Report - sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html

Report Overview

Submitted URL
sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
IP
172.67.73.233
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-08 13:09:28
Access
public
Website Title
Download Poseidon Launcher zip
Final URL
sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
2

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
creaghtain.com	unknown	2024-01-29	2024-03-20	2024-03-28	398 B	1.2 kB	23.109.170.113
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-05-07	493 B	16 kB	142.250.74.106
stpd.cloud	39008	2020-09-03	2020-10-20	2024-05-03	392 B	172 kB	104.18.30.49
maxcdn.bootstrapcdn.com	724	2012-05-25	2014-06-18	2024-05-07	1.4 kB	87 kB	104.18.11.207
sharemods.com	216787	2013-01-31	2013-05-08	2024-04-18	16 kB	534 kB	104.26.10.194
cdn.jsdelivr.net	439	2012-05-16	2012-09-30	2024-05-07	493 B	2.0 kB	104.18.187.31
cmp.setupcmp.com	unknown	2022-04-06	2022-10-21	2024-05-07	3.1 kB	251 kB	104.26.5.6
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-08	2.1 kB	168 kB	142.250.74.163
api.btloader.com	1320	2020-10-06	2020-10-14	2024-05-06	1.5 kB	818 B	130.211.23.194
www.googletagmanager.com	75	2011-11-11	2013-05-22	2024-05-08	420 B	102 kB	142.250.74.168
use.fontawesome.com	942	2012-10-18	2017-01-30	2024-05-06	873 B	52 kB	172.67.142.245
ad-delivery.net	1341	2017-05-03	2017-06-22	2024-05-08	861 B	2.4 kB	104.26.2.70
node.setupad.com	35682	2015-01-05	2018-03-16	2024-05-02	500 B	6.7 kB	159.89.25.223
btloader.com	169057	2020-10-06	2020-10-22	2024-05-08	439 B	19 kB	172.67.41.60

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-08	medium	creaghtain.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (32)

	URL	Size	First Seen	Last Seen
	maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js	37 kB	2023-03-07	2024-05-20
Pretty URL maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js IP 104.18.11.207 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-05-20 01:36:02 Times Seen56674 Hash 5869c96cc8f19086aee625d670d741f9 430a443d74830fe9be26efca431f448c1b3740f9 53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef Loading...

	sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html	261 B	2023-03-07	2024-05-19
Pretty URL sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:23:22 Last Seen2024-05-19 20:33:30 Times Seen1421 Hash d04584334d251ef8ea053da53b683194 dc0092f79b3e040a93d5d94951ff9eb326960c99 6f42d96dcea6cd1193084d86f60b8629162023b44cd213d41fc63bedc177fbb8 Loading...

	sharemods.com/js/bootstrap-select.js	73 kB	2023-03-07	2024-05-19
Pretty URL sharemods.com/js/bootstrap-select.js IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:51 Last Seen2024-05-19 20:33:30 Times Seen203 Hash af6200f039282e77d27ce8c3a1b290ed 995520ecf31fa35d5fbf1193ba0c39dd65ef62cb f17a6c7a61593005b4d3f273d3728c956bf8f711bc5acc4205c8350ccb19d102 Loading...

	securepubads.g.doubleclick.net/tag/js/gpt.js	13 kB	2023-04-05	2024-05-20
Pretty URL securepubads.g.doubleclick.net/tag/js/gpt.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 04:46:03 Last Seen2024-05-20 01:42:29 Times Seen31802 Hash 0c9ed134ae3d5ffe972da2a3e59dc428 620df222551395592e46e4c5f425cf23dcdad891 5f9efa604bfe2aee8c1a90376125a098306ba390530a6f9b2ecb0a67cdac178d Loading...

	sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html	666 B	2023-03-07	2024-05-19
Pretty URL sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:23:22 Last Seen2024-05-19 20:33:30 Times Seen1420 Hash b43b98ae6d81d1bcc31bf4d398af2770 084014353ba5a80e35a7144b4c4ad8abbcdf6eac 6df937222477e1219205ce19b008280da54e60cdf8c3a5749369a66224a82faa Loading...

	sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html	2.4 kB	2023-03-26	2024-05-19
Pretty URL sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-26 13:17:58 Last Seen2024-05-19 20:33:30 Times Seen103 Hash c14183d715b639cef3b15f0ff571db54 faee308e7aefe8f0b2099ff179591a31a54c236e d54d9d5d9babca2db25da1f0416075b0b44dde512a98f62e9a3009b616cbc994 Loading...

	sharemods.com/js/jquery.paging.js	5.4 kB	2023-03-07	2024-05-19
Pretty URL sharemods.com/js/jquery.paging.js IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:52 Last Seen2024-05-19 20:33:30 Times Seen423 Hash bdac2c6b7b5f9e6812264ee95ca7e9fc 47957ed010ff73c1a23bc4b490fbcc618416604d 3ff6be8f3b815dfa79d5ca2e915bd5c2d96bf3133c7b6dbc50f87849933bc818 Loading...

	sharemods.com/js/share.js	329 B	2023-03-07	2024-05-19
Pretty URL sharemods.com/js/share.js IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:51 Last Seen2024-05-19 20:33:30 Times Seen545 Hash e38522ef9b2fe6940894f9f35a29f407 d5227e21fbae55e23bd87bf084a4049e797d0775 59b3cd5e8d2207976f8f687c84eba22d83cf960318fa8f7a6f31022ef4e69208 Loading...

	sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html	169 B	2023-03-07	2024-05-19
Pretty URL sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:31:51 Last Seen2024-05-19 20:33:30 Times Seen104 Hash bd28add630ad50317731a4d5e64fc536 7fc133d13146fc4c04f9ff518e1632213eb13d66 89cf5c676a543f8f50a4626cb6eb7d747c9d10f0cf1a588fc67b3fc297a2dc46 Loading...

	creaghtain.com/1clkn/16756	6 B	2023-03-07	2024-05-20
Pretty URL creaghtain.com/1clkn/16756 IP 23.109.170.113 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:04 Last Seen2024-05-20 01:26:32 Times Seen15254 Hash 9082dc37e5e8046929da411544ad071a 41e0e3963ed94e59e8a2f115994c382712411537 b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550 Loading...

	sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html	174 B	2023-03-07	2024-05-19
Pretty URL sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:23:22 Last Seen2024-05-19 20:33:30 Times Seen1278 Hash cb943eb9432bf54d0289b5b025bef54f 59126b245742b44378dbfa4c3d11bd852a4d716b a40ee726019c571babd88bcfc2265bb8030e1b476452ed3ccda139deebefee94 Loading...

	sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html	93 B	2023-04-15	2024-05-19
Pretty URL sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-15 15:47:42 Last Seen2024-05-19 20:33:30 Times Seen95 Hash 32a5cb10715c421a9a6c654de8e3d5a1 3edb979e612fb14118948f4c363f800b933b0c7e fadc57c26515e67f6a160f209072c09cb006fee05fef681d3315fd6056e03973 Loading...

	sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html	95 B	2023-04-15	2024-05-19
Pretty URL sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-15 15:47:42 Last Seen2024-05-19 20:33:30 Times Seen95 Hash fa7573354e9ee39223d517e6faab8d9d 3cac51ad47c123ef7bd1da1f9ef16b0ddb54d50f 9ffd97c023eca40e0ed7ff4ac5091912466dde5b9513671415560781e8daa26f Loading...

	sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html	95 B	2023-04-15	2024-05-19
Pretty URL sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-15 15:47:42 Last Seen2024-05-19 20:33:30 Times Seen95 Hash 26df313a9b05b5bebc4c07c10972d72d 96a8483e5ba881d08bafeaf42d92a0f12ebf3567 68c70b928b79a2dda2b65bfb6670436a3de9bf3647df9937879af021d0d2cbb2 Loading...

	cmp.setupcmp.com/cmp/cmp/cmp-v1.js	118 kB	2024-03-13	2024-05-19
Pretty URL cmp.setupcmp.com/cmp/cmp/cmp-v1.js IP 104.26.5.6 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-13 11:29:27 Last Seen2024-05-19 20:33:30 Times Seen62 Hash 3a1553540b022f2ad4bc66deb2d411d1 c37df157382a7ed798a4bffad7e8c440d830991f f0380afa4caddd25296cf11c2e015809e8d556c9d5f0ab8b06fe96cf4f91d3be Loading...

	sharemods.com/js/jquery.cookie.js	2.0 kB	2023-03-07	2024-05-19
Pretty URL sharemods.com/js/jquery.cookie.js IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:51 Last Seen2024-05-19 20:33:30 Times Seen417 Hash 62f1e648af870467847e82a196e6bc3d 494a213d988624a14582b8d0277581a5571bb55e 250e367ff82ec35e8bdfd782251214c82c9f22640a2b994ecbfdb185c1f28f56 Loading...

	sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html	1.7 kB	2024-05-08	2024-05-08
Pretty URL sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-08 15:09:30 Last Seen2024-05-08 15:09:30 Times Seen1 Hash a8f6cce67fee60e4b774dcc90e14ed22 246bfc971f8ee1ab05a6c6ba752040583c272c87 1d15de8f0b88f04641a66903817015005baa91646b140ae403fdf743159f439c Loading...

	unknown	247 B	2024-05-08	2024-05-08
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 15:09:30 Last Seen2024-05-08 15:09:30 Times Seen1 Hash 459385937a660656b65f1342ccfe74ee 67009a0aa4b5dfc0a5066488ea584241e7219049 8e8aa9d0997e9fb7621f31fce4094c88a76e71cd20021ba06abdc1e0af7e050d Loading...

	btloader.com/tag?o=5646025299591168&domain=sharemods.com&upapi=true	55 kB	2024-05-08	2024-05-09
Pretty URL btloader.com/tag?o=5646025299591168&domain=sharemods.com&upapi=true IP 172.67.41.60 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 15:09:30 Last Seen2024-05-09 09:17:13 Times Seen4 Hash fdfabb25255ab99d2f7dd4f74f31368d 57ee87cc6c58be1c2699e7bbccb1537a78d58c52 878845d64982299ad2778d97a4504cb9ceb72abe9a6671e25df08838942aa794 Loading...

	stpd.cloud/saas/3928	426 kB	2024-02-12	2024-05-11
Pretty URL stpd.cloud/saas/3928 IP 104.18.30.49 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-02-12 11:53:32 Last Seen2024-05-11 21:20:21 Times Seen91 Hash 2fc0fde5d969a7486ebf06d8d7814cac 8001716750bcfcaf96fb872e460720adb3d9c5c8 7632d9774d35050bca38f9dd75f5057a924ced35cb90934336f4f626ecd93956 Loading...

	www.googletagmanager.com/gtag/js?id=G-VR69R17JLR	306 kB	2024-05-08	2024-05-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-VR69R17JLR IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 15:09:30 Last Seen2024-05-08 15:09:30 Times Seen2 Hash cba105e7dd02ac7fdfb3d97271271a15 3abb5d19dda4a6aac92290f5b1a63a1e1b6a57c1 7f991cbcba7abe3f1a89cdeff17d14053dcd241d7622f9e48b42d9113910bd35 Loading...

	sharemods.com/cdn-cgi/challenge-platform/scripts/jsd/main.js	7.9 kB	2024-05-08	2024-05-08
Pretty URL sharemods.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-08 15:09:30 Last Seen2024-05-08 15:09:31 Times Seen2 Hash 0f7b109d791ab3ada56cfd0a530551cc 48c5abff6fcb63cff97eb1071b32b81a5b0cb5cd 98ae93f2faa5680da71a0b02eb71543fc39e88b5cc6bbd21aad67b7b5bcd16af Loading...

	sharemods.com/y8ehwiyvq6vh/sandbox%20eval%20code	136 B	2023-04-11	2024-05-20
Pretty URL sharemods.com/y8ehwiyvq6vh/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:23:25 Last Seen2024-05-20 01:42:29 Times Seen32451 Hash fb4eb094524daea58bf7f82331598541 f5ca39eb98fa1685f8647514a627d3d7f216f7ef 7cbf1e77bb9277bac7030ded2087246adf5c59564a5a1f28ce8c09be6ef48683 Loading...

	sharemods.com/js/paging.js?r=1	1.1 kB	2023-03-07	2024-05-19
Pretty URL sharemods.com/js/paging.js?r=1 IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:51 Last Seen2024-05-19 20:33:30 Times Seen408 Hash 7a8d0d2ed991011d6f095ab8dd49973e 51a1f7bcb992124a9929a939641c3893f541384a 6fc96bd4bbaeb5f4f6b9ea81d2f995711064f7ca8e90362892122de20bbfba2e Loading...

	sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html	68 B	2023-03-07	2024-05-19
Pretty URL sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:31:51 Last Seen2024-05-19 20:33:30 Times Seen366 Hash 32a1418f90fdca162650da1c291e381d 812ebaa24f806709ef7e7fb035157cd97d60ed19 47b60e76dbe47057f6be18f972eb638653296e645b1e71a284188eb771e2987c Loading...

	sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html	335 B	2023-09-23	2024-05-19
Pretty URL sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-23 06:04:01 Last Seen2024-05-19 20:33:30 Times Seen78 Hash a5d9182e47c44051a361ee96883dff20 655bf793122c58a9af4d4942bfca60cefd1f7281 5135678155fe27f45430794b22db7c427e5035c4a71bbc77e09f9a6c47783dd3 Loading...

	cmp.setupcmp.com/cmp/cmp/cmp-stub.js	1.0 kB	2023-12-04	2024-05-19
Pretty URL cmp.setupcmp.com/cmp/cmp/cmp-stub.js IP 104.26.5.6 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 10:16:57 Last Seen2024-05-19 20:33:30 Times Seen237 Hash de37e8e7c0a8b5bb2ef13c41bc93a023 a053ca11f4ff372c6947879ed13d18690dd00267 30ecc4cd36aa5d13b26bfdf89c9b0c41af9a3311985c0c878bcc687b9f55986a Loading...

	sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html	153 B	2023-09-23	2024-05-19
Pretty URL sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-23 06:04:01 Last Seen2024-05-19 20:33:30 Times Seen84 Hash 3e98af8dbed5e3099041a80cc6837428 3d3adf3a5bbb73bf2bf3a3f06d6c00d74010def0 ac94fe0edf2f57f901f5e7208a306aba3b9283a8776fa8b4534bfab181261e7b Loading...

	sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html	266 B	2023-03-07	2024-05-19
Pretty URL sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:31:51 Last Seen2024-05-19 20:33:30 Times Seen104 Hash a41d056a6b265bd5fcf41d9d9571b7eb b833d3612bcd1f4febc63d793043693277330c5a 95202fd884c0cb84169a5bf8a19f991c8eba55abb8ca88d36bc79aca3664ed2d Loading...

	sharemods.com/js/functions.js?v=1.21	1.3 kB	2023-03-07	2024-05-19
Pretty URL sharemods.com/js/functions.js?v=1.21 IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:51 Last Seen2024-05-19 20:33:30 Times Seen143 Hash 6d3a4b2050521a288a16c7f1b5427d66 22969292e8234ca77a3d6cb5b861965418ee6b03 0913ffc67cfdfb69fb6db7be06be5445f92be9bdf5de322645778f1ab365f097 Loading...

	sharemods.com/js/jquery-1.9.1.min.js	93 kB	2023-03-07	2024-05-20
Pretty URL sharemods.com/js/jquery-1.9.1.min.js IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-05-20 01:29:40 Times Seen24435 Hash 397754ba49e9e0cf4e7c190da78dda05 ae49e56999d82802727455f0ba83b63acd90a22b c12f6098e641aaca96c60215800f18f5671039aecf812217fab3c0d152f6adb4 Loading...

	sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html	1.1 kB	2024-05-08	2024-05-08
Pretty URL sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html IP 104.26.10.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-08 15:09:30 Last Seen2024-05-08 15:09:30 Times Seen1 Hash 7523a4ad0e4b71a2b670f05301bd18bd 54e14ad9921a335cce4c5707cdf850ba853bfe4b 43c4bb1b0310e690e9d183779fe5c6b2ce8f9058843edcbe1224e0635f18b72d Loading...

HTTP Transactions (54)

URL IP Response Size

sharemods.com/images/logo.png

104.26.10.194

200 OK

1.6 kB

URL GET HTTP/3
sharemods.com/images/logo.png
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
PNG image data, 266 x 52, 8-bit colormap, non-interlaced
Size
1.6 kB (1587 bytes)
Hash
cdf82312727692cba596cdb8d5ed1b5b
2c8d38db075d3042add78b11f637d12f5ec0f281
f554b54454b22732cc9c9d5db5d60fd0afa28ca1c48cfff3fc2efa9923b0c5db

HTTP Headers

GET /images/logo.png HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: image/png
content-length: 1587
cache-control: max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=3940
etag: "63280f65-f64"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 19 Sep 2022 06:42:45 GMT
cf-cache-status: HIT
age: 665743
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=I4HrmX%2B96ge52v5jMYr%2FnJCJd1HoU9boMPKav5V35epBAVe9tmonjknkOg4qxvfnEiDXY2MOBwb0er18dvb8Vv6x%2BJ1rDnDtSQX9ekH8uRoY9am7EQR5ox2zOTV4eIs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8a7b345697-OSL
alt-svc: h3=":443"; ma=86400

sharemods.com/images/ico_down.png

104.26.10.194

200 OK

247 B

URL GET HTTP/3
sharemods.com/images/ico_down.png
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
PNG image data, 27 x 27, 8-bit gray+alpha, non-interlaced
Size
247 B (247 bytes)
Hash
73148bf7f65617a29818d01ee12b1f3e
d87c56a845f18d185920052a7375a21be20e476e
044f2c7a3135ea13dd5cd8cef38c71dd5e2e56685b55d0a8535af4d62c5bc826

HTTP Headers

GET /images/ico_down.png HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: image/png
content-length: 247
cache-control: max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=381
etag: "63280f64-17d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 19 Sep 2022 06:42:44 GMT
cf-cache-status: HIT
age: 679841
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mraC5lyX8Y6NEoaVmO2d8KyrsG3t4hXyNsjGTKgWVFOy6AXZXY91ACstNezXPAuN0WjZU6AmOsuxswhGPmfeWel%2B4zpaZoKCZH24LnA1jGWTjt0JQ5V7fMrGb4ejDPc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8a7b365697-OSL
alt-svc: h3=":443"; ma=86400

btloader.com/tag?o=5646025299591168&domain=sharemods.com&upapi=true

172.67.41.60

200 OK

18 kB

URL GET HTTP/2
btloader.com/tag?o=5646025299591168&domain=sharemods.com&upapi=true
IP
172.67.41.60:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbtloader.com
Fingerprint70:F7:F9:F7:42:5B:08:2E:94:58:BB:71:DF:F9:4D:8C:F5:09:57:DA
ValiditySun, 14 Apr 2024 06:05:01 GMT - Sat, 13 Jul 2024 06:05:00 GMT

File type
JavaScript source, ASCII text, with very long lines (55119)
Size
18 kB (18433 bytes)
Hash
fdfabb25255ab99d2f7dd4f74f31368d
57ee87cc6c58be1c2699e7bbccb1537a78d58c52
878845d64982299ad2778d97a4504cb9ceb72abe9a6671e25df08838942aa794

HTTP Headers

GET /tag?o=5646025299591168&domain=sharemods.com&upapi=true HTTP/1.1
Host: btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: application/javascript
content-length: 18433
cache-control: public, max-age=300, must-revalidate, stale-if-error=3600, stale-while-revalidate=300
content-encoding: gzip
etag: "c5b9dd52a02afd5036761461be7b704b"
last-modified: Wed, 08 May 2024 12:46:49 GMT
vary: Origin, Accept-Encoding
via: 1.1 google
cf-cache-status: HIT
age: 1241
accept-ranges: bytes
server: cloudflare
cf-ray: 8809ae8aeebeb50f-OSL
X-Firefox-Spdy: h2

sharemods.com/css/style.css?v=1.36

104.26.10.194

200 OK

12 kB

URL GET HTTP/3
sharemods.com/css/style.css?v=1.36
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
ASCII text, with very long lines (62009), with no line terminators
Size
12 kB (12204 bytes)
Hash
0ed4cbb0b1958224cfe5af769c5c431f
91f08ee8ea9a029711c30e55dfdbe8c7eb7a8b9d
a730b4b0b939fbacf960275cb2533e36e67d140638c478374a2de0142af1bd14

HTTP Headers

GET /css/style.css?v=1.36 HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: text/css
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=78800
etag: W/"63a1ade4-133d0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 20 Dec 2022 12:43:16 GMT
cf-cache-status: HIT
age: 679752
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C3pkJtUTJrePsE0IeAiPzB4DldtAmRJw1H6q16DJej7bN7UQD5YlrmByrU17fL4GegwW3lL8Lf7VPdMm1WAYzTyhblcvoIErJsHNn8gsqqWV0z9EdTmkEkoSAsjC9TI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8a5b105697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sharemods.com/js/functions.js?v=1.21

104.26.10.194

200 OK

786 B

URL GET HTTP/3
sharemods.com/js/functions.js?v=1.21
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
JavaScript source, ASCII text, with very long lines (1027)
Size
786 B (786 bytes)
Hash
6d3a4b2050521a288a16c7f1b5427d66
22969292e8234ca77a3d6cb5b861965418ee6b03
0913ffc67cfdfb69fb6db7be06be5445f92be9bdf5de322645778f1ab365f097

HTTP Headers

GET /js/functions.js?v=1.21 HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: application/javascript
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=1650
etag: W/"633ea3d4-672"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 06 Oct 2022 09:45:56 GMT
cf-cache-status: HIT
age: 675675
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BMakrteS%2BSUWlz8rWwb0dtYmPTRkRnJSbb6XcHltKyjQ3PES4fcUBx1eyJt4X9%2F4kuFSY6O06AxaWAoGhhUPHtg%2FF8Cj6dlQqhgx3QMQtzvfXAiQOGy8kveXG8zSvDI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8a8b455697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sharemods.com/css/theme-update.min.css?ver=1.003

104.26.10.194

200 OK

13 kB

URL GET HTTP/3
sharemods.com/css/theme-update.min.css?ver=1.003
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
13 kB (13265 bytes)
Hash
e7e714dfeed7d588a750bc7544388d53
c125d9b9835b4aa08e1005b1896ca8de6ba49727
12e2de1ac53da8f8f98a4bf7be2216f1b5c5a02b74688761712cdf1c5acfd3f9

HTTP Headers

GET /css/theme-update.min.css?ver=1.003 HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: text/css
last-modified: Thu, 14 Sep 2023 08:21:01 GMT
etag: W/"6502c26d-1385e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 679752
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AbQKhYaLW2rYFCGMBq6tIHQn288yw%2B0inmkxWGOD%2BxQoaJV5%2F7dUPJuKmZiaLP%2BC9x%2FajAxpO8GKodFFzFfSwJ9f51VQHYXr5NGlnPaFtGFZCAqEk5uUXNmKC7Cwk5o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8a5b165697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

creaghtain.com/1clkn/16756

23.109.170.113

200 OK

26 B

URL GET HTTP/1.1
creaghtain.com/1clkn/16756
IP
23.109.170.113:443
ASN
#7979 SERVERS-COM

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectcreaghtain.com
Fingerprint3A:EC:3E:6A:A4:DC:F9:AF:CC:5A:14:E6:89:FC:E4:F9:91:6D:BD:FE
ValiditySun, 07 Apr 2024 23:05:20 GMT - Sat, 06 Jul 2024 23:05:19 GMT

File type
ASCII text, with no line terminators
Size
26 B (26 bytes)
Hash
9082dc37e5e8046929da411544ad071a
41e0e3963ed94e59e8a2f115994c382712411537
b7848d86edc8dc3b5bc6a5c666069f9a31e000cee51575d3b6083951607e1550

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1clkn/16756 HTTP/1.1
Host: creaghtain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Date: Wed, 08 May 2024 13:09:01 GMT
Content-Type: application/javascript; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Keep-Alive: timeout=20
Accept-ch: sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-ua-full-version-list
Set-Cookie: GL_UI4=eJw9jUtug0AQRPljJ4akJQ7gIxgUjL3MJivfAQ0zDZ4Ypq1mjJ3bZxIp2dUrPVV5nhcUL%2BAvyRrCm6hhe1R9s5dYojyUVVW%2BHSrZ151o%2BlJVTVnvYK3n1opuRBvBap4E29YuEWwGNMhatpIUZvDqrL%2FmYuhuIog7FkZlEE%2FOGDNIO6b7jFyEEBkxIaQfmrGnhzPEJzEEx72L2rjo7yCguQjzJ4hP2twe%2BSbx8jzx4Pk6CtsTT61WDuOBhULw32ElhcWB%2BAtShfPF0hWARtX%2B%2B7%2Bf8fizBonCRUuHZM%2FI38wATrY%3D; expires=Thu, 09-May-2024 13:09:01 GMT; Max-Age=86400; path=/; secure; SameSite=None
GL_GI10=eJwVyM0KgkAUhuE5hxiIJPjIC%2FAKTMsWbrNl6MIrMIsYGObIzNjP3WeLd%2FG8SilOE7CZkNRlXhd5dcjLUwV6gtsOPDroVvx7%2BII8uDiCvcOmC1ayRmYXlz9i9TfIYHu25pP1YudoxAXw0roZbvaxv%2FRX0KQJHEUzONxTBXrp3Q9e7R3S; expires=Thu, 09-May-2024 13:09:01 GMT; Max-Age=86400; path=/; secure; SameSite=None
Content-Encoding: gzip
Vary: Accept-Encoding
Strict-Transport-Security: max-age=1
X-Content-Type-Options: nosniff

www.googletagmanager.com/gtag/js?id=G-VR69R17JLR

142.250.74.168

200 OK

102 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-VR69R17JLR
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE
ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT

File type
JavaScript source, ASCII text, with very long lines (5955)
Size
102 kB (101671 bytes)
Hash
cba105e7dd02ac7fdfb3d97271271a15
3abb5d19dda4a6aac92290f5b1a63a1e1b6a57c1
7f991cbcba7abe3f1a89cdeff17d14053dcd241d7622f9e48b42d9113910bd35

HTTP Headers

GET /gtag/js?id=G-VR69R17JLR HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 13:09:01 GMT
expires: Wed, 08 May 2024 13:09:01 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 101671
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Open+Sans:wght@300;400;700&family=Ubuntu:wght@300;400;500;700&display=swap

142.250.74.106

200 OK

16 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Open+Sans:wght@300;400;700&family=Ubuntu:wght@300;400;500;700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
gzip compressed data, max compression
Size
16 kB (15654 bytes)
Hash
ba5615bbfe441c72c959951f0eede00d
7cbaf021bd7b1819222eafca16667fe06f32edba
9a79e87b219f77f12325e89846e7d21736f7a6b62045585f801f21615cac1bb1

HTTP Headers

GET /css2?family=Open+Sans:wght@300;400;700&family=Ubuntu:wght@300;400;500;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 May 2024 13:09:01 GMT
date: Wed, 08 May 2024 13:09:01 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

stpd.cloud/saas/3928

104.18.30.49

200 OK

172 kB

URL GET HTTP/2
stpd.cloud/saas/3928
IP
104.18.30.49:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectstpd.cloud
Fingerprint6A:49:DD:7E:25:17:7F:A8:20:16:33:EE:C5:FB:26:57:03:F1:49:6A
ValidityTue, 07 May 2024 16:33:39 GMT - Mon, 05 Aug 2024 16:33:38 GMT

File type
JavaScript source, ASCII text, with very long lines (65329)
Size
172 kB (171556 bytes)
Hash
2fc0fde5d969a7486ebf06d8d7814cac
8001716750bcfcaf96fb872e460720adb3d9c5c8
7632d9774d35050bca38f9dd75f5057a924ced35cb90934336f4f626ecd93956

HTTP Headers

GET /saas/3928 HTTP/1.1
Host: stpd.cloud
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: text/javascript
cf-ray: 8809ae8afd7356c5-OSL
cf-cache-status: HIT
age: 11
cache-control: public, max-age=1200
expires: Wed, 08 May 2024 13:29:01 GMT
last-modified: Wed, 08 May 2024 13:08:50 GMT
vary: Accept-Encoding
stpdhash: cache
access-control-allow-origin: *
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.1.1/css/v4-shims.css

172.67.142.245

200 OK

4.6 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.1.1/css/v4-shims.css
IP
172.67.142.245:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (26508)
Size
4.6 kB (4642 bytes)
Hash
01727b5056f65c2ac938f5db4e552b10
a44b4f2f268d7fdd5fa700d8f1b71f6a85fb7c39
1458c65cd927c3e5bf35667665280eaaf849eef09ed217983334c5c8a78f6759

HTTP Headers

GET /releases/v5.1.1/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: text/css
cache-control: max-age=31556926
etag: W/"01727b5056f65c2ac938f5db4e552b10"
last-modified: Fri, 22 Sep 2023 01:44:26 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 665801
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CcEk2sblrvk1XK961lkZaRFSd0wK7KAQ67W5LBTW4RcXFCkvHHXF3v7J0NCokoDm%2BvzE9uxlHnbtyLFxyPcW906cjNgxYN4FJwTUo9uy6wujLf8LSGuQ2tc9WpJwVEmRjRpLRjrn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8809ae8c3879b50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.163

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sharemods.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 04:59:42 GMT
expires: Sun, 04 May 2025 04:59:42 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
age: 374959
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.163

200 OK

48 kB

URL GET HTTP/2
fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 48236, version 1.0
Size
48 kB (48236 bytes)
Hash
015c126a3520c9a8f6a27979d0266e96
2acf956561d44434a6d84204670cf849d3215d5f
3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa

HTTP Headers

GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sharemods.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 04 May 2024 04:59:42 GMT
expires: Sun, 04 May 2025 04:59:42 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
age: 374959
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

sharemods.com/images/user-icon.svg

104.26.10.194

200 OK

30 kB

URL GET HTTP/3
sharemods.com/images/user-icon.svg
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
SVG Scalable Vector Graphics image
Size
30 kB (30107 bytes)
Hash
fd7037ad1533b3f78c81a40d6ad26a98
d8e51b2d13feaf307ff022e5252404c9ceea9122
25370fe82dae8bae3881885339ccb49e13351e30f3dddf4085a9cd712e03e96c

HTTP Headers

GET /images/user-icon.svg HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/css/theme-update.min.css?ver=1.003
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Sep 2022 06:42:50 GMT
etag: W/"63280f6a-26e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 675674
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OUDmyMbK3ydNe7QABSK5xkG6pzCzF0gUqp%2B%2BokMuWb%2F6LWub2S%2B4TO%2B3%2B%2FHK8mB5mBcQJC%2F8jX1MaJ6vYULBf3fU%2Bnp4KR1UQilPMlgSzmcgoh77BgcizMMQEcd2mGA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8d9ee65697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sharemods.com/js/bootstrap-select.js

104.26.10.194

200 OK

67 kB

URL GET HTTP/3
sharemods.com/js/bootstrap-select.js
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
JavaScript source, ASCII text, with very long lines (3032)
Size
67 kB (67173 bytes)
Hash
af6200f039282e77d27ce8c3a1b290ed
995520ecf31fa35d5fbf1193ba0c39dd65ef62cb
f17a6c7a61593005b4d3f273d3728c956bf8f711bc5acc4205c8350ccb19d102

HTTP Headers

GET /js/bootstrap-select.js HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: application/javascript
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=118906
etag: W/"633ea3bc-1d07a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 06 Oct 2022 09:45:32 GMT
cf-cache-status: HIT
age: 675675
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FXDi8N23vtocINVgZrscFAqCuZ%2FSQevKzZ9acyEJuZAmhqkyGcQTZV2KQcYdeirudmnYhNlDp3xZXxwgHyZzHheOQn%2By0vJdn2tk7lWLI%2FroWCxY7fzkOCCCXXXyTvQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8a8b435697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sharemods.com/cdn-cgi/challenge-platform/scripts/jsd/main.js

104.26.10.194

302 Found

0 B

URL GET HTTP/3
sharemods.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Wed, 08 May 2024 13:09:01 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js
cache-control: max-age=300, public
access-control-allow-origin: *
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SXHFiioux2GlX9OdfnS89iFRC73PM%2BwTKwfvM9wLGOK8ekT%2Bwqu2JPDcwRLKSIEFYOAVtAD0jNggRarS6j2P2vEZJ%2F0rmPVbcoC3MiIb0uCzSiuifeeTNBXDs2n7oII%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8ec8675697-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoC1CzjsGyN.woff2

142.250.74.163

200 OK

39 kB

URL GET HTTP/2
fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoC1CzjsGyN.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 38752, version 1.0
Size
39 kB (38752 bytes)
Hash
d451decbad0d0d2feba27610481a34d8
1479b2ad870d5e2bb04d206f33460089394f6eb5
a5515c53111bb4a4f45aff63d06df893ae9033dc85e82cc2ef27fc099a4d7609

HTTP Headers

GET /s/ubuntu/v20/4iCv6KVjbNBYlgoC1CzjsGyN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sharemods.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 38752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:24:18 GMT
expires: Fri, 02 May 2025 02:24:18 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:04:53 GMT
content-type: font/woff2
age: 557083
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cmp.setupcmp.com/cmp/cmp/cmp-stub.js

104.26.5.6

200 OK

1.3 kB

URL GET HTTP/2
cmp.setupcmp.com/cmp/cmp/cmp-stub.js
IP
104.26.5.6:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsetupcmp.com
FingerprintA4:31:58:E9:94:86:9D:B0:83:10:0C:08:09:48:A8:0D:3E:88:5D:43
ValidityMon, 22 Apr 2024 15:25:04 GMT - Sun, 21 Jul 2024 15:25:03 GMT

File type
JavaScript source, ASCII text, with very long lines (1024), with no line terminators
Size
1.3 kB (1315 bytes)
Hash
de37e8e7c0a8b5bb2ef13c41bc93a023
a053ca11f4ff372c6947879ed13d18690dd00267
30ecc4cd36aa5d13b26bfdf89c9b0c41af9a3311985c0c878bcc687b9f55986a

HTTP Headers

GET /cmp/cmp/cmp-stub.js HTTP/1.1
Host: cmp.setupcmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: text/javascript
content-md5: 3jfo58Cotbsu8TxBvJOgIw==
last-modified: Tue, 28 Nov 2023 10:43:06 GMT
x-ms-request-id: 197e1bcb-a01e-0010-592d-9bb66e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: country
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1209
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fW7FGzCZZVtSO0NjujHmvfx%2F77b0euWXYI%2Bs1bIDSIW9IwqhgrlAkCcT8LW%2B9CfPCmSQ%2F6Lu0HF01inTze55VB6i9COjdD6k3id%2Fak2Lqcb8S5s4GeOjAc6P1GFy3TKzET0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8ae818b523-OSL
content-encoding: br
X-Firefox-Spdy: h2

ad-delivery.net/px.gif?ch=2

104.26.2.70

200 OK

43 B

URL GET HTTP/2
ad-delivery.net/px.gif?ch=2
IP
104.26.2.70:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectad-delivery.net
Fingerprint03:56:A5:CD:68:65:E1:00:BD:87:3E:45:0C:B1:3B:C2:2C:8C:4E:18
ValidityTue, 19 Mar 2024 04:48:01 GMT - Mon, 17 Jun 2024 04:48:00 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /px.gif?ch=2 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 13:09:02 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ABPtcPo6zuHjBRo7_QGjoPgBJ4cm6NGA39yz_qNjtg8PMIqquxVgKc71qnGT6ngjUyjh9ypCKobTvAyZ2w
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
expires: Tue, 30 Apr 2024 17:17:29 GMT
cache-control: public, max-age=86400
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
age: 679893
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bAEoNxq9iX%2FNDR6TNee6wm7eMct2f9qt2eQwKj9x9WA77OhEGa4%2BBt%2BQD0WPy%2FUr8oD2RT0FQmQVPUz6Kf0wG5pRcSRykVJ32J0YreUI8F26rha5pte8UeEANM8d5RRDqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8fabb50b4d-OSL
X-Firefox-Spdy: h2

ad-delivery.net/px.gif?ch=1&e=0.6799491344297569

104.26.2.70

200 OK

43 B

URL GET HTTP/2
ad-delivery.net/px.gif?ch=1&e=0.6799491344297569
IP
104.26.2.70:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectad-delivery.net
Fingerprint03:56:A5:CD:68:65:E1:00:BD:87:3E:45:0C:B1:3B:C2:2C:8C:4E:18
ValidityTue, 19 Mar 2024 04:48:01 GMT - Mon, 17 Jun 2024 04:48:00 GMT

File type
GIF image data, version 89a, 1 x 1
Size
43 B (43 bytes)
Hash
ad4b0f606e0f8465bc4c4c170b37e1a3
50b30fd5f87c85fe5cba2635cb83316ca71250d7
cf4724b2f736ed1a0ae6bc28f1ead963d9cd2c1fd87b6ef32e7799fc1c5c8bda

HTTP Headers

GET /px.gif?ch=1&e=0.6799491344297569 HTTP/1.1
Host: ad-delivery.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 13:09:02 GMT
content-type: image/gif
content-length: 43
x-guploader-uploadid: ABPtcPo6zuHjBRo7_QGjoPgBJ4cm6NGA39yz_qNjtg8PMIqquxVgKc71qnGT6ngjUyjh9ypCKobTvAyZ2w
x-goog-generation: 1620242732037093
x-goog-metageneration: 5
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 43
x-goog-hash: crc32c=cpEfJQ==, md5=rUsPYG4PhGW8TEwXCzfhow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
access-control-expose-headers: *
expires: Tue, 30 Apr 2024 17:17:29 GMT
cache-control: public, max-age=86400
last-modified: Wed, 05 May 2021 19:25:32 GMT
etag: "ad4b0f606e0f8465bc4c4c170b37e1a3"
age: 679893
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hnCeSTueDSIzGarkz%2FY3Gr%2FuB4A%2BrfJxYYMsDDuqcZ%2FKpOdEuclW%2Bj%2FxAV9grYd6HnDlWT56psjKcH44Hk5zFdrNefidEQlFY9giRVGYyjz9NAhzuM4Ku2BXe8d%2Bd%2BsxBg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8fbbbc0b4d-OSL
X-Firefox-Spdy: h2

cmp.setupcmp.com/cmp/config/126.json

104.26.5.6

200 OK

243 B

URL GET HTTP/2
cmp.setupcmp.com/cmp/config/126.json
IP
104.26.5.6:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsetupcmp.com
FingerprintA4:31:58:E9:94:86:9D:B0:83:10:0C:08:09:48:A8:0D:3E:88:5D:43
ValidityMon, 22 Apr 2024 15:25:04 GMT - Sun, 21 Jul 2024 15:25:03 GMT

File type
JSON text data
Size
243 B (243 bytes)
Hash
4f363d3dd7ccc3b907b9d5d7b841730b
bcfb44a7dc34fc9bf016e698c167ecb2bd5f2f17
417602bda1851309063e5a08742073cf34bea352822e8feabdc92db6acd6d8f5

HTTP Headers

GET /cmp/config/126.json HTTP/1.1
Host: cmp.setupcmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sharemods.com/
Origin: https://sharemods.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 13:09:02 GMT
content-type: application/octet-stream
content-length: 243
content-md5: TzY9PdfMw7kHudXXuEFzCw==
last-modified: Fri, 15 Mar 2024 08:01:05 GMT
etag: 0x8DC44C6109B4761
x-ms-request-id: 6c5b0f5f-a01e-0010-2148-a1b66e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: country
access-control-allow-origin: *
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SNh1D8%2FCfm%2BZehPg6Teee6zvWWgTH2mDsX9UZ0PlTfxvD%2FEMf2HJ%2FUVGrTiQtr2C5o979gXmKlhNrR3xL%2ByZWQI3fEBi9e9NWoyUxoJvr7Fr8V6dry%2BK%2BJoz%2FqSsFGf0Y%2Bs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
country: NO
server: cloudflare
cf-ray: 8809ae8faebeb523-OSL
X-Firefox-Spdy: h2

cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json?date=20240508

104.18.187.31

200 OK

849 B

URL GET HTTP/2
cdn.jsdelivr.net/gh/prebid/currency-file@1/latest.json?date=20240508
IP
104.18.187.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerSectigo Limited
Subject*.jsdelivr.net
Fingerprint74:7A:63:DF:06:27:1E:52:8C:E8:0D:AD:1F:89:98:B5:EB:2D:49:EE
ValiditySat, 04 May 2024 00:00:00 GMT - Sun, 04 May 2025 23:59:59 GMT

File type
JSON text data
Size
849 B (849 bytes)
Hash
958f7d1ef13a3d13d5756943cc882f65
b484659b2c7eac4605a3ddaed170fca6024f9730
856296f7a0a6b64c662a1fac6901cc2352fc2d1e152710e5e48e85948867823a

HTTP Headers

GET /gh/prebid/currency-file@1/latest.json?date=20240508 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Origin: https://sharemods.com
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 13:09:02 GMT
content-type: application/json; charset=utf-8
content-length: 849
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 1.0.2049
x-jsd-version-type: version
etag: W/"63c-tIRlmyx+rEYFo92u0XD8pgJPlzA"
content-encoding: br
x-served-by: cache-fra-eddf8230103-FRA, cache-lga21966-LGA
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 32889
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f1LneagBQqxih8dmQByO8CW7OH04OPKXc5oWyQSNONnXObqP3DbUrLRTCgiSm5hAWtKI0z62kgOtSY%2Bsj0MIjVKTe2zNDxs3EmvCEoRJQXMReYhLE6Vy3ytDQJ8JlF80W0A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8809ae908cf1b4ee-OSL
X-Firefox-Spdy: h2

api.btloader.com/mw/state?bt_env=prod

130.211.23.194

204 No Content

0 B

URL GET HTTP/2
api.btloader.com/mw/state?bt_env=prod
IP
130.211.23.194:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectapi.btloader.com
Fingerprint91:D7:31:40:CA:23:84:1D:EC:B3:E5:18:FA:A1:67:B2:7E:BF:4D:3F
ValidityFri, 05 Apr 2024 16:07:23 GMT - Thu, 04 Jul 2024 17:00:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /mw/state?bt_env=prod HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sharemods.com/
Origin: https://sharemods.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
access-control-allow-origin: *
vary: Origin
date: Wed, 08 May 2024 13:09:02 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

sharemods.com/cdn-cgi/challenge-platform/h/b/jsd/r/8809ae876e98b4fd

104.26.10.194

200 OK

0 B

URL POST HTTP/3
sharemods.com/cdn-cgi/challenge-platform/h/b/jsd/r/8809ae876e98b4fd
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/jsd/r/8809ae876e98b4fd HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12187
Origin: https://sharemods.com
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english; stpdOrigin={"origin":"direct"}; _ga_VR69R17JLR=GS1.1.1715173742.1.0.1715173742.0.0.0; _ga=GA1.1.1002592774.1715173742
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:02 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=9quplioba7WQ.BCdIKnVfL6eQBwljKGCdkmqIWBN..0-1715173742-1.0.1.1-5tLIDOf33t3wUvCyhHNd1BvVPZGNObv30TQvjf4UDxJhBUL7ip7CRH8jO66E28XWdUnRUg0t2.417QFoybaNXg; Path=/; Expires=Thu, 08-May-25 13:09:02 GMT; Domain=.sharemods.com; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=G3faUB5qxVcKaF1zb2obXaCHpe4ct02St%2FnbQHZQX34z2bLy3LBdFxT2GQXmmoR%2BloYvdY4YDDLM0DtByqdvJU0XzI0W%2BAupMc8OsScaxyExxXpA%2FLQf8JISSmIq3Lg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8809ae917ba65697-OSL
alt-svc: h3=":443"; ma=86400

cmp.setupcmp.com/cmp/gvl-v3/vendor-list.json

104.26.5.6

200 OK

76 kB

URL GET HTTP/2
cmp.setupcmp.com/cmp/gvl-v3/vendor-list.json
IP
104.26.5.6:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsetupcmp.com
FingerprintA4:31:58:E9:94:86:9D:B0:83:10:0C:08:09:48:A8:0D:3E:88:5D:43
ValidityMon, 22 Apr 2024 15:25:04 GMT - Sun, 21 Jul 2024 15:25:03 GMT

File type
JSON text data
Size
76 kB (76087 bytes)
Hash
87f89e71cfde900244972e68c89221b9
fad673050905155ce8fee1182cf31a9eab44eff8
64b23bccdb47aa9bded6103fe39b18d825c622cc51faa1c42d4b92f85d4535b7

HTTP Headers

GET /cmp/gvl-v3/vendor-list.json HTTP/1.1
Host: cmp.setupcmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sharemods.com
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 13:09:02 GMT
content-type: application/json
content-md5: h/iecc/ekAJEly5oyJIhuQ==
last-modified: Thu, 25 Apr 2024 16:30:46 GMT
x-ms-request-id: dbaf6637-201e-000e-440d-9c5ab6000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: country
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 575170
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wgQ9yUQjr3dyLC7om%2FyYwfYKxxF%2F0sLsJv31alC2qzNk67GGy%2FRljOIJrmCJ1D08rWD8SncouJQH9nPrNPrTU7Bh7zTGR6xMelYgpWVQQqkf6chpnG8%2BQoTM6mNLrbREUz8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae924aa8b523-OSL
content-encoding: br
X-Firefox-Spdy: h2

api.btloader.com/country?o=5646025299591168

130.211.23.194

200 OK

37 B

URL GET HTTP/2
api.btloader.com/country?o=5646025299591168
IP
130.211.23.194:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectapi.btloader.com
Fingerprint91:D7:31:40:CA:23:84:1D:EC:B3:E5:18:FA:A1:67:B2:7E:BF:4D:3F
ValidityFri, 05 Apr 2024 16:07:23 GMT - Thu, 04 Jul 2024 17:00:56 GMT

File type
JSON text data
Size
37 B (37 bytes)
Hash
bdfe458835550c34f45fc9fdfeebb12a
0f08aa02e7bcbf4c5e991a5defb2fdbd03a86f3d
ad26ec64cc613fbfbd47faaf39f9921c2b19769bde1d3c5c2857a671e7863cf9

HTTP Headers

GET /country?o=5646025299591168 HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sharemods.com/
Origin: https://sharemods.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
cache-control: private, max-age=300, stale-while-revalidate=600, stale-if-error=600
content-type: application/json
vary: Origin
date: Wed, 08 May 2024 13:09:02 GMT
content-length: 37
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

api.btloader.com/pv?tid=469r5Lyqjn&w=5737349457641472&o=5646025299591168&cv=2.1.44-1-g797e4b1&widget=false&r=false&vr=1280x1024&pageURL=https%3A%2F%2Fsharemods.com%2Fy8ehwiyvq6vh%2FPoseidonLauncher.zip.html&sid=TeGcCksZRo&pm=true&upapi=true

130.211.23.194

204 No Content

0 B

URL GET HTTP/2
api.btloader.com/pv?tid=469r5Lyqjn&w=5737349457641472&o=5646025299591168&cv=2.1.44-1-g797e4b1&widget=false&r=false&vr=1280x1024&pageURL=https%3A%2F%2Fsharemods.com%2Fy8ehwiyvq6vh%2FPoseidonLauncher.zip.html&sid=TeGcCksZRo&pm=true&upapi=true
IP
130.211.23.194:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectapi.btloader.com
Fingerprint91:D7:31:40:CA:23:84:1D:EC:B3:E5:18:FA:A1:67:B2:7E:BF:4D:3F
ValidityFri, 05 Apr 2024 16:07:23 GMT - Thu, 04 Jul 2024 17:00:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /pv?tid=469r5Lyqjn&w=5737349457641472&o=5646025299591168&cv=2.1.44-1-g797e4b1&widget=false&r=false&vr=1280x1024&pageURL=https%3A%2F%2Fsharemods.com%2Fy8ehwiyvq6vh%2FPoseidonLauncher.zip.html&sid=TeGcCksZRo&pm=true&upapi=true HTTP/1.1
Host: api.btloader.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sharemods.com
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
access-control-allow-origin: *
cache-control: no-cache, no-store, must-revalidate
vary: Origin
date: Wed, 08 May 2024 13:09:02 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

node.setupad.com/node/node.php

159.89.25.223

200 OK

6.4 kB

URL POST HTTP/2
node.setupad.com/node/node.php
IP
159.89.25.223:443
ASN
#14061 DIGITALOCEAN-ASN

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectnode.setupad.com
FingerprintBD:D8:69:96:03:07:B8:0B:85:60:55:8B:3F:71:B2:B3:CF:86:E3:42
ValidityMon, 22 Apr 2024 19:04:01 GMT - Sun, 21 Jul 2024 19:04:00 GMT

File type
gzip compressed data, max speed, from Unix
Size
6.4 kB (6363 bytes)
Hash
7add9da4048826a283c02325a5c6f281
e89dd89df03c880394f47cc9decf456aa2d8d3ff
e6cd00d24bfaa9e9b8031e9801c01b4698466a92197b56a7d0693b0baadeae57

HTTP Headers

POST /node/node.php HTTP/1.1
Host: node.setupad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 471
Origin: https://sharemods.com
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx/1.18.0 (Ubuntu)
date: Wed, 08 May 2024 13:09:02 GMT
content-type: text/html; charset=UTF-8
cache-control: no-cache
pragma: no-cache
access-control-allow-origin: *
access-control-allow-methods: GET, POST
access-control-allow-headers: X-Requested-With
content-encoding: gzip
X-Firefox-Spdy: h2

cmp.setupcmp.com/cmp/gvl/google-atp-list.json

104.26.5.6

200 OK

40 kB

URL GET HTTP/2
cmp.setupcmp.com/cmp/gvl/google-atp-list.json
IP
104.26.5.6:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsetupcmp.com
FingerprintA4:31:58:E9:94:86:9D:B0:83:10:0C:08:09:48:A8:0D:3E:88:5D:43
ValidityMon, 22 Apr 2024 15:25:04 GMT - Sun, 21 Jul 2024 15:25:03 GMT

File type
JSON text data
Size
40 kB (39957 bytes)
Hash
2e5e4c8bcb331f491abdcf2f9ba19952
43d4d22a1a0cea5d0c7070a491185c042668d02d
a360f0726d5d1dd262f89ef3c5c206c91fadb575c5e1fb0de50d14b29c24337b

HTTP Headers

GET /cmp/gvl/google-atp-list.json HTTP/1.1
Host: cmp.setupcmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sharemods.com/
Origin: https://sharemods.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 08 May 2024 13:09:02 GMT
content-type: application/json
content-md5: Ll5Mi8szH0kavc8vm6GZUg==
last-modified: Thu, 13 Oct 2022 10:05:39 GMT
x-ms-request-id: 18e7ed51-a01e-0010-2a1a-9bb66e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: country
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 679522
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jBlRIkRC3%2BqzM%2Bo1%2FdVqWkTTguOspeKcqB0Zj7SM6gZ%2Bsg1sU%2BEWdeyssuLjhDR2aupQyC4PnmSyRUfGv1YVtMJ1y5Ae4CA%2B4AJdx0w1oqUcIAfxn4inWM7g1F%2Fj2yc9bKU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae936c76b523-OSL
content-encoding: br
X-Firefox-Spdy: h2

sharemods.com/images/files-icon.svg

104.26.10.194

200 OK

734 B

URL GET HTTP/3
sharemods.com/images/files-icon.svg
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
SVG Scalable Vector Graphics image
Size
734 B (734 bytes)
Hash
bbbc2bd835ad6d37569536af498989c7
74702570cf21e2f0b258c9723f031f56c0ec13e3
7179bf0b6c2e922d879504653f984083c5fa3903e00690a11d639271407d2144

HTTP Headers

GET /images/files-icon.svg HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/css/theme-update.min.css?ver=1.003
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Sep 2022 06:42:40 GMT
etag: W/"63280f60-2de"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 665723
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YaOMC8gc1f9c8d9oRTA0PtKlb1RWcItSfccXd843tCa7TJJhT76sjxnu8ZteR4xZaSeA%2BL2dv5YN3rB7GvlJbjW6U0voptjkLcljOJ7WatwaJf%2FRcM4vIAl7e1UeuQo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8d9eed5697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sharemods.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js

104.26.10.194

200 OK

7.9 kB

URL GET HTTP/3
sharemods.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
JavaScript source, ASCII text, with very long lines (7886), with no line terminators
Size
7.9 kB (7886 bytes)
Hash
0f7b109d791ab3ada56cfd0a530551cc
48c5abff6fcb63cff97eb1071b32b81a5b0cb5cd
98ae93f2faa5680da71a0b02eb71543fc39e88b5cc6bbd21aad67b7b5bcd16af

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english; stpdOrigin={"origin":"direct"}
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:02 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9G9lghdgCyeXMuaEjtXk0e4WfhWDoJIioIZ9QDtWnStyNgJX0bUEumgwjNxQ15QvyEA8WW%2Bb%2FCfvSSGK2JyCIQ%2BuKB%2BvaficQj8xhUf4wa5ymGCBJkWE1cCXu83%2B9Ps%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae901a165697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html

104.26.10.194

200 OK

21 kB

URL User Request GET HTTP/2
sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type

Size
21 kB (20994 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /y8ehwiyvq6vh/PoseidonLauncher.zip.html HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 13:09:00 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=0;includeSubDomains;
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
expires: Tue, 07 May 2024 13:09:00 GMT
set-cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; domain=.sharemods.com; path=/; expires=Wed, 22-May-2024 13:09:00 GMT
lang=english; domain=.sharemods.com; path=/
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tmLUuaFfW%2BlEMTIPEarwIF%2BlEVj4in4wyTp8p%2FsrgY21Yt%2Fjw1XnHmmqVUVIH75Vg%2B0gABvyaiZB2VZcvWhue4E9nu9V0K4bHhwrU9HKxsLHg7yhhmLT%2BssRCrN6y%2Bc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8809ae876e98b4fd-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

sharemods.com/js/share.js

104.26.10.194

200 OK

329 B

URL GET HTTP/3
sharemods.com/js/share.js
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
ASCII text, with very long lines (332), with no line terminators
Size
329 B (329 bytes)
Hash
1d2236286294d62230ccc88e96b5297b
de15f3e22b3e2719f872e47a63b5702c48835a3f
c482daeb5dbeb1b8b60adbd8a47e025cbfe19ea0a0f798d8f77b862781694dbc

HTTP Headers

GET /js/share.js HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: application/javascript
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=354
etag: W/"5b910463-162"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 06 Sep 2018 10:41:39 GMT
cf-cache-status: HIT
age: 671395
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pvD5yYnPBvz7N30ydX5rQ5HlJdU2uxLPMj9vchrWoNU3i18SZ27zKGHO%2BcJWJUYkMPpvcOUCc1dKcfR67atmUWfSSTQ5OZkZgoHftn%2BaSx9UuSQqxvbwwEZTztjMHsk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8a7b355697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sharemods.com/images/single-file-icon.svg

104.26.10.194

200 OK

437 B

URL GET HTTP/3
sharemods.com/images/single-file-icon.svg
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
SVG Scalable Vector Graphics image
Size
437 B (437 bytes)
Hash
50d0550eef2fcd94c3da795831ec146d
d37d8368991ab2e72be057627e0ca2ef58f576ca
1de3483859d4c7888386492de2fa07f47d80fa3a0598065a83a92da9a120d117

HTTP Headers

GET /images/single-file-icon.svg HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/css/theme-update.min.css?ver=1.003
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Sep 2022 06:42:48 GMT
etag: W/"63280f68-1b5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 671389
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jrQHn2BBFl6MDpaecjyLDlbxdcjgsxWLBvcnTOe32Icb5b0qZ6WIz9yurArOiCydZWQevCWnHrZLXael3EACRZ%2BnnaEJnE0vQ%2B0%2FHznyOeKXsUFDFLCnCzzsnLhMZGw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8d9ef75697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cmp.setupcmp.com/cmp/images/setupad_white.svg

104.26.5.6

200 OK

4.5 kB

URL GET HTTP/2
cmp.setupcmp.com/cmp/images/setupad_white.svg
IP
104.26.5.6:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsetupcmp.com
FingerprintA4:31:58:E9:94:86:9D:B0:83:10:0C:08:09:48:A8:0D:3E:88:5D:43
ValidityMon, 22 Apr 2024 15:25:04 GMT - Sun, 21 Jul 2024 15:25:03 GMT

File type
SVG Scalable Vector Graphics image
Size
4.5 kB (4461 bytes)
Hash
6084bcbd2353a5d76b6d2597458d4ad5
70c6b208081baf51136d9d3bbc4700e2640ed43b
c4110455112c898dababd13f6ee01e8c303b826051d5436062c2648bf085a5bc

HTTP Headers

GET /cmp/images/setupad_white.svg HTTP/1.1
Host: cmp.setupcmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 13:09:02 GMT
content-type: image/svg+xml
content-md5: xYbiTs4bzl22A6DpFUmdxA==
last-modified: Thu, 13 Oct 2022 10:05:39 GMT
x-ms-request-id: f5a4b1c1-c01e-0029-471a-9b4d72000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: country
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1512
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4HMJ4O09F5RutHwaRkqmOPIofmjTk6uWGr5pYWcfH2RRPZLSCP3oVWLyacMEJG62Xo6b7ibfXnEpV6dLm0SExHpqSGTY9cKmIfMgFcRfG58ZKFUBVSfT7k6Dfj2NPRQpuZ0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae93acb7b523-OSL
content-encoding: br
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js

104.18.11.207

200 OK

37 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/js/bootstrap.min.js
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
JavaScript source, ASCII text, with very long lines (32033)
Size
37 kB (37045 bytes)
Hash
5869c96cc8f19086aee625d670d741f9
430a443d74830fe9be26efca431f448c1b3740f9
53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef

HTTP Headers

GET /bootstrap/3.3.7/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"5869c96cc8f19086aee625d670d741f9"
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 10/31/2023 19:27:53
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1053
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 1a04ea32b2f4b219188fda8349c8680c
cdn-cache: HIT
cf-cache-status: HIT
age: 665824
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8809ae8aa9b556ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cmp.setupcmp.com/cmp/gvl/default-vendors.json

104.26.5.6

200 OK

4.8 kB

URL GET HTTP/2
cmp.setupcmp.com/cmp/gvl/default-vendors.json
IP
104.26.5.6:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsetupcmp.com
FingerprintA4:31:58:E9:94:86:9D:B0:83:10:0C:08:09:48:A8:0D:3E:88:5D:43
ValidityMon, 22 Apr 2024 15:25:04 GMT - Sun, 21 Jul 2024 15:25:03 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (6341), with no line terminators
Size
4.8 kB (4793 bytes)
Hash
c0b6f90068ec63f4395577772a3ce18a
466254a89b85d65a4904302ed34ca79be7ce9be4
6978c7e49ea1484bfe1dafb7b89be38b677535539cc51a84c770661707f7acc4

HTTP Headers

GET /cmp/gvl/default-vendors.json HTTP/1.1
Host: cmp.setupcmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://sharemods.com/
Origin: https://sharemods.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 13:09:02 GMT
content-type: application/json
content-md5: 1t67CbhArAccg4vNjbBTdQ==
last-modified: Thu, 02 May 2024 16:30:42 GMT
x-ms-request-id: 2061ce6b-901e-0034-3eba-a040ce000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: country
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 60949
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Irw2PoIyaKhAMhlJcran0j1uJ8zC%2BU2HUfkwZ3WGFK4boGYWA8yvJp%2FjVs383Txy8OO6w2LgJZjf3I6pngEL4GRTdXgfI6%2By1wfQGaAhMLDVj8DpEmLG%2BRL2bK%2Bh%2BR%2Bt%2B9A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae91ea22b523-OSL
content-encoding: br
X-Firefox-Spdy: h2

sharemods.com/css/bootstrap-select.css?ver=1.104

104.26.10.194

200 OK

10 kB

URL GET HTTP/3
sharemods.com/css/bootstrap-select.css?ver=1.104
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
ASCII text, with very long lines (10371)
Size
10 kB (10505 bytes)
Hash
2cc4d5ec240dcd4ff8d7a14986ae8608
c6663d18742bbdb3cc9e17d51427235f1e2c24d6
8ee20b0a59b8ff59e7b7ef0ab572087dcd1acb8ddf3e8d9766b4179366a22c9a

HTTP Headers

GET /css/bootstrap-select.css?ver=1.104 HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: text/css
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=12471
etag: W/"63280f23-30b7"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 19 Sep 2022 06:41:39 GMT
cf-cache-status: HIT
age: 675675
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Cp7AP0qpAakPKKvSVAoNwK1eFc2ukCakoSqtHSaPf2HF4ui1Qry%2BjpyrU%2Bh57scf%2B9GnSnRyPzaL4Iz2GNpTnypR1LbdSHvn1Al173gOUtgS5hux6XrrA%2Be0mOfxleI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8a5b125697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap-theme.min.css

104.18.11.207

200 OK

23 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap-theme.min.css
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
ASCII text, with very long lines (23192)
Size
23 kB (23409 bytes)
Hash
ab6b02efeaf178e0247b9504051472fb
8256575374f430476bdcd49de98c77990229ce31
653e073e97423adda5bc3917a241ee8497dd38a48f14bcde0098a4e54fd0fa5e

HTTP Headers

GET /bootstrap/3.3.7/css/bootstrap-theme.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://sharemods.com
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"ab6b02efeaf178e0247b9504051472fb"
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 09/09/2023 16:29:16
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 864
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: b4a0c62bf4504f86b7b2d3e807675ad5
cdn-cache: HIT
cf-cache-status: HIT
age: 675648
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8809ae8abd4d1bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2

142.250.74.163

200 OK

30 kB

URL GET HTTP/2
fonts.gstatic.com/s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 29752, version 1.0
Size
30 kB (29752 bytes)
Hash
ab1fc8621287e4ea9319a3136812cf80
fb4ed2e52e2a8d7ac50a7618a0c2ea5507a24ef3
7c00752ce82d6abaed0b9766d35b906b16675facdbe24115b410d1fab975effa

HTTP Headers

GET /s/ubuntu/v20/4iCv6KVjbNBYlgoCxCvjsGyN.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://sharemods.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 29752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 20:42:46 GMT
expires: Fri, 02 May 2025 20:42:46 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 27 Apr 2022 17:05:11 GMT
content-type: font/woff2
age: 491175
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

sharemods.com/js/jquery-1.9.1.min.js

104.26.10.194

200 OK

93 kB

URL GET HTTP/3
sharemods.com/js/jquery-1.9.1.min.js
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
JavaScript source, ASCII text, with very long lines (32089)
Size
93 kB (92629 bytes)
Hash
397754ba49e9e0cf4e7c190da78dda05
ae49e56999d82802727455f0ba83b63acd90a22b
c12f6098e641aaca96c60215800f18f5671039aecf812217fab3c0d152f6adb4

HTTP Headers

GET /js/jquery-1.9.1.min.js HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: application/javascript
last-modified: Thu, 06 Sep 2018 10:41:39 GMT
etag: W/"5b910463-169d5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 679752
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vIEJ5NKu4JT%2F0DRyc2E9%2BopvRHlXwhF4fEVJnQdIF0wxnwy8n3uFX5xTOE85ez%2BY9u%2FursoX7jE%2BW9McCGrwVu3Js9xbT%2BgwNZdq0rCz5ubY2gFn71oiLlkxuFMGVbw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8a4b0b5697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css

104.18.11.207

200 OK

24 kB

URL GET HTTP/2
maxcdn.bootstrapcdn.com/font-awesome/4.3.0/css/font-awesome.min.css
IP
104.18.11.207:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectbootstrapcdn.com
Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63
ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT

File type
ASCII text, with very long lines (23577)
Size
24 kB (23739 bytes)
Hash
04425bbdc6243fc6e54bf8984fe50330
8c15c6bd82c71e9ef1bb11cf24e502fe07518ac5
541ac58217a8ade1a5e292a65a0661dc9db7a49ae13654943817a4fbc6761afd

HTTP Headers

GET /font-awesome/4.3.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
cdn-edgestorageid: 632, 617, 617
last-modified: Mon, 25 Jan 2021 22:04:54 GMT
cdn-cachedat: 2021-06-08 21:08:57
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: e6a55b08fe5091f45c9e99ce9e9f98c2
cdn-status: 200
cdn-cache: HIT
cf-cache-status: HIT
age: 665833
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 8809ae8ab9de56ba-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v5.1.1/css/all.css

172.67.142.245

200 OK

46 kB

URL GET HTTP/2
use.fontawesome.com/releases/v5.1.1/css/all.css
IP
172.67.142.245:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (45538)
Size
46 kB (45718 bytes)
Hash
597b70b2ce6b1483f72526c906918fe9
cdb01c449b472defd676e51a50074f5cf3f6076c
d98121a51ed3f911f519cf42be28225dc26b4c9d61cfab0a580118e5c3447463

HTTP Headers

GET /releases/v5.1.1/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: text/css
cache-control: max-age=31556926
etag: W/"597b70b2ce6b1483f72526c906918fe9"
last-modified: Fri, 22 Sep 2023 01:44:26 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 671422
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8o0mhPF1woDTRvFPoGUGzgBDeoDG6tq%2Blia%2BsfBY90T7KRpMFqmrXD5oGbf5Dkw0SCyvcCej4%2FU9Sq%2F6%2F0TnxMPfF3nrcjVLvyMb5rC0sUp%2BxvXpwLu2fWZdPmrzByBLh7uyOSfH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8809ae8c386fb50f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

sharemods.com/images/my-files-illustration-image-2.svg

104.26.10.194

200 OK

2.7 kB

URL GET HTTP/3
sharemods.com/images/my-files-illustration-image-2.svg
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
SVG Scalable Vector Graphics image
Size
2.7 kB (2715 bytes)
Hash
a6a6c2ec25454942fd034fbae4724bbf
446af42f5f18d12ee99cfa20b6528fcc10971127
f7bd69459cdcc9f4b54b62dd9d4fd0f662393b1a12ae88f74c5618d5145d6b81

HTTP Headers

GET /images/my-files-illustration-image-2.svg HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/css/theme-update.min.css?ver=1.003
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Sep 2022 06:42:46 GMT
etag: W/"63280f66-a9b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 679840
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eKFobbZpGHUFzgCvprvS6%2Bq8Syrc6HZwph2jV6SXl6U7xe7HXgNS4P0dB4YrhLMdEIB3%2BovDCIc8UfUqxM4GJVChXVt%2FQvgdpizuiwK%2BjL%2BFxzyqEgLdGHy6w1FGSJc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8d9ef45697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sharemods.com/images/my-files-illustration-image-1.svg

104.26.10.194

200 OK

2.5 kB

URL GET HTTP/3
sharemods.com/images/my-files-illustration-image-1.svg
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
SVG Scalable Vector Graphics image
Size
2.5 kB (2507 bytes)
Hash
e4ae7cc23186f887c4dbbe0eadf02b63
5535b8708821ffebeeee304da8adb7af7f5d3ab1
df9ebd8a547b1d8d2218f574c0b51eeda8acc6531e8247020693a2bfd5783a02

HTTP Headers

GET /images/my-files-illustration-image-1.svg HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/css/theme-update.min.css?ver=1.003
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Sep 2022 06:42:46 GMT
etag: W/"63280f66-9cb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 675665
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P0lVHN1U5AUsSzZLQHm9DeyXlpklIMZLR8SFoecCMPFe4FelwnIE2dS1BsM%2FE7vMt%2FawIzJvbEW5lWyVyCnIxpvPQFNYk6c3Woz1Sq6koYVItmO2mWUMfeta5D0Yx90%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8d9ef05697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sharemods.com/css/bootstrap.css

104.26.10.194

200 OK

120 kB

URL GET HTTP/3
sharemods.com/css/bootstrap.css
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
ASCII text, with very long lines (65452)
Size
120 kB (119543 bytes)
Hash
86d72f9f40b884b181b4a2a227d44c08
22bd7348ccab55c79fe7016eecd349f58b96447f
ee627640d99d0061c431a7eb0cf6523c6fda4148a5aeaab5c14400c1b74d8723

HTTP Headers

GET /css/bootstrap.css HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: text/css
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=144219
etag: W/"63280f25-2335b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 19 Sep 2022 06:41:41 GMT
cf-cache-status: HIT
age: 665743
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QZ5Wez40Yv16gyX4S0RP2Kje75jL9FMCP7W88ITkyEIsDlj%2BQeIKlWeZiRyln7Cl8EuFh4vWQ8AcNJt2ZXPpiDWf%2B3FDtJRqUTlM7Xx4%2BC3Wv6D3X3afh5Nn68i%2BR0o%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8a4b0c5697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sharemods.com/js/jquery.paging.js

104.26.10.194

200 OK

5.4 kB

URL GET HTTP/3
sharemods.com/js/jquery.paging.js
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
JavaScript source, ASCII text, with very long lines (5746), with no line terminators
Size
5.4 kB (5416 bytes)
Hash
4d9555dc8b1db7cb63315eb36d0b2f2c
a418260578ea6338443cfb29a8d46c22d2fec9e5
e5ad9aeaabbeba20c2ef18b65baaae9bd34526511f7ca8d52f33f3d8b24db98f

HTTP Headers

GET /js/jquery.paging.js HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: application/javascript
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=19365
etag: W/"5b910463-4ba5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 06 Sep 2018 10:41:39 GMT
cf-cache-status: HIT
age: 671397
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FaT%2Bpjx6H1tibRmyMLqdwi07izEXa1yFxXoHnZxrqW6BtAcTvAVMFbCJV3tdjL7FLYT0eCELZt7Vrj4lVH8eXG8Oa3dONeH5b53k1aFl5tXW5zuO2xQzTIUlwgxI1V8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8a6b215697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sharemods.com/js/jquery.cookie.js

104.26.10.194

200 OK

2.0 kB

URL GET HTTP/3
sharemods.com/js/jquery.cookie.js
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
JavaScript source, ASCII text, with very long lines (1985), with no line terminators
Size
2.0 kB (1956 bytes)
Hash
b7459dae9cf89629ec79aa493c76527a
fee01448ffb8aa651ea7d928b4228ce9e99d87ab
cf0e055dba48793af47d32c4141edc64878018103e8e75e4a2fae60fa9770724

HTTP Headers

GET /js/jquery.cookie.js HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: application/javascript
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=3121
etag: W/"5b910463-c31"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 06 Sep 2018 10:41:39 GMT
cf-cache-status: HIT
age: 675675
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SykKQXowYcevjjrvdCH5MZTB%2BlnCsxUWEV8l9HpPaWSFqs7UQB2xArFPJTxgONnUHE6FZdnSNqRjjjYi5iN5NAkRsX38nfzkUpZj2B23zYBrsvRjBZkG8Wf0D0cv6BE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8a6b245697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sharemods.com/images/my-files-illustration-image.svg

104.26.10.194

200 OK

66 kB

URL GET HTTP/3
sharemods.com/images/my-files-illustration-image.svg
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
SVG Scalable Vector Graphics image
Size
66 kB (66314 bytes)
Hash
dc4c2beb32400455032fba8231ea5f94
2eeb4b34eefe0e80083bbb2587f8ca9cd3d59a05
137b7e16607cc0bb3b770b248c263e600e979c12150d221f4687b40f4f08b3e3

HTTP Headers

GET /images/my-files-illustration-image.svg HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/css/theme-update.min.css?ver=1.003
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: image/svg+xml
last-modified: Mon, 19 Sep 2022 06:42:46 GMT
etag: W/"63280f66-1030a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 665545
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cIr1F39CFwgi8Np%2B6rEsjEZ2UxQyXv1dSb1dIWQw%2B6Rdqj%2F1CcjFeaQbBOiqlYh2yTtSpLB5wpA5YPDywvD4LObgA56guUzcOigoVHWGIOOKCp9ARxI%2BnVk2k15YrLM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8d9eee5697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sharemods.com/js/paging.js?r=1

104.26.10.194

200 OK

1.1 kB

URL GET HTTP/3
sharemods.com/js/paging.js?r=1
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
HTML document, ASCII text, with very long lines (1111), with no line terminators
Size
1.1 kB (1091 bytes)
Hash
84c78c181c4418ab7ec7564c26073e27
82896b6a2a63787934b36e922988ef752bf44dd3
2811abb7a1302406e851fca3fd201bd85c78841a4f60f9d6dcef94f0594a568a

HTTP Headers

GET /js/paging.js?r=1 HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: application/javascript
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=1880
etag: W/"5daee0ff-758"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Tue, 22 Oct 2019 10:59:11 GMT
cf-cache-status: HIT
age: 679752
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fJeubVZDHsca9AinteUkQqpeDjjET2B5YFzOKtRLIDUfcTVecdavi1ezkEUhloW19rdoGtJYgVOVcgbtIxoDXTmNnfEKphZztLIsoJEIMEtxqzejGgyhBiEx58jKglM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8a6b295697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

sharemods.com/images/flags.png

104.26.10.194

200 OK

14 kB

URL GET HTTP/3
sharemods.com/images/flags.png
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
PNG image data, 1248 x 11, 8-bit/color RGB, non-interlaced
Size
14 kB (13713 bytes)
Hash
82e196ea8abd98caa742e4e970ee83b9
c6434cb4614f0c1e8656a3d1bacba55ad251bd4d
bd00a35847105e7dcf33d1159c04daf8458d2e9fee81036c9828537afaec356c

HTTP Headers

GET /images/flags.png HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/css/style.css?v=1.36
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: image/png
content-length: 13713
cache-control: max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=15180
etag: "63280f61-3b4c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 19 Sep 2022 06:42:41 GMT
cf-cache-status: HIT
age: 675674
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=93Z5Y2dmJeoKy6IxPD5hF4kMULaF5WKzoSdwK%2FS%2Byf%2FouY77sTWqmsSc9yT5DXT47yuUhLMqLvITbbcWN6q6NCgGhQMIKW1Ep3dT%2F5LwXltDE62xvv5ZaWfVxThiKlo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8d9eeb5697-OSL
alt-svc: h3=":443"; ma=86400

sharemods.com/images/page-header-bg.png

104.26.10.194

200 OK

41 kB

URL GET HTTP/3
sharemods.com/images/page-header-bg.png
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
PNG image data, 2937 x 960, 8-bit/color RGBA, non-interlaced
Size
41 kB (41298 bytes)
Hash
0f3afc222e9a085bccf9ad10af1167ff
1b23bff699f6ff3255ea0bdd71836e587382cc51
d2b9dafa6030be1a592601f35d6c76146a2ecf6c5cdf64ff330f424840918506

HTTP Headers

GET /images/page-header-bg.png HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/css/theme-update.min.css?ver=1.003
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: image/png
content-length: 41298
cache-control: max-age=315360000
cf-bgj: imgq:100,h2pri
cf-polished: origSize=49058
etag: "63280f67-bfa2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Mon, 19 Sep 2022 06:42:47 GMT
cf-cache-status: HIT
age: 665743
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LvNMyHnRRHSIPTejC6aNoPmZ%2FoaZM194KV9Ce9zDONfZ1vfjHYAw8lnwfIfPBCudEoYhvxY5bnEgZbld0sIg7Kt2r9J9G%2B5gnsIsfPXK7klVutv3gLRt3XNDiBQY9Q8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8d9ef55697-OSL
alt-svc: h3=":443"; ma=86400

sharemods.com/favicon.ico

104.26.10.194

200 OK

1.2 kB

URL GET HTTP/3
sharemods.com/favicon.ico
IP
104.26.10.194:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerLet's Encrypt
Subjectsharemods.com
Fingerprint76:9F:AA:A3:AE:9A:6A:12:1B:37:9F:46:BB:E0:BC:91:A5:92:6A:07
ValiditySat, 06 Apr 2024 16:15:14 GMT - Fri, 05 Jul 2024 16:15:13 GMT

File type
MS Windows icon resource - 1 icon, 16x16, 32 bits/pixel
Size
1.2 kB (1150 bytes)
Hash
fb7c6c6cbe8a73e70cb425ea9bbf9100
d3239a70a3f0b490726cf9be0027c587dee3ea2b
e6575a2bc139eea3a870f97a25c9d410ddda0e0dc80a6110017fd6b21fc6057b

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: sharemods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Cookie: affiliate=jZtQLjXk16oMJS9voUK5H8br1ZhOPZ%2F6EvOb4Fg6ZObxdmF1Xlyt%2FZc2zU7xIDixy4uSOc068%2BWKcGD60WtgFrE9lkWqC2uvruMaYFg%3D; lang=english; stpdOrigin={"origin":"direct"}; _ga_VR69R17JLR=GS1.1.1715173742.1.0.1715173742.0.0.0; _ga=GA1.1.1002592774.1715173742
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 08 May 2024 13:09:02 GMT
content-type: image/x-icon
last-modified: Thu, 01 Apr 2021 15:29:00 GMT
etag: W/"6065e6bc-47e"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: HIT
age: 665740
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Yx6Ssf70dez8n%2BihzObBEnULwXu206VZAc%2Bb8komupgDGmsVxkBsuFE1G%2BYXSamGRl7zmYVfIwsL0LC35hLYnJm3XkE2cGPLjKQNYk7OVPkWvedNFfhx0E2ZOvI%2FtwE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae917ba45697-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cmp.setupcmp.com/cmp/cmp/cmp-v1.js

104.26.5.6

200 OK

118 kB

URL GET HTTP/2
cmp.setupcmp.com/cmp/cmp/cmp-v1.js
IP
104.26.5.6:443
ASN
#13335 CLOUDFLARENET

Requested by
https://sharemods.com/y8ehwiyvq6vh/PoseidonLauncher.zip.html
Certificate
IssuerGoogle Trust Services LLC
Subjectsetupcmp.com
FingerprintA4:31:58:E9:94:86:9D:B0:83:10:0C:08:09:48:A8:0D:3E:88:5D:43
ValidityMon, 22 Apr 2024 15:25:04 GMT - Sun, 21 Jul 2024 15:25:03 GMT

File type

Size
118 kB (117732 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cmp/cmp/cmp-v1.js HTTP/1.1
Host: cmp.setupcmp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://sharemods.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 08 May 2024 13:09:01 GMT
content-type: text/javascript
content-md5: OhVTVAsCLyrUvGbestQR0Q==
last-modified: Mon, 11 Mar 2024 10:03:03 GMT
x-ms-request-id: aa0efac8-401e-006a-0b2d-9bab2e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: country
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
age: 1209
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9aNmMgLK8Ki5HrUYGH9CMc8evbpWsMYfLrrM3bcRwnMq9uoLYJnXt8O914xAL1L0Qxq48vLP%2B7J%2Bg3WJYrOE7l2D4v3%2FXmhd9SvbODH604W6OGfr1g5jtBzl%2FRqfEcz%2FVck%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8809ae8ad80bb523-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (32)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML