www.flikcover.com/static/jquery-3.5.0.min.js
188.114.96.1200 OK 224 kB URL GET HTTP/3 www.flikcover.com/static/jquery-3.5.0.min.js
IP 188.114.96.1:443
Requested by https://www.flikcover.com/index/login/index.html
Certificate IssuerLet's Encrypt
Subjectflikcover.com
FingerprintE1:5C:CF:64:D9:E9:F1:4A:E7:E0:AB:7C:D8:FF:A4:51:4D:38:4A:AE
ValidityWed, 17 Apr 2024 07:14:50 GMT - Tue, 16 Jul 2024 07:14:49 GMT
File type JavaScript source, ASCII text, with very long lines (65451)
Size 224 kB (223969 bytes)
Hash 12108007906290015100837a6a61e9f4
1d6ae46f2ffa213dede37a521b011ec1cd8d1ad3
c4dccdd9ae25b64078e0c73f273de94f8894d5c99e4741645ece29aeefc9c5a4
Analyzer Verdict Alert urlquery phishing Phishing - Amazon
Quad9 DNS malicious Sinkholed
GET /static/jquery-3.5.0.min.js HTTP/1.1
Host: www.flikcover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.flikcover.com/index/login/index.html
Cookie: sa0c19f20=cggl1t4h2s7728hvekhv72bea6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:19:42 GMT
content-type: application/javascript
last-modified: Mon, 27 Apr 2020 14:07:18 GMT
vary: Accept-Encoding
etag: W/"5ea6e716-15d95"
expires: Thu, 25 Apr 2024 12:23:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 21401
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KECTMPgZ85cD%2BPMX%2Fln%2FTcmojWOn9xUFw19w8jnxDXPHcz5YOynblSdXRzHRnUDsBIu%2FHPv2owKs4OMxiI1Ybjz39nRoU9OFJwZZagiTqsQ%2BOPWZrnbRBQT0HZ6jxQXI9jmZhA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c3913c93d569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.flikcover.com/static/index/css/main.css
188.114.96.1200 OK 246 kB URL GET HTTP/3 www.flikcover.com/static/index/css/main.css
IP 188.114.96.1:443
Requested by https://www.flikcover.com/index/login/index.html
Certificate IssuerLet's Encrypt
Subjectflikcover.com
FingerprintE1:5C:CF:64:D9:E9:F1:4A:E7:E0:AB:7C:D8:FF:A4:51:4D:38:4A:AE
ValidityWed, 17 Apr 2024 07:14:50 GMT - Tue, 16 Jul 2024 07:14:49 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 246 kB (246266 bytes)
Hash 62ff28c55f8159cc084f1c82f84c3b12
d0eb11a30cf87270f2d92401cf426ea3d805182a
cfe0e13115bf23dae63f17031ea3102c4efa5ceb7902f3dd7a4a5923f20fa05e
Analyzer Verdict Alert urlquery phishing Phishing - Amazon
Quad9 DNS malicious Sinkholed
GET /static/index/css/main.css HTTP/1.1
Host: www.flikcover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.flikcover.com/index/login/index.html
Cookie: sa0c19f20=cggl1t4h2s7728hvekhv72bea6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:19:42 GMT
content-type: text/css
last-modified: Thu, 19 Aug 2021 13:40:00 GMT
vary: Accept-Encoding
etag: W/"611e5f30-172b0"
expires: Thu, 25 Apr 2024 12:23:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 21401
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hbfXMNZvxgNKeEEmcK1u0exPPMixlBialoPzxcYqxZT4JvI6n2YIbD5XTE4u8xBqPBR9TfrXtDG7q6qgVqMOgMus4M1YLvCaZybEsJNxYZ82d%2FFUwC2tZ7kjsejnou590aAD2g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c3913b934569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.flikcover.com/index/index/index/login/index.html
188.114.96.1302 Found 224 kB URL User Request GET HTTP/2 www.flikcover.com/index/index/index/login/index.html
IP 188.114.96.1:443
Certificate IssuerLet's Encrypt
Subjectflikcover.com
FingerprintE1:5C:CF:64:D9:E9:F1:4A:E7:E0:AB:7C:D8:FF:A4:51:4D:38:4A:AE
ValidityWed, 17 Apr 2024 07:14:50 GMT - Tue, 16 Jul 2024 07:14:49 GMT
Size 224 kB (224010 bytes)
Hash 2e583678eaec85fd24e07b85c769daf8
c471b9e36929d6080697bc7ff94fed194684a78c
1fef25078ff2b30beb6eb165ae2fe1ad3993f069aff6f7309324b9f5492f9ecf
Analyzer Verdict Alert urlquery phishing Phishing - Amazon
OpenPhish phishing Amazon.com Inc.
Quad9 DNS malicious Sinkholed
GET /index/index/index/login/index.html HTTP/1.1
Host: www.flikcover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 25 Apr 2024 06:19:41 GMT
content-type: text/html; charset=utf-8
set-cookie: sa0c19f20=cggl1t4h2s7728hvekhv72bea6; path=/; HttpOnly
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
cache-control: no-cache,must-revalidate
location: /index/login/index.html
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BNh7KZHdQTk0%2FnL0mjcFfJHkGyb%2Fv4d2tF%2FS2XY4Pr%2BiBxGmQUwG%2BkQrei%2Bv1OI3DUNcMoQ9qY%2Fm86KTxQC%2FJmk5WM7ms%2BqC9GTrhXVp0RWUyLvLS0NX5hcGP5trqMcyQEku3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c390c0b56b517-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
cdn.dcloud.net.cn/img/shadow-grey.png
118.25.42.241200 OK 136 B URL GET HTTP/1.1 cdn.dcloud.net.cn/img/shadow-grey.png
IP 118.25.42.241:443
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
Requested by https://www.flikcover.com/index/login/index.html
Certificate IssuerUnizeto Technologies S.A.
Subject*.dcloud.net.cn
FingerprintAE:46:5C:A4:9B:D3:F7:AC:7D:5E:C7:27:E1:5F:C3:7C:DA:CE:F2:AC
ValiditySat, 05 Aug 2023 03:00:05 GMT - Tue, 03 Sep 2024 03:00:04 GMT
File type PNG image data, 1 x 6, 4-bit colormap, non-interlaced
Hash 5a962adf74d92ae702467b3f47976547
36f74049375584e3fa69b5ef87e9572336ff9e7a
ad4ebea1c3496dd2924789ee009174a2c6289d1200e9811f458fd46f172d1d6f
GET /img/shadow-grey.png HTTP/1.1
Host: cdn.dcloud.net.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.flikcover.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 06:19:46 GMT
Content-Type: image/png
Content-Length: 136
Last-Modified: Thu, 06 Jun 2019 06:42:07 GMT
Connection: close
ETag: "5cf8b5bf-88"
Expires: Thu, 25 Apr 2024 08:19:46 GMT
Cache-Control: max-age=7200
Set-Cookie: __uni__uid=rBEQMWYp9gJlbQyqWETQAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=dcloud.net.cn; path=/; secure; httponly; samesite=none
Accept-Ranges: bytes
www.flikcover.com/static/index/css/common.css
188.114.96.1200 OK 19 kB URL GET HTTP/3 www.flikcover.com/static/index/css/common.css
IP 188.114.96.1:443
Requested by https://www.flikcover.com/index/login/index.html
Certificate IssuerLet's Encrypt
Subjectflikcover.com
FingerprintE1:5C:CF:64:D9:E9:F1:4A:E7:E0:AB:7C:D8:FF:A4:51:4D:38:4A:AE
ValidityWed, 17 Apr 2024 07:14:50 GMT - Tue, 16 Jul 2024 07:14:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Amazon
Quad9 DNS malicious Sinkholed
GET /static/index/css/common.css HTTP/1.1
Host: www.flikcover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.flikcover.com/index/login/index.html
Cookie: sa0c19f20=cggl1t4h2s7728hvekhv72bea6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:19:42 GMT
content-type: text/css
last-modified: Thu, 19 Aug 2021 14:00:20 GMT
vary: Accept-Encoding
etag: W/"611e63f4-4a04"
expires: Thu, 25 Apr 2024 12:23:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 21401
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hb1AIhmpaXPO6mN6HgPpRAyRD%2FhgBj8Eo2FU22VnMLlw7P3oqOh0tn1Jv6At2Ir9c3zAstJaXV%2BhVFgnEiRHeDSYOrLj806O99f4rHWmrE%2FVC4ZnKEtIoLbVr0C%2FtbyR7426%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c3913b93a569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.flikcover.com/static/layer/layer.js
188.114.96.1200 OK 22 kB URL GET HTTP/3 www.flikcover.com/static/layer/layer.js
IP 188.114.96.1:443
Requested by https://www.flikcover.com/index/login/index.html
Certificate IssuerLet's Encrypt
Subjectflikcover.com
FingerprintE1:5C:CF:64:D9:E9:F1:4A:E7:E0:AB:7C:D8:FF:A4:51:4D:38:4A:AE
ValidityWed, 17 Apr 2024 07:14:50 GMT - Tue, 16 Jul 2024 07:14:49 GMT
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert urlquery phishing Phishing - Amazon
Quad9 DNS malicious Sinkholed
GET /static/layer/layer.js HTTP/1.1
Host: www.flikcover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.flikcover.com/index/login/index.html
Cookie: sa0c19f20=cggl1t4h2s7728hvekhv72bea6
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:19:42 GMT
content-type: application/javascript
last-modified: Tue, 05 Dec 2017 03:57:26 GMT
vary: Accept-Encoding
etag: W/"5a261926-5664"
expires: Thu, 25 Apr 2024 12:23:00 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 21401
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d9n07EjvqOmKK5SxK75te5UtYIZ8fMBCczcYUX3E%2FY4du4xCwMw2cRM6Gl0wtLxkzn43HETV19OuPOL0TfJZNpi12bidUQ5e7eyCzndKaWepiK6P4JILgayofuHVSkaAP%2Fw6bQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c3913c941569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.flikcover.com/static/layer/theme/default/layer.css?v=3.1.1
188.114.96.1200 OK 14 kB URL GET HTTP/3 www.flikcover.com/static/layer/theme/default/layer.css?v=3.1.1
IP 188.114.96.1:443
Requested by https://www.flikcover.com/index/login/index.html
Certificate IssuerLet's Encrypt
Subjectflikcover.com
FingerprintE1:5C:CF:64:D9:E9:F1:4A:E7:E0:AB:7C:D8:FF:A4:51:4D:38:4A:AE
ValidityWed, 17 Apr 2024 07:14:50 GMT - Tue, 16 Jul 2024 07:14:49 GMT
File type ASCII text, with very long lines (14367), with no line terminators
Hash 3d2e0d91c5c0b96abb8dbdc2234aba77
9d55e153b30fd7414fada5718e20918e9c7f65e7
e3144d018a6a24f733c6fc2a2ee603fb583f0030585e9d4b71bec471b78e31fc
Analyzer Verdict Alert urlquery phishing Phishing - Amazon
Quad9 DNS malicious Sinkholed
GET /static/layer/theme/default/layer.css?v=3.1.1 HTTP/1.1
Host: www.flikcover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.flikcover.com/index/login/index.html
Cookie: sa0c19f20=cggl1t4h2s7728hvekhv72bea6
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:19:42 GMT
content-type: text/css
last-modified: Tue, 05 Dec 2017 03:57:26 GMT
vary: Accept-Encoding
etag: W/"5a261926-381f"
expires: Thu, 25 Apr 2024 12:23:01 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 21400
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K5XExmy6W7Bmv9otbRSWiVLhHbIUZiyO0NXHQcVR2uctYxFt202yJek%2BBtf%2Fj0Tf3JNd6BjoONslWBD9A0aaL%2Fq3wDBRNlIQ%2BbCbW%2B%2FyLHXhG23i3MyLo5uqUjbk60of6KOo5A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c391429a7569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.flikcover.com/static/index/fonts/Rubik-BlackItalic.77c7f123.ttf
188.114.96.1200 OK 192 kB URL GET HTTP/3 www.flikcover.com/static/index/fonts/Rubik-BlackItalic.77c7f123.ttf
IP 188.114.96.1:443
Requested by https://www.flikcover.com/index/login/index.html
Certificate IssuerLet's Encrypt
Subjectflikcover.com
FingerprintE1:5C:CF:64:D9:E9:F1:4A:E7:E0:AB:7C:D8:FF:A4:51:4D:38:4A:AE
ValidityWed, 17 Apr 2024 07:14:50 GMT - Tue, 16 Jul 2024 07:14:49 GMT
File type TrueType Font data, 18 tables, 1st "GPOS", 15 names, Microsoft, language 0x409, Copyright (c) 2015 by Hubert & Fischer. All rights reserved.Rubik BlackItalicHubert&Fischer: Rub
Size 192 kB (192004 bytes)
Hash 77c7f123391595707a1d0690dddaa11e
3f77b9d3d8155511d94d72a410c80b3d18001cde
ce0e6de088497437824e571c7a0c38974f205a0bbb8b20ae5b309e419662f063
Analyzer Verdict Alert urlquery phishing Phishing - Amazon
Quad9 DNS malicious Sinkholed
GET /static/index/fonts/Rubik-BlackItalic.77c7f123.ttf HTTP/1.1
Host: www.flikcover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.flikcover.com/static/index/css/common.css
Cookie: sa0c19f20=cggl1t4h2s7728hvekhv72bea6
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:19:42 GMT
content-type: application/octet-stream
content-length: 192004
last-modified: Thu, 19 Aug 2021 13:45:30 GMT
etag: "611e607a-2ee04"
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: HIT
age: 28
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RKwwmLkxeQrkBkbkoO3OgVt892JsbHeHjfHyH%2Bfqksrk5R5K0YfKJw1K2z%2FBX6aYcBNN5s2g94dutB7QuabOQFfBW3fVWFo7z2WQzbs5L%2F9pQCLuDCkegwJRnSMWDw%2F8dKzT4w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c391439b9569b-OSL
alt-svc: h3=":443"; ma=86400
www.flikcover.com/static/index/fonts/Rubik-Regular.35af6dbe.ttf
188.114.96.1200 OK 221 kB URL GET HTTP/3 www.flikcover.com/static/index/fonts/Rubik-Regular.35af6dbe.ttf
IP 188.114.96.1:443
Requested by https://www.flikcover.com/index/login/index.html
Certificate IssuerLet's Encrypt
Subjectflikcover.com
FingerprintE1:5C:CF:64:D9:E9:F1:4A:E7:E0:AB:7C:D8:FF:A4:51:4D:38:4A:AE
ValidityWed, 17 Apr 2024 07:14:50 GMT - Tue, 16 Jul 2024 07:14:49 GMT
File type TrueType Font data, 20 tables, 1st "GPOS", 13 names, Microsoft, language 0x409, Copyright (c) 2015 by Hubert & Fischer. All rights reserved.RubikRegularHubert&Fischer: Rubik Re
Size 221 kB (220600 bytes)
Hash 35af6dbe749b9704f03282e5a5949253
f0711cdc35046a54d1b887fafbd12de0a5b82549
c17737eba7fa3f4854f4cd50226e75a9e954b4fc460d805b22e5c31a04b0261d
Analyzer Verdict Alert urlquery phishing Phishing - Amazon
Quad9 DNS malicious Sinkholed
GET /static/index/fonts/Rubik-Regular.35af6dbe.ttf HTTP/1.1
Host: www.flikcover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.flikcover.com/static/index/css/common.css
Cookie: sa0c19f20=cggl1t4h2s7728hvekhv72bea6
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:19:42 GMT
content-type: application/octet-stream
content-length: 220600
last-modified: Tue, 17 Aug 2021 08:24:34 GMT
etag: "611b7242-35db8"
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: HIT
age: 28
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Qb0UOuZm5CGx3Ce2dPXWqIYz9oXp1TKd%2FhlOAGNXcOKJNNklgqI2A48oILpB560EAa1oqlLmuSeMZx71VYGbJRFlooiatCmMrprmj9vk%2F3ormzxbOoQTz%2BEhJ9pnS8Iw%2BMy%2F2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c391439be569b-OSL
alt-svc: h3=":443"; ma=86400
www.flikcover.com/favicon.ico
188.114.96.1200 OK 4.3 kB URL GET HTTP/3 www.flikcover.com/favicon.ico
IP 188.114.96.1:443
Requested by https://www.flikcover.com/index/login/index.html
Certificate IssuerLet's Encrypt
Subjectflikcover.com
FingerprintE1:5C:CF:64:D9:E9:F1:4A:E7:E0:AB:7C:D8:FF:A4:51:4D:38:4A:AE
ValidityWed, 17 Apr 2024 07:14:50 GMT - Tue, 16 Jul 2024 07:14:49 GMT
File type MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel
Hash ea344923d7e68380c811191e36e04020
f23f0ec8c29df2a1b31b0e0cb46e54e22420bca1
97a8aa4a501654a28f1fe60e1fce3f9070c80d698790beb60b2d714f78bd786f
Analyzer Verdict Alert urlquery phishing Phishing - Amazon
Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: www.flikcover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.flikcover.com/index/login/index.html
Cookie: sa0c19f20=cggl1t4h2s7728hvekhv72bea6
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:19:42 GMT
content-type: image/x-icon
last-modified: Fri, 13 Nov 2020 15:05:22 GMT
etag: W/"5faea0b2-10be"
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: HIT
age: 28
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZSGuBaBgWi0J5seCrBmBh2pTmx%2Bs3cJjK%2F0MFtrjpoD1K7HIrdC089cJgWqKWU%2F4GEZqPXfpIk2fidGelmMkQLgwRS3ZREI2SHJ4AIICDTW82y76%2BDUArQeQz940QHH%2F%2FGoGnQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c39152af0569b-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
www.flikcover.com/static/index/fonts/Rubik-Medium.4dff84c2.ttf
188.114.96.1200 OK 216 kB URL GET HTTP/3 www.flikcover.com/static/index/fonts/Rubik-Medium.4dff84c2.ttf
IP 188.114.96.1:443
Requested by https://www.flikcover.com/index/login/index.html
Certificate IssuerLet's Encrypt
Subjectflikcover.com
FingerprintE1:5C:CF:64:D9:E9:F1:4A:E7:E0:AB:7C:D8:FF:A4:51:4D:38:4A:AE
ValidityWed, 17 Apr 2024 07:14:50 GMT - Tue, 16 Jul 2024 07:14:49 GMT
File type TrueType Font data, 20 tables, 1st "GPOS", 15 names, Microsoft, language 0x409, Copyright (c) 2015 by Hubert & Fischer. All rights reserved.Rubik MediumRegularHubert&Fischer: R
Size 216 kB (216244 bytes)
Hash 4dff84c26bc906823e344e1eb76fe7a7
5da5f96c57060e54a922ea0df12b4c29797593b9
82a8c818aab7ca3157c49795b2fc47a08a1fa490dd5aa7acb7a079615c3dda51
Analyzer Verdict Alert urlquery phishing Phishing - Amazon
Quad9 DNS malicious Sinkholed
GET /static/index/fonts/Rubik-Medium.4dff84c2.ttf HTTP/1.1
Host: www.flikcover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.flikcover.com/static/index/css/common.css
Cookie: sa0c19f20=cggl1t4h2s7728hvekhv72bea6
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 06:19:42 GMT
content-type: application/octet-stream
content-length: 216244
last-modified: Tue, 17 Aug 2021 08:24:08 GMT
etag: "611b7228-34cb4"
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: HIT
age: 28
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cZoBhyL%2FqXgjnkL5iQR5wr%2FguXM7NuvzUcGWaPAasfc2tboDeCCNDSk3hI6GNGBYELwz47ns3iZsQBU8pvBlHUWMZZM7UBxTJZEZctYI65rLvoQ48r4HmVEV%2F3gporJeo9E2dA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879c391449c2569b-OSL
alt-svc: h3=":443"; ma=86400
www.flikcover.com/index/login/index.html
188.114.96.1200 OK 5.7 kB URL User Request GET HTTP/2 www.flikcover.com/index/login/index.html
IP 188.114.96.1:443
Certificate IssuerLet's Encrypt
Subjectflikcover.com
FingerprintE1:5C:CF:64:D9:E9:F1:4A:E7:E0:AB:7C:D8:FF:A4:51:4D:38:4A:AE
ValidityWed, 17 Apr 2024 07:14:50 GMT - Tue, 16 Jul 2024 07:14:49 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (5827), with no line terminators
Hash 3553de0e77749cb0f05f44fcd9733622
7cef9bf8ec773ae60384362361e12563bb9d6f62
caccc3e3d6580aada7a55d498c852cd446afeeb7fc566ddad19d4f7da7bfbb1c
Analyzer Verdict Alert urlquery phishing Phishing - Amazon
Quad9 DNS malicious Sinkholed
GET /index/login/index.html HTTP/1.1
Host: www.flikcover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: sa0c19f20=cggl1t4h2s7728hvekhv72bea6
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 06:19:41 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xR6dD0Oh7CcY%2FfDqeaoX54q7xKZkb8lI8Z6SXkJkdTCcGCfeiRP62ZOdnbH3LGWYv3dH7tZeC0IPyELyL93Pa%2BXCTv1JPzmXp3oGwWgRPropETQosqZjpUM%2FZMOaHC3pL3t7qg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879c3910df83b517-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2