi0ps5xQ4rOFLxDy4n9F1BUks5prI38RoA%2FViMZL1VGGTrdM7c5gDh9bmn9uA%2FZ4S2FRtRfa8gOFKDmD%2FMZdkYOkUynAVrJo298oRJ8qwzsZaVCtCXVK\"}]}\r\ncf-ray: a1a1e4ebec76b28a-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"302","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"image/png","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-17T01:40:15.71791Z","times_seen":17302606,"resource_available":true,"data":null}},"time_used":580,"timings":{"blocked":118,"dns":118,"connect":0,"send":0,"wait":344,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/SecondFi%20Wallet%20Checker%20%E2%80%94%20Were%20You%20Affected__files/index-BuTjEG42.css","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"stylesheet","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:07.553Z","timestamp":1783878667553,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-secondfi.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jul 2026 15:51:01 GMT","end":"Sun, 04 Oct 2026 16:49:22 GMT"},"fingerprint":{"sha1":"5F:43:A3:B2:5E:D7:3B:FA:22:8E:30:9E:AC:C1:1F:8B:4C:16:E9:C0","sha256":"81:6D:A2:A9:00:B7:E1:75:ED:8A:F8:2E:3D:DF:A0:71:33:38:39:C7:D5:67:6B:57:9C:35:94:D5:31:3A:5F:BD"}}},"request":{"raw":"GET /SecondFi%20Wallet%20Checker%20%E2%80%94%20Were%20You%20Affected__files/index-BuTjEG42.css HTTP/1.1\r\nHost: checker-secondfi.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/css,*/*;q=0.1\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://checker-secondfi.app/\r\nCookie: cf_clearance=.K4B0bRYO1Oqg1ZTL__NBbIlxPw6JB4KtAEdTZ3D2gU-1783878667-1.2.1.1-U_MpWNYTxJfHTnSRLyPb.6DGa.Gs1GOdyUMAwmdAP9x2QSBylCMfLtfeHqr.zxqqntY.IywBabfgANUcP15Q.8KOYEKDcUe9gSbTnuTza8Eq3wRyhuhtxDy9_iAr87ky_8f55tBljaNnGL7Vam0OvPwsW6xKnelI2F_fp1aC5PyAdrWtD.bfQvTXyuvXAEBUCq2QpGd2iknIYzWXPoUZ50.p.z6MxrWkhBY.hH97gh2WVWnhhLHOufs3sBsqr.yPT0x5OtafH9JuOP52caldMGaJKQNa5l8buO.q7GxcqpNfZT9WNW8NgYXaSR8CFL.THkkWKJpawOzFEgVUjhN0._RxaN1l4oEJf1KKJpmY8EC8A6SlBJk_11VJiDvZ0F7lY.ebBsOm.F7PZUt0_VRpezo9kCKpjhKYRDx462VvzniNAT_GRwiO96ZnFn1KBJkFa3iDuho9mXZ_dTDBkrnitL43p5bhHayaGhO1zAEW2uHQM8_QR7hWVsGOTW2QkJMi\r\nSec-Fetch-Dest: style\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=2\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 17:51:07 GMT\r\ncontent-type: text/css\r\ncast-mode: default\r\nlast-modified: Fri, 03 Jul 2026 15:54:38 GMT\r\netag: W/\"6a47db3e-1c363\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=z8o0xpi1naAyfRBnf7P8MDyvGenXzKp4ocu%2BJLZGQ%2FBqQ3dOS%2FThbcdSe8yHyJeVMlJX6Ukl5sq365KIhhxzpn1iT2ZI5VeMk8kKjUN8O8NGBlFvB9KZia61JXZRHLhCnSv3Dq8P2Q%3D%3D\"}]}\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=2,i=?0\r\nvary: accept-encoding\r\ncf-ray: a1a1e4e83d9bb50b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":115555,"size_decoded":22874,"mime_type":"text/css","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"0eda4046780e93930e1c64160f8b1826","sha1":"5715627411dedccdf0bdb25d08920e3f83a2456a","sha256":"b482f78749ba91c6532ffdaa95d8b7519869180fea3f32726ae4e7e3ea830f19","sha512":"e41817d98cdc2f14ce54faecb33d4a68111f0abe707179557ddcbba86d1f83a5c55901ef290cf249a47a860196d712f9f6ecc97ae71bcf4da34d63db34086e0a","ssdeep":"1536:/Tch7t27EWy2Ux9sPsACagSsMq+WDhzmAkX7zMFD97HvKUe9tk988R988q:Lch7tYUHsPsAgMq+WDhKAjz74L","tlshash":"37b3b5907229e53fbc7364f9538cf84c911a70c0dd6946edfe16a22246c7bf56a77208","first_seen":"2026-07-10T10:30:57.652378Z","last_seen":"2026-07-12T17:51:34.270695Z","times_seen":2,"resource_available":false,"data":null}},"time_used":350,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":332,"receive":18,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"checker-secondfi.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-12","alert":"Phishing Block","trigger":"checker-secondfi.app","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/SecondFi%20Wallet%20Checker%20%E2%80%94%20Were%20You%20Affected__files/secondfi-logo-header_047f8189.webp","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:07.571Z","timestamp":1783878667571,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-secondfi.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jul 2026 15:51:01 GMT","end":"Sun, 04 Oct 2026 16:49:22 GMT"},"fingerprint":{"sha1":"5F:43:A3:B2:5E:D7:3B:FA:22:8E:30:9E:AC:C1:1F:8B:4C:16:E9:C0","sha256":"81:6D:A2:A9:00:B7:E1:75:ED:8A:F8:2E:3D:DF:A0:71:33:38:39:C7:D5:67:6B:57:9C:35:94:D5:31:3A:5F:BD"}}},"request":{"raw":"GET /SecondFi%20Wallet%20Checker%20%E2%80%94%20Were%20You%20Affected__files/secondfi-logo-header_047f8189.webp HTTP/1.1\r\nHost: checker-secondfi.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://checker-secondfi.app/\r\nCookie: cf_clearance=.K4B0bRYO1Oqg1ZTL__NBbIlxPw6JB4KtAEdTZ3D2gU-1783878667-1.2.1.1-U_MpWNYTxJfHTnSRLyPb.6DGa.Gs1GOdyUMAwmdAP9x2QSBylCMfLtfeHqr.zxqqntY.IywBabfgANUcP15Q.8KOYEKDcUe9gSbTnuTza8Eq3wRyhuhtxDy9_iAr87ky_8f55tBljaNnGL7Vam0OvPwsW6xKnelI2F_fp1aC5PyAdrWtD.bfQvTXyuvXAEBUCq2QpGd2iknIYzWXPoUZ50.p.z6MxrWkhBY.hH97gh2WVWnhhLHOufs3sBsqr.yPT0x5OtafH9JuOP52caldMGaJKQNa5l8buO.q7GxcqpNfZT9WNW8NgYXaSR8CFL.THkkWKJpawOzFEgVUjhN0._RxaN1l4oEJf1KKJpmY8EC8A6SlBJk_11VJiDvZ0F7lY.ebBsOm.F7PZUt0_VRpezo9kCKpjhKYRDx462VvzniNAT_GRwiO96ZnFn1KBJkFa3iDuho9mXZ_dTDBkrnitL43p5bhHayaGhO1zAEW2uHQM8_QR7hWVsGOTW2QkJMi\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=5, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 17:51:07 GMT\r\ncontent-type: image/webp\r\ncast-mode: default\r\nlast-modified: Fri, 03 Jul 2026 15:54:46 GMT\r\netag: W/\"6a47db46-468c\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\ncontent-encoding: gzip\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FQqzviY6YsaHfSqrGrLWAwm41GAKyYhKateIhDv%2FjgZDYpkT5oBSR7iKrJMBYsOjRE%2Beft9f5pDc0u65Uzks5%2Fq0jKuLnY6z9X9SXj4fMcaYX4GhYluDP8WBp58yZI2C81nx1jFXAg%3D%3D\"}]}\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=5,i\r\nvary: accept-encoding\r\ncf-ray: a1a1e4e85da0b50b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":18060,"size_decoded":18891,"mime_type":"image/webp","magic":"RIFF (little-endian) data, Web/P image","md5":"b7bc8d743ad1928d846ab0ce1a5dddb4","sha1":"c8d068b5efdb331a4265552fe5732537ac006eca","sha256":"d4d0a57c5b606aa96e5cb744c204145f58f0f9a7187212300d56327820a953b3","sha512":"b0bd5351e5b9caf6060058dc2677313ae36fd84cadfe78ad2fdeec54bb5272398154a7fe81cae4de869964d82f65edf76bdb4b77b4b4236058e04b88353604f3","ssdeep":"384:Rti5G4z7/P1K6XJM3Ntt/KHRrVZZ0qdCqTwMYeK/1sqyRY13M:Hi5ZPFK6XJkP8rVn0GCqwMt21hy+S","tlshash":"4d82c01242a7cc22cc78543379ed017e25cc661e6eba44c4ad1dcb74e9c3c619603a2c","first_seen":"2026-07-10T10:30:57.653666Z","last_seen":"2026-07-12T17:51:34.278791Z","times_seen":2,"resource_available":false,"data":null}},"time_used":248,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":248,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-12","alert":"Phishing Block","trigger":"checker-secondfi.app","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"checker-secondfi.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker.secondfi.io/apple-touch-icon.png","fqdn":"checker.secondfi.io","domain":"secondfi.io","tld":"io"},"ip":{"addr":"104.21.66.250","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:08.026Z","timestamp":1783878668026,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker.secondfi.io","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Wed, 01 Jul 2026 06:22:17 GMT","end":"Tue, 29 Sep 2026 07:22:08 GMT"},"fingerprint":{"sha1":"EC:69:70:83:52:2F:3C:CB:62:ED:BA:5E:56:B3:66:3E:26:6F:0B:05","sha256":"7D:26:16:06:AC:F1:C1:A8:12:64:DD:A9:62:FA:04:45:9E:BE:F3:E1:5D:53:46:18:76:DC:3D:6A:C3:A8:2F:3D"}}},"request":{"raw":"GET /apple-touch-icon.png HTTP/1.1\r\nHost: checker.secondfi.io\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-Fetch-Storage-Access: none\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://checker-secondfi.app/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ndate: Sun, 12 Jul 2026 17:51:08 GMT\r\ncontent-type: image/png\r\ncontent-length: 3031\r\nx-powered-by: Express\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nx-content-type-options: nosniff\r\ncf-cache-status: REVALIDATED\r\naccept-ranges: bytes\r\ncache-control: public, max-age=14400\r\netag: W/\"bd7-19f1d17b9d0\"\r\nexpires: Sun, 12 Jul 2026 21:51:08 GMT\r\nlast-modified: Wed, 01 Jul 2026 09:52:02 GMT\r\nserver: cloudflare\r\nalt-svc: h3=\":443\"; ma=86400\r\nx-cloud-trace-context: 8a6db98eff26b2bcb5715a95aa1f9d96\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=rFRY%2B1pVaXYFFH7ZdjL6EdHWhwsFSz8ET4I%2FCcZk7Q2aAGRbXszcOsKgsfRdK3cOrPEPaBAGAeD52fCy4t0%2FUMcUNAVCJenpYB7d7MCSi615USCGo3M9PAEIA0TAbCSrlBYGFjn7\"}]}\r\ncf-ray: a1a1e4ebcc01b28a-OSL\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"Google Cloud Trace","description":"Google Cloud Trace is a distributed tracing system that collects latency data from applications and displays it in the Google Cloud Console.","website":"https://cloud.google.com/trace","common_platform_enumeration":"","icon":"google-cloud-trace.svg","categories":["Performance"]},{"name":"Google Cloud","description":"Google Cloud is a suite of cloud computing services.","website":"https://cloud.google.com","common_platform_enumeration":"cpe:2.3:a:google:cloud_platform:*:*:*:*:*:*:*:*","icon":"Google Cloud.svg","categories":["IaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Express","description":"Express is a web application framework for Node.js, released as free and open-source software under the MIT License. It is designed for building web applications and APIs.","website":"https://expressjs.com","common_platform_enumeration":"cpe:2.3:a:expressjs:express:*:*:*:*:*:*:*:*","icon":"Express.svg","categories":["Web frameworks","Web servers"]},{"name":"Node.js","description":"Node.js is an open-source, cross-platform, JavaScript runtime environment that executes JavaScript code outside a web browser.","website":"https://nodejs.org","common_platform_enumeration":"cpe:2.3:a:nodejs:node.js:*:*:*:*:*:*:*:*","icon":"Node.js.svg","categories":["Programming languages"]}],"data":{"size":3031,"size_decoded":3944,"mime_type":"image/png","magic":"PNG image data, 180 x 180, 8-bit colormap, non-interlaced","md5":"3a069e928a5c9f8f8e642615c0e5eaa6","sha1":"6b2777e1735f6fbcfcc905c2ea897cb25deaf158","sha256":"25ea227a982b730396af501ba4e5e22c01f80651aaaa43fe4207984717e5a310","sha512":"ca32c29a5404b39172b62b65677b163ed1cbaf81df1352eff3fee3be3a5687d29d8499ce4361cc335c094f4655757dfa82d82e8b525efa9ac54246f8cffa1115","ssdeep":"","tlshash":"fc516d985017aa3ad3653242925e1c30ae841ec2463e8d2e84f380bfe3425cce7ef771","first_seen":"2026-07-10T10:30:57.646592Z","last_seen":"2026-07-12T17:51:34.281139Z","times_seen":2,"resource_available":false,"data":null}},"time_used":733,"timings":{"blocked":-1,"dns":86,"connect":12,"send":0,"wait":625,"receive":0,"ssl":10},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/cdn-cgi/challenge-platform/h/g/scripts/jsd/73f5d73b1f13/main.js?","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:08.048Z","timestamp":1783878668048,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-secondfi.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jul 2026 15:51:01 GMT","end":"Sun, 04 Oct 2026 16:49:22 GMT"},"fingerprint":{"sha1":"5F:43:A3:B2:5E:D7:3B:FA:22:8E:30:9E:AC:C1:1F:8B:4C:16:E9:C0","sha256":"81:6D:A2:A9:00:B7:E1:75:ED:8A:F8:2E:3D:DF:A0:71:33:38:39:C7:D5:67:6B:57:9C:35:94:D5:31:3A:5F:BD"}}},"request":{"raw":"GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/73f5d73b1f13/main.js? HTTP/1.1\r\nHost: checker-secondfi.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: cf_clearance=.K4B0bRYO1Oqg1ZTL__NBbIlxPw6JB4KtAEdTZ3D2gU-1783878667-1.2.1.1-U_MpWNYTxJfHTnSRLyPb.6DGa.Gs1GOdyUMAwmdAP9x2QSBylCMfLtfeHqr.zxqqntY.IywBabfgANUcP15Q.8KOYEKDcUe9gSbTnuTza8Eq3wRyhuhtxDy9_iAr87ky_8f55tBljaNnGL7Vam0OvPwsW6xKnelI2F_fp1aC5PyAdrWtD.bfQvTXyuvXAEBUCq2QpGd2iknIYzWXPoUZ50.p.z6MxrWkhBY.hH97gh2WVWnhhLHOufs3sBsqr.yPT0x5OtafH9JuOP52caldMGaJKQNa5l8buO.q7GxcqpNfZT9WNW8NgYXaSR8CFL.THkkWKJpawOzFEgVUjhN0._RxaN1l4oEJf1KKJpmY8EC8A6SlBJk_11VJiDvZ0F7lY.ebBsOm.F7PZUt0_VRpezo9kCKpjhKYRDx462VvzniNAT_GRwiO96ZnFn1KBJkFa3iDuho9mXZ_dTDBkrnitL43p5bhHayaGhO1zAEW2uHQM8_QR7hWVsGOTW2QkJMi\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ncontent-type: application/javascript; charset=UTF-8\r\ncache-control: max-age=14400, stale-if-error=10800, stale-while-revalidate=10800, public\r\nx-content-type-options: nosniff\r\ncontent-encoding: zstd\r\ndate: Sun, 12 Jul 2026 17:51:08 GMT\r\nserver: cloudflare\r\npriority: u=3,i=?0\r\ncf-ray: a1a1e4eb4dc7b50b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":21384,"size_decoded":10226,"mime_type":"application/javascript; charset=UTF-8","magic":"ASCII text, with very long lines (21384), with no line terminators","md5":"0343d12b9bdcbcdf3039eb6e179b4319","sha1":"17cfaa5bc0364f5e99c487b560923075d7684b42","sha256":"9a03ae1e3e28d7b3efb89995cf7ccb56936b31b8ec7d6649e6bdc73fb9e42bad","sha512":"0025626b0c1c39d062f012fce80dc8b912fe98f2301bfa2fa2ce04d0c93461546ffa516ab1cf548431a2f4c2bf12a1365a2049e042a3b6028e3f823aff1f2609","ssdeep":"384:oGlhJJkQzF5fDp6RcZUWgDYnr87Tp7kmmMtIZQ/al0orDnY4kL15na8:lltk2F1DtPbnWTp7Hmq/aXvnY4gtH","tlshash":"e3a2a78e3cc9b549134fb47b40d7b4da71ad8c98904c4a09c221d6e9b5ffb6b939bc48","first_seen":"2026-07-12T17:51:34.283081Z","last_seen":"2026-07-12T18:18:26.190499Z","times_seen":4,"resource_available":true,"data":null}},"time_used":6,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":6,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-12","alert":"Phishing Block","trigger":"checker-secondfi.app","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"checker-secondfi.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/cdn-cgi/challenge-platform/h/g/jsd/oneshot/73f5d73b1f13/0.6102496380237149:1783875920:nQIB4DkFrsBzcj-FRbruDS_Y7PYqyofUhZxgnFE3UrE/a1a1e4e63ffcb50b","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:08.136Z","timestamp":1783878668136,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-secondfi.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jul 2026 15:51:01 GMT","end":"Sun, 04 Oct 2026 16:49:22 GMT"},"fingerprint":{"sha1":"5F:43:A3:B2:5E:D7:3B:FA:22:8E:30:9E:AC:C1:1F:8B:4C:16:E9:C0","sha256":"81:6D:A2:A9:00:B7:E1:75:ED:8A:F8:2E:3D:DF:A0:71:33:38:39:C7:D5:67:6B:57:9C:35:94:D5:31:3A:5F:BD"}}},"request":{"raw":"POST /cdn-cgi/challenge-platform/h/g/jsd/oneshot/73f5d73b1f13/0.6102496380237149:1783875920:nQIB4DkFrsBzcj-FRbruDS_Y7PYqyofUhZxgnFE3UrE/a1a1e4e63ffcb50b HTTP/1.1\r\nHost: checker-secondfi.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 13824\r\nOrigin: https://checker-secondfi.app\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://checker-secondfi.app/\r\nCookie: cf_clearance=.K4B0bRYO1Oqg1ZTL__NBbIlxPw6JB4KtAEdTZ3D2gU-1783878667-1.2.1.1-U_MpWNYTxJfHTnSRLyPb.6DGa.Gs1GOdyUMAwmdAP9x2QSBylCMfLtfeHqr.zxqqntY.IywBabfgANUcP15Q.8KOYEKDcUe9gSbTnuTza8Eq3wRyhuhtxDy9_iAr87ky_8f55tBljaNnGL7Vam0OvPwsW6xKnelI2F_fp1aC5PyAdrWtD.bfQvTXyuvXAEBUCq2QpGd2iknIYzWXPoUZ50.p.z6MxrWkhBY.hH97gh2WVWnhhLHOufs3sBsqr.yPT0x5OtafH9JuOP52caldMGaJKQNa5l8buO.q7GxcqpNfZT9WNW8NgYXaSR8CFL.THkkWKJpawOzFEgVUjhN0._RxaN1l4oEJf1KKJpmY8EC8A6SlBJk_11VJiDvZ0F7lY.ebBsOm.F7PZUt0_VRpezo9kCKpjhKYRDx462VvzniNAT_GRwiO96ZnFn1KBJkFa3iDuho9mXZ_dTDBkrnitL43p5bhHayaGhO1zAEW2uHQM8_QR7hWVsGOTW2QkJMi\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":13824,"data":"2OpUajF-tKWVWFQez3Ppo2nJdDwi97ZUgK0hkE1j-OME8W0N0EYMLVQYBjEOtyOWTfVXPNVayCxYY6u1Oq9LOXjz6xpMTQ9PMgMNKprXHj8XOXYp9-OPKAqdR9FBD-a9bzDfBAiaaA$QvY5rEC$iknDEJPPHci26oy9expJ8BkjL0Cqgz6HfNnc2WYUS3WqaWQ0ON1vevR96TXjSod5$+K33FhtsQ3uFJwSohEPCF3GOMRdgoR+$x8f09vHMgBj2kQ5omDcUA9s8BXbO01r+Aj6KHEJF63IvBI-kqOGb3nxFQcMePB3VduLqrdUm4GvAgtCp0NEY4++hIt+wVmiqeD9WZ9Fg9OCBg5gM+LCiPrabDd1zKOZsjEt7OXEOuEmEi0vUiK7F-h$AT34BPZNiNnPd8xhzEtSNGgG$-wqVuJ8+fp5DAL$cbeuBBkQI4XwU$wEwG+DfwHT+IFPFmM139uAA0iciX7K9eCOBZaKWHZqP3NqJx6Rhj1pp2Qa+8XU3VCu40wELMvQi6aR79SToPC1U835JhwjPeu-ockerLTj3D3N8Hga0F8Oym8CT4T9erk7a8P3rPaK4Wqvd2aJXTVQz1LGNXEXCbIXWqR124Tkur0Kev0aNdNxZtqrxV3UNpgJN925gJb7qx6W4sSf1goDeFhyHqUs5ft7j4o6j4bE-x52UKRxCE6iEsG1wMs2UGs81qS4cCN$AfqXWwbnkrgicqZ1ehTrEjFJ2JBrXjoEp9xZ9D3J+MUigELzO2DVRQ-9iFjpPZb$qOzcgG-dp5XEOi7TtG84J3JSoH5n0PhSDoGsosnnanVcwhsHH$OFWFfItKZZGF5YVZqWpowmuiHMqbskS0rV9rrdGHnffID5fqjbjsWqNs$VY5xwd+yEa6KygXbGtyZGiH14eB2zMXDEUFKzOT86dKqW0BM5dSZPsnO+YFxFORTWdksUx3I19x81O5bfX-QFFd20bTymeRFLpeRWa3LJEsMHwKDndeCSge0h1nzR0RTw7sDk6FE21UA9+dJ2OInzi+kpPpv20CEAmUWiNO-G6rGb1oSG-Qj4UCBixCzAM8hN09BDB$$W1aZTFkuxmxbQFQTe2haG9+pLxio4XtvAY8mw0GCRQkNP-azz1+2Q9$5YKPKqfgXhGV+eWYGkSeBNnu$npAV7qGzdBo0Pqr2+pGyGnxAIjoEHdXt2ihsqhpR1eC65sY1a22Q6w5hL-LAGq4AC72D9cpfwrQHM4qr9vn2evmzesmN41em71r30ELOX9-DAHR445qnY4fvfapz8AReRJIu6FT00712hbALEdq$Y+F1BY69cHdGFQ6wsaVPnXiSx1d3nKLiF5foi19ACD26qfoncdhpbzk$6ONV8RM36KOj2dnXra8Grs4YqAZ8dpcP$2mdMx4RfapQMFIh0PBTC8NaDDEgEVgvSNyH5oOzzjVbBJ4szRibdK565LHWzPrSMjLCz9EWDcFm+rpqLWS-2Q1sakBFttYHY+aGFYn-8RdiBeYfjpG6kCexDFNxY6ER2r7ckkXDfpXOBTL7Qmxo3-zKPn2jaJtNK-ppSGyXL2U0YBB2DBiBwx6AkPbtZrx317Y+w5md9k3obHprn1oQs7iS90UEs+iIa8bdjE$xNiE-IIAZThGJ+Mf3oXIdEZio3hN2BeWc9Qhxmhxm04JpE6-G+yjdRACVzhnsKs$vLQFJh2MszdK147IzjbWoifyqtHuF4fzhJuzZVSU-xk0-38v$Z$m6uIuWhX0OAGXSXQqKd9X8aXI4sF3wX+yLxzj9spVoczxfiLDGVt0n9+6v6GAUnfBYzcQ$mzsE5q3eoiZ6JHVjSPv7RcV3-NuoR1pmQZarjJu9tVrZoQSFXCF6kWDapsPA6bP0u17E39X+-dk4YUWJGpb13ebFOW0qyKiv+i1oBoPSdXAI8HP0LAIsR54OUFzRessZW3b0G0kfDUo-bosADj5upvO1CMkfU+jsqnHUwgL-uNSOaN+wiUGYz06ZpSEziMuNAirKV0A2DajYvwSrP0QzHUk0Svt6ZmAapIqYwiK9Eiz25JSdS41j0iL4sRYpPYE7weTSsxVQk7niAEgpEvcoJwLHFDEgwBUMJBhwjKjpva0z+NO5rLtMnQanw6bHTNN9Qr9cE0-crG6kMyNXo19RbXGYPd-PYKQoHraTzTbShXOn-HOMU5hItsZbzDmDvBkQYu73POqiksneUABWyqiK2-aWQm46tR8dasrx2ushp7K1mNyrhz$M9+x6pNLEJEtq73pTEvU8am9SJ0Narvin1dtqDXf4ZFAMrAD02$gT8Ja8YNBFpVBYK3+x5XBbRqM3pUY4KkaJvR0aE9fqyDvxp3yTfpfj+Lp1RuuawU3P0EHiDWCH6Wpt7c+80H2hcjHjuZCqAaCTAa1XS-Wg8om+g6TuZDPfybp1XY81DqzIA55Nhk$TL+1TyrkPpogqt5bC1fS6WkzmpipFuo8M607-pg8n3YkR3YknnCfC470ur2BqfkPkxiuo4dmRsj13KcSvLrSDMIeXqXa6PFhWSFBbSpg+4yzYQMPXtEyRTI3ghqfpgUFkOm0LueXNLGguA8JA4rTxxn436C3e4wrpBthIhHIQhaWso9G8WyJQIbdjg24q4X3M0xtOWCeEQGqTnmUIfwqTZkavzWivPiKrychjxEFgbETTcxPBxmeN0syhdvj2tM$78iDVAZWFXUKJffd7$9f+YFZS7Bz4fzADXbD1B+4E0kBE1LvzTB7pj38cgFJ+REditksVAxXy87PMUM46HNc7nsDD9TKOb9NtwbIgb573GFD19wBoEdgbI1S8iUM59Ajf6vuSVEiRx4apA+dsQ0Tvg-jJ2hbBafXtYx5Te1LnqvaXrT-UG2ftYGNhO3Teiymg90TCXwTBHyk$7cJf73AafF2I0mWxhMabAhIOZtTxM2gSCpE6PwXiSOQwzBcvQUAQH+B6EBIr7vN8OYa9h$sqVA0s9FWdsObCvRacMT7G9VTJrBhsyrgyzhO5NO0teZRgL$SrI4+I6FV6T-HgjDZifXbnVdgtQQsnDgMC8YZ0PQR6Ljw71gn66rLtfVzyY6ueoRa147G81r$pKOZkoDxXcWevuge4Bs0KdcKPIET5kv0gkDYYAyW7Y-m3DkBm5$uDHkLtc30kZL-kwfg-NnYIjUFfYGEzfT1UFafNOhTS67zg3TuYdUk1WfFm3FKwgKNevvSGw90hhfHNvWxQRT71VhYEDBXB2s$EHMdAiLgp0re0BRIdIzMP-DJ2THd07WX15iYmc+CetFJ2i3R6eBmO8gxkPhumsGeE3j4ujOpesZ-9EfUsv9J6yfgItGuBmB9$ihYqdLYytaIkSgUGh8fn2o97twx3ZypFwgqZnWL4NbjsBJk5-AH2aM9ri2Gj2MTVZS-w3IvfOQ$gTJfY6mgIyFtj-NzR+uCG6zM27InfZLWptfUpuj-JQSSDP5NaP+pWqBj3GxgPwnjN46HMuZ$Wf+FGOr8JkiB6RmKfAU5E-kQFQPtCaj5kHaDFYioiiKRvnvCH+RerPCwjvCJbeEuXNKFpFfjcskG5wYN$6-7imhte1V2s6qxd7hMDaB8aL4L09jjOeHvWkyt0r3cYmQ45EALh-et1553hU$GLY7n9k4HXSu79JSRntPzLLouP2h7s6sYZoO5LT7Aq6V5Z6Yc4D-GtK7mAL6Wxz2xin40Tkojmmx4Lsk9rW5zUVkS7z-QRgmh1vuHe1oWeWX0SQDWu6IQL7Sn4F8syBweW+4WSR28ohKkPsQ9u+6nhzm9yg8XPy$dyt-sk2eYeaeafnefFk3OvaJd17Axgzomemqrr0brY55+iVHOD2$qfFpC$Dyt7FU15TqpxBvmCurP-mk8$-gpErm$x2ACwjqfh-rm2FiozC17dDm2hfxH35VF8D25HKLuToizV80ip-6w5Wr3mN3HMBbWBmV3g-ZVTt6HXsN1THtW-F2Uhpcd8qIZNO274JkT4YWyugpZ+5BucJzLJD-T89JyHjwj9PoGfEzQEb2s5fTnNtJOoJhzcqG1BP79bVBmzFINrRGyRTO3FRiZW84UZXK5MKHNE1yftS8wuONGWxuDDhKJFfIwaZcF-3STKqZvUzzddOiW$LB$fVeGCLmdcMCH+wPkXaJZyVA1ZoFxdUd49Qk$S1TZb--NghFqP9hCRRi7+FzPaB8iE-q43K93cKQWIU+XLjpswRv5pSH4SiEYiNWaJnse0x1xP4cqbKC6FH9BXY9zZ6mqRNB-ix9PLChg6eA-rn-QI-7QYh$Wb1DDBfIQex4PCq0T2FnfkS-I$udFe9Dk1VttxZnmQVWVy2B2PsC-Jov2KQyuGaCO5CeE+8w7hKLi7MjH9UxSEc1MBKwS$K+adxgT-PboD4Zxy5tUfyu++jmgdXZOcR0v-L3IF3gNAiVGQJ+wVqfWhKZZXYdCV60eu7ECUL7ahHk3cVacfqeHN6rxTNOiN37pb1HYWG8enzVmraQZyb6ggistXMNYYjUCtuhC9ne$M4QeSjRIfcq2YFnRB3TVJJhnpsTFhErQ5AWm-x+mcBb9GjJsMuOWe5$0kFjGuUTi7k57Tjjx8099vNLw4gIWtjNc0-4VmKq6vWmfp+kiI78Wu0fsfa-YUUvAvvTP0d8IA$xtw3csgrW5d$8eXOUBA5OuUWSLRiGhWzjF8vnpq2sLiVq5p1QogydRyxEZbN1hZB$K1V8D-Izpjm427onU0oVt+wpB4PtNC4-DijVvCwSqsV8yxBWQNUbD+WeVFn5ceV0A$vWHJN7REb$JBheJ2syWeX8n-nvQW4QYB7gIFgSANaekBPYWdhgbKYLviudEtaMQhJTryV7dDycSuQLVGkCUBo92tv$wGvmI9KAaaL9PQMfJmn3CpBjNpE352HBVxQDyB8yQhXUY4Lny1Ds04kw+3Fuw3FfvNDGr4XPmr8M880cbtCHwm2nOSk$3U2DZUcz0$+VoRPmoh0qNCqgRINohrQmvvCRoLxSk99g5oXtChnG6SV41C33RWhj8$5dC5-4uaEOK1dVrLDzKKAAp-AmJESYzKsG8rF4kRaxgbaGaAcTsrNv4K4qyJdA-G8anJjnpnIIjf7ZDL7R497257WPJYOU2XGH00y9LvV+qGeuN4fLUPJGUWnHgkfasu12wtfdtiZ-x7z6-F4pDPIOaenGCRnEzytbYUfLMF7fB0jHdKoCL3SxtV+17mh4g-7iwWBgDmWe6jcs6L6kxojUpLoBDiNRPf50i5N+kjnGkLU7nztNovzF2e-ME-Hqsmmzi-BjVkR$1umjP11NZwOYboNSb9fJp+u781NF7oTIN+0rmC2fGX3mjp$jF82km3mbC+LA+rdVp0m7IWJgVGLL+CAcZQzjXsHfCLcUBItnQbmr5K7xYGhvTR$rkcIFzTjx+5Q4XamJs-WrmCpemG-wTcXRgZyunvAHL403YCtSrb3-7zW7IMh6UpKqzP24pu7AHrCxaaWPJicV$fOIhbXCF6jZJCKNpGwtHrIc3ciEGHnBcpSa0d2b2iI2j+GkQp5B+E+t6aYHmJsWCmavMnhi0V52Ncnk-mtovYBJeYrnwFL15P3JDx$soF0a3jv72P7fDkpskf5dweXmFWJjIbbLPrQfBmJo$t85QJSp7ptiOnVQEBaQI1D6fsja6akgnHSbKuzUzuUVM6uZ-TsKxinOMv9JErGMS6rJsSrEFmCp5N+ZICcrDt8XheDE+gHsNtGMcAIsrVb+aHWBN25onqqQBxtAsraCW+2RSC8cXTQnYei3yyD3BO7wT55xdnqMB5JPgq1$e6H9Gc$cCAhv0Gq1UQahcIJw28GtQnvGBWIg1872cQsRPwag6CaVD0$OHRehaECiyRo03RKy+9ti2ofEFsikrS7Cpa6LzIxwphFtB$IGmiZK$WwZ3$12zTHZErP9KoM3N54OuQiWfrVo1PGB91-XnLnz8wC5S1i1RumHSaNGdA5oW6sfJ$pnF2OahYCPe2vCwOcL-kS2t0v-tM3ZdZdN2Zydns54C1Ig8g0reeOGLz2LwEgC79GmUMiTzOSjqY4uvZdLwuRR$LW69aECLjPLmLni2WQ6+62O2vmhNO9WEXZEIh5PTMO4u6p-BFtbAdwbgQBfcILDiQp5Hwgsc9OF56ht3QpS9-QWyM6mUxRgV5Sz-YRZsmZ6SABN0EeInDH0rj4ED6GNxr0Xun9JgQywsBvb3nDDFLxZT2qr6MVLSkjEPT5GUaHTY$vnX6bSMJLySvvNEyO57ubbwApLpsswSNnYq+H1UzopIIQD+1upkMhmUQT49vNIbwGu9TVktcYhFpBMeNeA-E+X8xWFhp3E1JzqtUqkx$tCW8WvrpBpdbnyOzkEdQ7nc902fPf$EWCAD4Fbp+yib4c8yKzRg$4Mz2SJNsPNXhyYte$x5bHPfJ0EN2wiYHdyPg6bOjhs471B3cLi-SAQAYBUhMmu-XOHaV3RugJITA7JVG9Bo1Q7X9LsbACj0knUWTurkzMESHoHBqSJEEdbvJTe86Uyh1XI6t7F4izBQUdocVszOPtq-Vu56uvsZmsBXu9hB5KXuZ8v5or$gDOY8g9kPOZ0IvwEFoIYDeaamJAbmpP24hVSxKaR7p6diqpIQNLFoJeD$ikOrCx+3VX4A8G9qPM4RmnF3Fv139BrJGnFnoZ-2pQumkgA$qxsRRpNiae3xge6-2eLB7$qDY529PSi1iukVmvKSU09IJpi9$HB2$Lx2nj3MOtEh4FI8zWz6vpgQ1WNOVvNesRKrUmOFAMPah9OOJ++bZAfG7bVsUbiNu510XX-B$Ujr1oev0xr9JZKCnWQ08LtHCs-PQ+faK1C6OgvFeOLs4tEmCrixCgTXtHmF5CKorL69Rr+d18j0q0W+TFs4I4f9Ja$mjaOgCT0iEL8S9XZ326jETBLydBsEKivtunc5jHorxbtXBaC1gUrHXdzgP$KxG4+YyTaN3BWcPT5jIcu-wzwG8FX3+b8cbDN0JBNv9nTesqsRzp$--a0FPKme57MOGFDZV99ORK7CppUQAASoAubptKhLp5WsN2SsBhnpDJzhAp62$UZb4y6XXwN+6X9$-rDLCfkP4VPzfvGd6P2AhJuzqBP2LeCneWB8BUeCIFR2I8LpV5OehYeeV2c6k5j35eiYMIIj-a9i0NpP37qTees$CMK-facDS+CqIKg2VuG6+VV0S+Lq+pQHcvJ3CooKiuF3b62fLTFEVEGZxq2ZXcaAubVWVBBPv6ck8Dx5B1pXs1nH1MNZ5oXG$dHsamuyOcdTnnxSP5P1-5NyC9aQstT7dK-5TAVCiqeDmW-OM8-BL5N48cEZMAeEN77kXWkwDM2mZEE3s0ewxRwd0OpzC3KfQaTGWvfk0U2EmOTNyf6m3Ndxf2udVaaD-Ltv5vqTSK3fenKn14TVnYnPWOTZ-gviUwGEpKjIysISE+-P6Jp$9+SPDgHG3MtXgy+hHPnoQn2rhDkNxpcUfA6VC2vO4IpDMtHLbmPNJ1AP2VsxPjh$xWWHN8JfcBsWecOkXyNW8uguLtGiC5+hPBr5$2FnPC7K9SKvDmKpF08HEVDFwgg9SJ2SSWkyEEIeDmKwqqpXGi2WJSPUU564xoyf1fFScL+Im1JDfgP0CPap19zNY9b3z2SzOALarrspKMGeSY6WLY6xXeYL8fPCjHvYS2XLbmH4g-en0Ou6B2-zwI1rMNPyv9KXxpcCLK-+IVrkD2i3HNIhcbkN26R2Ywm7-D$L3RO7Y9Je6dtWVdq3OVINUoA0VBjRh9UT5y9pE6nOjpEo54dAQdvw1PYnEoXNUV-zIsJUGXsJDd88mfMsgmGKmXGZ-QOjtr0hO27rohMGkgY1JbQ6SVy7k8C4+2LP$uOcKFnTD43-C38UbBRQMNAziALc0$kU20TZs+Dgj$sj9esbBMic4GFIpk0CEdFqJ87Smppqx-f2T3zLkdsEyMxJbx1iTgbZf5SOVzxLnDI47IHyighwjGMSs60ocAhvGH7Ugz5GzN-cWFAWRGEsOzEjyT1Cj8euD6-3RTX3YKYmBen0pTHra5bF8C$$4y5OYkgAobs1J2+adzuHkkUwkcsruMISuiwxezDtH-B7UsMrwLgkLV$LRxiCuDWU+c8RuxhqHAeytshYzvVw2K07athudIGh657xxI5mXN+t5Qs1pCFixuNW3HpL0HMACbJjqXA7AzD1OUrn7exZ+-zh-6K31wHwXIukrKEd+nGwpYDtPS1FUJ0PVpPuuAYQFNE2ehzavAsvpb+wuz2IN0tpR3tSDcSpUUm6-VTbjpkOqTAO7XtFVZiDxKEOctti12hJ$SfgDkicaOZ45B0PWp-5XHYyY0SGo+TJih84ttqfXV3gwto$WEQOPq3Z-1254W9kVAsLsP3EJcKj3$A0VYR9g74bE2wWKQpcvefbigj6Xt7k3BtYeVNi7z$G+mK$GZU$ZKigXvbSiQ7hYmB877$mf9CpiIFGyqMtepQo3CR$9iX-2y+VvFyfeCH9u4FJDadX6-fL1j36ySfnU0L+0pPMq8aSPzftahQ0z5oC$XFpncJIY0e$Uwa1o8f9ho6vxwkroQ7Javuu8BGMgdvFSQ$iBtwUL04fKz6tNxeAGdU2RGEd6Hw$I8zWRm+AUCRMHw5r$Ceg3QSzQAecEmcLPFDXs71FzCsNOjHumVpfpDtNK2b20R9RU41a+pRPJHwzGkQFh7eb5HKzXyA-pQXJOYBD+nREeN0ZsV6MU2PztFAKhYEHKfPMobh0WIxAZfLdFISVncU+4wAz7Ow6KzKNdxahunnRLSGLh5RtaYyfiNIfjWDWtYpGjS1MAPI4Pausp2ahCHCMyKDZBwIWxf2$kwQZfuemZt+7i+sQkqWiK4wXUbi665ASLV40OAXAY3KWXVGE1mVI67emvpK5GJI8q12OcT5Z2p8Wr5xT-qbM6UqL82bAG8yE4qY5D97z0ywzQVT1yG3pnGTJhf7GCgk69IW9II4sVfIox90KLuLpNIt4gjv61tPm6fWmh+0kAwf0MEkXsVwvK1gY3XtERjGHaSsAH67iiEx5p+8LcJOmHxCvgkItUzF5-9jKEvB+3RmWacrSmx6qgEZ63TdEVHRgMWRGM9nrDPmFHLZqg5pfe1xUyCgzWcy2x70qYNmYPgBSw3HviSbLbycVyXy$AegWDO+ZGQ0Ypn$PhyJbmKET7QcVi$sSdD-r3bBpOSCv8rGiZWk5m7s6ZcnbGXkuISweFbUJmQiSm5wTrH1IZkTiHhxv5ZIyoceGT-0+p-pEhw2-hJVi6gpgxdChXA6-0z4zEPAbubhAnVT7AFI+MVEbnxM8LKfr2+pOIfQXipKqqU1fDAQLYC0djwZ5SfLuQym$$aDk7yyMJRZqNo5cZHXJI2gSRiLJXJCjMmqAFKHjbvHLmRPwHt7WYcLWven+jxXWAnUmOLnMcZoi7sPZRfLBMG4OfhVW+VzdjYxabEU695o9D-J2g9exCi+kW8eqI2ap5Pd6-gLhmEWT0a5K3GqMRNgNTnXU3TukfugB6GH1n7h1op$KAuiZssDZyf4O8WF4+I3BKFe-o2mXD7VQXoNtuErxyms1kDdJwGSwq-HtuJ$FMLHfPgV-QUA3IE16CKs0ivzTkFFaRA+BCT1GcGWgtFUCnjC1RrHibYda2x5zHjIKh+ZFqgdzjzNap$bhvWuAX9SsipqnE0KAp6d+3ICn2jxer9b4MvsHYRfieJ3iwds6GoTRbmo0PiqRGNDW8Yi9Md5WA2rrqw51o41GHO-hzdV-NUS0yqcHwMKm4iQDwzTqPeaIsEPEwftwnp+xXurYJjTDP5j2EXaV5279pHpB9NU2fwmAD9p8TE$dPfakLYriNRY5vxTgy8tS9yx9mNxVzzImv1oyRXykt3$T+rm7iNXBjvu6Sr09Em$ZfO0P27Ru0kRACmqOprWjbo7nYLbOmHaBb6$SPaVKCK1msLn4zVJ9dKbTW0pd3qc1a69SVBSZRWn9FBgHwmVtGW8V2Fc4Ct9Q0I8kHvbwXu0Rpyq1R7gvVygEL+fuJKthSIfMGaa7mEgjRdnIwdPOSh-z7Aa6N3x4yYc6BA3S+oIO+IvUJAkXqVJhQiSZQt4w-Hr0VgRXQcKmKpoKHkrfU0HRh9Gn05L7VXF+S62nvG9hNZ5uZrU+iAaN8pv5TX16ICw1Bz2N8XKxxg3InyXv$U8eYZV5cI4sI9GnwZwNEAzNE9Sj2DaFPEz913tDnw0UzXsoWiLn0CDtmTQmTmDG0wocdS6uQIit7cAkMksV6gXf$3CK29Y5rr4A$40XJWrtn-pPFQc4NmO9OeKnb0Zv0n1HXAx97bP8G4ZIH-rEw9pq63qpNjPA4rhOUIYiqyAD9kHXcxjvAI32i$pedNoC6CODAQvcVi4yg+Eo07Nic1egW7Pq+ryTzeiJnHTPbvFh8K4keOQDaLWUxWdxtet2U7SkBbNYWRfVBy5OM+z0WXhcrEtW30nbO$To$T6$x8e+F0f5ISARrcCQF1yXBM$RQZGQ4A$5jY+55Ia$S4$WaeSQ1-GDHyRqJ+M82Bfa34EBM-C2YHoWr29jPxK0bP+fRK+qOjL1qEoX83Gusy4FLLvEqm4qh5tOsv0+0HBaWdZRZPYTW2+AYXhUbQZ3yNrMODdoX1r54XFfsSuxg61hS+hx0gNE3bHk57ppvDceQ5pfP981fwAW81y-5JivGiRTMeR6EsUFfE1za5YQH3ZgzR95PXEdxRVGVwR6CcuUDnFkLqpmCyOzZ4PUtj+vQiMQUSn5bkG1M+0C+yx0MzIbz1PpjiFEoGIHkLJzLFcwUh70c4jctztdEVBVx+QccqO9hyQ8bNct5B4m3GDhHZ80LESbPrDaDI5jguDNw5-8MAQaIoJ0D15dsKvEvVXtzk2V41ijeu1miVB3e9pLn2P212-Uo8fFhRgUVjF5uHpuPj3qmpC4DMM+Q3RcOPytxNxhqnu9EQ3cJkqYP3KDv5TFKhyDXBO4XvDxxAvVycW8OA49xSHWGr1FYfqN7VdRUwUGWQaXO2Zseh+JT1QXRAM7iJPrdJXkm98xwy$Ax1qZx8T6Bg-cKhbBPyOAKNtAOevA9xo6KFthgbQxsjwjLSgET8QefRxPC+qmSKx2wqtNZFCNQ4xQrD2601FuqE12j0P9zyXrOH8qqqoFciHssXA3BAhEATpxpAxDav+sPNDr5yhBW6$I0JXcGyfQ+WQFSAmpp4A46SPr7eC9A2PHQucqo0MgRaDR52HpGI2bchHBd0qpLHQUM$-RWeqnudf9qEL5Xor5Z5H+xi6OLTz5OELhzK3e+KKkya8uS1OP2mOk6SJy7DAYYmbcQj81gG3QXO867zURMOrbPJFeQfd0me+UBTL2AThthv-dUZY5mPOL0TAv$22-FH21LQeIeI8Ejc1ZEhUH08v-mbIcQBxye1uNsI3ARdR8dGcndIODEEmkC$SCkeye7g$8OnDVFUMoZG4iG2Uz1RD7iasQA7sozHs1y6kbMOF2VBCUcv5cRByBfkb3CFdYDPSt6P1h+S8mRJUQvKFKteHxpQRWDwTB-hoU0cqi7Zbdb7SQMGHfkN0C5T$VSSwx-g6hI$X2Ctd5+CcFKpzLKzbEcYX+DEf$b8x-twhQWtLxAKaLAPrv6tNkhQNDBwkiGphbZp7tZA5khaAUGCniUVUzTc+DM$sytRYZnYr+8ZAUN9K2tbLc$caFDbc7U8719mpseFkFfoPPApdi2DcAJ7b-OsF8CzOPEb31zO1jN2W2rtpSduqnxDsjZMaNGP8aTjK947E29gSz7m5QJom0+o+SE6hqv9SgTOJ8rDKefzzdMyFPDrBIIKd2H088TB9d1bJUFwLcwpOCiqB5YWjetYDDNjfLbMjzDsFmiAjSEFM+CTB99gtTg6JiePz2HUxV0RN8$PCI33su2-dZIAHkEx3E1mgYLzs8Ee5PKWiCE21k3vVmJNyo3TC0sjEehtzCF5zDY+cqF+gpjue56n$FxgoWF-bW$f3xS34DxsZ4DFtediCd-tJMnt3nguRp9+m3YxioHkCL7r9cFkTnq+ntHqkdcg5CFek3w8BBY3us7Q+NQ3EAEqRO$JNSGo2AaLeJf-gg0MuIxaR773Sdf-54nH-Eb70KDt0y7sqpq-EeIR1ZUT6EudBwDE0FbyLRCN$JZTnJsZ8C5Kz8jWWu0XNkwD4bWn84BG$6FtUmwGMBiLK--GCc23$nDB8bZGMfRWzzO8iCgw30csGFNUfJphTfQw+ZjC8v36Z6PeXebuEtWBcHIoya5H7hk4BvQmx3m47mt38MKc3go0ouTkkU7j+n0cgw14nRPIw7tHV$3ZGjSEef$stN6cti7RL7B3tvJ$2fmIr9-d0Q51hUJXoQWBaod9SBeyVWx6i2t9aeRdgrqiQNLU33or7sHBAkh4eCxaDTUo0kx+BCcTLL9wbHEdaixypVGQhsAN1hdB1N364H7mkA8FotxQmwm37D0u1jx3mAW2Ym$cIAIufSQkRcAsSWgH$VUfUIJgP4SQDKiJWbUgBK-f$9tW$p3hGDxmMNFP-x8T2HJGZDU41ztayYPGRqhqHIWEQPUNKVaU6LHByY5TYk2$JtcmUX8tJ$7okiteeaPOjzyQsKp-D1v9uPp$IFw2w5VTNX6MKppTFW747s+yoajbR4SXMBiNMkDLxEXwikaue40hWDLRWE-LLKKUoKcAH6sCz4Y4$zr2qq0tWJIqQOKkP6$0qvfs-42XOrdNBpIyXGiW5Ibf3OjiUd3Of2TShdEoMWiabgiYQ33tx+GXd-YwRH-ZOD+$L9Pu6$PIguKA7iAPJpUYPTW$07gnm61hT8QG2sbp$SL20LRUXQSDDVzDkIZqrzyLB+GR2NN-75EvwB-MGxyU7d$x$cjPI8PAIqegmIRAFEVPHi$9ZTDBgR3h91zRXzIZ3QFedaLt7L56A7X8U49tM-FWYskvXaIdbzJnAWGqAxXOg2w-36MMINf1vJuwU+yoQfevHIMFh1AmHOZXKu2Yi4+nkjBd3IFjJcwouLYgnh$6Sx-U+1ng1+ppJGWdinK31w7h+L-yIXCyOXr1yXq0cI-P$fGiWw2wMoFew9i88FwcJ5AxvDKpc3urWTXIA6-VIWetxTz$LtMvCE+Hj5m3s3MzciIpsVmwynVXVNg2khYiqc44rGKa$Nx3qvLLSbBtAzP6dFin6W3wfNJjxKnx9j8MFGi59zFMqX7GOXpbD+vQE3s5CpChyHUt-vEypTL4sIyyi2OK2cM97s-H6NMBYdIRmvFBznpMeZgFMJ+Xd79WoVYLvPvHLHTVkvfQ1ABBnAL99h4V7wvySbCrR$HEH1TmZ-n$tX6xG8XZV5SAkw--gv2L70wLWkA5mv7DMqvDEeG$bUqTW86dL3P79GP4p7bD6qzyGYHA3X0YJc9ejxFwErh0LZZqV+DeaQJsez5QZGuCxLQLX4wKPAVTv54VsNjaBVxu+qJghuCx$F+53GH+iepjwfcW19WVU4okphhv4PIzd9gsBUVUJ1RN42kE0JIANinmkL4ViwR-GSSq7s9cUbTqEbSmLEaPWibb9x+GYWOBovpajI25yGAGePx3rLaFJoCHTQv8cQBZ3DYtiQj4RM2g9sNL8pA5AQuSNK4Tn6FpXdO0EPUrAethxbtGSxFog2cs-1fhhKvon2yYoE++V6oI6UzxtkBr00vYMND2ouoaxzhfqsBFyXQpBsWyOOSib4yfM1X7jgxbKxqovU8haVTDwvyCw4EqAA+gXeZu-C07sx-pqe3zpc8JScytURGzi8jE7tZtQjYMSJ52wb7q$y6zAAqMvUmrBoAcWEeD$ayJsAjF$3dYJNbvu5kw+y16A0yNCP5J-"}},"response":{"raw":"HTTP/3 200 \r\ncontent-type: text/plain; charset=UTF-8\r\ncf-chl-out-s: TQtjri0HnVKOq2jaIuLMePt+hu00ohedPtb3/lL1LDUo61JvBZpUmQypoWiyrt+YlgjFCpzYBzHT+yiQMdts/wB56hg/k2XI1SFy2pDrWZrvY+0IhsiWvfWRR/j+bys1oEXxf+P0JszJg7lyBZdvIBwR31kbtSbxaFZow/aNrIyFP45zxBshxP+6wzT/9v8Kpa8oWNH/m53Mv6RWC4rEjIcewrlAztefHqGEqT69NqVN73QNyDwmkumWobcWPZqLbEq8R7ckgQ1y4re8W2oUFA==$eX6Eto4fH1Je8iDTjcevLw==\r\nset-cookie: cf_clearance=5y_I5if_KciFDxaqqpNswvoHDSFgxuE1Tht72117pvM-1783878668-1.2.1.1-kk.HEg1n5rTaueic.sfTKRfd1N_6qh9_XNIxs20JkG_w1LqRPlgQul4QMmgPB3YV4mFjichakv6DklwPsOj7cEpQWTgVeRCTwY7IY39yBT6QtYRDsGTcgJQi902XEZLlLuzQznqzS1EI3c8qyJ4uk5VVwpanB0rzqPINdkQGWXb6LEa5YkqD4abRmQ1u8JpgSt6r4_Yw0klet1ZV10ageqgeJfiwFgzb8zxrwo0BFtNineWjzkzaWI_j8wyYMwzbNmCspggwMV_J_azBBixyj_OcjZQVbDAq70QynTOAP.pKgOypAlaueMBlPazmoIKwOxDoEVi_hWQZN7rXDWG8wePwGWUoIIoOE7fwSc2sUy7gwvf2JBkMvPUtNR5ZHaQvNimHTA4OtMoKcEnuMz7bTK3f70I14a84ye547t3641z_qep1GSUw3IBNtKrNvekv; HttpOnly; SameSite=None; Partitioned; Secure; Path=/; Domain=checker-secondfi.app; Expires=Mon, 12 Jul 2027 17:51:08 GMT\r\ntiming-allow-origin: https://checker-secondfi.app\r\ndate: Sun, 12 Jul 2026 17:51:08 GMT\r\nserver-timing: cfExtPri\r\npriority: u=3,i=?0\r\nserver: cloudflare\r\ncf-ray: a1a1e4ebddcdb50b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 0\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":16360,"mime_type":"text/plain; charset=UTF-8","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-17T01:40:15.71791Z","times_seen":17302606,"resource_available":true,"data":null}},"time_used":8,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":8,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-12","alert":"Phishing Block","trigger":"checker-secondfi.app","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"checker-secondfi.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/SecondFi%20Wallet%20Checker%20%E2%80%94%20Were%20You%20Affected__files/umami","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:07.990Z","timestamp":1783878667990,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-secondfi.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jul 2026 15:51:01 GMT","end":"Sun, 04 Oct 2026 16:49:22 GMT"},"fingerprint":{"sha1":"5F:43:A3:B2:5E:D7:3B:FA:22:8E:30:9E:AC:C1:1F:8B:4C:16:E9:C0","sha256":"81:6D:A2:A9:00:B7:E1:75:ED:8A:F8:2E:3D:DF:A0:71:33:38:39:C7:D5:67:6B:57:9C:35:94:D5:31:3A:5F:BD"}}},"request":{"raw":"GET /SecondFi%20Wallet%20Checker%20%E2%80%94%20Were%20You%20Affected__files/umami HTTP/1.1\r\nHost: checker-secondfi.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://checker-secondfi.app/\r\nCookie: cf_clearance=.K4B0bRYO1Oqg1ZTL__NBbIlxPw6JB4KtAEdTZ3D2gU-1783878667-1.2.1.1-U_MpWNYTxJfHTnSRLyPb.6DGa.Gs1GOdyUMAwmdAP9x2QSBylCMfLtfeHqr.zxqqntY.IywBabfgANUcP15Q.8KOYEKDcUe9gSbTnuTza8Eq3wRyhuhtxDy9_iAr87ky_8f55tBljaNnGL7Vam0OvPwsW6xKnelI2F_fp1aC5PyAdrWtD.bfQvTXyuvXAEBUCq2QpGd2iknIYzWXPoUZ50.p.z6MxrWkhBY.hH97gh2WVWnhhLHOufs3sBsqr.yPT0x5OtafH9JuOP52caldMGaJKQNa5l8buO.q7GxcqpNfZT9WNW8NgYXaSR8CFL.THkkWKJpawOzFEgVUjhN0._RxaN1l4oEJf1KKJpmY8EC8A6SlBJk_11VJiDvZ0F7lY.ebBsOm.F7PZUt0_VRpezo9kCKpjhKYRDx462VvzniNAT_GRwiO96ZnFn1KBJkFa3iDuho9mXZ_dTDBkrnitL43p5bhHayaGhO1zAEW2uHQM8_QR7hWVsGOTW2QkJMi\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 17:51:07 GMT\r\ncontent-type: application/octet-stream\r\nserver-timing: cfExtPri\r\ncast-mode: default\r\nlast-modified: Fri, 03 Jul 2026 15:54:46 GMT\r\netag: \"6a47db46-a3a\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\naccept-ranges: bytes\r\nage: 0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=LUXmjCaRUx%2FEKTUH5ia0CaxUGVPsMh8%2FuAlsb0%2F81IN7XaOUaq%2FyN5Ns0qQFidQwE5nyKAtcI%2FQXzP53oCx5ct1zpGemUZAoC2wh7pB%2BQFKUVWZHmmQpywWePF2bvKe1tyKqqvqXGg%3D%3D\"}]}\r\ncf-ray: a1a1e4eafdc1b50b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 2618\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/octet-stream","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-17T01:40:15.71791Z","times_seen":17302606,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"checker-secondfi.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-12","alert":"Phishing Block","trigger":"checker-secondfi.app","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/turnstile/v0/g/73f5d73b1f13/api.js?onload=Jdvdh0\u0026render=explicit","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:00.544Z","timestamp":1783878660544,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Jun 2026 20:15:28 GMT","end":"Mon, 14 Sep 2026 21:15:13 GMT"},"fingerprint":{"sha1":"77:27:72:42:CF:51:E8:8C:7C:3E:8C:4C:A1:F0:9A:86:96:B9:0A:16","sha256":"ED:7C:F7:38:B3:0F:00:86:32:D1:14:CE:C0:FF:CA:0E:7C:86:EE:49:51:EF:A4:4B:AA:5C:B6:7C:00:B5:3D:F3"}}},"request":{"raw":"GET /turnstile/v0/g/73f5d73b1f13/api.js?onload=Jdvdh0\u0026render=explicit HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nOrigin: https://checker-secondfi.app\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\ndate: Sun, 12 Jul 2026 17:51:00 GMT\r\ncontent-type: application/javascript; charset=UTF-8\r\nlast-modified: Thu, 09 Jul 2026 13:13:20 GMT\r\ncache-control: max-age=31536000, stale-if-error=10800, stale-while-revalidate=31536000, public\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\ntiming-allow-origin: https://checker-secondfi.app\r\npriority: u=3,i=?0\r\netag: W/\"6a4f9e70.00000000-12529\"\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: a1a1e4bc7db976ef-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":75049,"size_decoded":24742,"mime_type":"application/javascript; charset=UTF-8","magic":"JavaScript source, ASCII text, with very long lines (65536), with no line terminators","md5":"15221d51bd292126fd260c66336db19c","sha1":"d0ca22a3b568b71997d266bf6fe48bdedd932807","sha256":"90acf284e78ceb1183e080909b7558617bd981480fd3000ae1b433d5eb28c459","sha512":"7477e39dc11f4c71e65ca6192e71a74cad6d93b8b4ba702fdac40ea0af2029b6b8f395aae2b20c0c39a8f31d1e1f32db92a9b41632e4e2da5624d7b0d9fddb8f","ssdeep":"1536:tM5A+jXSq5RDMDpydrdopXOe1H05V46MlsgV0Dixw5MB:tEuYR0ydrMXOe1U8lP0Dixw5MB","tlshash":"81732bc472aa7862139ac0f4913b6753b3257d3aa84c8850d467dc653b7cd869233fba","first_seen":"2026-07-09T15:43:08.802758Z","last_seen":"2026-07-13T11:08:19.965925Z","times_seen":6436,"resource_available":true,"data":null}},"time_used":27,"timings":{"blocked":-1,"dns":3,"connect":10,"send":0,"wait":9,"receive":5,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/favicon.ico","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:00.565Z","timestamp":1783878660565,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-secondfi.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jul 2026 15:51:01 GMT","end":"Sun, 04 Oct 2026 16:49:22 GMT"},"fingerprint":{"sha1":"5F:43:A3:B2:5E:D7:3B:FA:22:8E:30:9E:AC:C1:1F:8B:4C:16:E9:C0","sha256":"81:6D:A2:A9:00:B7:E1:75:ED:8A:F8:2E:3D:DF:A0:71:33:38:39:C7:D5:67:6B:57:9C:35:94:D5:31:3A:5F:BD"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: checker-secondfi.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://checker-secondfi.app/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=4, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 17:51:00 GMT\r\ncontent-type: text/html\r\nlast-modified: Mon, 06 Jul 2026 16:56:04 GMT\r\nvary: accept-encoding\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\npriority: u=4,i\r\nage: 0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=SOdIXlHxKhbYR5%2FLb4w0JTOpk%2FVF2yT4rg5%2BNPGiTmxNtOWtSfcw60Fl2YSTfcjOzMwRFwlng%2FRi7QBcR3XCI1Q%2FHmSaoKs0Z6R%2FEZpLi0H9jyw8WJyI58SeRbZFglUMRU7wm4aH4g%3D%3D\"}]}\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\ncontent-encoding: zstd\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a1a1e4bc8b4eb50b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":333233,"size_decoded":102844,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (14986), with CRLF line terminators","md5":"d066d681497f018bee76127778565d95","sha1":"f5b6ec3fb1022d2ea0d8b19cb445203541e22384","sha256":"6ff38009fe9db8de0ab3f8f18dec3f8105ca789b0cc950a37bd48b297eac28b0","sha512":"aa685d31f200b04a7a5638deded4a030622370e2d68381b1352e07644e8c2dda2fb06056b5687dbf981a432a0b76a68b470db9812ef40c2cbe9dbf41b21f967e","ssdeep":"3072:7eRxMvUEmY/LlE00WTFYaZnJXQHmq09bi8KxeW4Hgcfq75EKxA/m8vVzyJmD/16a:7eRf8M0k87fafA++VzyJS63DxNiVDN","tlshash":"5d646c98317d25796ab703e6a0af5507b1383413640d8871f118fca96bf499a30b7faf","first_seen":"2026-07-12T17:51:34.28613Z","last_seen":"2026-07-12T17:51:34.28613Z","times_seen":1,"resource_available":false,"data":null}},"time_used":30,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":15,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-12","alert":"Phishing Block","trigger":"checker-secondfi.app","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"checker-secondfi.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-07-12T17:51:07.231Z","timestamp":1783878667231,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-secondfi.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jul 2026 15:51:01 GMT","end":"Sun, 04 Oct 2026 16:49:22 GMT"},"fingerprint":{"sha1":"5F:43:A3:B2:5E:D7:3B:FA:22:8E:30:9E:AC:C1:1F:8B:4C:16:E9:C0","sha256":"81:6D:A2:A9:00:B7:E1:75:ED:8A:F8:2E:3D:DF:A0:71:33:38:39:C7:D5:67:6B:57:9C:35:94:D5:31:3A:5F:BD"}}},"request":{"raw":"POST / HTTP/1.1\r\nHost: checker-secondfi.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://checker-secondfi.app/?__cf_chl_tk=TU.BhQQ3AO60CemW.ceKoSMvwNarlQ7RzTltEAr9Mco-1783878660-1.0.1.1-GqwrBMjhYZzEWTgwY50mHNnAMou8BBl9Z5XYLDYIb2A\r\nContent-Type: application/x-www-form-urlencoded\r\nContent-Length: 2093\r\nOrigin: https://checker-secondfi.app\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nCookie: cf_clearance=.K4B0bRYO1Oqg1ZTL__NBbIlxPw6JB4KtAEdTZ3D2gU-1783878667-1.2.1.1-U_MpWNYTxJfHTnSRLyPb.6DGa.Gs1GOdyUMAwmdAP9x2QSBylCMfLtfeHqr.zxqqntY.IywBabfgANUcP15Q.8KOYEKDcUe9gSbTnuTza8Eq3wRyhuhtxDy9_iAr87ky_8f55tBljaNnGL7Vam0OvPwsW6xKnelI2F_fp1aC5PyAdrWtD.bfQvTXyuvXAEBUCq2QpGd2iknIYzWXPoUZ50.p.z6MxrWkhBY.hH97gh2WVWnhhLHOufs3sBsqr.yPT0x5OtafH9JuOP52caldMGaJKQNa5l8buO.q7GxcqpNfZT9WNW8NgYXaSR8CFL.THkkWKJpawOzFEgVUjhN0._RxaN1l4oEJf1KKJpmY8EC8A6SlBJk_11VJiDvZ0F7lY.ebBsOm.F7PZUt0_VRpezo9kCKpjhKYRDx462VvzniNAT_GRwiO96ZnFn1KBJkFa3iDuho9mXZ_dTDBkrnitL43p5bhHayaGhO1zAEW2uHQM8_QR7hWVsGOTW2QkJMi\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: same-origin\r\nSec-Fetch-User: ?1\r\nPriority: u=0, i\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":2093,"data":"4ac5e09f0db5146e76081cc144b50983ae2712d0b7380c5fca4b209b5517d346=0okhARsqVMNi6I86QY5AjQAlxxakWO_lAmJiAhrLg5k-1783878660-1.2.1.1-GjJ4h.Ex6x0n3TnDKb4Dp9C8GU9f4ZNXE_e8D_Z2gl99C6UFbVd5PKPvyuf8MFMCZeu5_hdnQ2Tir2UXgeA2YAA7bIufL_pIJfSvR8dbJWGT5meI4N5gSuReKclAP5EkmV8YX7haUjvAxf15zLAbxTY4Z53rP3Y_CHFP48gCe2QBPoPfRtne1lHh_.l9EsG8knwjVhoSCjqVEm5RdI8WCxTqk.uHOI1QKVkNsBMnLhTrNIbl1x0uYw2cb7Nr_dlthWUMeNJP532yPioG4w.brnTverfUslskeX2P5nBSy7zI4EDmkttR0n_DPcK98V3zpuG.RM5oVNKpQRN8fQ1_OUwd.sJHILpAOj4riltnTpbRc49YqGzz2aOZCUaAz3tuBhF7yqL7PBxyRqtRe3vJeV2XWSwmMgfVNyEsVJgGs7xIZFrqOevgn.OySk2VUsl7vvtp3FCz0brJY9KkMSzSCde5UYOqNQVlVm49fJAArnniyICByPj4trz6eOHRguD_76lW5NCLMi5Zhm59N_5Nxls9kS1w2cGoJMuoACGgdW_y8bYT98eRt45.ORbLZ7HSYBL1Pp5PzzEOhQeRk3OmO0GVNK86CdD8WgT4g3jBk7jjg9KwvRyCC57zU3FUb8d8F0QfiIR666b3dB_pltB61O7CzjH_nYmr5zsfUh2yAt7OhrH9rczlIueZ10sYqhSW1tdPKjuTNJoKSzLvdEtjTBgXR50Audn6ofjmwe0QP2JugVMUHz0TEaqMNMonq1gbwcl9kSYNw2bbMAjtB.xEmFBKBH1K1aanN79n3vFZf4fnJ9kwq19LenkdHqi8skrlceyZpf0JgQdu1C2ZEQRUg5BYDz85JHsEeHR.OCotU4ecgaw1gk22l2RECSwDIQ_Xiv3fCQVIdV.zWtzKvD_6.73kH4DHhLBtSDx2ihELCZR7T50mBaNPlBnljm0ujNnI.h1TA53KbLbLp5hK9yHP4.RIgBsGr5ZUNbj0rF5Nx2Mbz2sLSZgZALYMiisC3JLQ\u002656a6cc8af7f514a772ebb3f2eb3e1bc8a2c4c67229b4fafd43f5388cfe7f43b1=dSZQqR8N6PUm5wVgnh7EW.6UP.5DEAtqZCJeidiwyK4-1783878660-1.2.1.1-9Nln5Nru1o1jUaVpv0wp1Jx3HCAeMX7ozJ5iWuLVsl_HLseZoPiZBKK4eSy16kWvjhxPOlQJsZ6DjmHLpwzbaEIeU1oeeaxkbF7pZ5ER0.kdm45Vj12dprfvXoe8cznX9SFfXPJzW2hWs20U0X58bRZQzWA4terSWT7p6kb2wzL9brhMkKCqv70fdnymZvK5IwcsnzYyQx7JAayIKHQnDzFopGkCMSWoOgWH9I94Lq8Dkde7ITxgEQErPlA74QYEri2DW9PgODF7c.hLZud2MpNEOnGmp49tb1l_AO75JrPFHEqc6GS7V7Wji9S9emFFVLWCI9WwqJEMLuIetkKTg890.Ba2GCBO.GecuzsiSR1rMiZCfy0bJvJ37ie08opRwZpZlVK9ZmxeW8zxfkQ6W7.BY6SN05SZ32BDg6TjIIByH033DUujosMeGdanYuxbaebWG17LNt8Kb2XSuBR1sENyNaDdTD43ZsiKAd5.YVQ\u0026683708af7e61f375692861716ba2aacad8c29cfc82e2c33423986393533e9dd8=u63xlVZy7azzvYofGLOOiB6Sj_n2rSJ794TxFNRO0V4-1783878667-1.0.1.1-BH7Vivgm3Rrs9cdnZjaH7tF6pdC3_VH2_i66uZItBNh9Sx7zG5CkSI0TMqkpeMR0BxKAwHdt8fCiZ5MBCU_n4hqzP3cRj1hSi3UDJ.7CSkmpw6PbJ23n3.fd8Yl1zGr8c2Kv1nNEdq4jls1LbOdksk7gfbJsHbijj5ygd63Hrz9xezbEaXqTa9lyMybaQ5cj"}},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 17:51:07 GMT\r\ncontent-type: text/html\r\ncast-mode: default\r\nlast-modified: Mon, 06 Jul 2026 16:56:04 GMT\r\nvary: accept-encoding\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\npriority: u=0,i\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=RVCOtQGXyrZ5SKtvhi9cRwsbbw%2BSrUftGx9Fr1yKQP22G34nUxCmEPtehpxJxNshvibp3xiR90o88fEUTqkMvu9ZZGCRvC1L8lV8%2F3m31IsHlpemfchDrfwTkyZnkQ%2BtGCFDnBPTVQ%3D%3D\"}]}\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\ncontent-encoding: zstd\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\ncf-ray: a1a1e4e63d6db50b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":436338,"size_decoded":121221,"mime_type":"text/html","magic":"HTML document, Unicode text, UTF-8 text, with very long lines (14986), with CRLF line terminators","md5":"fb83ca43b283e85ec4e304db421f2724","sha1":"db4ae28d25e0f1679a8ac69e165bc437e0bbc962","sha256":"245abde52415349477c0f191343812d5da29329332ac51ab521f5b50db05e4c7","sha512":"9d4a45c57196d41d6e9e2c598790609f51aa1a06dcd63f3bdfc0e77d915a59aba22b86680b3a9fff5a7883188a1cccd44c00734f94136af606a3cfed46dafb63","ssdeep":"6144:7eRf8M0k87fafA++VzyJS63DxNiVD7syrtAdQprJ:7ykR7yaVzyJTadAq","tlshash":"b8947d983268113d6e7342e6e0af6606b1383453f80d88b1f518f8756bf56d624b3f9e","first_seen":"2026-07-12T17:51:34.288499Z","last_seen":"2026-07-12T17:51:34.288499Z","times_seen":1,"resource_available":true,"data":null}},"time_used":287,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":199,"receive":88,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-12","alert":"Phishing Block","trigger":"checker-secondfi.app","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"checker-secondfi.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/SecondFi%20Wallet%20Checker%20%E2%80%94%20Were%20You%20Affected__files/index-DaSfsu_x.js.download","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:07.550Z","timestamp":1783878667550,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-secondfi.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jul 2026 15:51:01 GMT","end":"Sun, 04 Oct 2026 16:49:22 GMT"},"fingerprint":{"sha1":"5F:43:A3:B2:5E:D7:3B:FA:22:8E:30:9E:AC:C1:1F:8B:4C:16:E9:C0","sha256":"81:6D:A2:A9:00:B7:E1:75:ED:8A:F8:2E:3D:DF:A0:71:33:38:39:C7:D5:67:6B:57:9C:35:94:D5:31:3A:5F:BD"}}},"request":{"raw":"GET /SecondFi%20Wallet%20Checker%20%E2%80%94%20Were%20You%20Affected__files/index-DaSfsu_x.js.download HTTP/1.1\r\nHost: checker-secondfi.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://checker-secondfi.app/\r\nCookie: cf_clearance=.K4B0bRYO1Oqg1ZTL__NBbIlxPw6JB4KtAEdTZ3D2gU-1783878667-1.2.1.1-U_MpWNYTxJfHTnSRLyPb.6DGa.Gs1GOdyUMAwmdAP9x2QSBylCMfLtfeHqr.zxqqntY.IywBabfgANUcP15Q.8KOYEKDcUe9gSbTnuTza8Eq3wRyhuhtxDy9_iAr87ky_8f55tBljaNnGL7Vam0OvPwsW6xKnelI2F_fp1aC5PyAdrWtD.bfQvTXyuvXAEBUCq2QpGd2iknIYzWXPoUZ50.p.z6MxrWkhBY.hH97gh2WVWnhhLHOufs3sBsqr.yPT0x5OtafH9JuOP52caldMGaJKQNa5l8buO.q7GxcqpNfZT9WNW8NgYXaSR8CFL.THkkWKJpawOzFEgVUjhN0._RxaN1l4oEJf1KKJpmY8EC8A6SlBJk_11VJiDvZ0F7lY.ebBsOm.F7PZUt0_VRpezo9kCKpjhKYRDx462VvzniNAT_GRwiO96ZnFn1KBJkFa3iDuho9mXZ_dTDBkrnitL43p5bhHayaGhO1zAEW2uHQM8_QR7hWVsGOTW2QkJMi\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 17:51:07 GMT\r\ncontent-type: application/octet-stream\r\nserver-timing: cfExtPri\r\ncast-mode: default\r\nlast-modified: Fri, 03 Jul 2026 16:23:20 GMT\r\netag: \"6a47e1f8-6a904\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\nx-cast-cache: MISS\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=FdrEmKZQmRpyvxxQL6LlWXxGE5vcdOfOQ9GR%2BzCXhJH4WccYs%2FbBBlyrQMhL1bgJtxxGRbsUGV7h58Fpbt4%2FBQEYa8ecGEfat6kWHdOHTwIl7yxTVzE6CgoiQqOiDeVFqvGG%2FxrfAw%3D%3D\"}]}\r\ncf-ray: a1a1e4e83d9ab50b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 436484\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/octet-stream","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-17T01:40:15.71791Z","times_seen":17302606,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"checker-secondfi.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null},{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-12","alert":"Phishing Block","trigger":"checker-secondfi.app","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"files.manuscdn.com/user_upload_by_module/web_dev_logo/310519663384387180/cNToByZtrhvpksaP.png","fqdn":"files.manuscdn.com","domain":"manuscdn.com","tld":"com"},"ip":{"addr":"143.204.238.95","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:08.497Z","timestamp":1783878668497,"http_version":"HTTP/2","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"manuscdn.com","organization":""},"issuer":{"commonName":"Amazon RSA 2048 M01","organization":"Amazon"},"validity":{"start":"Wed, 28 Jan 2026 00:00:00 GMT","end":"Fri, 26 Feb 2027 23:59:59 GMT"},"fingerprint":{"sha1":"68:26:53:A4:8F:42:CA:32:56:77:AB:8D:05:F6:35:79:D5:77:6B:C5","sha256":"62:A5:BB:25:A0:6D:BC:C1:7F:C7:5B:97:44:4F:7D:57:48:3F:08:9B:73:C5:D4:BF:83:F0:3B:31:7E:4D:AC:C1"}}},"request":{"raw":"GET /user_upload_by_module/web_dev_logo/310519663384387180/cNToByZtrhvpksaP.png HTTP/1.1\r\nHost: files.manuscdn.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,image/png,image/svg+xml,image/*;q=0.8,*/*;q=0.5\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://checker-secondfi.app/\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPriority: u=6\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 \r\ncontent-type: image/png\r\ncontent-length: 8578\r\nlast-modified: Wed, 01 Jul 2026 01:53:25 GMT\r\nx-amz-server-side-encryption: AES256\r\naccept-ranges: bytes\r\nserver: AmazonS3\r\ndate: Sun, 12 Jul 2026 17:51:09 GMT\r\netag: \"b689ff87f9564b72dbd62c814caf1532\"\r\nx-cache: RefreshHit from cloudfront\r\nvia: 1.1 4118da051b044af6aef02765a0bd4fe4.cloudfront.net (CloudFront)\r\nx-amz-cf-pop: ARN53-P4\r\nx-amz-cf-id: ZEo1xY3nB8_5sBPuKnCKzG4R23kzlinpv7z_O1sZdqr21SAzSQz49Q==\r\nx-content-type-options: nosniff\r\nstrict-transport-security: max-age=31536000; includeSubDomains\r\ncache-control: max-age=31536000\r\nvary: Accept-Encoding, Origin\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Amazon Web Services","description":"Amazon Web Services (AWS) is a comprehensive cloud services platform offering compute power, database storage, content delivery and other functionality.","website":"https://aws.amazon.com/","common_platform_enumeration":"","icon":"Amazon Web Services.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Amazon S3","description":"Amazon S3 or Amazon Simple Storage Service is a service offered by Amazon Web Services (AWS) that provides object storage through a web service interface.","website":"https://aws.amazon.com/s3/","common_platform_enumeration":"","icon":"Amazon S3.svg","categories":["CDN"]},{"name":"Amazon CloudFront","description":"Amazon CloudFront is a fast content delivery network (CDN) service that securely delivers data, videos, applications, and APIs to customers globally with low latency, high transfer speeds.","website":"https://aws.amazon.com/cloudfront/","common_platform_enumeration":"","icon":"Amazon Cloudfront.svg","categories":["CDN"]}],"data":{"size":8578,"size_decoded":9227,"mime_type":"image/png","magic":"PNG image data, 512 x 512, 8-bit/color RGB, non-interlaced","md5":"b689ff87f9564b72dbd62c814caf1532","sha1":"1271fea4641d90030d3fa6f6854821668b1fe6bd","sha256":"f67abd8cef41f678b3be07d573c98292c75cd8f2528e82e1d2385abbc2b64fb0","sha512":"b74e3f203faa2ad72e641d50fad84d4f576c94be932128e7092a26d6ebc5fb78df00240f9b36d8c502de00825f59d949632f91c1cc1e4895f633bda193dfd23c","ssdeep":"192:PK29r+qbJNYHcStyEAj6MUcFmavzIEV4YzV6ULiR5:S29LNqcS0fOMUcBbVVkULI5","tlshash":"7702eada40108f5a6e6987b867600e5444e5c33b7bd7c4f5aaab6e6c314b930cec48e7","first_seen":"2026-05-14T13:09:35.198663Z","last_seen":"2026-07-12T17:51:34.290177Z","times_seen":3,"resource_available":false,"data":null}},"time_used":486,"timings":{"blocked":0,"dns":3,"connect":8,"send":0,"wait":457,"receive":0,"ssl":17},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/SecondFi%20Wallet%20Checker%20%E2%80%94%20Were%20You%20Affected__files/umami","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:07.566Z","timestamp":1783878667566,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-secondfi.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jul 2026 15:51:01 GMT","end":"Sun, 04 Oct 2026 16:49:22 GMT"},"fingerprint":{"sha1":"5F:43:A3:B2:5E:D7:3B:FA:22:8E:30:9E:AC:C1:1F:8B:4C:16:E9:C0","sha256":"81:6D:A2:A9:00:B7:E1:75:ED:8A:F8:2E:3D:DF:A0:71:33:38:39:C7:D5:67:6B:57:9C:35:94:D5:31:3A:5F:BD"}}},"request":{"raw":"GET /SecondFi%20Wallet%20Checker%20%E2%80%94%20Were%20You%20Affected__files/umami HTTP/1.1\r\nHost: checker-secondfi.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://checker-secondfi.app/\r\nCookie: cf_clearance=.K4B0bRYO1Oqg1ZTL__NBbIlxPw6JB4KtAEdTZ3D2gU-1783878667-1.2.1.1-U_MpWNYTxJfHTnSRLyPb.6DGa.Gs1GOdyUMAwmdAP9x2QSBylCMfLtfeHqr.zxqqntY.IywBabfgANUcP15Q.8KOYEKDcUe9gSbTnuTza8Eq3wRyhuhtxDy9_iAr87ky_8f55tBljaNnGL7Vam0OvPwsW6xKnelI2F_fp1aC5PyAdrWtD.bfQvTXyuvXAEBUCq2QpGd2iknIYzWXPoUZ50.p.z6MxrWkhBY.hH97gh2WVWnhhLHOufs3sBsqr.yPT0x5OtafH9JuOP52caldMGaJKQNa5l8buO.q7GxcqpNfZT9WNW8NgYXaSR8CFL.THkkWKJpawOzFEgVUjhN0._RxaN1l4oEJf1KKJpmY8EC8A6SlBJk_11VJiDvZ0F7lY.ebBsOm.F7PZUt0_VRpezo9kCKpjhKYRDx462VvzniNAT_GRwiO96ZnFn1KBJkFa3iDuho9mXZ_dTDBkrnitL43p5bhHayaGhO1zAEW2uHQM8_QR7hWVsGOTW2QkJMi\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 17:51:07 GMT\r\ncontent-type: application/octet-stream\r\nserver-timing: cfExtPri\r\ncast-mode: default\r\nlast-modified: Fri, 03 Jul 2026 15:54:46 GMT\r\netag: \"6a47db46-a3a\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=k50jm1jVgDw0BTj7CT4CMyF7RM%2FPQHOaoFasycRz9ddKiKcZJU4G6OW%2BhK5mqoU3W1VYAHNDt8J4mdRXPW0dybVBsHsJ%2Fr0WBNN9wgxcr1wQZuauctVzDSRLogFIrMCq1I4sG%2B1Neg%3D%3D\"}]}\r\ncf-ray: a1a1e4e84d9eb50b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 2618\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/octet-stream","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-17T01:40:15.71791Z","times_seen":17302606,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-12","alert":"Phishing Block","trigger":"checker-secondfi.app","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"checker-secondfi.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/SecondFi%20Wallet%20Checker%20%E2%80%94%20Were%20You%20Affected__files/v4513226cdae34746b4dedf0b4dfa099e1781791509496","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:07.568Z","timestamp":1783878667568,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-secondfi.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jul 2026 15:51:01 GMT","end":"Sun, 04 Oct 2026 16:49:22 GMT"},"fingerprint":{"sha1":"5F:43:A3:B2:5E:D7:3B:FA:22:8E:30:9E:AC:C1:1F:8B:4C:16:E9:C0","sha256":"81:6D:A2:A9:00:B7:E1:75:ED:8A:F8:2E:3D:DF:A0:71:33:38:39:C7:D5:67:6B:57:9C:35:94:D5:31:3A:5F:BD"}}},"request":{"raw":"GET /SecondFi%20Wallet%20Checker%20%E2%80%94%20Were%20You%20Affected__files/v4513226cdae34746b4dedf0b4dfa099e1781791509496 HTTP/1.1\r\nHost: checker-secondfi.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://checker-secondfi.app/\r\nCookie: cf_clearance=.K4B0bRYO1Oqg1ZTL__NBbIlxPw6JB4KtAEdTZ3D2gU-1783878667-1.2.1.1-U_MpWNYTxJfHTnSRLyPb.6DGa.Gs1GOdyUMAwmdAP9x2QSBylCMfLtfeHqr.zxqqntY.IywBabfgANUcP15Q.8KOYEKDcUe9gSbTnuTza8Eq3wRyhuhtxDy9_iAr87ky_8f55tBljaNnGL7Vam0OvPwsW6xKnelI2F_fp1aC5PyAdrWtD.bfQvTXyuvXAEBUCq2QpGd2iknIYzWXPoUZ50.p.z6MxrWkhBY.hH97gh2WVWnhhLHOufs3sBsqr.yPT0x5OtafH9JuOP52caldMGaJKQNa5l8buO.q7GxcqpNfZT9WNW8NgYXaSR8CFL.THkkWKJpawOzFEgVUjhN0._RxaN1l4oEJf1KKJpmY8EC8A6SlBJk_11VJiDvZ0F7lY.ebBsOm.F7PZUt0_VRpezo9kCKpjhKYRDx462VvzniNAT_GRwiO96ZnFn1KBJkFa3iDuho9mXZ_dTDBkrnitL43p5bhHayaGhO1zAEW2uHQM8_QR7hWVsGOTW2QkJMi\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 17:51:07 GMT\r\ncontent-type: application/octet-stream\r\nserver-timing: cfExtPri\r\ncast-mode: default\r\nlast-modified: Fri, 03 Jul 2026 15:54:50 GMT\r\netag: \"6a47db4a-7b7c\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\naccept-ranges: bytes\r\ncache-control: max-age=2592000\r\ncf-cache-status: MISS\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=B%2F7m6dXciZph9d8HyL%2B0xwtyzuFcsINn2XkD95RCz1p9341zuyg2VZ5hxiILtKQkqWF%2B85qPbkBMSar%2FKzpgi%2Fjul%2F3Jg%2Fc%2BowlWyDYxeM0fMwlF%2FV0mb1rmvuuHsH%2Bx4rQWQjDvCQ%3D%3D\"}]}\r\ncf-ray: a1a1e4e85d9fb50b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 31612\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/octet-stream","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-17T01:40:15.71791Z","times_seen":17302606,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-12","alert":"Phishing Block","trigger":"checker-secondfi.app","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"checker-secondfi.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/pat/a1a1e4bcfc481525/1783878661024/7fa8771baf9fc4e56c7ce3d167976d4c4eba98521dc6b05e9e420dcc0bd95b6f/pR3A2TzA2XeBy4z","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"fetch","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","date":"2026-07-12T17:51:01.460Z","timestamp":1783878661460,"http_version":"HTTP/3","security_state":"secure","security_info":null,"request":{"raw":"GET /cdn-cgi/challenge-platform/h/g/pat/a1a1e4bcfc481525/1783878661024/7fa8771baf9fc4e56c7ce3d167976d4c4eba98521dc6b05e9e420dcc0bd95b6f/pR3A2TzA2XeBy4z HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPriority: u=6\r\nCache-Control: max-age=0\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"","headers":null,"cookies":null,"status_code":"401","status_text":"","fingerprints":null,"data":{"size":0,"size_decoded":0,"mime_type":"","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-17T01:40:15.71791Z","times_seen":17302606,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/fo/3087946589:1783875916:bia3ZfU33QzNCy8bPMRwmxMJpPFGjqSAoubwV8Z8QHc/a1a1e4bcfc481525/0HOYJle250.BM7R137X6ho8ckZ.ccgsybLegjTh93Gg-1783878660-1.2.1.1-pv0qIGyAEBNrCgmfmoPmU8xAKS28sF4Mut8eGflvu2RVEvxu3zO9fXhXefN8kahO","fqdn":"challenges.cloudflare.com","domain":"cloudflare.com","tld":"com"},"ip":{"addr":"104.18.95.41","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"xhr","requested_by":"https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto","date":"2026-07-12T17:51:01.014Z","timestamp":1783878661014,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"challenges.cloudflare.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Tue, 16 Jun 2026 20:15:28 GMT","end":"Mon, 14 Sep 2026 21:15:13 GMT"},"fingerprint":{"sha1":"77:27:72:42:CF:51:E8:8C:7C:3E:8C:4C:A1:F0:9A:86:96:B9:0A:16","sha256":"ED:7C:F7:38:B3:0F:00:86:32:D1:14:CE:C0:FF:CA:0E:7C:86:EE:49:51:EF:A4:4B:AA:5C:B6:7C:00:B5:3D:F3"}}},"request":{"raw":"POST /cdn-cgi/challenge-platform/h/g/fo/3087946589:1783875916:bia3ZfU33QzNCy8bPMRwmxMJpPFGjqSAoubwV8Z8QHc/a1a1e4bcfc481525/0HOYJle250.BM7R137X6ho8ckZ.ccgsybLegjTh93Gg-1783878660-1.2.1.1-pv0qIGyAEBNrCgmfmoPmU8xAKS28sF4Mut8eGflvu2RVEvxu3zO9fXhXefN8kahO HTTP/1.1\r\nHost: challenges.cloudflare.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nReferer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/g/turnstile/f/av0/rch/4jf2j/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal?lang=auto\r\ncf-chl: 0HOYJle250.BM7R137X6ho8ckZ.ccgsybLegjTh93Gg-1783878660-1.2.1.1-pv0qIGyAEBNrCgmfmoPmU8xAKS28sF4Mut8eGflvu2RVEvxu3zO9fXhXefN8kahO\r\ncf-chl-ra: 0\r\nContent-Type: text/plain;charset=UTF-8\r\nContent-Length: 4300\r\nOrigin: https://challenges.cloudflare.com\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: empty\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"POST","post_data":{"size":4300,"data":"jdYDO1uN-imp2ylgfMv3jZnelvVoBz3x753TiZcoQnA2VQAp6nYsIQhVo39dK9PXJIqgvbCmvUqd1OCe8XPJ0iqPF2dbdlmNVbgjIZx2wD0tF5EeDprljn-4CvKs5N9PiyXBKXhmiunzUPlv1A6hEBB58tEngXhRCjeYIuCXCHvYKEBISIJUpXJCKfOJjDNBwE4H6-JstKGQGqOe9F5Avr1GUzHjPljhwpBK3MD2rbXo-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-d2frsgPEQ6yIGNE2aBMOKS7nRYWECZOgt8Jz7vD9TF7IIwPQN-9m+CFet6CjopgG6sjmnm2dECzw-ZdZs3WcQ0UsmM3hEdkboqIC668ez+N4arGr86bVXzWcZNmzDauUgWwqQhgfMOwYE-24KJvewn1mxZ-IFsgLn2oNNUB2CqmPtm0eBvpps7p7l0jWADE5sc7nHrrznGGIuJbRBg9ekBkSVElF0yfLcOY8ZRxesmpIbc7f4+Cn1eSJVFZQlnNhB2VZd8x5yqHjISqD8-MpEEMLTLVFEI1F3ojBKYZD-8ZqDm4+MNQQf4NjfDcHiZGRa0FN8otmvT0SaVeELCY6H2LxJVEG2XtZtdj64XBg802YdN+hn8kgML6Z1fTb6pyCFTEC8dV+AM6A94LqGkHtshKpr7rZ1Br5MMcJ5gla33N5Nl5sbgX3Lr8l3Uc3liA8zF+0omvw6I01+GPfDkLwMEpdhAsKJ4u3i3KA67ZA4mL4r7G0sswcOECzgJkdJAhdVGWsWWLx+K+gs6klI2CHnUam2G4y2e3rvRRTLnoVgt3L5DXt64Pp1NG2Tjh3VUXjBN-klyPjGdO10H+TcAsogvaLgODKRGSTP5q95D15yWIi+JYpjMb0xf2tpElnyifUn4QaM7i0DvLQOfPmvuknHL9RH3TAz4QIjdJbw-nPdvWrODjGC3Buhd-D4wZk+MUXbbq0IZHwYdtzxp6J3uH9g24IIyRLB0WTL9iBjNTb+IB5XIgHJR55JGfyNL+nL+rzQATF4nSC8E7utRiSfgZQUBKi5Ch99wH9Ueodae4dy46TQ4s8bSM2N4Z3fotthrWVUKDaiHEU6gVW5FQg8HupmKQBgVRipgsfbgB1hs2-kjkY2sLc170T8FNSvP7tYL+zBGNfKzFljrLpW2aIExWeWDFdmscj06F3ES4opP2fE2avdk01dGY2eCevDz8USBPRSNMJ9wftnORiuzv-pjsyyG0p5pdkIbMC1td7X2j3Cc0N1Q7sMAYo4ygBc3wgw3X2o5D7Njq+7MW4rjL47H0n1qKK5s8obZ9-HrMfY8AsnzVnMAZiHd1Yh-C--Xkx4ODLtBsM5Yu77SWzQks5Ujs-SIbgn+begwlDs-LPSLd3fyiruKMK0ZEIrnPwS0I2aeRoXMnvgnd-JB7JSoKfZ6XIEozdBxU2cz+1m50XTRfEy2JbZD7SQFcpXihr7AetjtaFsqq5SYHoYLAsqd4wdh8qfa9CkuiDYoizzg32nEOIr3xA3a3H3p4IF+X8VG2GpXZLzGZjSHMW5HERYGGYlrzc0oImK-3pr4-9fpSYBM-cG-sP2+iDS01vfjLgQXgo98ZUcXF5CaOcBrK5mCaRApvuInKF+pGN6hniKgCs086r-eT9radeyQSX2A7TgaXDLNKLtVNgA70wqWX62NHCwYMIDMEXDbOu7X5jyK7ucr9K8XUP5kdBh-PZbb68M5bDDror6sn3fYlviDVzCKPHAncGa4wnBtajh94N0LzSAJiGJOdIpfbD8mCTcbEVTN5FK9jZ7pAzbP4vbZwUcn8QeUZCq8I4iCyk+E5XGCpZLLv83mRNoqe8c6bQCKmX2U827w5JDJfDjDXggENsuSd-eIUQ9GuZLTc+nAsuoB2pi4DXvhNSslRB5zD7gM4Q69Y2zvkAnJPJ6iyoUOzBxeCEze-HXYrOTm+mnpje95VHhXhkPmX1OpK89rGbLd4CQ4MfQGkUDBqw6OaMdD1-1pD9WGkRjYdqTxrqXBvHKiwzIYp4WJ0MKvuhHQ8Hph7+OlF5UBnnM7o4AUuCnPknVi4G+e5HXYE811pGeYZmZdY6MzWblb48XzeWnxrYtIhcVnSu3T8kayDiq-xaxDc16IyTaySQ-OmbKhJTm23AAumoFlWrQqAzCb9oOKrezcbKrefZaEim6gFYzubMl8Ld80rKhFFDF09-OcvhSZZpzWCihAi0P7ZJ5MI-23OrqVwJSQS-kLGIgdxbhoBBjq7DPfAGg3SCVWqMgyJbKkvaEoW20axyg7nSChPwfcOwEo9UlVGPmGPzRFcn-1iGFsavQzvx4NYNTpJr2kwj289WSljLdPCkcwNVdNHZJCcJnxs1sR-diJTfy2l1+cJ++6oZ9EjeBc9qk9UeKeteTxnB7csXG4vgqhWSeUYLK9+Lx2IkMsfuP1AdFORbQVIpfFJ4yt3pMe7gFZMq-hzB-F3L0tzTbS76rpBOUfRcBqV6CQmAj4fqv6jP6f4q5nSv2heNqo1dvd06eBBgM1G56257hLieKQx2eJhUH6whduLL4T3KB3FLFXaKMVgJyYW6xm5Y5KG4s9kxNyoke7ZCuqRs-CTZmo2vWChZQCzQrr-dj07wwqzhKRGp7+FWv55BpU2fL1kqB69YIZn-FcytjpxcLIaXWnquQYqx0v-4KRF4aUDrr-pDyCJ2k1N+dCLhwh0n5stwAso+YUn7aK9Y+jmUAF8E415YCS3++0Ss11V6SJN2aNw4poEyRdB8tvctlo1quNzKFIg0Ukbz4JPFeiSzgFH4Uqtjzr0zHQOrZ-15+Yes44mSNBvU+ijqULZ61G4qFBcEsGQl1ohVgpwZagc29JIMytPxAfqQHxvqDlE+ucZ7lEPXQu9EYs4RmWleVC8PDxzv4oQJKUrBPJInjENco9F59wswkEgVoqLC3j0mxSMr6Tt-FzympQnQYUd3e7DcEZEnZ6RBc1oSQhdhidtyxxpsSDslmYuOsJ4yHXQX5Yyg3lktePzYfGnZ0Mm7amBkUwK9MQgeaO5f32CYjgx0uzk3bnHhihGnpBpo02R-JSgoZfcMPazUAxrAb2+XpEnox+VRNG-zGyHEBrsDwUC0CCsnb7R4JImK2l5cMl0zb9BYW0s4Tzfqi3fT6AnjLlFdSg6nVkws6kIIYoc9unFxVXrNdcN6KnkueUrU5N+7qNiB93NRecEwgSKiqU80471or6rbz6vSH6Hr06-unNUmaTquOAzYtgOJsSwHv9ST2BI4LibGPnCTUNapkabILQx9lfd+LiFeBAOZeFclsWdI9rlJsa2AYTmkjLDQwAUiZnhhk9j+6hJTWtj6Y7F7+3ORnpRU+rYk-R7QpvkzOW0dHE8XfU01HIt0sBKf3rj1pFDLI-ejULwwjmbYcYw8ffynGecbmrDGbQcXwVbnEnZkEFQFu9i-wlpa4u04DYe7bUs7LyhWJKcMQNBDrkqNG3B-hKio6fJbkmY-vjz4WoAYA8SFtbLpwfXdTMCUu0vxdLR2XWzlb26wRH5FejgpFcSNjioCFclro0AH6JIwlF8b8WKneifaR8shVbPA0Ho1elIRJx88f7NNpQ5W3w6j-UPdSkIN0jvWVR81Legqx0CeX9nZSSYsLneKuwGljHEnRpbIxLL+mFFd-8kCt4ShyXf6B8bnr+I9rsll+DYH+OcDTXYnfBZJemHv0WuGauFn-ovjouJKhhLh0M2StBd3RFErSKYzLGwkgMVzp99zuUkqSz1NCDeRm8N0Ycd-UY-eOqxGu+83ZbrfdZAEKbvGmCbC48uJsaclKMRAEPcjKCvnkWWR"}},"response":{"raw":"HTTP/3 200 \r\ndate: Sun, 12 Jul 2026 17:51:01 GMT\r\ncontent-type: text/plain; charset=UTF-8\r\ncf-chl-gen: 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$4DN7bUiw6+13Qz+lq49cJg==\r\ntiming-allow-origin: https://challenges.cloudflare.com\r\npriority: u=3,i=?0\r\ncontent-encoding: br\r\nserver: cloudflare\r\ncf-ray: a1a1e4bf5bbb1525-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":489488,"size_decoded":322212,"mime_type":"text/plain; charset=UTF-8","magic":"ASCII text, with very long lines (65536), with no line terminators","md5":"3b18ac9d2f2ae73c5a9a1013ca150669","sha1":"7c370db82362a4b3d94cd3375bfeaccd163bbe20","sha256":"9269e7cb0033686a2ce4afb50e50454e0252f89e19e7872558889a2d37cfca09","sha512":"0cf57592c78412645be7b8c197411a26bda2ddb0bfd035c34420e537eb346f0a62433e416a815b1443ab881b0c88abdd87ec1eb7eb866c255da378161a916940","ssdeep":"12288:2ResB2B9dRiKCvOcW7zXWgd+Nd3G5zmQxK:vb9SWp7nQNivxK","tlshash":"e7a402758ec3c8df8be578a6a432bd346d5447922878d17cfd4309c4a85e8a737884bb","first_seen":"2026-07-12T17:51:34.292178Z","last_seen":"2026-07-12T17:51:34.292178Z","times_seen":1,"resource_available":false,"data":null}},"time_used":166,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":160,"receive":6,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"checker-secondfi.app/SecondFi%20Wallet%20Checker%20%E2%80%94%20Were%20You%20Affected__files/v4513226cdae34746b4dedf0b4dfa099e1781791509496","fqdn":"checker-secondfi.app","domain":"checker-secondfi.app","tld":"app"},"ip":{"addr":"104.21.94.233","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://checker-secondfi.app/","date":"2026-07-12T17:51:07.993Z","timestamp":1783878667993,"http_version":"HTTP/3","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"mlkem768x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"checker-secondfi.app","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Mon, 06 Jul 2026 15:51:01 GMT","end":"Sun, 04 Oct 2026 16:49:22 GMT"},"fingerprint":{"sha1":"5F:43:A3:B2:5E:D7:3B:FA:22:8E:30:9E:AC:C1:1F:8B:4C:16:E9:C0","sha256":"81:6D:A2:A9:00:B7:E1:75:ED:8A:F8:2E:3D:DF:A0:71:33:38:39:C7:D5:67:6B:57:9C:35:94:D5:31:3A:5F:BD"}}},"request":{"raw":"GET /SecondFi%20Wallet%20Checker%20%E2%80%94%20Were%20You%20Affected__files/v4513226cdae34746b4dedf0b4dfa099e1781791509496 HTTP/1.1\r\nHost: checker-secondfi.app\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.9\r\nAccept-Encoding: gzip, deflate, br, zstd\r\nSec-GPC: 1\r\nConnection: keep-alive\r\nReferer: https://checker-secondfi.app/\r\nCookie: cf_clearance=.K4B0bRYO1Oqg1ZTL__NBbIlxPw6JB4KtAEdTZ3D2gU-1783878667-1.2.1.1-U_MpWNYTxJfHTnSRLyPb.6DGa.Gs1GOdyUMAwmdAP9x2QSBylCMfLtfeHqr.zxqqntY.IywBabfgANUcP15Q.8KOYEKDcUe9gSbTnuTza8Eq3wRyhuhtxDy9_iAr87ky_8f55tBljaNnGL7Vam0OvPwsW6xKnelI2F_fp1aC5PyAdrWtD.bfQvTXyuvXAEBUCq2QpGd2iknIYzWXPoUZ50.p.z6MxrWkhBY.hH97gh2WVWnhhLHOufs3sBsqr.yPT0x5OtafH9JuOP52caldMGaJKQNa5l8buO.q7GxcqpNfZT9WNW8NgYXaSR8CFL.THkkWKJpawOzFEgVUjhN0._RxaN1l4oEJf1KKJpmY8EC8A6SlBJk_11VJiDvZ0F7lY.ebBsOm.F7PZUt0_VRpezo9kCKpjhKYRDx462VvzniNAT_GRwiO96ZnFn1KBJkFa3iDuho9mXZ_dTDBkrnitL43p5bhHayaGhO1zAEW2uHQM8_QR7hWVsGOTW2QkJMi\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 200 \r\nserver: cloudflare\r\ndate: Sun, 12 Jul 2026 17:51:08 GMT\r\ncontent-type: application/octet-stream\r\nserver-timing: cfExtPri\r\ncast-mode: default\r\nlast-modified: Fri, 03 Jul 2026 15:54:50 GMT\r\netag: \"6a47db4a-7b7c\"\r\nstrict-transport-security: max-age=63072000; includeSubDomains; preload\r\ncontent-security-policy: frame-ancestors http: https:\r\nx-content-type-options: nosniff\r\nx-xss-protection: 1; mode=block\r\naccept-ranges: bytes\r\nage: 0\r\ncache-control: max-age=2592000\r\ncf-cache-status: HIT\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\npriority: u=3,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=HKAUyIB1B6MC2lNW8FlA29naU9%2FC6aJxZBgQSnqRrGCKN4KeF%2FBFIkzq1Dns2v7uP1%2F62cdfpXUbCb4Qi%2BCofcZPobG%2FDw41zFLiWWGmOff%2FM80dUVcBIVPuk8dgX5S6xl%2B9G2yjlw%3D%3D\"}]}\r\ncf-ray: a1a1e4eafdc2b50b-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\ncontent-length: 31612\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":0,"size_decoded":0,"mime_type":"application/octet-stream","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-07-17T01:40:15.71791Z","times_seen":17302606,"resource_available":true,"data":null}},"time_used":0,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":0,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"opendns","sensor_type":"DNS","title":"OpenDNS","description":"OpenDNS","scan_date":"2026-07-12","alert":"Phishing Block","trigger":"checker-secondfi.app","verdict":"phishing","severity":"medium","comment":"","link":"https://www.opendns.com/","meta":null},{"sensor_name":"hagezi","sensor_type":"DNS","title":"Hagezi Threat Feed","description":"Hagezi Threat Feed","scan_date":"2026-07-12","alert":"Sinkholed","trigger":"checker-secondfi.app","verdict":"malicious","severity":"medium","comment":"","link":"https://github.com/hagezi/dns-blocklists","meta":null}],"urlquery":null}}]}
