| | 172.67.203.243 | 302 Found | 143 B |
URL User Request GET HTTP/2IP172.67.203.243:443
CertificateIssuerLet's Encrypt Subjectthisfireshield.com FingerprintB1:11:D2:80:72:CC:C2:C6:6C:6B:B0:62:D7:23:A7:E8:68:75:FB:92 ValiditySat, 27 Apr 2024 23:15:06 GMT - Fri, 26 Jul 2024 23:15:05 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hashcb7b8f439b04c00f4a2d78160ddfee8d 9aa44b5d68f6359f10de0dcd24ea3e12548d9bd4 12755429beb15d5eb57eafa45b8dba326343dd099bf0552038694c3856e8860e
GET / HTTP/1.1
Host: get7.thisfireshield.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Sun, 05 May 2024 09:00:30 GMT
content-type: text/html
content-length: 143
location: https://fireshieldnow.com
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kDWIoPrn747BMwhyG5vOMND0Ket2div7WpNKOnWNQi5Fgkv%2FYDcIMKqZGkeiq8EhTHV8BfpDfyW9WyaBBmhPFDCE1e0pqBzVjq8wRnt0UxtcCE45jRjYJmFmAWcwHHv%2FLsZC84Q9FimhMA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ef8a6079f356ab-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fireshieldnow.com/_next/static/css/80e56246054d4640031b.css | 172.67.206.8 | 200 OK | 1.2 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/css/80e56246054d4640031b.css IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeASCII text, with very long lines (2097), with no line terminators Hash5998804c4214510cf83934169caa013a 8f361ec962489cc06dc2589a9290b7b5a7e25ec8 7ee8d8df95ad1a9c10067c068e3535be022eac9c7fe20482401e93bc71c11d0a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/css/80e56246054d4640031b.css HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: text/css
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"831-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vGZF2hZrNRyDvx%2BH08z7x1FFNQZlREPJqLYOy69DImV9ErfrSLwYe3ITSy5vCm%2Fgt9k%2BANE6OkCkfVUHXCXkvgVHUunZRJPN6DUt1mbjSwtJ%2B%2B1Il%2Fh0KJ2xcYeAXoRQd%2FImhg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64296356a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3iu4nwlxdu3cOWxw.woff2 | 216.58.207.227 | 200 OK | 12 kB |
URL GET HTTP/2fonts.gstatic.com/s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3iu4nwlxdu3cOWxw.woff2 IP216.58.207.227:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 12484, version 1.0 Hash0e56c745850adff92ba3f1bc66239547 e83a040d3df71326b0d95fa863c884f444b47c3b e5620b6fdc194c2b1e77eb54fcfd53e1d1685987a5af1e9d85c647489b87d794
GET /s/sourcesanspro/v14/6xKydSBYKcSV-LCoeQqfX1RYOo3iu4nwlxdu3cOWxw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fireshieldnow.com
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12484
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:06:11 GMT
expires: Fri, 02 May 2025 02:06:11 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Sep 2020 18:10:18 GMT
content-type: font/woff2
age: 284060
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/raleway/v22/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2 | 216.58.207.227 | 200 OK | 42 kB |
URL GET HTTP/2fonts.gstatic.com/s/raleway/v22/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2 IP216.58.207.227:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 42336, version 1.0 Hashfe744073b54b3ba4efbf59b75be93667 737e9cf2c8d55812d1b2290e2146a43e0cefa6c8 c640c6d4c7104b09736c8a8c26f666305963273ffcba78e63b7a06451461cc55
GET /s/raleway/v22/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fireshieldnow.com
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 42336
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 17:52:45 GMT
expires: Fri, 02 May 2025 17:52:45 GMT
cache-control: public, max-age=31536000
age: 227266
last-modified: Tue, 29 Jun 2021 19:44:26 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/sourcesanspro/v14/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7lujVj9w.woff2 | 216.58.207.227 | 200 OK | 13 kB |
URL GET HTTP/2fonts.gstatic.com/s/sourcesanspro/v14/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7lujVj9w.woff2 IP216.58.207.227:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 13324, version 1.0 Hashfbefd76e823b1848d7b0a267b2b46f05 e592e275aacf69b6e08bdf17657e20f08c465981 ecf76895be1cf9e8b3edb254030e9c9c1d8f3c2efc1f9dc7e04ceff29eccae9c
GET /s/sourcesanspro/v14/6xK3dSBYKcSV-LCoeQqfX1RYOo3qOK7lujVj9w.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fireshieldnow.com
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 11:50:17 GMT
expires: Sat, 03 May 2025 11:50:17 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Sep 2020 18:10:14 GMT
content-type: font/woff2
age: 162614
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/raleway/v22/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2 | 216.58.207.227 | 200 OK | 42 kB |
URL GET HTTP/2fonts.gstatic.com/s/raleway/v22/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2 IP216.58.207.227:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 42336, version 1.0 Hashfe744073b54b3ba4efbf59b75be93667 737e9cf2c8d55812d1b2290e2146a43e0cefa6c8 c640c6d4c7104b09736c8a8c26f666305963273ffcba78e63b7a06451461cc55
GET /s/raleway/v22/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fireshieldnow.com
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 42336
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 17:52:45 GMT
expires: Fri, 02 May 2025 17:52:45 GMT
cache-control: public, max-age=31536000
age: 227266
last-modified: Tue, 29 Jun 2021 19:44:26 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fireshieldnow.com/_next/static/image/assets/png/users/user2.8f75f32ae7c03ebdc8bc6f2f98a26bbc.png | 172.67.206.8 | 200 OK | 49 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/image/assets/png/users/user2.8f75f32ae7c03ebdc8bc6f2f98a26bbc.png IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typePNG image data, 185 x 185, 8-bit/color RGBA, non-interlaced Hashb980b046a5f3aef39a80c47e1dd50364 d318c06f81238d98efaa71842df3c793cfcdb911 bfd465f034dc8beaacec9dc2ffa92db1d94e4c1c9e19b10c5d6191107650abd0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/image/assets/png/users/user2.8f75f32ae7c03ebdc8bc6f2f98a26bbc.png HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: image/png
content-length: 49298
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: "c092-5c9c3420542c0"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d1e%2FkS%2F5SYhxQLO1ntf5tpWOLb7L582Lw4Qt4QydDmRZF9gsHbF%2F%2FezrrwAcds5R80H9nTfVWngi0fAAM%2FPIB74eFg3fpBKH%2BeedAjyq%2FPoV33dxHW%2FjMehvY41AuyaS1OSL6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ef8a66cc9056a2-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/raleway/v22/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2 | 216.58.207.227 | 200 OK | 42 kB |
URL GET HTTP/2fonts.gstatic.com/s/raleway/v22/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2 IP216.58.207.227:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 42336, version 1.0 Hashfe744073b54b3ba4efbf59b75be93667 737e9cf2c8d55812d1b2290e2146a43e0cefa6c8 c640c6d4c7104b09736c8a8c26f666305963273ffcba78e63b7a06451461cc55
GET /s/raleway/v22/1Ptug8zYS_SKggPNyC0IT4ttDfA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fireshieldnow.com
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 42336
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 17:52:45 GMT
expires: Fri, 02 May 2025 17:52:45 GMT
cache-control: public, max-age=31536000
age: 227266
last-modified: Tue, 29 Jun 2021 19:44:26 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fireshieldnow.com/_next/static/media/Group.7251426898b42ef0da48f0ebb6239a97.png | 172.67.206.8 | 200 OK | 138 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/media/Group.7251426898b42ef0da48f0ebb6239a97.png IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typePNG image data, 2344 x 3324, 8-bit/color RGBA, non-interlaced Size138 kB (138448 bytes) Hashce6716a2e3f3d35fdcf3ef8fbfff6bb0 7dc7958b9cedc98fe3d3976386cb12abbe544430 b6a5b9e166397d0dbf4fa27be208dd0edbad65c7dfc19a97f66cdbb7c0f570f7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/media/Group.7251426898b42ef0da48f0ebb6239a97.png HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/_next/static/css/c5cb51e8358a02c78af1.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: image/png
content-length: 138448
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: "21cd0-5c9c3420542c0"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a2h%2B9UKXH8ZQYKn%2BuwMnBaWCm6H50YKPzLDWy18H7V3rgPTEesczxENL6QJnAoxQ0P58n8%2F1e6rjWzDXOe%2BPOAtNDbmHdjBov96DNxfQ1LyP7DNl%2BwyMCEnICq7otU6XAosdhw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ef8a665c2156a2-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/css/9b7dd6282617e7f870a3.css | 172.67.206.8 | 200 OK | 54 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/css/9b7dd6282617e7f870a3.css IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeASCII text, with very long lines (1207), with no line terminators Hash17ae7c846aaf7f2699b26414afc4a716 013d0f170b678d775036d028d0acc69edcd19149 a6be2c1dfc0e885126e8d2e015a6c099f4b780e93d203855cd232f7f65d2bf74
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/css/9b7dd6282617e7f870a3.css HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: text/css
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"4b7-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dkR41qr7PAzmouv2r7wWtuE%2BGp1m6Y4dj7M4btBf99PpgLc9%2Fvj9u148CcSErMAInHYRQ9qIs9wTXeUG4HAkUw%2BCB00w3BM8xYJaA3c%2Fj9UP%2FYR4Zt6ZfiVG7j84gO%2Fj8u84Pg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64295956a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/image/assets/png/users/user1.6635ff8b9b70ef037f17781275558203.png | 172.67.206.8 | 200 OK | 55 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/image/assets/png/users/user1.6635ff8b9b70ef037f17781275558203.png IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typePNG image data, 185 x 185, 8-bit/color RGBA, non-interlaced Hash78f89f00eccc9a87a462c4b5e484bd06 f71b3cf82c298d992d95a18d23b3bb602208c612 ce5c3a43c1cf56b8de319a941b2c7c4bf37a0618458a620d405b95a1c1eca4e1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/image/assets/png/users/user1.6635ff8b9b70ef037f17781275558203.png HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: image/png
content-length: 55386
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: "d85a-5c9c3420542c0"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hzXCZL2PmfwbnCuagqo%2BcLQ1h6rbd8T5NTYd1s4UtDwGF%2B566Ej0KQ3DxfHQY3UBmTW9DqppOwVM3NfHZRRHltpfsXP%2BR55Onl%2F%2BTUP%2FDYr%2F6jN9Femlpk7GCW1B%2BKOA8%2FduPw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ef8a66cc8e56a2-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/image/assets/png/users/user3.d9573663c242f6edb5779808ca994362.png | 172.67.206.8 | 200 OK | 24 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/image/assets/png/users/user3.d9573663c242f6edb5779808ca994362.png IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typePNG image data, 185 x 185, 8-bit/color RGBA, non-interlaced Hashfbd8759ed54216bcb39fbbd6f0957720 1c78832e020943027343cd3baaf36e30f13b67e0 e830cb6974879c8b40485eb21f11a7eaaffb04fd561d74a25991352530863998
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/image/assets/png/users/user3.d9573663c242f6edb5779808ca994362.png HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: image/png
content-length: 24543
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: "5fdf-5c9c3420542c0"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QtHZlXx363y2aNsfAbkntAs1IGH8lt2%2BzvFU2CnjDFeo0xz0Jpp8PRBKBQyS%2B6fqzVi1tA48egnyIaXm2ETC6MA8y0z6CjO9qAE5IsVMTisUjleMmsjXvO0KqojTJ2x94U4hbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ef8a66cc9856a2-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/favicon.ico | 172.67.206.8 | 200 OK | 11 kB |
URL GET HTTP/3fireshieldnow.com/favicon.ico IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeMS Windows icon resource - 3 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel Hash5d70729f5c3699eef4efefc3d6e9ce0a 35927ca178451cb50e802e2984cbfd3c4f090d96 23bbc616088b32bb25b483f2194873f4e961c850212a8ba4227edc3318bd9c99
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:32 GMT
content-type: image/vnd.microsoft.icon
last-modified: Thu, 19 Aug 2021 04:49:30 GMT
etag: W/"3c2e-5c9e246baea80"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=o2lzCdKfGxsbZRe1cBEgbSF3%2BCEbTpM%2BY4oPCn9XNERyEbOaiPCwKshHB8nscRLxXhn%2FMnmIovNksApHSkPFmIQ0yc%2Bs%2BNbTPNSuJwCxE0Wx0XdIPYIfMgwnmrfA7eEjPLPDvA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ef8a6af92456a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| | 172.67.206.8 | 200 OK | 885 kB |
URL User Request GET HTTP/2IP172.67.206.8:443
CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
Size885 kB (885108 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Sun, 05 May 2024 09:00:30 GMT
content-type: text/html
last-modified: Thu, 04 Nov 2021 10:14:51 GMT
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Iewcl4iAdTrKFdx5EofCYIDILuVFnjGZ8ovjRd%2BGLQf1SWyF4xZrMMSjkWfUCZQW0i47wsehxPVq7tbrJrZwPnr28wCZgDbX0de9W5j7%2B2UPufiYDse9H1r4QkSu945rBapnBw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a60fd6f56c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fireshieldnow.com/_next/static/css/f88323be2dd5545387e0.css | 172.67.206.8 | 200 OK | 942 B |
URL GET HTTP/3fireshieldnow.com/_next/static/css/f88323be2dd5545387e0.css IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeASCII text, with very long lines (942), with no line terminators Hash319e4a3d5a451879646b6bdaf99d99a0 c40de09d3af40738dcebde8648d5f963b70bd8ed e04cf01d64608ffaf1539847f9dcdb4d14d150f5bc3c3e4a9210aed6aa5bd403
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/css/f88323be2dd5545387e0.css HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: text/css
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"3ae-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N%2F7Yl1s2cZnhEEk%2FCZb7Ic2AaeKFuxmiALHb%2B86tST24CijeuUNOkTo86pgM%2Fww%2BiuYi5kqfd%2Bsi9IY9MtBoGwaECt6Ksyu93qAivuSCKGplGKIJqBLKHaTtej5lAOpprJJhXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64295756a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/css/8de660defdba7337638b.css | 172.67.206.8 | 200 OK | 1.8 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/css/8de660defdba7337638b.css IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeASCII text, with very long lines (1833), with no line terminators Hashd7cfbf715e4906db773f49f9876d1dbc 51593b023939f831237b6e5daaf8f67affe1b916 b03f42d0ae6b47dae8dbbfbecefc13a7400aea927446cbb87f85a7e016e84e4e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/css/8de660defdba7337638b.css HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: text/css
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"729-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GHRtPI62e4vRiqNVIIbJMK4ZxbwBcKdM9mhbPfSeHBfqvhj5pOwidO47RqnHLynlTbnnNBp2Fo1ZUCfCwXoG2XQ9SklKif8jFs6TU5Zp178hNNtpsjv2kYf7fen5iMUq1CzHZg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64295a56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/css/a1e3320ce3cee7a18e6f.css | 172.67.206.8 | 200 OK | 2.0 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/css/a1e3320ce3cee7a18e6f.css IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeASCII text, with very long lines (1974), with no line terminators Hashf372cb7aa5b1ba28785d753f8ef8026e a09c387344121a35679025a28431ada72f22dc3e a1a686d4d6d807cfa3c3d6723716f714c0ea3a70259f4bfa459b9e4befc940c5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/css/a1e3320ce3cee7a18e6f.css HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: text/css
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"7b6-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dQn%2Fv4c33uYvcXRSHhrmHCeTOwZYUesQ3WSy%2BSCYEdaW0YQzUfHF61q2Q185WM3fKtsfd62vu%2FkuBNwe%2Bi7FwDUr2zSwo6DdWkSRulfsc3%2BFuwiYDaNS%2F%2FRGterzPomHyW8Rsw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64396656a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/chunks/pages/index-1504a916cf6dc2fb6bd7.js | 172.67.206.8 | 200 OK | 15 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/chunks/pages/index-1504a916cf6dc2fb6bd7.js IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeJavaScript source, ASCII text, with very long lines (14666), with no line terminators Hash688baa4b96573187142ef360e5545158 2b1825a06f3de91ad6bf04c0a32b327a8b883a59 46f86dd39cb435b9ebfc93fb799c0a0922ebe34aaa84d407f98b8ab9c4eb6f13
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/pages/index-1504a916cf6dc2fb6bd7.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"394a-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NPTHsHnqaGMhJcgpG3gpANr0d3x4C2yX1P1disn7Y3k6%2FhvpTUqTcDlrZPyU%2FtW6AwjkhF8%2F149ow6AbXz7JCg9LU5O2Q5G3O23czUGPm%2FNos9YsjHgH%2F70LN5WukVzLdiJEpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64499256a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js | 172.67.206.8 | 200 OK | 1.2 kB |
URL GET HTTP/3fireshieldnow.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeHTML document, ASCII text, with very long lines (1271), with no line terminators Hash40d981045a7516cdadd00e8dccc9c58d 8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3 71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 30 Apr 2024 15:20:25 GMT
etag: W/"66310c39-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RMiCsrAlp%2FxfQX4XDzcM9ETFDHHlzupisZwINQJVLNODtUc57rXocD%2BshP3MGoJ6dgLnVj5W7Kk6Mriy7TlG9sk4%2FtA2tXqmERcIkXYCAtOO4fl%2B6FmmeWhXPyGoAg6D8OUhSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ef8a68bed056a2-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Tue, 07 May 2024 09:00:31 GMT
cache-control: max-age=172800, public
content-encoding: gzip
|
|
| fireshieldnow.com/_next/static/css/c5cb51e8358a02c78af1.css | 172.67.206.8 | 200 OK | 2.9 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/css/c5cb51e8358a02c78af1.css IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeASCII text, with very long lines (2948), with no line terminators Hash88edbc17bc7e858e10d1add23e3aceb1 f67d77ae371f445c70b49d96c347278e4c0ba536 4f87afdd2b30091bcfbb3ffd762616683534822ec62f28e7b5aedce6bf4c023e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/css/c5cb51e8358a02c78af1.css HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: text/css
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"b84-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0PLsMdMbtTvUqoJqRRP4l8maTtzx%2Fqf7wSEUV0LNX3ElWMFdG7PjPxAnPSWhYWCsYDp8VF%2BP%2Fyg37CsBSYVcT1%2FMavEUAOVGePFRS2KXWtjrfuRA6yU88VzrYxAGUy8KiLlEbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64295c56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/chunks/565.20038dae5a7073c2a4fd.js | 172.67.206.8 | 200 OK | 5.8 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/chunks/565.20038dae5a7073c2a4fd.js IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeJavaScript source, ASCII text, with very long lines (6005), with no line terminators Hash261581f5480f0a62787bcf0e3b253778 971b941b446d20dc9f9d52da2476242830838ee7 a20a71b21bd52712ed9729ab35da4532898150030a645497fd2423021a72d0ed
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/565.20038dae5a7073c2a4fd.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"16c5-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Suxuec2fcsTldO%2BJbXVaIurmkV3TPM3VEN5EyC%2F6O0ZlmiU4Yxy7RYRZzi8NfQNTQXOVf5QmU1dctvHCddXd9SR15Jv9HSlTeA1w1wK5QTsokZnnFemuQSGFMNdqQdJ6%2Bvo0sw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64397e56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/chunks/webpack-2c40b5d5dfbcbcc2c843.js | 172.67.206.8 | 200 OK | 4.6 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/chunks/webpack-2c40b5d5dfbcbcc2c843.js IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeJavaScript source, ASCII text, with very long lines (4720), with no line terminators Hasha9ca18ff78e89e212bc7059c39b35d4a 1c8a35018a38304607fc1e7a7712618b25a97cb8 edd6f92a038e17e6f69552b4cd19c73c8c5854475a29a3982c4ac8a05fbc7f48
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/webpack-2c40b5d5dfbcbcc2c843.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"11ee-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9H7c%2BO0t5dmWN2biHBxqXqy9QRkk89BRnrymSKfcT%2BIVKLFjrFr4CF4n0yvSpiT40ZDOI9Bzs8lPq93GsDWrS8ORxQmsiD8J04glgd1ejM2JUXLQRDPIIkn3%2BpkAqkoFTJ6Pdg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64398256a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/css/1d96318c3f7b24be0110.css | 172.67.206.8 | 200 OK | 2.5 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/css/1d96318c3f7b24be0110.css IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeASCII text, with very long lines (2452), with no line terminators Hash08c9214f00d6066244cb9e1c26e7355d dc52efae7905de2c2e80930ec3eadd968140a816 3724f0a73ff6c5b0116297436fdb83c40374c024d559862358ba406c95895789
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/css/1d96318c3f7b24be0110.css HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: text/css
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"994-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yshnvuleHjEXLDVODPPlFFjmmdLzSTEa9VWfljX2DZ6mD5S0%2FdiS6uvW5bSJ8i4B%2FEeBAIFkRlwcO%2BWR4NkrdyXT0YwbMNoe70F6w3x4JRCQ%2B0Bxa09UsNzLKlolyKvOXjcBtg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64295856a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/chunks/commons.3db8219e7ef9bf179bbf.js | 172.67.206.8 | 200 OK | 12 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/chunks/commons.3db8219e7ef9bf179bbf.js IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeJavaScript source, ASCII text, with very long lines (11589), with no line terminators Hash46abfed0246e99587d97efd4a5209f47 39174bbf408134cd383a2db8aa577d774f299d84 64de7b8c49bfe866fefcf4077f498c7c5c83b41cb3ca7fcc119588febb35d00b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/commons.3db8219e7ef9bf179bbf.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"2d45-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0RFSPbGkoRL3jMKebL93%2Fd6XzIH%2B%2FSOo2Y3z1k0i5ooNK%2F3eerLFy1zsTRnwAogYrAKNW0hh1OzZnq96tixMlDKAD71OHwwOCMPx33ZpwADPvHvK6O%2FNKCK0lC%2Fm7t0u%2FaG%2FBA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64396956a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/chunks/92.e2f3b1e7ef81902148db.js | 172.67.206.8 | 200 OK | 5.8 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/chunks/92.e2f3b1e7ef81902148db.js IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeJavaScript source, ASCII text, with very long lines (5963), with no line terminators Hash84d32422e8bb0cbb113ea2693e693fa8 04cbc8134b9da73a0ed7f004a685e071eb1d71d1 7c822cb5f6ff5fb6aac1bd74a51825910204a10c35256f2c2b638ab47e3de500
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/92.e2f3b1e7ef81902148db.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"1681-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dtSNq8wWHN2p0fr9ENVneyD1JNI0koa9OL%2BlI%2FzHyNvD1%2FkuCdTRQ%2F6PeVkUKlhzbbocbeHOqyQjJd%2BSZOzXIdSXNMtPPPZtpkyDaWR51zVunkvGqc3dsZLxZYLL5gHcpetx5w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64397b56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/6irn5R4IRtyhvhmMs_ENx/_buildManifest.js | 172.67.206.8 | 200 OK | 290 B |
URL GET HTTP/3fireshieldnow.com/_next/static/6irn5R4IRtyhvhmMs_ENx/_buildManifest.js IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeASCII text, with very long lines (304), with no line terminators Hashaaa76aa28d2d3d48fae664be4008f3f2 8aea687a7652ca91b573bc73c907bd12efb999ad 1b2c396a3cae793217b266d6ecd387f2d27e3ba91c7d122cf2b3a7f00cce5ac9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/6irn5R4IRtyhvhmMs_ENx/_buildManifest.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"122-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1LR15mt0NMxDKOmD9r%2FxZRiSgIiqKHAO2JD0rSlA8ScwlaLVmumlzmLrq%2FsyHnveL5PWQdsSL0%2FZXPBq5CqAS1I%2Fb6W34L7L8%2B8LBvHZYMx4Kz7YutOp%2B6wUzZaWwjU0HTaGVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64499656a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/css/4cd98867de4e10baac50.css | 172.67.206.8 | 200 OK | 6.3 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/css/4cd98867de4e10baac50.css IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeASCII text, with very long lines (6275), with no line terminators Hash79ff6492e2582bf38cfae1fac9d55225 7582502b31741d42652053f8aca15377669bf8fa 8dd3cb074ab67425a6d85c34f65adb7172e228c45377a50074af07cbfb240bf5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/css/4cd98867de4e10baac50.css HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: text/css
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"187f-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m4UZuai2Ld50IDZ60uUfVpa%2FlPPT6J%2Fqo%2F12Cf5ufuzMZSuhnfqPgCoOf1Bk5fVtATxJm73834usCEwHkuTCZTrLOMJNg4waPRUgi2VazRa6V5IanpP7Yv9eml8EAraejfIpyA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64295e56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/chunks/832.ee1ff957f29ad42be271.js | 172.67.206.8 | 200 OK | 270 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/chunks/832.ee1ff957f29ad42be271.js IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size270 kB (270336 bytes) Hashf440eceac98b3d7c2b75607b3688796e c17c8598665d07e44ea10e059be7228fc8563c0b 507b424fa019093ec0c39cf9e6a29ed93dd559b01db6645711126a85fc88b1f1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/832.ee1ff957f29ad42be271.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"42000-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Buak4IMZs0O4974mavScQakKtRklL4YEa3%2F0%2FAF08uSIVoA5Ffnd4zBfWuKUX4iRDhlcDle38bqmQab9YNHQxtjA%2F7b53YxLxqx%2F4CEjqzEcFwY6yaBiV00YjA%2BJEEiQOn51zQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64396d56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/chunks/618.73b158461a2fef3f8a94.js | 172.67.206.8 | 200 OK | 138 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/chunks/618.73b158461a2fef3f8a94.js IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size138 kB (137590 bytes) Hashcc86ceb28b3a30f9f03d7b3f32152089 ddf3b40842b6a70375cb29234e8083ec127be1ef 2a52b781375d9e6f4f62a1c5b083fcd8b975e03c98cdbceb82f8b5f02164ea36
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/618.73b158461a2fef3f8a94.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"21976-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PmnXP1gPDMfO%2BDUbIhXz%2Bn%2FRLD7WV9FyhNoVZ97QI7fxMv5SU04Qt9ym9e6VSHf3ztOOidteDnPt3zaXMMV0eerlwWKy%2F6QOutMkjXu%2FpTTRK3i1z3CU3Pjqdytwvv8j0HqWXQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64397856a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/chunks/framework-d23658296916ce920464.js | 172.67.206.8 | 200 OK | 131 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/chunks/framework-d23658296916ce920464.js IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size131 kB (130858 bytes) Hash19cef785788c877c861bb9558a0a9f9b ef2696f52aa40d88b95a638ba6f79826f3ab05bc f33e2aedaf9ecd6a4dabb9a549d6df40cf7b77e13656280ce02a4f4d087e739d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/framework-d23658296916ce920464.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"1ff2a-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ggsDKGggYeYLYjHGd%2Bph1qZKCSiU6wcHVcYmf6w9iN1qbFBdDWeCSZ7QwDqF8aQougMCIAusgh0EpAO0iPQAed05xun0FH5x3%2BYCccMC3fA3SxTjle0ZzuIfaZ0wKI%2BndC0uXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64398b56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/chunks/156.b8b85e48131aefd4174c.js | 172.67.206.8 | 200 OK | 1.0 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/chunks/156.b8b85e48131aefd4174c.js IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeJavaScript source, ASCII text, with very long lines (1053), with no line terminators Hashb09055cf88e9e2bae183f378ed647eea 429c7e0b0bbc46aa57d44c20b848f92d5a75e323 e06c2ccadb3b307b123cf602a6f0ea935c73dc20a4d0c84cbe780625177e92fa
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/156.b8b85e48131aefd4174c.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"3f3-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jWbkJtZ7sfQpDh3iFjEbSQeeDC8nlBbr6BtWYqyKCqIGbu%2Bo3asGcMLDM8uchTJscDSGfeu2fgZkmY61iZ9odPRSw9wd0s5mam06g1k7iYYeoTVpZCrz1AsOv%2ByRDDAtbme%2BVg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64397156a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/chunks/899.3e541c796ede38bf1f67.js | 172.67.206.8 | 200 OK | 420 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/chunks/899.3e541c796ede38bf1f67.js IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Size420 kB (419759 bytes) Hash558ec2486d9e45cb3a7869d83571ec81 56c952a360e093921c3d867811fa8537f23d7ae2 afe14c7591ea22baee6ce1df903d4995843923fc2648f889d599c448f63046b2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/899.3e541c796ede38bf1f67.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"667af-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=YAaizcwc7VTwjnSoMon7vURcDSqYu%2F2NLshjYVS5EIh1DiU%2FpHQpxtljDuQIKEdLekkT3ZUvA1gRbzmlSL%2Ff2id0j8oGH1uXdSAbBv577sqYgzVB17BNPV31%2FJa9bgVs4ghe5g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64397456a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/chunks/430.5f27f14664ff1d8335c2.js | 172.67.206.8 | 200 OK | 100 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/chunks/430.5f27f14664ff1d8335c2.js IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hash6de2296d86eca928c72ec26afd60c092 966904a653e41062369b070832ddb9a64b9b58b7 59bc2817424faa26d2d293a031354bf64bc3180081db206eb6572caa3d74f3e1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/430.5f27f14664ff1d8335c2.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"18519-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BXAMaCl%2FuyD6uCpVSm0NHEgUWjE0xORCYJEvfrDEKQ%2BSw6TWb56IKD%2FQ7YR%2FtsqMQKzvUJJru05f6Kp8443%2BEm9xgR9h170QMnGZtX57WtBIJIuLlsmYMkL1EeXoLbRyflJ09A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64397656a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/chunks/main-a76b5552fbb06f190312.js | 172.67.206.8 | 200 OK | 63 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/chunks/main-a76b5552fbb06f190312.js IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeJavaScript source, ASCII text, with very long lines (62866), with no line terminators Hasha6e935f29971443cdca0782683bbb092 60c78e611fc8918a121ab027e3ef5406024f39fd 2a4c801d09ce366a82d1141f0f9b2be5374dfeb483f43e686a27ed13e742486b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/main-a76b5552fbb06f190312.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"f592-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=17OEem4RNALMvvC7AQRrmuPaTTfqGG69HSvqvrACMG85tP3TO9X0ABmIeBqj42EIpGZqRm7RP43Ien7hUbkEQrY7SalAQPyFe2UVTvxERySJT%2FocroWb60w1N6eCjtrZz0qdzw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64398c56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/chunks/pages/_app-c6b6a5439509a8fe41c5.js | 172.67.206.8 | 200 OK | 57 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/chunks/pages/_app-c6b6a5439509a8fe41c5.js IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeJavaScript source, ASCII text, with very long lines (57322), with no line terminators Hash87fff6c404c1ff72b1aac57b86014ecd 286c2cbeb3d61c3bfa33b9959828c04c4207ccdb 7231f4e3a86ed15e3d90e6a61ec908f822e848c54ec7df892b9f31ad214e4c45
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/pages/_app-c6b6a5439509a8fe41c5.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"dfea-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PpV2Lym%2Bf5nyGxofKl%2FvaCOKQGcV7NmqjJeYLUNf1URhKr9rLPPDkli0sK6tswHW%2FzOUdyfURwd8ouT0TXNDTw42A1eiIM1J6Yqrlomcd4%2B8Z4XOUJm%2FTBVjbXUxGoIPSHyF4A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64498f56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/image/assets/png/users/user4.9f5527fb30ce2a778c34693bbc137ad2.png | 172.67.206.8 | 200 OK | 54 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/image/assets/png/users/user4.9f5527fb30ce2a778c34693bbc137ad2.png IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typePNG image data, 185 x 185, 8-bit/color RGBA, non-interlaced Hash1766bc83d14a916a8691b0370160e403 6a5af4422521b1f925c931bce8b4999e4b1aa894 0e87841e21daa3f55f9aa6cd02f6224245005f04845c75a2e223aa00df539900
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/image/assets/png/users/user4.9f5527fb30ce2a778c34693bbc137ad2.png HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: image/png
content-length: 53807
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: "d22f-5c9c3420542c0"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IF5AIyPWdkMZ4PbfIu6qln3uGrd556IBeKk8VRqIK7U4WI7LK4husecFMykf0r0QVPs%2FO%2BZAo44SQ4mvORLFKMyziwj%2BplBX7yoVnvNMvTdleiqk14ojJW%2BlUCZEgRHi9U5asA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87ef8a66cca056a2-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/chunks/425.cdde8cbdf3baadbfd69d.js | 172.67.206.8 | 200 OK | 12 kB |
URL GET HTTP/3fireshieldnow.com/_next/static/chunks/425.cdde8cbdf3baadbfd69d.js IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeJavaScript source, ASCII text, with very long lines (11872), with no line terminators Hash7d6e08600e25fd94aacff7f89033f680 38c4d381c5662586cb7ad24d5921c136e81e6af0 8f6681dd38dc182f821404dadc5b108e7554dd9f1598783175095aab89d7476f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/chunks/425.cdde8cbdf3baadbfd69d.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:07 GMT
etag: W/"2e60-5c9c3420542c0-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NAH6AMmG18W%2B0T75H%2FJ4ijS%2BDsojYWQiWFkm2IaBrznLt3%2B9PE4%2BsivqXepcaozVM8davAPOpQkDcnKHHQSC0dRXUA6dc9EMCfdyGEvSJuZYrpn7uO%2B2yekQ0MWXtnp8ZJdOZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64396a56a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fireshieldnow.com/_next/static/6irn5R4IRtyhvhmMs_ENx/_ssgManifest.js | 172.67.206.8 | 200 OK | 88 B |
URL GET HTTP/3fireshieldnow.com/_next/static/6irn5R4IRtyhvhmMs_ENx/_ssgManifest.js IP172.67.206.8:443
Requested byhttps://fireshieldnow.com/ CertificateIssuerLet's Encrypt Subjectfireshieldnow.com Fingerprint88:5E:3B:29:DC:A4:28:6F:DD:5F:04:86:AA:FD:3D:62:60:D5:10:1E ValidityTue, 16 Apr 2024 23:11:02 GMT - Mon, 15 Jul 2024 23:11:01 GMT
File typeASCII text, with no line terminators Hash4562570cf7041fe1dfaadca46a774c4b 7d99465e80b051f640180161992548bf0f69f859 11f776b08c6614778a60671289fdf77af13fd9cc72c305fc4b6825750d527892
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /_next/static/6irn5R4IRtyhvhmMs_ENx/_ssgManifest.js HTTP/1.1
Host: fireshieldnow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fireshieldnow.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Sun, 05 May 2024 09:00:31 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 15:49:09 GMT
etag: W/"58-5c9c34223c740-gzip"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ftS1FpOmZsc4zuP5wigmfRvm2xH%2BPoeAtHT5kFdJuc2Ut3oC06Jv4M4yNv1tbG3HUNioyi0OlJrq9Gsnyqe321IpwK5Ptmy0whRNTYAWQjMkUav%2B1QOzUWNs8KBtjLCbrAknjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87ef8a64499856a2-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|