Report - get7.thisfireshield.com/

Report Overview

Submitted URL
get7.thisfireshield.com/
IP
104.21.37.46
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-05 09:00:57
Access
public
Website Title
Create Next App
Final URL
fireshieldnow.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
64

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
get7.thisfireshield.com	unknown	unknown	No data	No data	478 B	880 B	172.67.203.243
fireshieldnow.com	unknown	2021-07-18	2021-07-18	2024-02-17	15 kB	2.5 MB	172.67.206.8
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-05-05	2.7 kB	157 kB	216.58.207.227

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed
2024-05-05	medium	fireshieldnow.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (17)

	URL	Size	First Seen	Last Seen
	fireshieldnow.com/_next/static/chunks/webpack-2c40b5d5dfbcbcc2c843.js	4.6 kB	2024-05-03	2024-05-05
Pretty URL fireshieldnow.com/_next/static/chunks/webpack-2c40b5d5dfbcbcc2c843.js IP 172.67.206.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 06:10:18 Last Seen2024-05-05 11:01:03 Times Seen4 Hash 75579745bce5ec836d6da6cad68b1de7 8cc8f25af35a8f373becac1a53d464db3e99bd64 c11dbed660827163a23bb8aa50cff760b5b936751acc74abc04ba82365c7c7d9 Loading...

	fireshieldnow.com/_next/static/chunks/main-a76b5552fbb06f190312.js	63 kB	2023-05-12	2024-05-05
Pretty URL fireshieldnow.com/_next/static/chunks/main-a76b5552fbb06f190312.js IP 172.67.206.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-12 09:09:33 Last Seen2024-05-05 11:01:04 Times Seen35 Hash a6e935f29971443cdca0782683bbb092 60c78e611fc8918a121ab027e3ef5406024f39fd 2a4c801d09ce366a82d1141f0f9b2be5374dfeb483f43e686a27ed13e742486b Loading...

	fireshieldnow.com/_next/static/chunks/pages/_app-c6b6a5439509a8fe41c5.js	57 kB	2024-05-03	2024-05-05
Pretty URL fireshieldnow.com/_next/static/chunks/pages/_app-c6b6a5439509a8fe41c5.js IP 172.67.206.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 06:10:18 Last Seen2024-05-05 11:01:04 Times Seen6 Hash 87fff6c404c1ff72b1aac57b86014ecd 286c2cbeb3d61c3bfa33b9959828c04c4207ccdb 7231f4e3a86ed15e3d90e6a61ec908f822e848c54ec7df892b9f31ad214e4c45 Loading...

	fireshieldnow.com/_next/static/chunks/pages/index-1504a916cf6dc2fb6bd7.js	15 kB	2024-05-03	2024-05-05
Pretty URL fireshieldnow.com/_next/static/chunks/pages/index-1504a916cf6dc2fb6bd7.js IP 172.67.206.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 06:10:18 Last Seen2024-05-05 11:01:04 Times Seen6 Hash 688baa4b96573187142ef360e5545158 2b1825a06f3de91ad6bf04c0a32b327a8b883a59 46f86dd39cb435b9ebfc93fb799c0a0922ebe34aaa84d407f98b8ab9c4eb6f13 Loading...

	fireshieldnow.com/_next/static/6irn5R4IRtyhvhmMs_ENx/_ssgManifest.js	88 B	2023-03-07	2024-05-16
Pretty URL fireshieldnow.com/_next/static/6irn5R4IRtyhvhmMs_ENx/_ssgManifest.js IP 172.67.206.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:05:53 Last Seen2024-05-16 19:37:25 Times Seen358 Hash bee22ea531beed3eeff60fb48f41c658 89872b1690c01c7cde8edd754d54e832e829f3bf a66383b381b46cccc8f600e19dedea91beedf07e06bb49f011fa7f7073ead591 Loading...

	fireshieldnow.com/_next/static/chunks/832.ee1ff957f29ad42be271.js	270 kB	2024-05-03	2024-05-05
Pretty URL fireshieldnow.com/_next/static/chunks/832.ee1ff957f29ad42be271.js IP 172.67.206.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 06:10:17 Last Seen2024-05-05 11:01:04 Times Seen6 Hash f440eceac98b3d7c2b75607b3688796e c17c8598665d07e44ea10e059be7228fc8563c0b 507b424fa019093ec0c39cf9e6a29ed93dd559b01db6645711126a85fc88b1f1 Loading...

	fireshieldnow.com/_next/static/chunks/commons.3db8219e7ef9bf179bbf.js	12 kB	2024-05-03	2024-05-05
Pretty URL fireshieldnow.com/_next/static/chunks/commons.3db8219e7ef9bf179bbf.js IP 172.67.206.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 06:10:18 Last Seen2024-05-05 11:01:04 Times Seen6 Hash 46abfed0246e99587d97efd4a5209f47 39174bbf408134cd383a2db8aa577d774f299d84 64de7b8c49bfe866fefcf4077f498c7c5c83b41cb3ca7fcc119588febb35d00b Loading...

	fireshieldnow.com/_next/static/chunks/156.b8b85e48131aefd4174c.js	1.0 kB	2024-05-03	2024-05-05
Pretty URL fireshieldnow.com/_next/static/chunks/156.b8b85e48131aefd4174c.js IP 172.67.206.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 06:10:18 Last Seen2024-05-05 11:01:04 Times Seen3 Hash 50e9f17d190fd4882ff76730ab9d5eb6 820c41a2c6ec05eb65664039a94491f103332277 9bfa810a771158389dbaa2204242a15eb2f14ed18b70d9327e7f8fbf76d8b968 Loading...

	fireshieldnow.com/_next/static/chunks/899.3e541c796ede38bf1f67.js	420 kB	2024-05-03	2024-05-05
Pretty URL fireshieldnow.com/_next/static/chunks/899.3e541c796ede38bf1f67.js IP 172.67.206.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 06:10:18 Last Seen2024-05-05 11:01:04 Times Seen6 Hash 558ec2486d9e45cb3a7869d83571ec81 56c952a360e093921c3d867811fa8537f23d7ae2 afe14c7591ea22baee6ce1df903d4995843923fc2648f889d599c448f63046b2 Loading...

	fireshieldnow.com/_next/static/chunks/framework-d23658296916ce920464.js	131 kB	2023-11-03	2024-05-05
Pretty URL fireshieldnow.com/_next/static/chunks/framework-d23658296916ce920464.js IP 172.67.206.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:54:24 Last Seen2024-05-05 11:01:04 Times Seen8 Hash 19cef785788c877c861bb9558a0a9f9b ef2696f52aa40d88b95a638ba6f79826f3ab05bc f33e2aedaf9ecd6a4dabb9a549d6df40cf7b77e13656280ce02a4f4d087e739d Loading...

	fireshieldnow.com/_next/static/6irn5R4IRtyhvhmMs_ENx/_buildManifest.js	290 B	2024-05-03	2024-05-05
Pretty URL fireshieldnow.com/_next/static/6irn5R4IRtyhvhmMs_ENx/_buildManifest.js IP 172.67.206.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 06:10:18 Last Seen2024-05-05 11:01:04 Times Seen3 Hash d7fc515fc170c7944418a4249dccaa2c a470549701eb14a463e5ad35be2eec1a191cfece 7dfa60078ff138a3ae54bda666aea659096c7fc2ceacac4dbbe980dc1e6a6f48 Loading...

	fireshieldnow.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	1.2 kB	2023-03-07	2024-05-18
Pretty URL fireshieldnow.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 172.67.206.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-18 19:24:31 Times Seen57593 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	fireshieldnow.com/_next/static/chunks/430.5f27f14664ff1d8335c2.js	100 kB	2024-05-03	2024-05-05
Pretty URL fireshieldnow.com/_next/static/chunks/430.5f27f14664ff1d8335c2.js IP 172.67.206.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 06:10:18 Last Seen2024-05-05 11:01:04 Times Seen6 Hash 6de2296d86eca928c72ec26afd60c092 966904a653e41062369b070832ddb9a64b9b58b7 59bc2817424faa26d2d293a031354bf64bc3180081db206eb6572caa3d74f3e1 Loading...

	fireshieldnow.com/_next/static/chunks/618.73b158461a2fef3f8a94.js	138 kB	2024-05-03	2024-05-05
Pretty URL fireshieldnow.com/_next/static/chunks/618.73b158461a2fef3f8a94.js IP 172.67.206.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 06:10:18 Last Seen2024-05-05 11:01:04 Times Seen6 Hash cc86ceb28b3a30f9f03d7b3f32152089 ddf3b40842b6a70375cb29234e8083ec127be1ef 2a52b781375d9e6f4f62a1c5b083fcd8b975e03c98cdbceb82f8b5f02164ea36 Loading...

	fireshieldnow.com/_next/static/chunks/92.e2f3b1e7ef81902148db.js	5.8 kB	2024-05-03	2024-05-05
Pretty URL fireshieldnow.com/_next/static/chunks/92.e2f3b1e7ef81902148db.js IP 172.67.206.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 06:10:18 Last Seen2024-05-05 11:01:04 Times Seen3 Hash 1f097d21e0fe2302824c87a25fa8fa90 85270e014757b4e5482f580686a9dcf80d5458e7 e60edb8a61368af54f25ed6090736808beff28a9dae217c06cbea80fe72e6b9b Loading...

	fireshieldnow.com/_next/static/chunks/565.20038dae5a7073c2a4fd.js	5.8 kB	2024-05-03	2024-05-05
Pretty URL fireshieldnow.com/_next/static/chunks/565.20038dae5a7073c2a4fd.js IP 172.67.206.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 06:10:18 Last Seen2024-05-05 11:01:04 Times Seen4 Hash 79728fc1a46a5010408a4789e6921113 2a64ce08567104b8ecfe75c7f0135c982c709ace 4e4a51361a8d394ed48b52934b88ee8ed23ed6b15dbb94054dc73b4449c0cea9 Loading...

	fireshieldnow.com/_next/static/chunks/425.cdde8cbdf3baadbfd69d.js	12 kB	2024-05-03	2024-05-05
Pretty URL fireshieldnow.com/_next/static/chunks/425.cdde8cbdf3baadbfd69d.js IP 172.67.206.8 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 06:10:17 Last Seen2024-05-05 11:01:04 Times Seen6 Hash 7d6e08600e25fd94aacff7f89033f680 38c4d381c5662586cb7ad24d5921c136e81e6af0 8f6681dd38dc182f821404dadc5b108e7554dd9f1598783175095aab89d7476f Loading...

HTTP Transactions (38)

URL IP Response Size

get7.thisfireshield.com/

172.67.203.243

302 Found

143 B

URL User Request GET HTTP/2
get7.thisfireshield.com/
IP
172.67.203.243:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectthisfireshield.com
FingerprintB1:11:D2:80:72:CC:C2:C6:6C:6B:B0:62:D7:23:A7:E8:68:75:FB:92
ValiditySat, 27 Apr 2024 23:15:06 GMT - Fri, 26 Jul 2024 23:15:05 GMT

File type
HTML document, ASCII text, with CRLF line terminators
Size
143 B (143 bytes)
Hash
cb7b8f439b04c00f4a2d78160ddfee8d
9aa44b5d68f6359f10de0dcd24ea3e12548d9bd4
12755429beb15d5eb57eafa45b8dba326343dd099bf0552038694c3856e8860e

HTTP Headers

GET / HTTP/1.1
Host: get7.thisfireshield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 302 Found
date: Sun, 05 May 2024 09:00:30 GMT
content-type: text/html
content-length: 143
location: https://fireshieldnow.com
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kDWIoPrn747BMwhyG5vOMND0Ket2div7WpNKOnWNQi5Fgkv%2FYDcIMKqZGkeiq8EhTHV8BfpDfyW9WyaBBmhPFDCE1e0pqBzVjq8wRnt0UxtcCE45jRjYJmFmAWcwHHv%2FLsZC84Q9FimhMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ef8a6079f356ab-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fireshieldnow.com/_next/static/css/80e56246054d4640031b.css

172.67.206.8

200 OK

1.2 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/css/80e56246054d4640031b.css
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
ASCII text, with very long lines (2097), with no line terminators
Size
1.2 kB (1237 bytes)
Hash
5998804c4214510cf83934169caa013a
8f361ec962489cc06dc2589a9290b7b5a7e25ec8
7ee8d8df95ad1a9c10067c068e3535be022eac9c7fe20482401e93bc71c11d0a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/css/80e56246054d4640031b.css HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: text/css
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"831-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vGZF2hZrNRyDvx%2BH08z7x1FFNQZlREPJqLYOy69DImV9ErfrSLwYe3ITSy5vCm%2Fgt9k%2BANE6OkCkfVUHXCXkvgVHUunZRJPN6DUt1mbjSwtJ%2B%2B1Il%2Fh0KJ2xcYeAXoRQd%2FImhg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64296356a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3iu4nwlxdu3cOWxw.woff2

216.58.207.227

200 OK

12 kB

URL GET HTTP/2
fonts.gstatic.com/s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3iu4nwlxdu3cOWxw.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://fireshieldnow.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 12484, version 1.0
Size
12 kB (12484 bytes)
Hash
0e56c745850adff92ba3f1bc66239547
e83a040d3df71326b0d95fa863c884f444b47c3b
e5620b6fdc194c2b1e77eb54fcfd53e1d1685987a5af1e9d85c647489b87d794

HTTP Headers

GET /s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3iu4nwlxdu3cOWxw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fireshieldnow.com
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12484
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:06:11 GMT
expires: Fri, 02 May 2025 02:06:11 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Sep 2020 18:10:18 GMT
content-type: font/woff2
age: 284060
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/raleway/v22/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2

216.58.207.227

200 OK

42 kB

URL GET HTTP/2
fonts.gstatic.com/s/raleway/v22/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://fireshieldnow.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 42336, version 1.0
Size
42 kB (42336 bytes)
Hash
fe744073b54b3ba4efbf59b75be93667
737e9cf2c8d55812d1b2290e2146a43e0cefa6c8
c640c6d4c7104b09736c8a8c26f666305963273ffcba78e63b7a06451461cc55

HTTP Headers

GET /s/raleway/v22/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fireshieldnow.com
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 42336
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 17:52:45 GMT
expires: Fri, 02 May 2025 17:52:45 GMT
cache-control: public, max-age=31536000
age: 227266
last-modified: Tue, 29 Jun 2021 19:44:26 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/sourcesanspro/v14/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7lujVj9w.woff2

216.58.207.227

200 OK

13 kB

URL GET HTTP/2
fonts.gstatic.com/s/sourcesanspro/v14/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7lujVj9w.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://fireshieldnow.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 13324, version 1.0
Size
13 kB (13324 bytes)
Hash
fbefd76e823b1848d7b0a267b2b46f05
e592e275aacf69b6e08bdf17657e20f08c465981
ecf76895be1cf9e8b3edb254030e9c9c1d8f3c2efc1f9dc7e04ceff29eccae9c

HTTP Headers

GET /s/sourcesanspro/v14/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7lujVj9w.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fireshieldnow.com
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 11:50:17 GMT
expires: Sat, 03 May 2025 11:50:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Sep 2020 18:10:14 GMT
content-type: font/woff2
age: 162614
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/raleway/v22/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2

216.58.207.227

200 OK

42 kB

URL GET HTTP/2
fonts.gstatic.com/s/raleway/v22/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://fireshieldnow.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 42336, version 1.0
Size
42 kB (42336 bytes)
Hash
fe744073b54b3ba4efbf59b75be93667
737e9cf2c8d55812d1b2290e2146a43e0cefa6c8
c640c6d4c7104b09736c8a8c26f666305963273ffcba78e63b7a06451461cc55

HTTP Headers

GET /s/raleway/v22/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fireshieldnow.com
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 42336
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 17:52:45 GMT
expires: Fri, 02 May 2025 17:52:45 GMT
cache-control: public, max-age=31536000
age: 227266
last-modified: Tue, 29 Jun 2021 19:44:26 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fireshieldnow.com/_next/static/image/assets/png/users/user2.8f75f32ae7c03ebdc8bc6f2f98a26bbc.png

172.67.206.8

200 OK

49 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/image/assets/png/users/user2.8f75f32ae7c03ebdc8bc6f2f98a26bbc.png
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
PNG image data, 185 x 185, 8-bit/color RGBA, non-interlaced
Size
49 kB (49298 bytes)
Hash
b980b046a5f3aef39a80c47e1dd50364
d318c06f81238d98efaa71842df3c793cfcdb911
bfd465f034dc8beaacec9dc2ffa92db1d94e4c1c9e19b10c5d6191107650abd0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/image/assets/png/users/user2.8f75f32ae7c03ebdc8bc6f2f98a26bbc.png HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: image/png
content-length: 49298
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: "c092-5c9c3420542c0"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d1e%2FkS%2F5SYhxQLO1ntf5tpWOLb7L582Lw4Qt4QydDmRZF9gsHbF%2F%2FezrrwAcds5R80H9nTfVWngi0fAAM%2FPIB74eFg3fpBKH%2BeedAjyq%2FPoV33dxHW%2FjMehvY41AuyaS1OSL6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ef8a66cc9056a2-OSL
alt-svc: h3=":443"; ma=86400

fonts.gstatic.com/s/raleway/v22/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2

216.58.207.227

200 OK

42 kB

URL GET HTTP/2
fonts.gstatic.com/s/raleway/v22/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://fireshieldnow.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 42336, version 1.0
Size
42 kB (42336 bytes)
Hash
fe744073b54b3ba4efbf59b75be93667
737e9cf2c8d55812d1b2290e2146a43e0cefa6c8
c640c6d4c7104b09736c8a8c26f666305963273ffcba78e63b7a06451461cc55

HTTP Headers

GET /s/raleway/v22/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fireshieldnow.com
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 42336
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 17:52:45 GMT
expires: Fri, 02 May 2025 17:52:45 GMT
cache-control: public, max-age=31536000
age: 227266
last-modified: Tue, 29 Jun 2021 19:44:26 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fireshieldnow.com/_next/static/media/Group.7251426898b42ef0da48f0ebb6239a97.png

172.67.206.8

200 OK

138 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/media/Group.7251426898b42ef0da48f0ebb6239a97.png
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
PNG image data, 2344 x 3324, 8-bit/color RGBA, non-interlaced
Size
138 kB (138448 bytes)
Hash
ce6716a2e3f3d35fdcf3ef8fbfff6bb0
7dc7958b9cedc98fe3d3976386cb12abbe544430
b6a5b9e166397d0dbf4fa27be208dd0edbad65c7dfc19a97f66cdbb7c0f570f7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/Group.7251426898b42ef0da48f0ebb6239a97.png HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/_next/static/css/c5cb51e8358a02c78af1.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: image/png
content-length: 138448
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: "21cd0-5c9c3420542c0"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a2h%2B9UKXH8ZQYKn%2BuwMnBaWCm6H50YKPzLDWy18H7V3rgPTEesczxENL6QJnAoxQ0P58n8%2F1e6rjWzDXOe%2BPOAtNDbmHdjBov96DNxfQ1LyP7DNl%2BwyMCEnICq7otU6XAosdhw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ef8a665c2156a2-OSL
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/css/9b7dd6282617e7f870a3.css

172.67.206.8

200 OK

54 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/css/9b7dd6282617e7f870a3.css
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
ASCII text, with very long lines (1207), with no line terminators
Size
54 kB (54223 bytes)
Hash
17ae7c846aaf7f2699b26414afc4a716
013d0f170b678d775036d028d0acc69edcd19149
a6be2c1dfc0e885126e8d2e015a6c099f4b780e93d203855cd232f7f65d2bf74

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/css/9b7dd6282617e7f870a3.css HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: text/css
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"4b7-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dkR41qr7PAzmouv2r7wWtuE%2BGp1m6Y4dj7M4btBf99PpgLc9%2Fvj9u148CcSErMAInHYRQ9qIs9wTXeUG4HAkUw%2BCB00w3BM8xYJaA3c%2Fj9UP%2FYR4Zt6ZfiVG7j84gO%2Fj8u84Pg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64295956a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/image/assets/png/users/user1.6635ff8b9b70ef037f17781275558203.png

172.67.206.8

200 OK

55 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/image/assets/png/users/user1.6635ff8b9b70ef037f17781275558203.png
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
PNG image data, 185 x 185, 8-bit/color RGBA, non-interlaced
Size
55 kB (55386 bytes)
Hash
78f89f00eccc9a87a462c4b5e484bd06
f71b3cf82c298d992d95a18d23b3bb602208c612
ce5c3a43c1cf56b8de319a941b2c7c4bf37a0618458a620d405b95a1c1eca4e1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/image/assets/png/users/user1.6635ff8b9b70ef037f17781275558203.png HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: image/png
content-length: 55386
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: "d85a-5c9c3420542c0"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hzXCZL2PmfwbnCuagqo%2BcLQ1h6rbd8T5NTYd1s4UtDwGF%2B566Ej0KQ3DxfHQY3UBmTW9DqppOwVM3NfHZRRHltpfsXP%2BR55Onl%2F%2BTUP%2FDYr%2F6jN9Femlpk7GCW1B%2BKOA8%2FduPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ef8a66cc8e56a2-OSL
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/image/assets/png/users/user3.d9573663c242f6edb5779808ca994362.png

172.67.206.8

200 OK

24 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/image/assets/png/users/user3.d9573663c242f6edb5779808ca994362.png
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
PNG image data, 185 x 185, 8-bit/color RGBA, non-interlaced
Size
24 kB (24543 bytes)
Hash
fbd8759ed54216bcb39fbbd6f0957720
1c78832e020943027343cd3baaf36e30f13b67e0
e830cb6974879c8b40485eb21f11a7eaaffb04fd561d74a25991352530863998

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/image/assets/png/users/user3.d9573663c242f6edb5779808ca994362.png HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: image/png
content-length: 24543
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: "5fdf-5c9c3420542c0"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QtHZlXx363y2aNsfAbkntAs1IGH8lt2%2BzvFU2CnjDFeo0xz0Jpp8PRBKBQyS%2B6fqzVi1tA48egnyIaXm2ETC6MA8y0z6CjO9qAE5IsVMTisUjleMmsjXvO0KqojTJ2x94U4hbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ef8a66cc9856a2-OSL
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/favicon.ico

172.67.206.8

200 OK

11 kB

URL GET HTTP/3
fireshieldnow.com/favicon.ico
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
MS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel
Size
11 kB (10803 bytes)
Hash
5d70729f5c3699eef4efefc3d6e9ce0a
35927ca178451cb50e802e2984cbfd3c4f090d96
23bbc616088b32bb25b483f2194873f4e961c850212a8ba4227edc3318bd9c99

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:32 GMT
content-type: image/vnd.microsoft.icon
last-modified: Thu, 19 Aug 2021 04:49:30 GMT
etag: W/"3c2e-5c9e246baea80"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o2lzCdKfGxsbZRe1cBEgbSF3%2BCEbTpM%2BY4oPCn9XNERyEbOaiPCwKshHB8nscRLxXhn%2FMnmIovNksApHSkPFmIQ0yc%2Bs%2BNbTPNSuJwCxE0Wx0XdIPYIfMgwnmrfA7eEjPLPDvA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ef8a6af92456a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/

172.67.206.8

200 OK

885 kB

URL User Request GET HTTP/2
fireshieldnow.com/
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type

Size
885 kB (885108 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sun, 05 May 2024 09:00:30 GMT
content-type: text/html
last-modified: Thu, 04 Nov 2021 10:14:51 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Iewcl4iAdTrKFdx5EofCYIDILuVFnjGZ8ovjRd%2BGLQf1SWyF4xZrMMSjkWfUCZQW0i47wsehxPVq7tbrJrZwPnr28wCZgDbX0de9W5j7%2B2UPufiYDse9H1r4QkSu945rBapnBw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a60fd6f56c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fireshieldnow.com/_next/static/css/f88323be2dd5545387e0.css

172.67.206.8

200 OK

942 B

URL GET HTTP/3
fireshieldnow.com/_next/static/css/f88323be2dd5545387e0.css
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
ASCII text, with very long lines (942), with no line terminators
Size
942 B (942 bytes)
Hash
319e4a3d5a451879646b6bdaf99d99a0
c40de09d3af40738dcebde8648d5f963b70bd8ed
e04cf01d64608ffaf1539847f9dcdb4d14d150f5bc3c3e4a9210aed6aa5bd403

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/css/f88323be2dd5545387e0.css HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: text/css
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"3ae-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N%2F7Yl1s2cZnhEEk%2FCZb7Ic2AaeKFuxmiALHb%2B86tST24CijeuUNOkTo86pgM%2Fww%2BiuYi5kqfd%2Bsi9IY9MtBoGwaECt6Ksyu93qAivuSCKGplGKIJqBLKHaTtej5lAOpprJJhXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64295756a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/css/8de660defdba7337638b.css

172.67.206.8

200 OK

1.8 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/css/8de660defdba7337638b.css
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
ASCII text, with very long lines (1833), with no line terminators
Size
1.8 kB (1833 bytes)
Hash
d7cfbf715e4906db773f49f9876d1dbc
51593b023939f831237b6e5daaf8f67affe1b916
b03f42d0ae6b47dae8dbbfbecefc13a7400aea927446cbb87f85a7e016e84e4e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/css/8de660defdba7337638b.css HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: text/css
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"729-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GHRtPI62e4vRiqNVIIbJMK4ZxbwBcKdM9mhbPfSeHBfqvhj5pOwidO47RqnHLynlTbnnNBp2Fo1ZUCfCwXoG2XQ9SklKif8jFs6TU5Zp178hNNtpsjv2kYf7fen5iMUq1CzHZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64295a56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/css/a1e3320ce3cee7a18e6f.css

172.67.206.8

200 OK

2.0 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/css/a1e3320ce3cee7a18e6f.css
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
ASCII text, with very long lines (1974), with no line terminators
Size
2.0 kB (1974 bytes)
Hash
f372cb7aa5b1ba28785d753f8ef8026e
a09c387344121a35679025a28431ada72f22dc3e
a1a686d4d6d807cfa3c3d6723716f714c0ea3a70259f4bfa459b9e4befc940c5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/css/a1e3320ce3cee7a18e6f.css HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: text/css
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"7b6-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dQn%2Fv4c33uYvcXRSHhrmHCeTOwZYUesQ3WSy%2BSCYEdaW0YQzUfHF61q2Q185WM3fKtsfd62vu%2FkuBNwe%2Bi7FwDUr2zSwo6DdWkSRulfsc3%2BFuwiYDaNS%2F%2FRGterzPomHyW8Rsw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64396656a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/chunks/pages/index-1504a916cf6dc2fb6bd7.js

172.67.206.8

200 OK

15 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/chunks/pages/index-1504a916cf6dc2fb6bd7.js
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
JavaScript source, ASCII text, with very long lines (14666), with no line terminators
Size
15 kB (14666 bytes)
Hash
688baa4b96573187142ef360e5545158
2b1825a06f3de91ad6bf04c0a32b327a8b883a59
46f86dd39cb435b9ebfc93fb799c0a0922ebe34aaa84d407f98b8ab9c4eb6f13

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/pages/index-1504a916cf6dc2fb6bd7.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"394a-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NPTHsHnqaGMhJcgpG3gpANr0d3x4C2yX1P1disn7Y3k6%2FhvpTUqTcDlrZPyU%2FtW6AwjkhF8%2F149ow6AbXz7JCg9LU5O2Q5G3O23czUGPm%2FNos9YsjHgH%2F70LN5WukVzLdiJEpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64499256a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

172.67.206.8

200 OK

1.2 kB

URL GET HTTP/3
fireshieldnow.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
HTML document, ASCII text, with very long lines (1271), with no line terminators
Size
1.2 kB (1239 bytes)
Hash
40d981045a7516cdadd00e8dccc9c58d
8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3
71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 15:20:25 GMT
etag: W/"66310c39-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RMiCsrAlp%2FxfQX4XDzcM9ETFDHHlzupisZwINQJVLNODtUc57rXocD%2BshP3MGoJ6dgLnVj5W7Kk6Mriy7TlG9sk4%2FtA2tXqmERcIkXYCAtOO4fl%2B6FmmeWhXPyGoAg6D8OUhSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ef8a68bed056a2-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Tue, 07 May 2024 09:00:31 GMT
cache-control: max-age=172800, public
content-encoding: gzip

fireshieldnow.com/_next/static/css/c5cb51e8358a02c78af1.css

172.67.206.8

200 OK

2.9 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/css/c5cb51e8358a02c78af1.css
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
ASCII text, with very long lines (2948), with no line terminators
Size
2.9 kB (2948 bytes)
Hash
88edbc17bc7e858e10d1add23e3aceb1
f67d77ae371f445c70b49d96c347278e4c0ba536
4f87afdd2b30091bcfbb3ffd762616683534822ec62f28e7b5aedce6bf4c023e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/css/c5cb51e8358a02c78af1.css HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: text/css
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"b84-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0PLsMdMbtTvUqoJqRRP4l8maTtzx%2Fqf7wSEUV0LNX3ElWMFdG7PjPxAnPSWhYWCsYDp8VF%2BP%2Fyg37CsBSYVcT1%2FMavEUAOVGePFRS2KXWtjrfuRA6yU88VzrYxAGUy8KiLlEbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64295c56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/chunks/565.20038dae5a7073c2a4fd.js

172.67.206.8

200 OK

5.8 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/chunks/565.20038dae5a7073c2a4fd.js
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
JavaScript source, ASCII text, with very long lines (6005), with no line terminators
Size
5.8 kB (5829 bytes)
Hash
261581f5480f0a62787bcf0e3b253778
971b941b446d20dc9f9d52da2476242830838ee7
a20a71b21bd52712ed9729ab35da4532898150030a645497fd2423021a72d0ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/565.20038dae5a7073c2a4fd.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"16c5-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Suxuec2fcsTldO%2BJbXVaIurmkV3TPM3VEN5EyC%2F6O0ZlmiU4Yxy7RYRZzi8NfQNTQXOVf5QmU1dctvHCddXd9SR15Jv9HSlTeA1w1wK5QTsokZnnFemuQSGFMNdqQdJ6%2Bvo0sw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64397e56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/chunks/webpack-2c40b5d5dfbcbcc2c843.js

172.67.206.8

200 OK

4.6 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/chunks/webpack-2c40b5d5dfbcbcc2c843.js
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
JavaScript source, ASCII text, with very long lines (4720), with no line terminators
Size
4.6 kB (4590 bytes)
Hash
a9ca18ff78e89e212bc7059c39b35d4a
1c8a35018a38304607fc1e7a7712618b25a97cb8
edd6f92a038e17e6f69552b4cd19c73c8c5854475a29a3982c4ac8a05fbc7f48

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/webpack-2c40b5d5dfbcbcc2c843.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"11ee-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9H7c%2BO0t5dmWN2biHBxqXqy9QRkk89BRnrymSKfcT%2BIVKLFjrFr4CF4n0yvSpiT40ZDOI9Bzs8lPq93GsDWrS8ORxQmsiD8J04glgd1ejM2JUXLQRDPIIkn3%2BpkAqkoFTJ6Pdg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64398256a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/css/1d96318c3f7b24be0110.css

172.67.206.8

200 OK

2.5 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/css/1d96318c3f7b24be0110.css
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
ASCII text, with very long lines (2452), with no line terminators
Size
2.5 kB (2452 bytes)
Hash
08c9214f00d6066244cb9e1c26e7355d
dc52efae7905de2c2e80930ec3eadd968140a816
3724f0a73ff6c5b0116297436fdb83c40374c024d559862358ba406c95895789

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/css/1d96318c3f7b24be0110.css HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: text/css
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"994-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yshnvuleHjEXLDVODPPlFFjmmdLzSTEa9VWfljX2DZ6mD5S0%2FdiS6uvW5bSJ8i4B%2FEeBAIFkRlwcO%2BWR4NkrdyXT0YwbMNoe70F6w3x4JRCQ%2B0Bxa09UsNzLKlolyKvOXjcBtg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64295856a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/chunks/commons.3db8219e7ef9bf179bbf.js

172.67.206.8

200 OK

12 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/chunks/commons.3db8219e7ef9bf179bbf.js
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
JavaScript source, ASCII text, with very long lines (11589), with no line terminators
Size
12 kB (11589 bytes)
Hash
46abfed0246e99587d97efd4a5209f47
39174bbf408134cd383a2db8aa577d774f299d84
64de7b8c49bfe866fefcf4077f498c7c5c83b41cb3ca7fcc119588febb35d00b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/commons.3db8219e7ef9bf179bbf.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"2d45-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0RFSPbGkoRL3jMKebL93%2Fd6XzIH%2B%2FSOo2Y3z1k0i5ooNK%2F3eerLFy1zsTRnwAogYrAKNW0hh1OzZnq96tixMlDKAD71OHwwOCMPx33ZpwADPvHvK6O%2FNKCK0lC%2Fm7t0u%2FaG%2FBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64396956a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/chunks/92.e2f3b1e7ef81902148db.js

172.67.206.8

200 OK

5.8 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/chunks/92.e2f3b1e7ef81902148db.js
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
JavaScript source, ASCII text, with very long lines (5963), with no line terminators
Size
5.8 kB (5761 bytes)
Hash
84d32422e8bb0cbb113ea2693e693fa8
04cbc8134b9da73a0ed7f004a685e071eb1d71d1
7c822cb5f6ff5fb6aac1bd74a51825910204a10c35256f2c2b638ab47e3de500

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/92.e2f3b1e7ef81902148db.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"1681-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dtSNq8wWHN2p0fr9ENVneyD1JNI0koa9OL%2BlI%2FzHyNvD1%2FkuCdTRQ%2F6PeVkUKlhzbbocbeHOqyQjJd%2BSZOzXIdSXNMtPPPZtpkyDaWR51zVunkvGqc3dsZLxZYLL5gHcpetx5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64397b56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/6irn5R4IRtyhvhmMs_ENx/_buildManifest.js

172.67.206.8

200 OK

290 B

URL GET HTTP/3
fireshieldnow.com/_next/static/6irn5R4IRtyhvhmMs_ENx/_buildManifest.js
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
ASCII text, with very long lines (304), with no line terminators
Size
290 B (290 bytes)
Hash
aaa76aa28d2d3d48fae664be4008f3f2
8aea687a7652ca91b573bc73c907bd12efb999ad
1b2c396a3cae793217b266d6ecd387f2d27e3ba91c7d122cf2b3a7f00cce5ac9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/6irn5R4IRtyhvhmMs_ENx/_buildManifest.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"122-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1LR15mt0NMxDKOmD9r%2FxZRiSgIiqKHAO2JD0rSlA8ScwlaLVmumlzmLrq%2FsyHnveL5PWQdsSL0%2FZXPBq5CqAS1I%2Fb6W34L7L8%2B8LBvHZYMx4Kz7YutOp%2B6wUzZaWwjU0HTaGVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64499656a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/css/4cd98867de4e10baac50.css

172.67.206.8

200 OK

6.3 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/css/4cd98867de4e10baac50.css
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
ASCII text, with very long lines (6275), with no line terminators
Size
6.3 kB (6271 bytes)
Hash
79ff6492e2582bf38cfae1fac9d55225
7582502b31741d42652053f8aca15377669bf8fa
8dd3cb074ab67425a6d85c34f65adb7172e228c45377a50074af07cbfb240bf5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/css/4cd98867de4e10baac50.css HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: text/css
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"187f-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m4UZuai2Ld50IDZ60uUfVpa%2FlPPT6J%2Fqo%2F12Cf5ufuzMZSuhnfqPgCoOf1Bk5fVtATxJm73834usCEwHkuTCZTrLOMJNg4waPRUgi2VazRa6V5IanpP7Yv9eml8EAraejfIpyA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64295e56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/chunks/832.ee1ff957f29ad42be271.js

172.67.206.8

200 OK

270 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/chunks/832.ee1ff957f29ad42be271.js
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
270 kB (270336 bytes)
Hash
f440eceac98b3d7c2b75607b3688796e
c17c8598665d07e44ea10e059be7228fc8563c0b
507b424fa019093ec0c39cf9e6a29ed93dd559b01db6645711126a85fc88b1f1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/832.ee1ff957f29ad42be271.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"42000-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Buak4IMZs0O4974mavScQakKtRklL4YEa3%2F0%2FAF08uSIVoA5Ffnd4zBfWuKUX4iRDhlcDle38bqmQab9YNHQxtjA%2F7b53YxLxqx%2F4CEjqzEcFwY6yaBiV00YjA%2BJEEiQOn51zQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64396d56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/chunks/618.73b158461a2fef3f8a94.js

172.67.206.8

200 OK

138 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/chunks/618.73b158461a2fef3f8a94.js
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
138 kB (137590 bytes)
Hash
cc86ceb28b3a30f9f03d7b3f32152089
ddf3b40842b6a70375cb29234e8083ec127be1ef
2a52b781375d9e6f4f62a1c5b083fcd8b975e03c98cdbceb82f8b5f02164ea36

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/618.73b158461a2fef3f8a94.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"21976-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PmnXP1gPDMfO%2BDUbIhXz%2Bn%2FRLD7WV9FyhNoVZ97QI7fxMv5SU04Qt9ym9e6VSHf3ztOOidteDnPt3zaXMMV0eerlwWKy%2F6QOutMkjXu%2FpTTRK3i1z3CU3Pjqdytwvv8j0HqWXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64397856a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/chunks/framework-d23658296916ce920464.js

172.67.206.8

200 OK

131 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/chunks/framework-d23658296916ce920464.js
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
131 kB (130858 bytes)
Hash
19cef785788c877c861bb9558a0a9f9b
ef2696f52aa40d88b95a638ba6f79826f3ab05bc
f33e2aedaf9ecd6a4dabb9a549d6df40cf7b77e13656280ce02a4f4d087e739d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/framework-d23658296916ce920464.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"1ff2a-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ggsDKGggYeYLYjHGd%2Bph1qZKCSiU6wcHVcYmf6w9iN1qbFBdDWeCSZ7QwDqF8aQougMCIAusgh0EpAO0iPQAed05xun0FH5x3%2BYCccMC3fA3SxTjle0ZzuIfaZ0wKI%2BndC0uXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64398b56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/chunks/156.b8b85e48131aefd4174c.js

172.67.206.8

200 OK

1.0 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/chunks/156.b8b85e48131aefd4174c.js
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
JavaScript source, ASCII text, with very long lines (1053), with no line terminators
Size
1.0 kB (1011 bytes)
Hash
b09055cf88e9e2bae183f378ed647eea
429c7e0b0bbc46aa57d44c20b848f92d5a75e323
e06c2ccadb3b307b123cf602a6f0ea935c73dc20a4d0c84cbe780625177e92fa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/156.b8b85e48131aefd4174c.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"3f3-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jWbkJtZ7sfQpDh3iFjEbSQeeDC8nlBbr6BtWYqyKCqIGbu%2Bo3asGcMLDM8uchTJscDSGfeu2fgZkmY61iZ9odPRSw9wd0s5mam06g1k7iYYeoTVpZCrz1AsOv%2ByRDDAtbme%2BVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64397156a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/chunks/899.3e541c796ede38bf1f67.js

172.67.206.8

200 OK

420 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/chunks/899.3e541c796ede38bf1f67.js
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
420 kB (419759 bytes)
Hash
558ec2486d9e45cb3a7869d83571ec81
56c952a360e093921c3d867811fa8537f23d7ae2
afe14c7591ea22baee6ce1df903d4995843923fc2648f889d599c448f63046b2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/899.3e541c796ede38bf1f67.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"667af-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YAaizcwc7VTwjnSoMon7vURcDSqYu%2F2NLshjYVS5EIh1DiU%2FpHQpxtljDuQIKEdLekkT3ZUvA1gRbzmlSL%2Ff2id0j8oGH1uXdSAbBv577sqYgzVB17BNPV31%2FJa9bgVs4ghe5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64397456a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/chunks/430.5f27f14664ff1d8335c2.js

172.67.206.8

200 OK

100 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/chunks/430.5f27f14664ff1d8335c2.js
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
100 kB (99609 bytes)
Hash
6de2296d86eca928c72ec26afd60c092
966904a653e41062369b070832ddb9a64b9b58b7
59bc2817424faa26d2d293a031354bf64bc3180081db206eb6572caa3d74f3e1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/430.5f27f14664ff1d8335c2.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"18519-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BXAMaCl%2FuyD6uCpVSm0NHEgUWjE0xORCYJEvfrDEKQ%2BSw6TWb56IKD%2FQ7YR%2FtsqMQKzvUJJru05f6Kp8443%2BEm9xgR9h170QMnGZtX57WtBIJIuLlsmYMkL1EeXoLbRyflJ09A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64397656a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/chunks/main-a76b5552fbb06f190312.js

172.67.206.8

200 OK

63 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/chunks/main-a76b5552fbb06f190312.js
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
JavaScript source, ASCII text, with very long lines (62866), with no line terminators
Size
63 kB (62866 bytes)
Hash
a6e935f29971443cdca0782683bbb092
60c78e611fc8918a121ab027e3ef5406024f39fd
2a4c801d09ce366a82d1141f0f9b2be5374dfeb483f43e686a27ed13e742486b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/main-a76b5552fbb06f190312.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"f592-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=17OEem4RNALMvvC7AQRrmuPaTTfqGG69HSvqvrACMG85tP3TO9X0ABmIeBqj42EIpGZqRm7RP43Ien7hUbkEQrY7SalAQPyFe2UVTvxERySJT%2FocroWb60w1N6eCjtrZz0qdzw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64398c56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/chunks/pages/_app-c6b6a5439509a8fe41c5.js

172.67.206.8

200 OK

57 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/chunks/pages/_app-c6b6a5439509a8fe41c5.js
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
JavaScript source, ASCII text, with very long lines (57322), with no line terminators
Size
57 kB (57322 bytes)
Hash
87fff6c404c1ff72b1aac57b86014ecd
286c2cbeb3d61c3bfa33b9959828c04c4207ccdb
7231f4e3a86ed15e3d90e6a61ec908f822e848c54ec7df892b9f31ad214e4c45

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/pages/_app-c6b6a5439509a8fe41c5.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"dfea-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PpV2Lym%2Bf5nyGxofKl%2FvaCOKQGcV7NmqjJeYLUNf1URhKr9rLPPDkli0sK6tswHW%2FzOUdyfURwd8ouT0TXNDTw42A1eiIM1J6Yqrlomcd4%2B8Z4XOUJm%2FTBVjbXUxGoIPSHyF4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64498f56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/image/assets/png/users/user4.9f5527fb30ce2a778c34693bbc137ad2.png

172.67.206.8

200 OK

54 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/image/assets/png/users/user4.9f5527fb30ce2a778c34693bbc137ad2.png
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
PNG image data, 185 x 185, 8-bit/color RGBA, non-interlaced
Size
54 kB (53807 bytes)
Hash
1766bc83d14a916a8691b0370160e403
6a5af4422521b1f925c931bce8b4999e4b1aa894
0e87841e21daa3f55f9aa6cd02f6224245005f04845c75a2e223aa00df539900

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/image/assets/png/users/user4.9f5527fb30ce2a778c34693bbc137ad2.png HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: image/png
content-length: 53807
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: "d22f-5c9c3420542c0"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IF5AIyPWdkMZ4PbfIu6qln3uGrd556IBeKk8VRqIK7U4WI7LK4husecFMykf0r0QVPs%2FO%2BZAo44SQ4mvORLFKMyziwj%2BplBX7yoVnvNMvTdleiqk14ojJW%2BlUCZEgRHi9U5asA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ef8a66cca056a2-OSL
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/chunks/425.cdde8cbdf3baadbfd69d.js

172.67.206.8

200 OK

12 kB

URL GET HTTP/3
fireshieldnow.com/_next/static/chunks/425.cdde8cbdf3baadbfd69d.js
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
JavaScript source, ASCII text, with very long lines (11872), with no line terminators
Size
12 kB (11872 bytes)
Hash
7d6e08600e25fd94aacff7f89033f680
38c4d381c5662586cb7ad24d5921c136e81e6af0
8f6681dd38dc182f821404dadc5b108e7554dd9f1598783175095aab89d7476f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/425.cdde8cbdf3baadbfd69d.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"2e60-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NAH6AMmG18W%2B0T75H%2FJ4ijS%2BDsojYWQiWFkm2IaBrznLt3%2B9PE4%2BsivqXepcaozVM8davAPOpQkDcnKHHQSC0dRXUA6dc9EMCfdyGEvSJuZYrpn7uO%2B2yekQ0MWXtnp8ZJdOZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64396a56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fireshieldnow.com/_next/static/6irn5R4IRtyhvhmMs_ENx/_ssgManifest.js

172.67.206.8

200 OK

88 B

URL GET HTTP/3
fireshieldnow.com/_next/static/6irn5R4IRtyhvhmMs_ENx/_ssgManifest.js
IP
172.67.206.8:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fireshieldnow.com/
Certificate
IssuerLet's Encrypt
Subjectfireshieldnow.com
Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E
ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT

File type
ASCII text, with no line terminators
Size
88 B (88 bytes)
Hash
4562570cf7041fe1dfaadca46a774c4b
7d99465e80b051f640180161992548bf0f69f859
11f776b08c6614778a60671289fdf77af13fd9cc72c305fc4b6825750d527892

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/6irn5R4IRtyhvhmMs_ENx/_ssgManifest.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:09 GMT
etag: W/"58-5c9c34223c740-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ftS1FpOmZsc4zuP5wigmfRvm2xH%2BPoeAtHT5kFdJuc2Ut3oC06Jv4M4yNv1tbG3HUNioyi0OlJrq9Gsnyqe321IpwK5Ptmy0whRNTYAWQjMkUav%2B1QOzUWNs8KBtjLCbrAknjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64499856a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (17)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML