{"report_id":"cc0e0a06-3ff8-4fe7-b673-39bf34a99cf1","version":6,"status":"done","tags":[],"date":"2026-04-30T10:56:07Z","url":{"schema":"http","addr":"trustwallets.sendandconfirm.in","fqdn":"trustwallets.sendandconfirm.in","domain":"sendandconfirm.in","tld":"in"},"ip":{"addr":"64.29.17.65","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"final":{"url":{"schema":"https","addr":"trustwallets.sendandconfirm.in/","fqdn":"trustwallets.sendandconfirm.in","domain":"sendandconfirm.in","tld":"in"},"title":"Trust Wallet","dom":{"size":9965,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"6e9da68c37f2bff2e585684b9c678f77","sha1":"8db49d415d3fe4b034f4fc7763b21ff1d2028eee","sha256":"57b24ca8c816544a0de8b0ad07939d0956bc5519b93bba267274a93f5a9547ef","sha512":"83f02cda5084ff462899b77bc17526e27bd73a86ab2d9fb03b3a83aeb0f98603b510b6722c3ad7ee9e61cef1ebc9114670761f43ea7f2ef8e20269b72c09e1f8","ssdeep":"192:D32AUkNakIJUvXa4tJCAkar9f8CHae0RXH1wV9W2yTqpXeF8Z:DGcxIh46cfx0d1/qEF8Z","tlshash":"3922b3e67a7230264a27d1586a93a2493169d007648fc4647fece1688fd46cbc9f73e8","dom_hash":"domhash6c848a6bfe1e8179b35adffa4fbed3d2","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"http","addr":"trustwallets.sendandconfirm.in","fqdn":"trustwallets.sendandconfirm.in","domain":"sendandconfirm.in","tld":"in"},"ip":{"addr":"64.29.17.65","port":0,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"tags":null,"meta":null},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-06-04T10:56:07Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"trustwallets.sendandconfirm.in","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null},"summary":[{"fqdn":"unpkg.com","ip":{"addr":"104.18.0.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2016-01-06","domain_rank":1093,"first_seen":"2016-01-07T23:26:01Z","last_seen":"2026-04-27T00:23:06.702997Z","alert_count":0,"request_count":1,"received_data":595478,"sent_data":464,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Fly.io","description":"Fly is a platform for running full stack apps and databases.","website":"https://fly.io","common_platform_enumeration":"","icon":"Fly.io.png","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"raw.githubusercontent.com","ip":{"addr":"185.199.110.133","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"domain_registered":"2014-02-06","domain_rank":22021,"first_seen":"2014-03-01T07:08:08Z","last_seen":"2026-04-29T22:51:36.273025Z","alert_count":0,"request_count":2,"received_data":838981,"sent_data":1020,"comment":"","tags":null,"fingerprints":[{"name":"GitHub Pages","description":"GitHub Pages is a static site hosting service.","website":"https://pages.github.com/","common_platform_enumeration":"","icon":"GitHub.svg","categories":["PaaS"]},{"name":"Fastly","description":"Fastly is a cloud computing services provider. Fastly's cloud platform provides a content delivery network, Internet security services, load balancing, and video \u0026 streaming services.","website":"https://www.fastly.com","common_platform_enumeration":"","icon":"Fastly.svg","categories":["CDN"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}]},{"fqdn":"cryptologos.cc","ip":{"addr":"172.67.218.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"2019-04-13","domain_rank":572515,"first_seen":"2019-08-22T11:22:00Z","last_seen":"2026-04-27T15:52:30.741564Z","alert_count":0,"request_count":1,"received_data":104662,"sent_data":462,"comment":"","tags":null,"fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]},{"fqdn":"trustwallets.sendandconfirm.in","ip":{"addr":"64.29.17.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"domain_registered":"unknown","domain_rank":0,"first_seen":"2026-04-30T10:56:09.082253Z","last_seen":"2026-04-30T10:56:09.082253Z","alert_count":1,"request_count":1,"received_data":10502,"sent_data":499,"comment":"","tags":null,"fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Unpkg","description":"Unpkg is a content delivery network for everything on npm.","website":"https://unpkg.com","common_platform_enumeration":"","icon":"Unpkg.png","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"trustwallets.sendandconfirm.in/","fqdn":"trustwallets.sendandconfirm.in","domain":"sendandconfirm.in","tld":"in"},"ip":{"addr":"64.29.17.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"introduction_type":"scriptElement","is_inline":true,"md5":"1199e979e6a50ab5307c0d5683233c0b","sha1":"a882349f16962d85d92b9b49a649fd11bca8ae50","sha256":"900bb03a8e5997d0108e8898905a6109a12fe31ce7307302efd5a6bb85313284","sha512":"11618339f44dd2d32bca61ce9917979b28e556a69ad73b5d436edbb4dc4615e4e2f0fb302d224243e89925cbc63984c659872eacf06e2a95c485b7b26dbbf1cf","ssdeep":"192:nJUvXa4tJCAkar9f8CHae0RXH1wV9W2yTqpXeF8q:nh46cfx0d1/qEF8q","tlshash":"c9d184a976b230314a37a15c5b9b62187436d00b388ec8217e9dc1718fa869fcdf73e5","size":6585,"data":"","first_seen":"2026-04-30T10:56:14.967132Z","last_seen":"2026-04-30T11:02:10.165425Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"unpkg.com/@walletconnect/sign-client@2.17.0/dist/index.umd.js","fqdn":"unpkg.com","domain":"unpkg.com","tld":"com"},"ip":{"addr":"104.18.0.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"18009f8a276c4a18208ddb48b48cb411","sha1":"3127f2b03cb24cf999915535f25cfd80979f0f83","sha256":"b75a565dfe76d2440d5a9de9dbe11fa26ea9a2327c0f31013595df3935dafab6","sha512":"bc35ae19c29f405d0a7948de0b419825b0d152d930e61e208549cffbb7900f1844cd793d59a324976f5106a180c4edf568f068cf58908660bb6cfb1461100264","ssdeep":"6144:Wtx5qtcxHJ0vaXtR3CNvmsm4h73qCEGkKUtQ9g0ypaIPnRbd3Cj:qbdJVXj3amstRqClkKgp0ypaI5bd3Cj","tlshash":"46c42c84b375a432439a56e4143b114ab23ef92c2449846cf65cfcfb7da89859b3ef34","size":594635,"data":"","first_seen":"2026-03-26T07:00:58.660666Z","last_seen":"2026-04-30T11:02:10.163858Z","times_seen":4,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":null,"console":null},"http":[{"url":{"schema":"https","addr":"unpkg.com/@walletconnect/sign-client@2.17.0/dist/index.umd.js","fqdn":"unpkg.com","domain":"unpkg.com","tld":"com"},"ip":{"addr":"104.18.0.22","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"script","requested_by":"https://trustwallets.sendandconfirm.in/","date":"2026-04-30T10:55:46.259Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"unpkg.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 18 Apr 2026 08:29:42 GMT","end":"Fri, 17 Jul 2026 09:29:11 GMT"},"fingerprint":{"sha1":"73:7C:21:3B:DE:06:04:4C:C3:6A:C4:8F:C1:02:C7:AF:34:01:FD:2A","sha256":"C7:4E:10:D0:BF:99:27:6C:4A:84:1D:26:8E:21:37:1E:3C:0C:91:9F:D4:A8:B4:D2:4E:A5:84:5E:73:04:5A:B4"}}},"request":{"raw":"GET /@walletconnect/sign-client@2.17.0/dist/index.umd.js HTTP/1.1\r\nHost: unpkg.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: */*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trustwallets.sendandconfirm.in/\r\nSec-Fetch-Dest: script\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 30 Apr 2026 10:55:46 GMT\r\ncontent-type: text/javascript; charset=utf-8\r\ncf-ray: 9f46041a3b91568b-OSL\r\ncf-cache-status: HIT\r\naccess-control-allow-origin: *\r\ncache-control: public, max-age=31536000\r\nexpires: Fri, 30 Apr 2027 10:55:46 GMT\r\nlast-modified: Thu, 30 Apr 2026 10:55:46 GMT\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000; includeSubDomains; preload\r\nvary: accept-encoding\r\nvia: 1.1 fly.io, 1.1 fly.io\r\naccess-control-allow-headers: *\r\naccess-control-allow-methods: GET, HEAD, OPTIONS\r\naccess-control-expose-headers: *\r\ncross-origin-resource-policy: cross-origin\r\nx-content-type-options: nosniff\r\ncontent-digest: sha256=:t1pWXf520kQNWp3p2+Efom6pojJ8DzEBNZXfOTXa+rY=:\r\nfly-request-id: 01KQCKMRPQE6CVMQHWXGMDYCZM-fra\r\ncontent-encoding: gzip\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Fly.io","description":"Fly is a platform for running full stack apps and databases.","website":"https://fly.io","common_platform_enumeration":"","icon":"Fly.io.png","categories":["PaaS"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":594635,"size_decoded":0,"mime_type":"text/javascript; charset=utf-8","magic":"JavaScript source, ASCII text, with very long lines (57926)","md5":"18009f8a276c4a18208ddb48b48cb411","sha1":"3127f2b03cb24cf999915535f25cfd80979f0f83","sha256":"b75a565dfe76d2440d5a9de9dbe11fa26ea9a2327c0f31013595df3935dafab6","sha512":"bc35ae19c29f405d0a7948de0b419825b0d152d930e61e208549cffbb7900f1844cd793d59a324976f5106a180c4edf568f068cf58908660bb6cfb1461100264","ssdeep":"6144:Wtx5qtcxHJ0vaXtR3CNvmsm4h73qCEGkKUtQ9g0ypaIPnRbd3Cj:qbdJVXj3amstRqClkKgp0ypaI5bd3Cj","tlshash":"46c42c84b375a432439a56e4143b114ab23ef92c2449846cf65cfcfb7da89859b3ef34","first_seen":"2026-03-26T07:00:58.660666Z","last_seen":"2026-04-30T11:02:10.163858Z","times_seen":4,"resource_available":true,"data":null}},"time_used":672,"timings":{"blocked":17,"dns":1,"connect":1,"send":0,"wait":634,"receive":0,"ssl":16},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raw.githubusercontent.com/salmanraheem-dev/bestforlast/refs/heads/main/public/logo.png","fqdn":"raw.githubusercontent.com","domain":"raw.githubusercontent.com","tld":"githubusercontent.com"},"ip":{"addr":"185.199.110.133","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trustwallets.sendandconfirm.in/","date":"2026-04-30T10:55:46.263Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.github.io","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 06 Apr 2026 23:32:36 GMT","end":"Sun, 05 Jul 2026 23:32:35 GMT"},"fingerprint":{"sha1":"18:DE:96:E8:3D:99:B2:8A:0C:D1:0C:48:78:BD:6A:14:6A:05:25:60","sha256":"EA:69:BC:71:1C:B9:D4:56:98:D2:FD:AA:48:54:D7:DC:08:6A:CD:3A:9C:35:01:64:90:9B:68:8A:C7:C0:63:1F"}}},"request":{"raw":"GET /salmanraheem-dev/bestforlast/refs/heads/main/public/logo.png HTTP/1.1\r\nHost: raw.githubusercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trustwallets.sendandconfirm.in/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=300\r\ncontent-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox\r\ncontent-type: image/png\r\netag: W/\"6cf351432a65687d0a6806dab3022a93f4c437c7106ae352d7d7052f0a7b64a3\"\r\nstrict-transport-security: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-frame-options: deny\r\nx-xss-protection: 1; mode=block\r\nx-github-request-id: 82B6:5D749:ADCF35B:C2463BF:69F33531\r\naccept-ranges: bytes\r\ndate: Thu, 30 Apr 2026 10:55:46 GMT\r\nvia: 1.1 varnish\r\nx-served-by: cache-hel1410025-HEL\r\nx-cache: MISS\r\nx-cache-hits: 0\r\nx-timer: S1777546546.296648,VS0,VE173\r\nvary: Authorization,Accept-Encoding\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nx-fastly-request-id: 44cfe36ede7dfa112a7241f1c41231b58d249a53\r\nexpires: Thu, 30 Apr 2026 11:00:46 GMT\r\nsource-age: 0\r\ncontent-length: 418615\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"GitHub Pages","description":"GitHub Pages is a static site hosting service.","website":"https://pages.github.com/","common_platform_enumeration":"","icon":"GitHub.svg","categories":["PaaS"]},{"name":"Fastly","description":"Fastly is a cloud computing services provider. Fastly's cloud platform provides a content delivery network, Internet security services, load balancing, and video \u0026 streaming services.","website":"https://www.fastly.com","common_platform_enumeration":"","icon":"Fastly.svg","categories":["CDN"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]}],"data":{"size":418615,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2000 x 2000, 8-bit/color RGBA, non-interlaced","md5":"fd0bd0438f9869210ac82cdfa38750e7","sha1":"72d2d6b5ccff70cdddd88c97bc084a4a35bc24ba","sha256":"22e62bcc91cbae232b29bf1fa0e59a307237714a32ca4e104f38d1f0890e538c","sha512":"dc509eca9c7d1370877b0814fcd6f79d8a9c82b209b718d59783c114d5620f5713bf56aec7b3c758bddfa3c64860e24862f00eaa67d70e9a133c9870ba1bb9f2","ssdeep":"6144:CUWg49Aj1tQiV1oXGwoQoib5Y+N2iLow8Yd4cTP9bqW7T4v1SUxZ5Abu3eCbXY:9seQiVSWw1BY+v8109bePxUuJXY","tlshash":"7f941249a49acac5cf98d3fa4b631f927b72700b502217460731b1529ce9f33be97786","first_seen":"2026-04-08T23:22:06.825391Z","last_seen":"2026-04-30T11:02:10.16481Z","times_seen":4,"resource_available":false,"data":null}},"time_used":301,"timings":{"blocked":27,"dns":1,"connect":13,"send":0,"wait":186,"receive":54,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"cryptologos.cc/logos/tron-trx-logo.png","fqdn":"cryptologos.cc","domain":"cryptologos.cc","tld":"cc"},"ip":{"addr":"172.67.218.225","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trustwallets.sendandconfirm.in/","date":"2026-04-30T10:55:46.265Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"cryptologos.cc","organization":""},"issuer":{"commonName":"E7","organization":"Let's Encrypt"},"validity":{"start":"Tue, 21 Apr 2026 09:56:03 GMT","end":"Mon, 20 Jul 2026 09:56:02 GMT"},"fingerprint":{"sha1":"64:B8:F6:7D:12:9E:D9:DF:B1:15:3E:85:16:8F:A5:17:07:39:AC:FB","sha256":"63:B7:58:4D:A6:80:AA:80:05:C4:0C:6A:8B:6C:AA:37:25:12:20:88:0D:E2:46:E7:21:E9:CB:80:17:D8:E0:27"}}},"request":{"raw":"GET /logos/tron-trx-logo.png HTTP/1.1\r\nHost: cryptologos.cc\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trustwallets.sendandconfirm.in/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Thu, 30 Apr 2026 10:55:46 GMT\r\ncontent-type: image/png\r\ncontent-length: 103975\r\nserver: cloudflare\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nlast-modified: Wed, 22 Apr 2026 13:14:12 GMT\r\netag: \"19627-6500c4ed9009a\"\r\naccept-ranges: bytes\r\ncache-control: max-age=14400\r\ncf-cache-status: REVALIDATED\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=kHKv1ix7%2F3%2FJ5J%2F8SuxpC72Z0rdZ8ERd5VdHRQwzBQ%2B9wsDWj7uuQhDnX2xfvdgF3hg2ve2Ss0kl728i7lyoZ2HhrcrKJup4Y1s7wo6dcw7Mi70FJLmn55k6GNlOmH9vNg%3D%3D\"}]}\r\ncf-ray: 9f46041a4ad40daa-OSL\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":103975,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2000 x 2000, 8-bit/color RGBA, non-interlaced","md5":"de3064d6f2b2153aacb6a854038c3a79","sha1":"841f3d1f868a3d71a01649b4307b9a1c1259e399","sha256":"79b386dbf889eb7356ab585421267aebc58e152268253865be5596ba2a2ce36b","sha512":"5c8c4b45222de6310002170dc4a51c033d9153409362fe8ca6841c26f30d467b52542703fc2f078289983a115257086fd1f96c062a7b72fb0449bd4f8607f88e","ssdeep":"3072:cTN3VFvbRgzj0eMqMGc+zfbTYkyA4FI+Tjqr0Zz:6pVFvNM0ea+sTIeqcz","tlshash":"8ea3028e4407eec2cd75d478d41d0f3a762a19f86b893bf79335d1b22db17a19a2800d","first_seen":"2023-05-31T01:01:47Z","last_seen":"2026-04-30T11:02:10.163201Z","times_seen":488,"resource_available":false,"data":null}},"time_used":156,"timings":{"blocked":17,"dns":5,"connect":1,"send":0,"wait":107,"receive":9,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"raw.githubusercontent.com/salmanraheem-dev/bestforlast/refs/heads/main/public/logo.png","fqdn":"raw.githubusercontent.com","domain":"raw.githubusercontent.com","tld":"githubusercontent.com"},"ip":{"addr":"185.199.110.133","port":443,"asn":54113,"as":"FASTLY","country":"United States","country_code":"US"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://trustwallets.sendandconfirm.in/","date":"2026-04-30T10:55:47.156Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"*.github.io","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Mon, 06 Apr 2026 23:32:36 GMT","end":"Sun, 05 Jul 2026 23:32:35 GMT"},"fingerprint":{"sha1":"18:DE:96:E8:3D:99:B2:8A:0C:D1:0C:48:78:BD:6A:14:6A:05:25:60","sha256":"EA:69:BC:71:1C:B9:D4:56:98:D2:FD:AA:48:54:D7:DC:08:6A:CD:3A:9C:35:01:64:90:9B:68:8A:C7:C0:63:1F"}}},"request":{"raw":"GET /salmanraheem-dev/bestforlast/refs/heads/main/public/logo.png HTTP/1.1\r\nHost: raw.githubusercontent.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://trustwallets.sendandconfirm.in/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ncache-control: max-age=300\r\ncontent-security-policy: default-src 'none'; style-src 'unsafe-inline'; sandbox\r\ncontent-type: image/png\r\netag: W/\"6cf351432a65687d0a6806dab3022a93f4c437c7106ae352d7d7052f0a7b64a3\"\r\nstrict-transport-security: max-age=31536000\r\nx-content-type-options: nosniff\r\nx-frame-options: deny\r\nx-xss-protection: 1; mode=block\r\nx-github-request-id: 82B6:5D749:ADCF35B:C2463BF:69F33531\r\naccept-ranges: bytes\r\ndate: Thu, 30 Apr 2026 10:55:47 GMT\r\nvia: 1.1 varnish\r\nx-served-by: cache-hel1410025-HEL\r\nx-cache: HIT\r\nx-cache-hits: 1\r\nx-timer: S1777546547.162113,VS0,VE2\r\nvary: Authorization,Accept-Encoding\r\naccess-control-allow-origin: *\r\ncross-origin-resource-policy: cross-origin\r\nx-fastly-request-id: 50a8b2ffc4aa0f44873570c1c42bb9ed581b7ed4\r\nexpires: Thu, 30 Apr 2026 11:00:47 GMT\r\nsource-age: 1\r\ncontent-length: 418615\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"GitHub Pages","description":"GitHub Pages is a static site hosting service.","website":"https://pages.github.com/","common_platform_enumeration":"","icon":"GitHub.svg","categories":["PaaS"]},{"name":"Fastly","description":"Fastly is a cloud computing services provider. Fastly's cloud platform provides a content delivery network, Internet security services, load balancing, and video \u0026 streaming services.","website":"https://www.fastly.com","common_platform_enumeration":"","icon":"Fastly.svg","categories":["CDN"]},{"name":"Varnish","description":"Varnish is a reverse caching proxy.","website":"https://www.varnish-cache.org","common_platform_enumeration":"cpe:2.3:a:varnish-software:varnish_cache:*:*:*:*:*:*:*:*","icon":"Varnish.svg","categories":["Caching"]}],"data":{"size":418615,"size_decoded":0,"mime_type":"image/png","magic":"PNG image data, 2000 x 2000, 8-bit/color RGBA, non-interlaced","md5":"fd0bd0438f9869210ac82cdfa38750e7","sha1":"72d2d6b5ccff70cdddd88c97bc084a4a35bc24ba","sha256":"22e62bcc91cbae232b29bf1fa0e59a307237714a32ca4e104f38d1f0890e538c","sha512":"dc509eca9c7d1370877b0814fcd6f79d8a9c82b209b718d59783c114d5620f5713bf56aec7b3c758bddfa3c64860e24862f00eaa67d70e9a133c9870ba1bb9f2","ssdeep":"6144:CUWg49Aj1tQiV1oXGwoQoib5Y+N2iLow8Yd4cTP9bqW7T4v1SUxZ5Abu3eCbXY:9seQiVSWw1BY+v8109bePxUuJXY","tlshash":"7f941249a49acac5cf98d3fa4b631f927b72700b502217460731b1529ce9f33be97786","first_seen":"2026-04-08T23:22:06.825391Z","last_seen":"2026-04-30T11:02:10.16481Z","times_seen":4,"resource_available":false,"data":null}},"time_used":31,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":15,"receive":16,"ssl":0},"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"trustwallets.sendandconfirm.in/","fqdn":"trustwallets.sendandconfirm.in","domain":"sendandconfirm.in","tld":"in"},"ip":{"addr":"64.29.17.1","port":443,"asn":16509,"as":"AMAZON-02","country":"United States","country_code":"US"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-04-30T10:55:45.842Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"RSA-PSS-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"trustwallets.sendandconfirm.in","organization":""},"issuer":{"commonName":"R12","organization":"Let's Encrypt"},"validity":{"start":"Wed, 29 Apr 2026 15:20:05 GMT","end":"Tue, 28 Jul 2026 15:20:04 GMT"},"fingerprint":{"sha1":"1B:1A:07:85:50:46:B8:BC:01:63:E2:5D:8A:C6:10:7F:80:0D:6E:A3","sha256":"B7:A2:20:93:25:36:6D:4F:47:55:08:DC:8F:AE:63:D8:2A:39:39:01:91:D9:9E:20:0E:A5:F0:F7:10:12:95:33"}}},"request":{"raw":"GET / HTTP/1.1\r\nHost: trustwallets.sendandconfirm.in\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nUpgrade-Insecure-Requests: 1\r\nConnection: keep-alive\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\naccess-control-allow-origin: *\r\nage: 8219\r\ncache-control: public, max-age=0, must-revalidate\r\ncontent-disposition: inline\r\ncontent-encoding: br\r\ncontent-type: text/html; charset=utf-8\r\ndate: Thu, 30 Apr 2026 10:55:45 GMT\r\netag: W/\"b72e53385933f32ebf0d2519ec614039\"\r\nlast-modified: Thu, 30 Apr 2026 08:38:46 GMT\r\nserver: Vercel\r\nstrict-transport-security: max-age=63072000\r\nx-vercel-cache: HIT\r\nx-vercel-enable-rewrite-caching: 1\r\nx-vercel-id: arn1::mqzlk-1777546545968-943dc04d7169\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"Vercel","description":"Vercel is a cloud platform for static frontends and serverless functions.","website":"https://vercel.com","common_platform_enumeration":"","icon":"vercel.svg","categories":["PaaS"]},{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Unpkg","description":"Unpkg is a content delivery network for everything on npm.","website":"https://unpkg.com","common_platform_enumeration":"","icon":"Unpkg.png","categories":["CDN"]}],"data":{"size":9982,"size_decoded":0,"mime_type":"text/html; charset=utf-8","magic":"HTML document, Unicode text, UTF-8 text","md5":"b72e53385933f32ebf0d2519ec614039","sha1":"5d831cf9aab70a20730d230f59a169ef11484560","sha256":"11be587329cea9b5382fb77778f50f3296434e726324c11ed5d99cab1f8f5401","sha512":"e46d5dbe8ebb3a8cb37025c41e97d5923112d518216571b54a8a0c023943e05a7704d299a926614d989f4c11ff91048b728d1b9a0cf13454093e4e15c1f134b5","ssdeep":"192:N32AUkNakIJUvXa4tJCAkar9f8CHae0RXH1wV9W2yTqpXeF81D:NGcxIh46cfx0d1/qEF8d","tlshash":"7822b3e67a7230254a27d1586a93a2493165d007648fc4647fece1688fd46cb89f73d8","first_seen":"2026-04-30T10:56:14.965Z","last_seen":"2026-04-30T11:02:10.162481Z","times_seen":2,"resource_available":true,"data":null}},"time_used":252,"timings":{"blocked":120,"dns":93,"connect":1,"send":0,"wait":11,"receive":0,"ssl":24},"alerts":{"ids":null,"analyzer":[{"sensor_name":"quad9","sensor_type":"DNS","title":"Quad9 DNS","description":"Quad9 DNS","scan_date":"2026-04-30","alert":"Sinkholed","trigger":"trustwallets.sendandconfirm.in","verdict":"malicious","severity":"medium","comment":"Sinkholed in DNS","link":"https://www.quad9.net","meta":null}],"urlquery":null}}]}