Report - surl.li/sscpp

Report Overview

Submitted URL
surl.li/sscpp
IP
172.67.69.76
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-07 15:57:55
Access
public
Website Title
Discord
Final URL
discord.com/invite/sPYNCpZZQ8
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
46

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
js.hcaptcha.com	23463	2018-01-12	2021-07-30	2024-05-06	432 B	113 kB	104.18.124.91
127.0.0.1:6465	unknown	unknown	No data	No data	541 B	0 B	0.0.0.0
127.0.0.1:6469	unknown	unknown	No data	No data	541 B	0 B	0.0.0.0
127.0.0.1:6472	unknown	unknown	No data	No data	541 B	0 B	0.0.0.0
imgs3.hcaptcha.com	unknown	2018-01-12	2024-01-30	2024-05-07	8.0 kB	60 kB	104.18.124.91
discord.com	1053	2000-11-06	2013-06-04	2024-05-06	45 kB	8.5 MB	162.159.136.232
cdn.discordapp.com	2474	2015-02-26	2015-08-24	2024-05-06	481 B	2.9 kB	162.159.129.233
127.0.0.1:6467	unknown	unknown	No data	No data	541 B	0 B	0.0.0.0
www.google.com	7	1997-09-15	2015-05-10	2024-03-23	450 B	833 B	142.250.74.132
t1.gstatic.com	unknown	2008-02-11	2013-05-07	2024-05-06	508 B	1.2 kB	142.250.74.68
discord.gg	2169	2015-02-26	2015-05-18	2024-04-25	522 B	857 B	162.159.130.234
127.0.0.1:6471	unknown	unknown	No data	No data	541 B	0 B	0.0.0.0
127.0.0.1:6464	unknown	unknown	No data	No data	541 B	0 B	0.0.0.0
127.0.0.1:6466	unknown	unknown	No data	No data	541 B	0 B	0.0.0.0
127.0.0.1:6470	unknown	unknown	No data	No data	541 B	0 B	0.0.0.0
surl.li	unknown	unknown	2014-02-25	2024-04-18	15 kB	1.2 MB	104.26.5.19
newassets.hcaptcha.com	11055	2018-01-12	2021-03-22	2024-05-07	485 B	114 kB	104.18.124.91
127.0.0.1:6468	unknown	unknown	No data	No data	541 B	0 B	0.0.0.0
127.0.0.1:6463	unknown	unknown	No data	No data	541 B	0 B	0.0.0.0
web-screen.com	unknown	2022-08-29	2022-09-03	2024-03-21	484 B	67 kB	104.21.20.132

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-07	medium	surl.li	Sinkholed
2024-05-07	medium	surl.li	Sinkholed
2024-05-07	medium	surl.li	Sinkholed
2024-05-07	medium	surl.li	Sinkholed
2024-05-07	medium	surl.li	Sinkholed
2024-05-07	medium	surl.li	Sinkholed
2024-05-07	medium	surl.li	Sinkholed
2024-05-07	medium	surl.li	Sinkholed
2024-05-07	medium	127.0.0.1	Sinkholed
2024-05-07	medium	127.0.0.1	Sinkholed
2024-05-07	medium	surl.li	Sinkholed
2024-05-07	medium	surl.li	Sinkholed
2024-05-07	medium	127.0.0.1	Sinkholed
2024-05-07	medium	127.0.0.1	Sinkholed
2024-05-07	medium	surl.li	Sinkholed
2024-05-07	medium	127.0.0.1	Sinkholed
2024-05-07	medium	127.0.0.1	Sinkholed
2024-05-07	medium	127.0.0.1	Sinkholed
2024-05-07	medium	surl.li	Sinkholed
2024-05-07	medium	127.0.0.1	Sinkholed
2024-05-07	medium	127.0.0.1	Sinkholed
2024-05-07	medium	surl.li	Sinkholed
2024-05-07	medium	127.0.0.1	Sinkholed

ThreatFox

No alerts detected

JavaScript (42)

	URL	Size	First Seen	Last Seen
	discord.com/assets/71de7f66ef7270493156.js	5.9 kB	2024-04-28	2024-05-15
Pretty URL discord.com/assets/71de7f66ef7270493156.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-28 21:57:55 Last Seen2024-05-15 02:37:31 Times Seen69 Hash 4aa9b680596d500763ce1cab05f5624d 7529807f36393d5a6ede82787d6876a268dc8fe3 cf26e3c9714a89666b5cb7b71f0075a142792821d532fd48056acd22566b7500 Loading...

	discord.com/assets/62734.1842567f24c7a0ab79a3.js	6.6 kB	2024-03-28	2024-05-18
Pretty URL discord.com/assets/62734.1842567f24c7a0ab79a3.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-28 11:42:48 Last Seen2024-05-18 23:17:51 Times Seen231 Hash 8f057d6265ab1810d057be91abfe9c25 c109adf011f625b80ab59f678c576149ffbb5b44 9bf9e07245b1495ae4ac7923d79e955f78bfdc9f4521d6f67ca7b157a2ede878 Loading...

	discord.com/assets/sentry.765b00e66783ff42fca1.js	2.4 kB	2024-03-28	2024-05-18
Pretty URL discord.com/assets/sentry.765b00e66783ff42fca1.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-28 11:42:50 Last Seen2024-05-18 23:17:51 Times Seen212 Hash dcf481823510e7f0be5e5c9d70c1e7b1 b45d6470b90a575f4ed5078bd6c760f988a865ff 27e27dfaaec84315265317548309cfbe43888946ed1294e0db064a5e9e2d7770 Loading...

	discord.com/assets/079e1da8377cb2852bd8.js	15 kB	2024-05-03	2024-05-12
Pretty URL discord.com/assets/079e1da8377cb2852bd8.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 22:27:30 Last Seen2024-05-12 00:11:19 Times Seen47 Hash 44c6baae83cebd47c87f7ebacc709d07 fa5f226d537489af2c53f78fe596599eebac0359 449d06e1a6051c2ad2c2be9d33dc59559630d6a44e27c5bf3601106301d704ee Loading...

	discord.com/assets/43455.8c79ce3e1753b38de4a4.js	392 kB	2024-03-28	2024-05-18
Pretty URL discord.com/assets/43455.8c79ce3e1753b38de4a4.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-28 11:42:51 Last Seen2024-05-18 23:17:51 Times Seen221 Hash 1f92cda4f59b6888d2f16e6350e0dbdd a9007f9824de313135d43021d5743900ec3d4d2a 3688ac1c135343618fc14f4d9e5314064f4b76856b96c17eb34dcee6544cafc4 Loading...

	discord.com/assets/ae110c08cf6c0bd668d0.js	492 B	2024-05-07	2024-05-07
Pretty URL discord.com/assets/ae110c08cf6c0bd668d0.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 17:58:07 Last Seen2024-05-07 17:58:07 Times Seen1 Hash b30f7ee7517c43462041be35ed4c9514 babf5278b16c191f419f6cbc397f70393b3d10f1 5978a8d5253d646cff4fdf37c26b0449a983dd42ba197fd6a25a32a66f3a6fa8 Loading...

	discord.com/assets/66635.40ded36ecf9973b385c7.js	110 kB	2024-05-07	2024-05-12
Pretty URL discord.com/assets/66635.40ded36ecf9973b385c7.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 04:42:04 Last Seen2024-05-12 00:11:19 Times Seen24 Hash 899875ebc202ced2d5e364062c991e61 49a1a81a54719e9384d4bf40df3165ab8be5fa37 294020b9a07541ba6cca0aaa93879000fadec243a8094476c4d56a7b74f0c5a3 Loading...

	discord.com/assets/75492.0148c7b424d039f78965.js	7.7 kB	2024-03-28	2024-05-18
Pretty URL discord.com/assets/75492.0148c7b424d039f78965.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-28 11:42:50 Last Seen2024-05-18 23:17:51 Times Seen185 Hash 2beb1550457d07c8a1a348de1e06b511 c4e634b6bb88e649d2f8089e8a797ecec65387f1 68473ca2ffc3b3f19f78eac75681464b37a3f1cbe8c980cc2c8b59c16786cfd3 Loading...

	discord.com/invite/sPYNCpZZQ8	52 B	2023-10-25	2024-05-19
Pretty URL discord.com/invite/sPYNCpZZQ8 IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-25 13:44:18 Last Seen2024-05-19 14:40:56 Times Seen824 Hash 51675c808f2f5dbe4878fb8d288d4b03 80bdb91802a272ffecf500374c3ea74cbb7fc572 9b2a7096e9843f82d9918a60c7caf9abcc16620e81ad7f2baabddf73f494d712 Loading...

	discord.com/assets/35705.b7720b453327f10e7ec1.js	8.8 MB	2024-05-07	2024-05-08
Pretty URL discord.com/assets/35705.b7720b453327f10e7ec1.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 17:58:08 Last Seen2024-05-08 17:58:11 Times Seen9 Hash 993b79be8a3975567ced0c6a236ff675 ca91489084024a0058d9e5fa3232bacf262fd30e ebd35f4e7cf54dbdfb0829edad95d7387eaf70f21a032586fee5074f69df85ca Loading...

	discord.com/assets/11250.e28e53af4b334652dba0.js	9.4 kB	2024-05-03	2024-05-12
Pretty URL discord.com/assets/11250.e28e53af4b334652dba0.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-03 22:27:29 Last Seen2024-05-12 00:11:19 Times Seen31 Hash 05b0425932f77874a4975eb8bac986b0 02aa3686c982bcb991d8a35deedc89e565563199 6d4153d11633adfb8d381d50eccb3faa84b05194a1b7bcc23d127657658477ef Loading...

	discord.com/assets/aae0756b8bbf2c4871a0.js	92 kB	2024-04-28	2024-05-15
Pretty URL discord.com/assets/aae0756b8bbf2c4871a0.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-28 21:57:55 Last Seen2024-05-15 02:37:31 Times Seen107 Hash 020d815b563d51cb8053cd939bf7883f 747198606ee70193fc5a0ffe43bdd680abdb7166 d37687fbda734574633e1aa4a2666c4526680c59898a92e5d228f5ae3840e23b Loading...

	newassets.hcaptcha.com/captcha/v1/50fb34a/hcaptcha.js	387 kB	2024-04-30	2024-05-07
Pretty URL newassets.hcaptcha.com/captcha/v1/50fb34a/hcaptcha.js IP 104.18.124.91 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-30 17:59:30 Last Seen2024-05-07 20:54:15 Times Seen187 Hash c6438f98ac4acd11054d196bf44310de 00a348466d30d26c486e48d464a2432dfcc28b69 1c7ee73f66b781ba78bdfd7189fc368805cb5e642ad5f095b505a206c5a19ba5 Loading...

	discord.com/assets/64787.359c4aba4bf61ba67cc0.js	8.8 kB	2024-03-28	2024-05-18
Pretty URL discord.com/assets/64787.359c4aba4bf61ba67cc0.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-28 11:42:51 Last Seen2024-05-18 23:17:51 Times Seen181 Hash 8d6c8b8c9b81e5059ba17f2444dc376a c735318309bc84d5c55471feef61ffc4ca4a6514 310c0630c73bb03de4d60172b9fa994128da487b18408f1ddde02b5a5d97baa1 Loading...

	discord.com/assets/67535.d4ccc9e274acd6cbdc82.js	18 kB	2024-04-28	2024-05-15
Pretty URL discord.com/assets/67535.d4ccc9e274acd6cbdc82.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-28 21:57:55 Last Seen2024-05-15 02:37:31 Times Seen116 Hash d0dfc2a1071876b0fb389ca2e99c6c74 84faf5b8423be4160290355d4616e719488bfbbe 2d2b41ae7231ff6e12f6802104525bd71342b82cf0831c009c29865f1c9bfc70 Loading...

	discord.com/assets/52030.3323bb09018fbadcad6f.js	12 kB	2024-04-28	2024-05-15
Pretty URL discord.com/assets/52030.3323bb09018fbadcad6f.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-28 21:57:55 Last Seen2024-05-15 02:37:31 Times Seen116 Hash c07d153eab85b0a2e18058c573850bcf f3fc461d5cf7cdcf62864914240736bc1151367e a62e993f5c3e587d4b6be259ac48a07a9643ffd654522ab0037691bf70e257af Loading...

	discord.com/assets/21d34f5cf1e245c0dc9d.js	20 kB	2024-04-28	2024-05-15
Pretty URL discord.com/assets/21d34f5cf1e245c0dc9d.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-28 21:57:55 Last Seen2024-05-15 02:37:31 Times Seen117 Hash 53763b806f39386a65f82c2134110e33 b31eb38cd17306ce3e32c65c95eaebede7de39e7 789aa9daed9953157e395cd40acf41242661d241ad74cd91a56f3731db524974 Loading...

	discord.com/assets/shared.74860cc421a38a9015bb.js	124 kB	2024-05-07	2024-05-12
Pretty URL discord.com/assets/shared.74860cc421a38a9015bb.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 04:42:03 Last Seen2024-05-12 00:11:19 Times Seen24 Hash 06093e1c534eb9daf6ad7a3ba68b8aad 09f106e307e7d711f1d99becb127839e1ab83331 eb56f4c6104b8e5b022d3059a0be906fab18ab3df6dd2328179b502e5e64028e Loading...

	discord.com/assets/73422.101c1055378189203ef5.js	18 kB	2024-03-28	2024-05-15
Pretty URL discord.com/assets/73422.101c1055378189203ef5.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-28 11:42:51 Last Seen2024-05-15 02:37:31 Times Seen257 Hash 1fad8381d62a65ff8d82fb42bee9b013 6d0467913c6b16c1011476687b5e886cee27a4a8 9975ade78d8b6b60dd620729813abe93df8b61d748706739b7529b26af5fba35 Loading...

	newassets.hcaptcha.com/captcha/challenge/image_label_binary/50fb34a/challenge.js	55 kB	2024-05-07	2024-05-07
Pretty URL newassets.hcaptcha.com/captcha/challenge/image_label_binary/50fb34a/challenge.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 17:58:09 Last Seen2024-05-07 17:58:09 Times Seen1 Hash bb2434fe9d28e4370418d26f9a6be9c2 e6eb925c727e6a7eac6d15a05c35837ff85c23c3 4c725364c6c330629e76126d7ac275aa278d8ce7aacb553f79f8a73ba4ea2701 Loading...

	discord.com/invite/sPYNCpZZQ8	66 B	2023-10-25	2024-05-19
Pretty URL discord.com/invite/sPYNCpZZQ8 IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-25 13:44:18 Last Seen2024-05-19 14:40:56 Times Seen744 Hash 597dd1a0dbc22805f2e9b928c57cb833 495e19eb49fb0b6ecb0b7f3e3484e65a2f6ce136 03a79e9ded612007bfab0f18fb06c48e7f141c48c7c24e1f9737aca9219d4b1d Loading...

	discord.com/cdn-cgi/challenge-platform/scripts/jsd/main.js	7.8 kB	2024-05-07	2024-05-07
Pretty URL discord.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 17:58:09 Last Seen2024-05-07 18:33:18 Times Seen3 Hash 7abf30c56da6a1835c810e60ca25e1b5 b9ec3348778a42dcf3d7fbd7dd7aeb638168884a b047c0e336d7236dfe3a9cca661f6c30194b303a4e68d27d96b7262ad7889586 Loading...

	discord.com/assets/webMinimal.dc9095e2d6c966ba4340.js	30 kB	2024-05-07	2024-05-08
Pretty URL discord.com/assets/webMinimal.dc9095e2d6c966ba4340.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 17:58:09 Last Seen2024-05-08 17:58:11 Times Seen10 Hash cff583dbfaff100435328acc2bb49833 bfd4020cb1d746f623a7acd7ff91c9378fd06a4d aa003e85d27f7c10b1c3de37ba9dbe323b2899762d4a2c4c84c17d90fb31e411 Loading...

	unknown	287 B	2024-05-07	2024-05-07
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 17:58:09 Last Seen2024-05-07 17:58:09 Times Seen1 Hash 3f01ec3d3c3ce28055f8c5bbdc5da0db 6b240885776686d1e7c433f49601b413cbbb9e3e 7077cb9aaf811fe3df11ddbd5b51167cf6e08e96631f261faefd87eefbae52c3 Loading...

	discord.com/assets/84471.ff79a54e2920c5b8cae0.js	504 kB	2024-05-07	2024-05-08
Pretty URL discord.com/assets/84471.ff79a54e2920c5b8cae0.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 17:58:09 Last Seen2024-05-08 17:58:11 Times Seen13 Hash ce0b7fbfb38f75492fdceb6a6fbc6e85 f175c6cccf5e0bf7091c766174589ea063ccf54f fa2f1ce007cf94faf5a3cb6cba128a930ed3b1442775383f944975e7fc9669e5 Loading...

	discord.com/assets/85514.9113c11c39e7edb06760.js	12 kB	2024-04-28	2024-05-15
Pretty URL discord.com/assets/85514.9113c11c39e7edb06760.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-28 21:57:55 Last Seen2024-05-15 02:37:32 Times Seen117 Hash b79da02daac6ff71c028ff92d062342f 43b338fe276c921ff9b90e114207221cc860abd9 49a1e0e9acafd6efdc653dfb22a03411c8dba405a0b7eeafbd786034d6a1b38b Loading...

	discord.com/assets/57878.f80f2ae72af75d9274b1.js	9.9 kB	2024-03-28	2024-05-18
Pretty URL discord.com/assets/57878.f80f2ae72af75d9274b1.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-28 11:42:50 Last Seen2024-05-18 23:17:51 Times Seen171 Hash 68c28533524fca830bec8bfb05b3e36d 3f897bbc29388e5854f4209cd8884bf97b126200 50834be10caf82529ea966d206f16890cae43b0e2e9572c606b9ca77c30bf428 Loading...

	discord.com/assets/19878.38577e57248a8460bd91.js	49 kB	2024-03-28	2024-05-18
Pretty URL discord.com/assets/19878.38577e57248a8460bd91.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-28 11:42:50 Last Seen2024-05-18 23:17:51 Times Seen295 Hash 21a097ce6283b2c869519bd4ab2e264e 80c6057fa48f95d3ba4a53fee57cbad247dd2ce5 42d6d6e717363c7b269397b33f47000a433a4f678ebb22958d5d76e5b00190f2 Loading...

	discord.com/assets/a92684d27bba9b2589e2.js	1.7 kB	2024-03-29	2024-05-18
Pretty URL discord.com/assets/a92684d27bba9b2589e2.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 02:34:26 Last Seen2024-05-18 23:17:51 Times Seen116 Hash d8d884cbb0f2bff0e39531ac6a2dc813 f0a7534fcd48b33d8393b4a3de4b81fc4a9b9d58 169ae3f5806f7f96ad327b3bfbac149768af7325893149b7113180c9ae130655 Loading...

	discord.com/assets/app.40f0c142ef5a1e216248.js	735 kB	2024-05-07	2024-05-08
Pretty URL discord.com/assets/app.40f0c142ef5a1e216248.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 17:58:09 Last Seen2024-05-08 17:58:12 Times Seen8 Hash 47cff290f825ad9925f10fe41b3111fa f25298cc0422459202a574db4838aeda271b55a8 63b47219d1d73b5230a4fd3c44db14aea810777c0f4224f74a6d9f068e1f0c5c Loading...

	discord.com/assets/24217.fbecbc1d6a974fbc777e.js	14 kB	2024-03-28	2024-05-18
Pretty URL discord.com/assets/24217.fbecbc1d6a974fbc777e.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-28 11:42:50 Last Seen2024-05-18 23:17:51 Times Seen384 Hash 67372e1a2d6f79166686fbc585daf578 6d3829c9d142359672020887039ae9c733ee9df6 91edf528e1738ba548f95d7341ea4b4dcbe01faa9e3fbf8cc27c7ce929f65f64 Loading...

	discord.com/assets/90687.370e289ac601b1f7cc56.js	14 kB	2024-04-28	2024-05-15
Pretty URL discord.com/assets/90687.370e289ac601b1f7cc56.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-28 21:57:56 Last Seen2024-05-15 02:37:31 Times Seen65 Hash 739ee207f1bd969fd9c2077b5bcedc9d 081a2ebc2a257135459a71e3ae9c4f3203309bd2 16013021ae55fe58896d93bebcd0422dd21d748a42daf678056ab96b95deaa9d Loading...

	discord.com/assets/76990.60564f6faf3cd38a41e1.js	98 kB	2024-04-28	2024-05-15
Pretty URL discord.com/assets/76990.60564f6faf3cd38a41e1.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-28 21:57:55 Last Seen2024-05-15 02:37:31 Times Seen115 Hash 29651233922d70ace5cd6e7b080673e4 0fba42a52df68efd18e80d0fcb9ddb88a761a1d1 1de677098e2b05b54e611eeb73960172b6c18138a5794487ecda786e6e06958b Loading...

	discord.com/invite/sPYNCpZZQ8	1.4 kB	2024-05-07	2024-05-08
Pretty URL discord.com/invite/sPYNCpZZQ8 IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-07 17:58:09 Last Seen2024-05-08 06:52:06 Times Seen4 Hash b033320dbec27c92199e3314d1fe602b b633b9c7439f1eadcb95289709719535406d5727 c26e19deaa66cd9713c3b0f497b85779768359f054f365a1e77ec3b545517171 Loading...

	discord.com/assets/2797.a012718ee3dfd4179128.js	7.4 kB	2024-03-28	2024-05-18
Pretty URL discord.com/assets/2797.a012718ee3dfd4179128.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-28 11:42:51 Last Seen2024-05-18 23:17:51 Times Seen186 Hash b5355f7b6f2dfde8437b87c127a49928 86697dd54b568a17258ca6a7c8e34f2359f194b4 f9339fab3d0727cc2df163bd6b6ca95c3b2314ab8a40d46434c171c9b56d2401 Loading...

	discord.com/invite/sPYNCpZZQ8	976 B	2024-04-17	2024-05-18
Pretty URL discord.com/invite/sPYNCpZZQ8 IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-17 10:41:42 Last Seen2024-05-18 23:17:51 Times Seen53 Hash f0cfad940b8c4ee9534d139c8d741567 117040a160c15eefce92438ca3ba23f33a6d1883 14f6b7b5a21de817e96ce9b6ca81c93ea17f882f402463a9ab75632eefe15f7c Loading...

	discord.com/invite/sPYNCpZZQ8	1.2 kB	2024-05-07	2024-05-07
Pretty URL discord.com/invite/sPYNCpZZQ8 IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-07 17:58:09 Last Seen2024-05-07 17:58:09 Times Seen1 Hash fd905351832950ca55b6e0fe8ba63302 cbe27f0b2e75f6e886a18a4b975ad932dd2b5e35 98e192720a4da16beb3d6936f97eebb5cd580f204b3cea339122d34ada3b9fc0 Loading...

	discord.com/assets/70397.226bb847204914e85d62.js	98 kB	2024-03-28	2024-05-18
Pretty URL discord.com/assets/70397.226bb847204914e85d62.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-28 11:42:50 Last Seen2024-05-18 23:17:51 Times Seen202 Hash 88660887a5c664ff46759eae4ca43c7a f8f202f13658b36570b6de2c31ad01dfa48c1dd6 8dafa894240ca967a4b15087693bc2c7c094837bb663e56d6018eaab0bc24c20 Loading...

	unknown	48 B	2023-04-11	2024-05-19
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-11 22:45:29 Last Seen2024-05-19 10:43:18 Times Seen19448 Hash 43d643e449b4ea13394fe737b1d6a447 1c03d56d955fd266d7659379e63d5711bd5382db 4817661f6ac7d2e1691bc3aeb9966e66012891ccda569ff872dc0932010c540d Loading...

	discord.com/assets/10586.3f509a5d474354a36c24.js	22 kB	2024-03-28	2024-05-18
Pretty URL discord.com/assets/10586.3f509a5d474354a36c24.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-28 11:42:50 Last Seen2024-05-18 23:17:51 Times Seen291 Hash ad4f4fea212c7f02fa70017094f02673 96dd7681de7f37d903f0e427eb72768f4f5c3aad 4634861a00ea629e3f1cbddd56f0ce48334963e3e3f4a5e9479da8649c6a6d6f Loading...

	discord.com/assets/3541.a59b4cd3496ff6c890bf.js	4.5 MB	2024-05-07	2024-05-12
Pretty URL discord.com/assets/3541.a59b4cd3496ff6c890bf.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 04:42:02 Last Seen2024-05-12 00:11:19 Times Seen16 Hash d7d215079ac2452a076b2e51de628b9c abc2e024ad8e0e2d5bb830160df1e4eef8d961e9 86789e84e4be7db93328565257b3df9e664da75db0687fb286651cd8416587dd Loading...

	discord.com/assets/738cfb28f12f485f4009.js	14 kB	2024-05-07	2024-05-07
Pretty URL discord.com/assets/738cfb28f12f485f4009.js IP 162.159.136.232 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 17:58:09 Last Seen2024-05-07 17:58:09 Times Seen2 Hash 7dbe808aabb85e5d9db882bdb2df3743 a0daa15674ad2c51450115d8b425cb87b4f38820 9951dbbe768da0a567f042582c4822d9343694ba63f9484425d29466f111b784 Loading...

HTTP Transactions (94)

URL IP Response Size

surl.li/img/surli-logo.svg

104.26.5.19

200 OK

133 kB

URL GET HTTP/2
surl.li/img/surli-logo.svg
IP
104.26.5.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://surl.li/sscpp
Certificate
IssuerGoogle Trust Services LLC
Subjectsurl.li
Fingerprint4A:8A:47:88:45:49:9E:79:20:E2:25:13:21:0D:14:FD:40:9F:73:38
ValiditySat, 30 Mar 2024 17:55:26 GMT - Fri, 28 Jun 2024 17:55:25 GMT

File type
SVG Scalable Vector Graphics image
Size
133 kB (133364 bytes)
Hash
482601fd25a8410e0868ce1e178cbaea
79a25cfa623613a31fc7d3813cfa9a223b54b2a8
f389fb51afbd8077d4e8e260bf820115f7111c246e02cc4aab081c5317c56db6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/surli-logo.svg HTTP/1.1
Host: surl.li
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surl.li/sscpp
Cookie: XSRF-TOKEN=eyJpdiI6IjU5Z3hSWWFCSVJjbDBvd1kvK1pJdkE9PSIsInZhbHVlIjoieEMrR3JUVW44RXFCdFQ4T3BVNkYxMTJzYnFGYVdEQTRKMWY0a1FUcGlPSUxGNlY4a2xFUkoxRUVjZlVFcklRellFVCt3ekE0MERod21kL01yaW1uSHNXTjRIbUlvOFZrMVdpNlgvVWFKdnh2QW9yN09hMHVKbXNkS2ltVGM0TkkiLCJtYWMiOiI2NjBkOTBmMDc3NTc4MzQ2YmYyODQ1YmQ1ZDY1OTUzZjAwNzEwMGQ1NjZlMTM5OTUxYWY1ZDJmNGNmMTlhN2RmIiwidGFnIjoiIn0%3D; surli_application_session=eyJpdiI6IlVTZzh4cDFMSVFzWWVzdzVvbGdvcGc9PSIsInZhbHVlIjoieUxFNzZ2Y1hSWGYxTnV0WlRJbysxdlVueUlYSmdqY2hoZ1hVQVpVK01Za3J3S0UzOXF3Zno5dDhjZnd3MjJ2OUxkb2hHWERhRmtSOWhIcGZmTHAxQ2VjdWxsMDNWVTh6b2ZlOWpqc0xLUk5mTVF6R2N6WVNoRXRBT1NFNFphcngiLCJtYWMiOiJmYWM4NjM1NjQyMWE3ZDk2NDg5Y2QxNDM1ZTU5ZmM5MzgxYmJlY2JmNTM5N2ZlNmZkYTcxN2NlNGJiYTczMzE2IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 15:57:20 GMT
content-type: image/svg+xml
last-modified: Fri, 03 May 2024 12:44:45 GMT
etag: W/"6634dc3d-233d"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3259
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S%2FX6NPIL2RACD%2BNXyyT7ruZsLv%2B0n5%2FjxudZWx8YY%2FxM5dNGg4WfammhwElfWeeCb571B0nUTH2cPG8XAE%2BzQ5dkk5KrgcxoPKYkLXtQshKiZI6ap0CV3eA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880267b81df356bd-OSL
content-encoding: br
X-Firefox-Spdy: h2

surl.li/img/pc-rouded-icon.svg

104.26.5.19

154 kB

URL
surl.li/img/pc-rouded-icon.svg
IP
104.26.5.19:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectsurl.li
Fingerprint4A:8A:47:88:45:49:9E:79:20:E2:25:13:21:0D:14:FD:40:9F:73:38
ValiditySat, 30 Mar 2024 17:55:26 GMT - Fri, 28 Jun 2024 17:55:25 GMT

File type
SVG Scalable Vector Graphics image
Size
154 kB (153921 bytes)
Hash
7005e41f692583c19abac0a7fd5b7c5f
bda49cd99401420d490a32f2f547e4ddd43b7300
2f9e711abfb70ec1515ded7f4c18c9208b1325f53b551698b90fa4664542ceed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/pc-rouded-icon.svg HTTP/1.1
Host: surl.li
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surl.li/sscpp
Cookie: XSRF-TOKEN=eyJpdiI6IjU5Z3hSWWFCSVJjbDBvd1kvK1pJdkE9PSIsInZhbHVlIjoieEMrR3JUVW44RXFCdFQ4T3BVNkYxMTJzYnFGYVdEQTRKMWY0a1FUcGlPSUxGNlY4a2xFUkoxRUVjZlVFcklRellFVCt3ekE0MERod21kL01yaW1uSHNXTjRIbUlvOFZrMVdpNlgvVWFKdnh2QW9yN09hMHVKbXNkS2ltVGM0TkkiLCJtYWMiOiI2NjBkOTBmMDc3NTc4MzQ2YmYyODQ1YmQ1ZDY1OTUzZjAwNzEwMGQ1NjZlMTM5OTUxYWY1ZDJmNGNmMTlhN2RmIiwidGFnIjoiIn0%3D; surli_application_session=eyJpdiI6IlVTZzh4cDFMSVFzWWVzdzVvbGdvcGc9PSIsInZhbHVlIjoieUxFNzZ2Y1hSWGYxTnV0WlRJbysxdlVueUlYSmdqY2hoZ1hVQVpVK01Za3J3S0UzOXF3Zno5dDhjZnd3MjJ2OUxkb2hHWERhRmtSOWhIcGZmTHAxQ2VjdWxsMDNWVTh6b2ZlOWpqc0xLUk5mTVF6R2N6WVNoRXRBT1NFNFphcngiLCJtYWMiOiJmYWM4NjM1NjQyMWE3ZDk2NDg5Y2QxNDM1ZTU5ZmM5MzgxYmJlY2JmNTM5N2ZlNmZkYTcxN2NlNGJiYTczMzE2IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 15:57:20 GMT
content-type: image/svg+xml
last-modified: Fri, 03 May 2024 12:44:45 GMT
etag: W/"6634dc3d-4f3e"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3259
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dsovFco7SD%2BTfzMysOE9HTYdQvAjO5NTr9xI7HqZ0YwsMc3DIT8m4Ce17oG4DA%2BOlbzyLSJCYYp%2F3UJMH9685Jc6zhHGRhReXNJMXklMnHtnco19JLDtXCA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880267b82dfe56bd-OSL
content-encoding: br
X-Firefox-Spdy: h2

surl.li/js/preview.js

104.26.5.19

200 OK

148 kB

URL GET HTTP/2
surl.li/js/preview.js
IP
104.26.5.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://surl.li/sscpp
Certificate
IssuerGoogle Trust Services LLC
Subjectsurl.li
Fingerprint4A:8A:47:88:45:49:9E:79:20:E2:25:13:21:0D:14:FD:40:9F:73:38
ValiditySat, 30 Mar 2024 17:55:26 GMT - Fri, 28 Jun 2024 17:55:25 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65469)
Size
148 kB (148352 bytes)
Hash
d6cc50ebd8325127ffa10f492624d26c
6ad43cb17ca53d08d360e0bcfe9e909f694f2c86
9d6dfd360ccbae2e81dc8f69b9c561e99e7034b0417b2a0bcbc85c2ff629ab6d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/preview.js HTTP/1.1
Host: surl.li
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surl.li/sscpp
Cookie: XSRF-TOKEN=eyJpdiI6IjU5Z3hSWWFCSVJjbDBvd1kvK1pJdkE9PSIsInZhbHVlIjoieEMrR3JUVW44RXFCdFQ4T3BVNkYxMTJzYnFGYVdEQTRKMWY0a1FUcGlPSUxGNlY4a2xFUkoxRUVjZlVFcklRellFVCt3ekE0MERod21kL01yaW1uSHNXTjRIbUlvOFZrMVdpNlgvVWFKdnh2QW9yN09hMHVKbXNkS2ltVGM0TkkiLCJtYWMiOiI2NjBkOTBmMDc3NTc4MzQ2YmYyODQ1YmQ1ZDY1OTUzZjAwNzEwMGQ1NjZlMTM5OTUxYWY1ZDJmNGNmMTlhN2RmIiwidGFnIjoiIn0%3D; surli_application_session=eyJpdiI6IlVTZzh4cDFMSVFzWWVzdzVvbGdvcGc9PSIsInZhbHVlIjoieUxFNzZ2Y1hSWGYxTnV0WlRJbysxdlVueUlYSmdqY2hoZ1hVQVpVK01Za3J3S0UzOXF3Zno5dDhjZnd3MjJ2OUxkb2hHWERhRmtSOWhIcGZmTHAxQ2VjdWxsMDNWVTh6b2ZlOWpqc0xLUk5mTVF6R2N6WVNoRXRBT1NFNFphcngiLCJtYWMiOiJmYWM4NjM1NjQyMWE3ZDk2NDg5Y2QxNDM1ZTU5ZmM5MzgxYmJlY2JmNTM5N2ZlNmZkYTcxN2NlNGJiYTczMzE2IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 15:57:20 GMT
content-type: application/javascript; charset=utf-8
last-modified: Wed, 17 Jan 2024 14:23:01 GMT
etag: W/"65a7e2c5-160f5"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3259
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wIfWss3UNNM51hVsUe8lkZEqU1zpLWUKhSQU4hSvUvDT%2BxPUkquAB8dQrdN1GLgbcLmM8%2Beh0GrHm63ExeDbcfsW5zNvivQfmfD64qW7ycbsJSiP7Pij1sQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880267b82e0956bd-OSL
content-encoding: br
X-Firefox-Spdy: h2

surl.li/img/gears-rouded-icon.svg

104.26.5.19

14 kB

URL
surl.li/img/gears-rouded-icon.svg
IP
104.26.5.19:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectsurl.li
Fingerprint4A:8A:47:88:45:49:9E:79:20:E2:25:13:21:0D:14:FD:40:9F:73:38
ValiditySat, 30 Mar 2024 17:55:26 GMT - Fri, 28 Jun 2024 17:55:25 GMT

File type
SVG Scalable Vector Graphics image
Size
14 kB (14525 bytes)
Hash
aecbc06e12760ff4f4334696cb12f70f
479d2ba236eeb0c524d10d2681beaf890b154604
b08ee81fa51d661b5c24460f41bb2ee09eeb5157c9426c6b3b83d7ada262473d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/gears-rouded-icon.svg HTTP/1.1
Host: surl.li
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surl.li/sscpp
Cookie: XSRF-TOKEN=eyJpdiI6IjU5Z3hSWWFCSVJjbDBvd1kvK1pJdkE9PSIsInZhbHVlIjoieEMrR3JUVW44RXFCdFQ4T3BVNkYxMTJzYnFGYVdEQTRKMWY0a1FUcGlPSUxGNlY4a2xFUkoxRUVjZlVFcklRellFVCt3ekE0MERod21kL01yaW1uSHNXTjRIbUlvOFZrMVdpNlgvVWFKdnh2QW9yN09hMHVKbXNkS2ltVGM0TkkiLCJtYWMiOiI2NjBkOTBmMDc3NTc4MzQ2YmYyODQ1YmQ1ZDY1OTUzZjAwNzEwMGQ1NjZlMTM5OTUxYWY1ZDJmNGNmMTlhN2RmIiwidGFnIjoiIn0%3D; surli_application_session=eyJpdiI6IlVTZzh4cDFMSVFzWWVzdzVvbGdvcGc9PSIsInZhbHVlIjoieUxFNzZ2Y1hSWGYxTnV0WlRJbysxdlVueUlYSmdqY2hoZ1hVQVpVK01Za3J3S0UzOXF3Zno5dDhjZnd3MjJ2OUxkb2hHWERhRmtSOWhIcGZmTHAxQ2VjdWxsMDNWVTh6b2ZlOWpqc0xLUk5mTVF6R2N6WVNoRXRBT1NFNFphcngiLCJtYWMiOiJmYWM4NjM1NjQyMWE3ZDk2NDg5Y2QxNDM1ZTU5ZmM5MzgxYmJlY2JmNTM5N2ZlNmZkYTcxN2NlNGJiYTczMzE2IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 15:57:20 GMT
content-type: image/svg+xml
last-modified: Fri, 03 May 2024 12:44:45 GMT
etag: W/"6634dc3d-e1f"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3259
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iPbtdcMLQrxu%2BG5jcqsT7IatA1c%2FOr3Nv%2BYTHv4ZNB2MQ4Yr7kkAZfducXI06QcFuGd4kT9hWPwSw9JHEtgvyKp%2FxGjmPNMrjMyX0QcdXDOptajbV9Zekxs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880267b82dff56bd-OSL
content-encoding: br
X-Firefox-Spdy: h2

web-screen.com/storage/screenshots/2024/04/a0c80019-63c3-4698-b204-db314e8f73fd.png

104.21.20.132

200 OK

67 kB

URL GET HTTP/3
web-screen.com/storage/screenshots/2024/04/a0c80019-63c3-4698-b204-db314e8f73fd.png
IP
104.21.20.132:443
ASN
#13335 CLOUDFLARENET

Requested by
https://surl.li/sscpp
Certificate
IssuerCloudflare, Inc.
Subjectweb-screen.com
FingerprintA2:90:6A:2E:A9:56:79:71:CC:53:5D:F0:D7:0A:ED:BB:54:19:F9:A9
ValidityMon, 22 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
PNG image data, 800 x 800, 8-bit/color RGBA, non-interlaced
Size
67 kB (66621 bytes)
Hash
9cfe0b071e793d6f42787acd5b06a956
5002a55c7767381b9818e4ab034827ef02280756
63bf3861d27b0827bbd68ee471ad28729dcb7da2d9200d9cf446b3b9053a99d9

HTTP Headers

GET /storage/screenshots/2024/04/a0c80019-63c3-4698-b204-db314e8f73fd.png HTTP/1.1
Host: web-screen.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surl.li/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:20 GMT
content-type: image/png
content-length: 66621
last-modified: Mon, 22 Apr 2024 15:23:41 GMT
etag: "662680fd-1043d"
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gMshXQi1jnji74cTOejZowjmfCxXr8pzEmLG5UrLR%2BBk2F3PVy3AOHyY794zlTsjCX8TM%2BBKY3gOE5vYmsPX2Vnu7MIqLGKujb6vBrbrwTVWBGqOxR5vC4Vjl8ZzdS5jQA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880267bb6b7c56cb-OSL
alt-svc: h3=":443"; ma=86400

www.google.com/s2/favicons?domain=https://discord.gg/sPYNCpZZQ8

142.250.74.132

301 Moved Permanently

342 B

URL GET HTTP/2
www.google.com/s2/favicons?domain=https://discord.gg/sPYNCpZZQ8
IP
142.250.74.132:443
ASN
#15169 GOOGLE

Requested by
https://surl.li/sscpp
Certificate
IssuerGoogle Trust Services LLC
Subjectwww.google.com
FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99
ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT

File type
HTML document, ASCII text, with CRLF, LF line terminators
Size
342 B (342 bytes)
Hash
2e0fd9443d5ef541d413ad397b156785
0407db8da4dd50033291ef68024c4721f5e1d723
ea18701fa900ecbeb8ab591313111a97f26289a24817458a625920c73726e6ae

HTTP Headers

GET /s2/favicons?domain=https://discord.gg/sPYNCpZZQ8 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surl.li/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
location: https://t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=https://discord.gg/sPYNCpZZQ8&size=16
content-type: text/html; charset=UTF-8
x-content-type-options: nosniff
date: Tue, 07 May 2024 15:57:20 GMT
expires: Tue, 07 May 2024 16:27:20 GMT
cache-control: public, max-age=1800
server: sffe
content-length: 342
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=https://discord.gg/sPYNCpZZQ8&size=16

142.250.74.68

200 OK

272 B

URL GET HTTP/2
t1.gstatic.com/faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=https://discord.gg/sPYNCpZZQ8&size=16
IP
142.250.74.68:443
ASN
#15169 GOOGLE

Requested by
https://surl.li/sscpp
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
PNG image data, 16 x 16, 8-bit colormap, non-interlaced
Size
272 B (272 bytes)
Hash
af4a6e77ef9e27d3503edd196a0d1abe
99630a73d3d2f80b993621cc2783088634d4df2d
43a6549949cfd02dec4221b8e59f3ab582729da2dffa91cca116777b88b3edd2

HTTP Headers

GET /faviconV2?client=SOCIAL&type=FAVICON&fallback_opts=TYPE,SIZE,URL&url=https://discord.gg/sPYNCpZZQ8&size=16 HTTP/1.1
Host: t1.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://surl.li/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/png
content-location: https://assets-global.website-files.com/6257adef93867e50d84d30e2/62fddf0fde45a8baedcc7ee5_847541504914fd33810e70a0ea73177e%20(2)-1.png
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/media-favicon
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="media-favicon"
report-to: {"group":"media-favicon","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/media-favicon"}]}
content-length: 272
date: Tue, 07 May 2024 15:57:21 GMT
expires: Tue, 14 May 2024 15:57:21 GMT
cache-control: public, max-age=604800
last-modified: Fri, 19 Aug 2022 02:09:42 GMT
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

surl.li/getMetaInfo

104.26.5.19

200 OK

4.2 kB

URL POST HTTP/2
surl.li/getMetaInfo
IP
104.26.5.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://surl.li/sscpp
Certificate
IssuerGoogle Trust Services LLC
Subjectsurl.li
Fingerprint4A:8A:47:88:45:49:9E:79:20:E2:25:13:21:0D:14:FD:40:9F:73:38
ValiditySat, 30 Mar 2024 17:55:26 GMT - Fri, 28 Jun 2024 17:55:25 GMT

File type
JSON text data
Size
4.2 kB (4179 bytes)
Hash
4b6bb107ee5d9ace7a7c18f7f97583dd
ea8d3cb78d979b09e8ccf7a2d5030dbbfb205143
48b26c779434e0738b136ffabbc8375a44264355d8598a95ee154833974539bd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /getMetaInfo HTTP/1.1
Host: surl.li
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-CSRF-TOKEN: wnKYBLBuHOSfShVyIUFmmZI3TG6LN81y2uIKTNzO
X-Requested-With: XMLHttpRequest
Content-Length: 41
Origin: https://surl.li
DNT: 1
Connection: keep-alive
Referer: https://surl.li/sscpp
Cookie: XSRF-TOKEN=eyJpdiI6IjU5Z3hSWWFCSVJjbDBvd1kvK1pJdkE9PSIsInZhbHVlIjoieEMrR3JUVW44RXFCdFQ4T3BVNkYxMTJzYnFGYVdEQTRKMWY0a1FUcGlPSUxGNlY4a2xFUkoxRUVjZlVFcklRellFVCt3ekE0MERod21kL01yaW1uSHNXTjRIbUlvOFZrMVdpNlgvVWFKdnh2QW9yN09hMHVKbXNkS2ltVGM0TkkiLCJtYWMiOiI2NjBkOTBmMDc3NTc4MzQ2YmYyODQ1YmQ1ZDY1OTUzZjAwNzEwMGQ1NjZlMTM5OTUxYWY1ZDJmNGNmMTlhN2RmIiwidGFnIjoiIn0%3D; surli_application_session=eyJpdiI6IlVTZzh4cDFMSVFzWWVzdzVvbGdvcGc9PSIsInZhbHVlIjoieUxFNzZ2Y1hSWGYxTnV0WlRJbysxdlVueUlYSmdqY2hoZ1hVQVpVK01Za3J3S0UzOXF3Zno5dDhjZnd3MjJ2OUxkb2hHWERhRmtSOWhIcGZmTHAxQ2VjdWxsMDNWVTh6b2ZlOWpqc0xLUk5mTVF6R2N6WVNoRXRBT1NFNFphcngiLCJtYWMiOiJmYWM4NjM1NjQyMWE3ZDk2NDg5Y2QxNDM1ZTU5ZmM5MzgxYmJlY2JmNTM5N2ZlNmZkYTcxN2NlNGJiYTczMzE2IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 15:57:21 GMT
content-type: application/json
x-powered-by: PHP/8.2.15
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6InMzdTZ2Sm1PcUJNMENZODZ1MmZFRVE9PSIsInZhbHVlIjoiRE54UFUrU0swOEFFYVk3ZkpnQ2dCODllV20vY0VsNFY4NUpVQmVKMHh1OXlGbHRua2NGRkw0YnJ2c1JvZ3cwN3NmbGVZNENreXdjWXBDQ09vMEZGWjNTL3gwbm0zQlJ0S29ZeU1qVHNHdnBCOGg3cWN3bHFsNFFlMCtTRlk1MC8iLCJtYWMiOiJkYzE1YWM5MWQ3NjFmYTU5YjE3NjFhMGZlYjZjN2E5NzI4MjgzM2ZmMmM4OGUyMjA0NmZmNWZlNmEwNjQ3MTlkIiwidGFnIjoiIn0%3D; expires=Tue, 07 May 2024 17:57:21 GMT; Max-Age=7200; path=/; secure; samesite=lax
surli_application_session=eyJpdiI6IkdoUlRDTE82aHIwNjd2NVpuZGFGYkE9PSIsInZhbHVlIjoiM2RBTkpQM2lzNmV2czBJRXdndDN1QlZBc00rOEg3dGNOVU1GVExEWG56M3hSRk1GR3JoSVBQaGM0ZUdaVlh0cTlyTmxjMHYzZkRKS2Q0MnRXZlQyRjAyZlE2WmdWcEdneW5pLzFOS3ViNnN6WjlMU3lid05EdFFrR3A5Y3Fjd04iLCJtYWMiOiI5OWNmYjcxMDE5YTIyNDA3YzkzYzQyNDA0YjdmZDM0YzYxMWI3MmNjNWQxMDI2NDY2ZjQwM2UxOWVlNDY0ZmViIiwidGFnIjoiIn0%3D; expires=Tue, 07 May 2024 17:57:21 GMT; Max-Age=7200; path=/; httponly; samesite=lax
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UOtmXmzhIPpzfXoIE9ulJw8Rv5YWM%2B0MMQRuQyf5Er0PyZ3vY9usWozhKcTuyKqwUqxnJOO7v4gFYC8L5nziUtgbdLTIWQ5WZ7havifIeRmDaDlZYoNiW0M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880267ba597e56bd-OSL
content-encoding: br
X-Firefox-Spdy: h2

discord.gg/sPYNCpZZQ8

162.159.130.234

301 Moved Permanently

0 B

URL User Request GET HTTP/2
discord.gg/sPYNCpZZQ8
IP
162.159.130.234:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectdiscord.gg
FingerprintE1:83:99:07:09:25:67:95:E6:CE:86:5E:C7:DA:97:73:DC:66:A6:72
ValidityThu, 12 Oct 2023 00:00:00 GMT - Fri, 11 Oct 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /sPYNCpZZQ8 HTTP/1.1
Host: discord.gg
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surl.li/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 301 Moved Permanently
date: Tue, 07 May 2024 15:57:31 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
location: https://discord.com/invite/sPYNCpZZQ8
strict-transport-security: max-age=31536000; includeSubDomains; preload
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-robots-tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R01hTUEronvbVENqRKCgE3N8UMgcpznE2IPFkuBZz1JlbA9w3K5osIkQKnzptoJI5W6YHETIGlFGMh5HFSzZi4EhYrFienWVZxYydYbhtH0%2BlFg5gOYUwYldC38%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880267fe5daf5696-OSL
X-Firefox-Spdy: h2

discord.com/assets/49237.e683bfb22a9605e15d91.css

162.159.136.232

200 OK

220 kB

URL GET HTTP/3
discord.com/assets/49237.e683bfb22a9605e15d91.css
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
220 kB (220255 bytes)
Hash
e69865879ed2ae95a1fbbac269933c83
4ff6812d7505ef7dedca706a079a3094d3d2babe
f9d9e3ba3086d7482cf28ad1b6cf5d48797eaefcaa564a3be6765b28b5bd65ab

HTTP Headers

GET /assets/49237.e683bfb22a9605e15d91.css HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:31 GMT
content-type: text/css
cf-ray: 880268021b1f0b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"e69865879ed2ae95a1fbbac269933c83"
last-modified: Sat, 04 May 2024 00:20:23 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wHiEfEaJZCTJPFYcRwbrbgIhuHUokGg7HdOqc5sW2lWtiLsIkX2ql%2BjPVeKVSq7NPcXwOlK32GXZkXxVn9ctWk5Vc%2FeuLAu8Ex2zVX88qQ8J%2BY0PY2Rm2QsMXCQR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/assets/80bebfd30fcab0b986b9.woff2

162.159.136.232

200 OK

38 kB

URL GET HTTP/3
discord.com/assets/80bebfd30fcab0b986b9.woff2
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 38156, version 2.66
Size
38 kB (38156 bytes)
Hash
3d6549bf2f38372c054eafb93fa358a9
e7a50f91c7ec5d5d896b55fa964f57ee47e11a1b
8e401b056dc1eb48d44a01407ceb54372bbc44797d3259069ce96a96dfd8c104

HTTP Headers

GET /assets/80bebfd30fcab0b986b9.woff2 HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://discord.com/assets/99387.423b4ff6d4ce760e821e.css
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: font/woff2
content-length: 38156
cf-ray: 8802680fc8800b06-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: "3d6549bf2f38372c054eafb93fa358a9"
last-modified: Mon, 25 Mar 2024 19:49:06 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RLvFUeka10RBO5yR1LCXSSHkGOMUcKOdL0V2legZBEsjso7CNiDGOFTXlHQgSapkhgLOaIs04d18c0TV8k79SM8AW%2FqcrgrxEJmtrxRHrtcFTFiHKCdCQB7k6hRa"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400

discord.com/cdn-cgi/challenge-platform/scripts/jsd/main.js

162.159.136.232

302 Found

0 B

URL GET HTTP/3
discord.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Tue, 07 May 2024 15:57:34 GMT
content-length: 0
access-control-allow-origin: *
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js
cache-control: max-age=300, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M40SYoVyZVLBhpYXzjJS3EwnperhmSb%2BwKPCg3srOlE0F7u6gvbkgjQzeDaXQd4q8JRDwSEpvsonrMPRgNP8IpOX8E5Vf%2FbsSYUILdxUgiqLylvZhX%2BXvrQsltMk"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 88026812dda70b06-OSL
alt-svc: h3=":443"; ma=86400

discord.com/assets/5fc301f8321de6d95f1a.png

162.159.136.232

2.4 kB

URL GET
discord.com/assets/5fc301f8321de6d95f1a.png
IP
162.159.136.232:0
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
PNG image data, 400 x 400, 8-bit colormap, non-interlaced
Size
2.4 kB (2406 bytes)
Hash
dff87c953f43b561d71fbcfe8a93a79a
fca97dc968ece7fe7a8746e75132a1ab4206c628
ede865b11b6817ee43248aa61e18b30ccce9a421058595296c2d58f59c118aee

HTTP Headers

GET /assets/5fc301f8321de6d95f1a.png HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: image/png
content-length: 2406
cf-ray: 8802681498740b06-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: "dff87c953f43b561d71fbcfe8a93a79a"
last-modified: Mon, 25 Mar 2024 19:49:03 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BCu%2BWvh5tpo9YM%2F5SQBL2r8B1uqOpdzZyFWBTEl%2FAttmCUof%2B%2BLza%2FP97YXCKNvULZZeX6mPYE2BN0Kgbbygn95YUhP0x%2BVs6d4c8oVgMlclMnNrSNAha1o0Wk5k"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400

discord.com/assets/75ba5f0f601173633474.woff2

162.159.136.232

200 OK

40 kB

URL GET HTTP/3
discord.com/assets/75ba5f0f601173633474.woff2
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 39764, version 2.66
Size
40 kB (39764 bytes)
Hash
71d3e9dc2bcb8e91225ba9fab588c8f2
d7e38ee4c245f64b78eb18e6ecd7b9f53b3254a8
ae99aaede2f373187a4fe442a2cb0ab9c2945efbab01cf33e01be517c0c4f813

HTTP Headers

GET /assets/75ba5f0f601173633474.woff2 HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://discord.com/assets/99387.423b4ff6d4ce760e821e.css
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: font/woff2
content-length: 39764
cf-ray: 88026814c8b40b06-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: "71d3e9dc2bcb8e91225ba9fab588c8f2"
last-modified: Mon, 25 Mar 2024 19:49:20 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bfSRk10akeE26ssbf1U%2B5%2FaJ0McGyGKPmURTHuddBkZZD1FxHUss3cZI8sdn3mMGhUvBDEfWSV3zSPGtkSF05Z3CkWBmuSf2wQyC5kcygziVjrZ%2BkhIhOli7j1bJ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400

discord.com/assets/webMinimal.dc9095e2d6c966ba4340.js

162.159.136.232

179 kB

URL
discord.com/assets/webMinimal.dc9095e2d6c966ba4340.js
IP
162.159.136.232:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (30029)
Size
179 kB (179179 bytes)
Hash
cff583dbfaff100435328acc2bb49833
bfd4020cb1d746f623a7acd7ff91c9378fd06a4d
aa003e85d27f7c10b1c3de37ba9dbe323b2899762d4a2c4c84c17d90fb31e411

HTTP Headers

GET /assets/webMinimal.dc9095e2d6c966ba4340.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:31 GMT
content-type: application/javascript
cf-ray: 880268022b420b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"cff583dbfaff100435328acc2bb49833"
last-modified: Tue, 07 May 2024 02:08:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yrMMWKvBeoQpphU2RFV96ncEliEV3628eiHtEmU6WbX884dBoBpRApKc2T3BH1eHoGxXAJ5k4b2EPHAS7DrO5UzVZnpEGQboOF0mbiJPuXM55%2FnQK8BIb0aUZ5lh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

surl.li/sscpp

104.26.5.19

200 OK

8.8 kB

URL User Request GET HTTP/2
surl.li/sscpp
IP
104.26.5.19:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectsurl.li
Fingerprint4A:8A:47:88:45:49:9E:79:20:E2:25:13:21:0D:14:FD:40:9F:73:38
ValiditySat, 30 Mar 2024 17:55:26 GMT - Fri, 28 Jun 2024 17:55:25 GMT

File type
HTML document, Unicode text, UTF-8 text
Size
8.8 kB (8771 bytes)
Hash
b4ae1f6005a45491b3f47500944750a5
60af7f84d35ef885d621b3f194a41e314a1c460d
2afa607773be1456a035c6bbdd0126ed91560b2f8bbbf2616faeb45cd2ec265f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sscpp HTTP/1.1
Host: surl.li
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 15:57:19 GMT
content-type: text/html; charset=utf-8
x-powered-by: PHP/8.2.15
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6IjU5Z3hSWWFCSVJjbDBvd1kvK1pJdkE9PSIsInZhbHVlIjoieEMrR3JUVW44RXFCdFQ4T3BVNkYxMTJzYnFGYVdEQTRKMWY0a1FUcGlPSUxGNlY4a2xFUkoxRUVjZlVFcklRellFVCt3ekE0MERod21kL01yaW1uSHNXTjRIbUlvOFZrMVdpNlgvVWFKdnh2QW9yN09hMHVKbXNkS2ltVGM0TkkiLCJtYWMiOiI2NjBkOTBmMDc3NTc4MzQ2YmYyODQ1YmQ1ZDY1OTUzZjAwNzEwMGQ1NjZlMTM5OTUxYWY1ZDJmNGNmMTlhN2RmIiwidGFnIjoiIn0%3D; expires=Tue, 07 May 2024 17:57:19 GMT; Max-Age=7200; path=/; secure; samesite=lax
surli_application_session=eyJpdiI6IlVTZzh4cDFMSVFzWWVzdzVvbGdvcGc9PSIsInZhbHVlIjoieUxFNzZ2Y1hSWGYxTnV0WlRJbysxdlVueUlYSmdqY2hoZ1hVQVpVK01Za3J3S0UzOXF3Zno5dDhjZnd3MjJ2OUxkb2hHWERhRmtSOWhIcGZmTHAxQ2VjdWxsMDNWVTh6b2ZlOWpqc0xLUk5mTVF6R2N6WVNoRXRBT1NFNFphcngiLCJtYWMiOiJmYWM4NjM1NjQyMWE3ZDk2NDg5Y2QxNDM1ZTU5ZmM5MzgxYmJlY2JmNTM5N2ZlNmZkYTcxN2NlNGJiYTczMzE2IiwidGFnIjoiIn0%3D; expires=Tue, 07 May 2024 17:57:19 GMT; Max-Age=7200; path=/; httponly; samesite=lax
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Heg%2FM7pLjsvZ%2FM%2F%2BPC3f6JGi5N%2FeUmvqSZe2Atawhoh7b9kirQHR7EqC2ZxReF0ZiEHDUWyQXSv%2B0E1iAFYNNbMK7l1c2Jm8I6CB9NU%2FuHHyFf4PPikq1NE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880267b589c856bd-OSL
content-encoding: br
X-Firefox-Spdy: h2

surl.li/getPreview

104.26.5.19

200 OK

120 kB

URL POST HTTP/2
surl.li/getPreview
IP
104.26.5.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://surl.li/sscpp
Certificate
IssuerGoogle Trust Services LLC
Subjectsurl.li
Fingerprint4A:8A:47:88:45:49:9E:79:20:E2:25:13:21:0D:14:FD:40:9F:73:38
ValiditySat, 30 Mar 2024 17:55:26 GMT - Fri, 28 Jun 2024 17:55:25 GMT

File type
ASCII text, with no line terminators
Size
120 kB (119845 bytes)
Hash
8465ab1121b241313da686f7e80bf18a
ae0de29f5042080f5920cc1f1ad5b3a3a07f6cc5
e8bb722c9bb2dffe264ee748f815acaf199726c274313e26a0bc97a13f969ce0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /getPreview HTTP/1.1
Host: surl.li
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-CSRF-TOKEN: wnKYBLBuHOSfShVyIUFmmZI3TG6LN81y2uIKTNzO
X-Requested-With: XMLHttpRequest
Content-Length: 41
Origin: https://surl.li
DNT: 1
Connection: keep-alive
Referer: https://surl.li/sscpp
Cookie: XSRF-TOKEN=eyJpdiI6IjU5Z3hSWWFCSVJjbDBvd1kvK1pJdkE9PSIsInZhbHVlIjoieEMrR3JUVW44RXFCdFQ4T3BVNkYxMTJzYnFGYVdEQTRKMWY0a1FUcGlPSUxGNlY4a2xFUkoxRUVjZlVFcklRellFVCt3ekE0MERod21kL01yaW1uSHNXTjRIbUlvOFZrMVdpNlgvVWFKdnh2QW9yN09hMHVKbXNkS2ltVGM0TkkiLCJtYWMiOiI2NjBkOTBmMDc3NTc4MzQ2YmYyODQ1YmQ1ZDY1OTUzZjAwNzEwMGQ1NjZlMTM5OTUxYWY1ZDJmNGNmMTlhN2RmIiwidGFnIjoiIn0%3D; surli_application_session=eyJpdiI6IlVTZzh4cDFMSVFzWWVzdzVvbGdvcGc9PSIsInZhbHVlIjoieUxFNzZ2Y1hSWGYxTnV0WlRJbysxdlVueUlYSmdqY2hoZ1hVQVpVK01Za3J3S0UzOXF3Zno5dDhjZnd3MjJ2OUxkb2hHWERhRmtSOWhIcGZmTHAxQ2VjdWxsMDNWVTh6b2ZlOWpqc0xLUk5mTVF6R2N6WVNoRXRBT1NFNFphcngiLCJtYWMiOiJmYWM4NjM1NjQyMWE3ZDk2NDg5Y2QxNDM1ZTU5ZmM5MzgxYmJlY2JmNTM5N2ZlNmZkYTcxN2NlNGJiYTczMzE2IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 15:57:20 GMT
content-type: application/json
x-powered-by: PHP/8.2.15
cache-control: no-cache, private
set-cookie: XSRF-TOKEN=eyJpdiI6InEvTWgwdStyNWp2ZWVhTUNGQnpkcmc9PSIsInZhbHVlIjoieEFWdmJjNkhmQWNGOUoyM2VDK0x5WW83U0xtcitiWkF2OVFwZk13VkoreVBUS2hKQWxXVm4rRkw4V1BmTUhQYXZHTXdBcVVtOHd1TzBPdkxmaW9KM3lWUHBjc2pqRjNZeGpPUkhnMWRDL3lxd085cFF3N2JraUVxRGFwOEUvREoiLCJtYWMiOiI5OTIwNjk2ZGJlMmViNWM2ZTlkOGZjYWQ3MzM3ZDhlYWYyZTFiZjFlYjI2NmJhYzAwODZhNDhjMDE4NzhlNTAxIiwidGFnIjoiIn0%3D; expires=Tue, 07 May 2024 17:57:20 GMT; Max-Age=7200; path=/; secure; samesite=lax
surli_application_session=eyJpdiI6IkdBVGpjZzJHOHBNQmJnQ0N0U1kwMFE9PSIsInZhbHVlIjoibDlhQWpTektRODhuT3IzRGFiWTEra2ZFVldESEViV3pLWGR0bkIreng3U2tySURVSC9DRTVZZ2pyQ1p5THlVblVLTmpJc1FZMENEUFhzVkdXSkp3SlFrK3hQaXJJTmhYTXUyR3VQUkEwNVpCZm42UzhXVGxRT1FkUmM0TVYrZ3MiLCJtYWMiOiJiZTI1NzJkNjJiOWIyYjk3NGZmYmY4Zjc1NzhlNzVjY2I0MjBkMzkwYTM5ZDA1ZGJiZDI4MjJhYjZlMmMzMzlhIiwidGFnIjoiIn0%3D; expires=Tue, 07 May 2024 17:57:20 GMT; Max-Age=7200; path=/; httponly; samesite=lax
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ssRwNQq82ADm5iQXoZJUdHMBuB8QYapjxzUuQG7UKSlol8cbbb%2BEkn87a1NPN0%2FXl%2FdRMhm3gcHN%2BpYS8WbJQj9K0Ho8nup4mJfDl%2BSQYUy%2BUK7Dh%2F6QcL4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880267ba497b56bd-OSL
content-encoding: br
X-Firefox-Spdy: h2

discord.com/assets/3541.a59b4cd3496ff6c890bf.js

162.159.136.232

200 OK

1.2 MB

URL GET HTTP/3
discord.com/assets/3541.a59b4cd3496ff6c890bf.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65530), with no line terminators
Size
1.2 MB (1192596 bytes)
Hash
d7d215079ac2452a076b2e51de628b9c
abc2e024ad8e0e2d5bb830160df1e4eef8d961e9
86789e84e4be7db93328565257b3df9e664da75db0687fb286651cd8416587dd

HTTP Headers

GET /assets/3541.a59b4cd3496ff6c890bf.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:31 GMT
content-type: application/javascript
cf-ray: 880268022b350b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"d7d215079ac2452a076b2e51de628b9c"
last-modified: Fri, 03 May 2024 18:55:29 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AKAuva5XhwhcFj2ga1XV5azvaerMdGOYXlJs%2FYXgcMZfj%2FSb0iGkrgegxSEKCGaDQJqg1ZbG1X9qtap52ygoQvaOUnHy%2FObOdHU%2FOqKut3ZL0bVCAEBq4LsitQ%2Bb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/assets/70397.226bb847204914e85d62.js

162.159.136.232

200 OK

46 kB

URL GET HTTP/3
discord.com/assets/70397.226bb847204914e85d62.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (56165), with no line terminators
Size
46 kB (46146 bytes)
Hash
88660887a5c664ff46759eae4ca43c7a
f8f202f13658b36570b6de2c31ad01dfa48c1dd6
8dafa894240ca967a4b15087693bc2c7c094837bb663e56d6018eaab0bc24c20

HTTP Headers

GET /assets/70397.226bb847204914e85d62.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:31 GMT
content-type: application/javascript
cf-ray: 880268022b3f0b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"88660887a5c664ff46759eae4ca43c7a"
last-modified: Wed, 27 Mar 2024 16:17:42 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qP%2FlIquvx5CsfppLWrnN%2FMn0JPAfjskvo0U8%2FkTHSxfqo5g2yOxv6AQeF%2F1mATgrP6Xn759izM2fOXr9kuWEbvidIyDLXE2Luq75KroKXUVXCONzglU%2FrOBTL4U5"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/cdn-cgi/challenge-platform/h/b/jsd/r/880267ff0966b503

162.159.136.232

200 OK

0 B

URL POST HTTP/3
discord.com/cdn-cgi/challenge-platform/h/b/jsd/r/880267ff0966b503
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/jsd/r/880267ff0966b503 HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12156
Origin: https://discord.com
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:35 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=iau4fLyWPvBcCW9lWFv358Po4I4YdX9TI73dQhgQnLE-1715097455-1.0.1.1-x6bbPHJ0GbTFHnA1g7mjzx02_101WPeLJqx.W9UNbsI4ONDEZYoyKEZiMhHjJfWrT1G_g43E4UnRnSnywF1ooA; path=/; expires=Wed, 07-May-25 15:57:35 GMT; domain=.discord.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=h6x9yutTOnByKTFDGlTBqeI9GWxnHb58%2F0OMb2KQVhZ7YgeXh%2FRgPuTX%2BppJcW1c6XuYArSzTx1uroPTNvNrvPuXe3tiiIw7MUYZVwpW2nlmjjK886TIecMR%2FLOM"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8802681baba00b06-OSL
alt-svc: h3=":443"; ma=86400

discord.com/assets/04bca5e801a9fcbfc3aa.woff2

162.159.136.232

200 OK

39 kB

URL GET HTTP/3
discord.com/assets/04bca5e801a9fcbfc3aa.woff2
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 39424, version 2.66
Size
39 kB (39424 bytes)
Hash
7f63813838e283aea62f1a68ef1732c2
c855806cb7c3cc1d29546e3e6446732197e25e93
440ad8b1449985479bc37265e9912bbf2bf56fe9ffd14709358a8e9c2d5f8e5b

HTTP Headers

GET /assets/04bca5e801a9fcbfc3aa.woff2 HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://discord.com/assets/99387.423b4ff6d4ce760e821e.css
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000; cf_clearance=iau4fLyWPvBcCW9lWFv358Po4I4YdX9TI73dQhgQnLE-1715097455-1.0.1.1-x6bbPHJ0GbTFHnA1g7mjzx02_101WPeLJqx.W9UNbsI4ONDEZYoyKEZiMhHjJfWrT1G_g43E4UnRnSnywF1ooA
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:36 GMT
content-type: font/woff2
content-length: 39424
cf-ray: 8802681c1ca50b06-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: "7f63813838e283aea62f1a68ef1732c2"
last-modified: Mon, 25 Mar 2024 19:49:11 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=W3sL9T0bTgyiTYivmRpf0Q0Gd0QPfV8nHqMcGg9tQD5LEiFyEIvQ57ZpWXLxIc5drNmylR3d9Q7RjItmsJTRtyP7U2lR7yFiiaxBqPCQ5QvIKF35%2FIc65P4B7uW6"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400

discord.com/assets/7e44a0c40cf9f5ad8851.woff2

162.159.136.232

200 OK

40 kB

URL GET HTTP/3
discord.com/assets/7e44a0c40cf9f5ad8851.woff2
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 39724, version 2.66
Size
40 kB (39724 bytes)
Hash
ff5eccde83f118cea0224ebbb9dc3179
0ad305614c46bdb6b7bb3445c2430e12aecee879
13da02ce62b1a388a7c8d6f3bd286fe774ee2b91ac63d281523e80b2a8a063bc

HTTP Headers

GET /assets/7e44a0c40cf9f5ad8851.woff2 HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://discord.com/assets/99387.423b4ff6d4ce760e821e.css
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000; cf_clearance=iau4fLyWPvBcCW9lWFv358Po4I4YdX9TI73dQhgQnLE-1715097455-1.0.1.1-x6bbPHJ0GbTFHnA1g7mjzx02_101WPeLJqx.W9UNbsI4ONDEZYoyKEZiMhHjJfWrT1G_g43E4UnRnSnywF1ooA
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:36 GMT
content-type: font/woff2
content-length: 39724
cf-ray: 8802681c1ca30b06-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: "ff5eccde83f118cea0224ebbb9dc3179"
last-modified: Mon, 25 Mar 2024 19:49:13 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vdidTcOawE71FE2n9%2BzTR2dT4eRmU87m3mfDHKboOKks2gCg1QWC9OXwwshALt1rCjC9dMCm%2FKNq4B6RWvRTpxft9qIruSPOC45BrBeqBfIr1gnVRmRtsxCKakQt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400

discord.com/assets/35705.b7720b453327f10e7ec1.js

162.159.136.232

200 OK

2.1 MB

URL GET HTTP/3
discord.com/assets/35705.b7720b453327f10e7ec1.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
2.1 MB (2106702 bytes)
Hash
993b79be8a3975567ced0c6a236ff675
ca91489084024a0058d9e5fa3232bacf262fd30e
ebd35f4e7cf54dbdfb0829edad95d7387eaf70f21a032586fee5074f69df85ca

HTTP Headers

GET /assets/35705.b7720b453327f10e7ec1.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:31 GMT
content-type: application/javascript
cf-ray: 880268022b410b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"993b79be8a3975567ced0c6a236ff675"
last-modified: Tue, 07 May 2024 02:08:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QkZ5OLEYOdGXPjbWro3eEL4ozsjYVOAOhc0Nn6LobAOimF77kryiV%2FSF0qJct50RUo0hkZ8WsqPvJz4XIU8hxyQo4xOkgBbm21PQJuksqZTAsp%2BBrpgZ92zTAe1K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/assets/62734.1842567f24c7a0ab79a3.js

162.159.136.232

200 OK

14 kB

URL GET HTTP/3
discord.com/assets/62734.1842567f24c7a0ab79a3.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (6590)
Size
14 kB (13529 bytes)
Hash
8f057d6265ab1810d057be91abfe9c25
c109adf011f625b80ab59f678c576149ffbb5b44
9bf9e07245b1495ae4ac7923d79e955f78bfdc9f4521d6f67ca7b157a2ede878

HTTP Headers

GET /assets/62734.1842567f24c7a0ab79a3.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:31 GMT
content-type: application/javascript
cf-ray: 880268021b2d0b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"8f057d6265ab1810d057be91abfe9c25"
last-modified: Wed, 27 Mar 2024 16:17:40 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2RNkOQXPpJc7l%2F3b77K8IzA5acdkgoVzPw7Tqa286twtFwInQ1IFtD8UHsf4tEFXWUuNK8XK4aE3auW1K5csaOzTNqUR%2Bd5k8e58P9T3QQeHveOrHgEUrePapZs7"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/assets/aae0756b8bbf2c4871a0.js

162.159.136.232

200 OK

25 kB

URL GET HTTP/3
discord.com/assets/aae0756b8bbf2c4871a0.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
25 kB (24694 bytes)
Hash
020d815b563d51cb8053cd939bf7883f
747198606ee70193fc5a0ffe43bdd680abdb7166
d37687fbda734574633e1aa4a2666c4526680c59898a92e5d228f5ae3840e23b

HTTP Headers

GET /assets/aae0756b8bbf2c4871a0.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: application/javascript
cf-ray: 880268135e6c0b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"020d815b563d51cb8053cd939bf7883f"
last-modified: Tue, 23 Apr 2024 23:56:23 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S9DVttfceNF6AyQFPuO9mLr8%2FQYzdSs59QiXn%2FgpiN1mO1F02nym%2BsUbVwH%2Bcz1vz6HRHHy1YsDOVNJicAFHsWyBbgV%2BHlTI6Y2pKktpE51sgtsLsK%2FYC6%2BbclG3"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/assets/05cc6aa6f77a0a024917.svg

162.159.136.232

200 OK

398 B

URL GET HTTP/3
discord.com/assets/05cc6aa6f77a0a024917.svg
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
398 B (398 bytes)
Hash
c6ce0010471b65c0faeda6c53ab297bd
8735052de92d694b4ea91ceccab0e7e8f75a3cc7
862046fee1b4f3744f000347cc0b337871967b2bd9471bcb6dded2a49a61c527

HTTP Headers

GET /assets/05cc6aa6f77a0a024917.svg HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: image/svg+xml
cf-ray: 88026813ef710b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"c6ce0010471b65c0faeda6c53ab297bd"
last-modified: Mon, 25 Mar 2024 19:49:11 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2fxWMql9P6UzJjn%2BmFx61%2Br7lqXtuigCbq7w8H64l0XJRPdxLvHRUGxFMeRxupVVB2wHqMA3Lud8QXgTFgX73eGS%2Bg9PQg1XFdiQGd0n%2FAmn4gaEan%2Fng%2BB8L6sO"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.discordapp.com/icons/1002914862046920845/15da6b1f7cd286c694a62c6ef99f91a3.webp?size=64

162.159.129.233

200 OK

1.6 kB

URL GET HTTP/2
cdn.discordapp.com/icons/1002914862046920845/15da6b1f7cd286c694a62c6ef99f91a3.webp?size=64
IP
162.159.129.233:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscordapp.com
Fingerprint97:8B:EE:AD:1E:BF:A1:69:E7:94:29:F7:55:7A:29:64:19:C7:81:39
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 64x64, Scaling: [none]x[none], YUV color, decoders should clamp
Size
1.6 kB (1568 bytes)
Hash
6f01a9a20328c715fe2ca6e5de86ac4e
2ed133ef66546c838e324c3cd8d2d0286752ed56
c62493fde27a5d7cd8a8fd442b2beed39c2d4c361d9d5adcb4a62101c557afa8

HTTP Headers

GET /icons/1002914862046920845/15da6b1f7cd286c694a62c6ef99f91a3.webp?size=64 HTTP/1.1
Host: cdn.discordapp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 15:57:36 GMT
content-type: image/webp
content-length: 1568
cf-ray: 8802681c2a66568f-OSL
cf-cache-status: MISS
accept-ranges: bytes
access-control-allow-origin: *
cache-control: public, max-age=31536000
expires: Wed, 07 May 2025 15:57:36 GMT
last-modified: Wed, 10 Apr 2024 10:18:37 GMT
x-discord-transform-duration: 10
x-robots-tag: noindex, nofollow, noarchive, nocache, noimageindex, noodp
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fc59Ep6K4ugo5Mzo081beiI28ljzyf0P%2BX15iqnaqu905w5oe9fzM0PQdlfYic82gwhebXkasA9QLfjTPXfQZquJ2%2FjNPmvDarOWZ3NPSqypKwRkwctoiP2UFKBVzKXcY6d9Xg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: __cf_bm=hJi9nvI.mbZWhkzdCbWLycTvbJE5uOTh9o15.NOFOc4-1715097456-1.0.1.1-KCEyktCWjlCVP7psWiUZZ8Q8vuS9IyU0qbC3lpHt6Ncj.tECYMAyaex7mHcZmGuLviXaWfnFsS7NtXqW5GgsrA; path=/; expires=Tue, 07-May-24 16:27:36 GMT; domain=.discordapp.com; HttpOnly; Secure; SameSite=None
_cfuvid=JAWlGSdd4GP9abup7l0.oCZmqPgCrDOlcZXpZ7ZMfu0-1715097456294-0.0.1.1-604800000; path=/; domain=.discordapp.com; HttpOnly; Secure; SameSite=None
server: cloudflare
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

discord.com/api/v9/science

162.159.136.232

204 No Content

0 B

URL POST HTTP/3
discord.com/api/v9/science
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/v9/science HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Super-Properties: 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
X-Fingerprint: 1237433153900249202.G2qyshBtuQlE78IRCskQclMSixI
X-Discord-Locale: en-US
X-Discord-Timezone: UTC
X-Debug-Options: bugReporterEnabled
Content-Length: 489
Origin: https://discord.com
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000; cf_clearance=iau4fLyWPvBcCW9lWFv358Po4I4YdX9TI73dQhgQnLE-1715097455-1.0.1.1-x6bbPHJ0GbTFHnA1g7mjzx02_101WPeLJqx.W9UNbsI4ONDEZYoyKEZiMhHjJfWrT1G_g43E4UnRnSnywF1ooA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Tue, 07 May 2024 15:57:38 GMT
access-control-allow-origin: https://discord.com
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=57KM%2BD2QCcrMia5wiu7BqzHdEkOHsBn8CwxU0JXcoPz8jSV7XPWRJ6fjSXDA1eC1CM8%2FsYdEVq6kDgVBQZC%2BIM6tDjE794sL%2BvdOsxFvAabxJlTG4Kp4%2B%2BstFeNy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'none'; default-src 'none'
server: cloudflare
cf-ray: 8802682a0b050b06-OSL

discord.com/api/v9/science

162.159.136.232

204 No Content

0 B

URL POST HTTP/3
discord.com/api/v9/science
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/v9/science HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Super-Properties: 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
X-Fingerprint: 1237433153900249202.G2qyshBtuQlE78IRCskQclMSixI
X-Discord-Locale: en-US
X-Discord-Timezone: UTC
X-Debug-Options: bugReporterEnabled
Content-Length: 491
Origin: https://discord.com
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000; cf_clearance=iau4fLyWPvBcCW9lWFv358Po4I4YdX9TI73dQhgQnLE-1715097455-1.0.1.1-x6bbPHJ0GbTFHnA1g7mjzx02_101WPeLJqx.W9UNbsI4ONDEZYoyKEZiMhHjJfWrT1G_g43E4UnRnSnywF1ooA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Tue, 07 May 2024 15:57:38 GMT
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://discord.com
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IOD7TEiQl%2FI36K18%2FT299toqx6IWo4bpYzeiSCpeJZJOpyL89FH3JxRjBjY2gXv0me7YRvwFh3sIKhKAYdhCWNZf%2FNnLZl70vTd4lk7BN4CE0PAu4HGBxuMYR1uV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'none'; default-src 'none'
server: cloudflare
cf-ray: 8802682a8bcf0b06-OSL

discord.com/api/v9/science

162.159.136.232

204 No Content

0 B

URL POST HTTP/3
discord.com/api/v9/science
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/v9/science HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Super-Properties: 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
X-Fingerprint: 1237433153900249202.G2qyshBtuQlE78IRCskQclMSixI
X-Discord-Locale: en-US
X-Discord-Timezone: UTC
X-Debug-Options: bugReporterEnabled
Content-Length: 366
Origin: https://discord.com
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000; cf_clearance=iau4fLyWPvBcCW9lWFv358Po4I4YdX9TI73dQhgQnLE-1715097455-1.0.1.1-x6bbPHJ0GbTFHnA1g7mjzx02_101WPeLJqx.W9UNbsI4ONDEZYoyKEZiMhHjJfWrT1G_g43E4UnRnSnywF1ooA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Tue, 07 May 2024 15:57:43 GMT
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://discord.com
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4jRcJPS2UX1ueTRHyAGEuUyW42a%2B5gvqfvUyhH2L5VDLke1pilVeoXSrJVvE3Kv24nEAE%2Fp8NXNycDmNZ0Yd4bfv4I%2BMc%2FQd91qsf%2BzH0V20KjojrS8fxlVqPMob"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'none'; default-src 'none'
server: cloudflare
cf-ray: 88026849ab6a0b06-OSL

discord.com/api/v9/science

162.159.136.232

204 No Content

0 B

URL POST HTTP/3
discord.com/api/v9/science
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/v9/science HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Super-Properties: eyJvcyI6IkxpbnV4IiwiYnJvd3NlciI6IkZpcmVmb3giLCJkZXZpY2UiOiIiLCJzeXN0ZW1fbG9jYWxlIjoiZW4tVVMiLCJicm93c2VyX3VzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoWDExOyBMaW51eCB4ODZfNjQ7IHJ2Ojk2LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvOTYuMCIsImJyb3dzZXJfdmVyc2lvbiI6Ijk2LjAiLCJvc192ZXJzaW9uIjoiIiwicmVmZXJyZXIiOiJodHRwczovL3N1cmwubGkvIiwicmVmZXJyaW5nX2RvbWFpbiI6InN1cmwubGkiLCJyZWZlcnJlcl9jdXJyZW50IjoiaHR0cHM6Ly9zdXJsLmxpLyIsInJlZmVycmluZ19kb21haW5fY3VycmVudCI6InN1cmwubGkiLCJyZWxlYXNlX2NoYW5uZWwiOiJzdGFibGUiLCJjbGllbnRfYnVpbGRfbnVtYmVyIjoyOTA5OTgsImNsaWVudF9ldmVudF9zb3VyY2UiOm51bGwsImRlc2lnbl9pZCI6MH0=
X-Fingerprint: 1237433153900249202.G2qyshBtuQlE78IRCskQclMSixI
X-Discord-Locale: en-US
X-Discord-Timezone: UTC
X-Debug-Options: bugReporterEnabled
Content-Length: 513
Origin: https://discord.com
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000; cf_clearance=iau4fLyWPvBcCW9lWFv358Po4I4YdX9TI73dQhgQnLE-1715097455-1.0.1.1-x6bbPHJ0GbTFHnA1g7mjzx02_101WPeLJqx.W9UNbsI4ONDEZYoyKEZiMhHjJfWrT1G_g43E4UnRnSnywF1ooA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Tue, 07 May 2024 15:57:43 GMT
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://discord.com
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GTLDmXkHZHxD%2FjSeqShkRRs%2FymTaCEu71hDX5Rg59gEbVfA5F0TX4A8vzQyLe1S8SZ7%2FoLw51eb8U8znqMToCP3QztWvoUFc5Kgh9oCGp1tvqOwKh0ETU3Hq4bpz"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'none'; default-src 'none'
server: cloudflare
cf-ray: 8802684b8dd60b06-OSL

discord.com/assets/738cfb28f12f485f4009.js

162.159.136.232

217 kB

URL
discord.com/assets/738cfb28f12f485f4009.js
IP
162.159.136.232:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (13919)
Size
217 kB (216835 bytes)
Hash
7dbe808aabb85e5d9db882bdb2df3743
a0daa15674ad2c51450115d8b425cb87b4f38820
9951dbbe768da0a567f042582c4822d9343694ba63f9484425d29466f111b784

HTTP Headers

GET /assets/738cfb28f12f485f4009.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000; cf_clearance=iau4fLyWPvBcCW9lWFv358Po4I4YdX9TI73dQhgQnLE-1715097455-1.0.1.1-x6bbPHJ0GbTFHnA1g7mjzx02_101WPeLJqx.W9UNbsI4ONDEZYoyKEZiMhHjJfWrT1G_g43E4UnRnSnywF1ooA
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:43 GMT
content-type: application/javascript
cf-ray: 880268491aaa0b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"7dbe808aabb85e5d9db882bdb2df3743"
last-modified: Fri, 03 May 2024 18:55:29 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RCuNB9WlbukQPAJMYndXfsRnsRll3Xztrj6QkqmKZSjnXhhxnGing6yKdvIX8VAsa2ARsAtyK59WDBMi5BbZYmHCoAe32prho2mkYAWtGfTpygrfv5YK278KSqHU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

imgs3.hcaptcha.com/tip/316ddc705f36a05fa5917910341d2ac46bd3d6b86d253a772801e3655c08971a/11d907f7af9900bd60ff10864c7547e67352fb5382ff95807ad2d37066214b48.jpeg

104.18.124.91

3.6 kB

URL
imgs3.hcaptcha.com/tip/316ddc705f36a05fa5917910341d2ac46bd3d6b86d253a772801e3655c08971a/11d907f7af9900bd60ff10864c7547e67352fb5382ff95807ad2d37066214b48.jpeg
IP
104.18.124.91:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 128x128, components 3
Size
3.6 kB (3638 bytes)
Hash
0543822686801c190491c1b0e02558c2
ae3c22b3840b07ad76430bd55b43a75e488d18b3
cf715cdc5446b3da4467b40b0afb87249579c3961aba8b3535f64d7e25330f04

HTTP Headers

GET /tip/316ddc705f36a05fa5917910341d2ac46bd3d6b86d253a772801e3655c08971a/11d907f7af9900bd60ff10864c7547e67352fb5382ff95807ad2d37066214b48.jpeg HTTP/1.1
Host: imgs3.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:45 GMT
content-type: image/jpeg
content-length: 3638
alt-svc: h3=":443"; ma=86400
cache-control: public, max-age=86400
cf-bgj: h2pri
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Wed, 08 May 2024 15:57:45 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: cloudflare
cf-ray: 88026856be691c0a-OSL

newassets.hcaptcha.com/captcha/v1/50fb34a/hcaptcha.js

104.18.124.91

114 kB

URL
newassets.hcaptcha.com/captcha/v1/50fb34a/hcaptcha.js
IP
104.18.124.91:0
ASN
#13335 CLOUDFLARENET

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (41625)
Size
114 kB (113667 bytes)
Hash
c6438f98ac4acd11054d196bf44310de
00a348466d30d26c486e48d464a2432dfcc28b69
1c7ee73f66b781ba78bdfd7189fc368805cb5e642ad5f095b505a206c5a19ba5

HTTP Headers

GET /captcha/v1/50fb34a/hcaptcha.js HTTP/1.1
Host: newassets.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/captcha/v1/50fb34a/static/hcaptcha.html
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:43 GMT
content-type: application/javascript
etag: W/"43a836cde2f57b4747b92444069ecfc9"
cache-control: public, max-age=1209600
alt-svc: h3=":443"; ma=86400
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Tue, 21 May 2024 15:57:43 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 8802684dcffc1c0a-OSL
content-encoding: br

imgs3.hcaptcha.com/tip/e21899dd3d9b7d61805b21ade47dcb8dc444b96f0d1ce7ff718da33450d70f5e/9ca5a40ba4a0a2f65d0a95245fcc89ca21c2b4c9d045a484cbefb18043a0ddcd.jpeg

104.18.124.91

3.9 kB

URL
imgs3.hcaptcha.com/tip/e21899dd3d9b7d61805b21ade47dcb8dc444b96f0d1ce7ff718da33450d70f5e/9ca5a40ba4a0a2f65d0a95245fcc89ca21c2b4c9d045a484cbefb18043a0ddcd.jpeg
IP
104.18.124.91:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 128x128, components 3
Size
3.9 kB (3874 bytes)
Hash
5ab4460e9846984d804dbe41bb3c4078
e10b8beb1faab741603a6084223b5725ed20768b
8fd2d9d860470226ee15bb29ce5811f87abde343d363c53c6db59525284f685a

HTTP Headers

GET /tip/e21899dd3d9b7d61805b21ade47dcb8dc444b96f0d1ce7ff718da33450d70f5e/9ca5a40ba4a0a2f65d0a95245fcc89ca21c2b4c9d045a484cbefb18043a0ddcd.jpeg HTTP/1.1
Host: imgs3.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:45 GMT
content-type: image/jpeg
content-length: 3874
alt-svc: h3=":443"; ma=86400
cache-control: public, max-age=86400
cf-bgj: h2pri
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Wed, 08 May 2024 15:57:45 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: cloudflare
cf-ray: 88026856be6f1c0a-OSL

js.hcaptcha.com/1/api.js?render=explicit&onload=hcaptchaOnLoad

104.18.124.91

113 kB

URL
js.hcaptcha.com/1/api.js?render=explicit&onload=hcaptchaOnLoad
IP
104.18.124.91:0
ASN
#13335 CLOUDFLARENET

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (41625)
Size
113 kB (112622 bytes)
Hash
c6438f98ac4acd11054d196bf44310de
00a348466d30d26c486e48d464a2432dfcc28b69
1c7ee73f66b781ba78bdfd7189fc368805cb5e642ad5f095b505a206c5a19ba5

HTTP Headers

GET /1/api.js?render=explicit&onload=hcaptchaOnLoad HTTP/1.1
Host: js.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 15:57:43 GMT
content-type: application/javascript
etag: W/"43a836cde2f57b4747b92444069ecfc9"
cache-control: max-age=300
alt-svc: h3=":443"; ma=86400
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Tue, 21 May 2024 15:57:43 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
age: 0
cross-origin-resource-policy: cross-origin
server: cloudflare
cf-ray: 8802684bb93956a4-OSL
content-encoding: br
X-Firefox-Spdy: h2

discord.com/assets/a92684d27bba9b2589e2.js

162.159.136.232

200 OK

4.1 kB

URL GET HTTP/3
discord.com/assets/a92684d27bba9b2589e2.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (1613)
Size
4.1 kB (4088 bytes)
Hash
d8d884cbb0f2bff0e39531ac6a2dc813
f0a7534fcd48b33d8393b4a3de4b81fc4a9b9d58
169ae3f5806f7f96ad327b3bfbac149768af7325893149b7113180c9ae130655

HTTP Headers

GET /assets/a92684d27bba9b2589e2.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: application/javascript
cf-ray: 880268135e6f0b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"d8d884cbb0f2bff0e39531ac6a2dc813"
last-modified: Wed, 27 Mar 2024 16:17:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uthR7EgiafU667n9ysZ9M7PEBn3VWfNEWW7qKcasXmo4kcKVdaV2i6eP%2B%2BM2JD4jbHY0OS%2FviJYIRhIe7OiTNhAhdSkFVTxNs19yEYcm0ae2lvC3%2FLGr7Rg7o1Gx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

imgs3.hcaptcha.com/tip/ae80e82e49475daf35f2dc28d72d37d48593b6ff7829beb592f3d1db5fde9b19/228ee8efe9f761c9cb449e86c4e82c6b0f6cb513ebe0243ad483f15cb0c0994e.jpeg

104.18.124.91

5.1 kB

URL
imgs3.hcaptcha.com/tip/ae80e82e49475daf35f2dc28d72d37d48593b6ff7829beb592f3d1db5fde9b19/228ee8efe9f761c9cb449e86c4e82c6b0f6cb513ebe0243ad483f15cb0c0994e.jpeg
IP
104.18.124.91:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 128x128, components 3
Size
5.1 kB (5148 bytes)
Hash
0ff08b8f1a63f8eba219bf3063923c46
265da6fbb74f8a6d1584ca094f1dd9f376afcc59
ab8d15e2d323d6d190f08454dd4ccaceb46e7606e431c1a816a09261d7442f29

HTTP Headers

GET /tip/ae80e82e49475daf35f2dc28d72d37d48593b6ff7829beb592f3d1db5fde9b19/228ee8efe9f761c9cb449e86c4e82c6b0f6cb513ebe0243ad483f15cb0c0994e.jpeg HTTP/1.1
Host: imgs3.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:45 GMT
content-type: image/jpeg
content-length: 5148
alt-svc: h3=":443"; ma=86400
cache-control: public, max-age=86400
cf-bgj: h2pri
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Wed, 08 May 2024 15:57:45 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: cloudflare
cf-ray: 88026856be6c1c0a-OSL

imgs3.hcaptcha.com/tip/137251c86a25e89246b380a44f74ed18e85bfcf2729ecce6fe7505f1f248e0fa/c47c5eaa5f11025b7a24e3a8175e1ff4f6ebec72c13d1e8b71bc3310ae1dbb39.jpeg

104.18.124.91

4.3 kB

URL
imgs3.hcaptcha.com/tip/137251c86a25e89246b380a44f74ed18e85bfcf2729ecce6fe7505f1f248e0fa/c47c5eaa5f11025b7a24e3a8175e1ff4f6ebec72c13d1e8b71bc3310ae1dbb39.jpeg
IP
104.18.124.91:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 128x128, components 3
Size
4.3 kB (4309 bytes)
Hash
e606c4faefce9542797c8abfe77362c2
3eecb102cccb60c886776929f22547a82b323287
2391893aa194cab62f0eee8b61de7962e6734cc576aa8cbe9a384bcc3d550b1f

HTTP Headers

GET /tip/137251c86a25e89246b380a44f74ed18e85bfcf2729ecce6fe7505f1f248e0fa/c47c5eaa5f11025b7a24e3a8175e1ff4f6ebec72c13d1e8b71bc3310ae1dbb39.jpeg HTTP/1.1
Host: imgs3.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:45 GMT
content-type: image/jpeg
content-length: 4309
alt-svc: h3=":443"; ma=86400
cache-control: public, max-age=86400
cf-bgj: h2pri
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Wed, 08 May 2024 15:57:45 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: cloudflare
cf-ray: 88026856be661c0a-OSL

imgs3.hcaptcha.com/tip/a4f0484473b47be973395595b9695c535ca07083142cf9a528955b56fbf8724f/3c76e2daadf98db7e6d966d7b2bb09520594e36f5ab3cee0a03c509ff5f3d4d5.jpeg

104.18.124.91

3.2 kB

URL
imgs3.hcaptcha.com/tip/a4f0484473b47be973395595b9695c535ca07083142cf9a528955b56fbf8724f/3c76e2daadf98db7e6d966d7b2bb09520594e36f5ab3cee0a03c509ff5f3d4d5.jpeg
IP
104.18.124.91:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 128x128, components 3
Size
3.2 kB (3163 bytes)
Hash
b30384b6c8792e785ab85b434ab498b5
1820f7e44d95bfa42f92ab4b50db2d63559f2dd4
9dbd8d3ff6cb7533b68fcbc9309dfb5452cb55fe704990bd2bd6bff0535c3d52

HTTP Headers

GET /tip/a4f0484473b47be973395595b9695c535ca07083142cf9a528955b56fbf8724f/3c76e2daadf98db7e6d966d7b2bb09520594e36f5ab3cee0a03c509ff5f3d4d5.jpeg HTTP/1.1
Host: imgs3.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:45 GMT
content-type: image/jpeg
content-length: 3163
alt-svc: h3=":443"; ma=86400
cache-control: public, max-age=86400
cf-bgj: h2pri
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Wed, 08 May 2024 15:57:45 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: cloudflare
cf-ray: 88026856be751c0a-OSL

imgs3.hcaptcha.com/tip/12addb180affe27dcf75c7cb637d135d2cb0acfe033d8e30086964536fc93e14/71ef7ccbd567c663a6d986360f2c884a602261dc288bc9b189837e7df6883eaa.jpeg

104.18.124.91

4.5 kB

URL
imgs3.hcaptcha.com/tip/12addb180affe27dcf75c7cb637d135d2cb0acfe033d8e30086964536fc93e14/71ef7ccbd567c663a6d986360f2c884a602261dc288bc9b189837e7df6883eaa.jpeg
IP
104.18.124.91:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 128x128, components 3
Size
4.5 kB (4545 bytes)
Hash
5fc1b73d5c76869d4b6542f59e29f501
c11fb6626f97081789670c38194aab58e097d440
e6ad4a6a302a08bffa9276ec15b29117270efe1661fcfaf615d6f863486a9edc

HTTP Headers

GET /tip/12addb180affe27dcf75c7cb637d135d2cb0acfe033d8e30086964536fc93e14/71ef7ccbd567c663a6d986360f2c884a602261dc288bc9b189837e7df6883eaa.jpeg HTTP/1.1
Host: imgs3.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:45 GMT
content-type: image/jpeg
content-length: 4545
alt-svc: h3=":443"; ma=86400
cache-control: public, max-age=86400
cf-bgj: h2pri
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Wed, 08 May 2024 15:57:45 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: cloudflare
cf-ray: 88026856be6d1c0a-OSL

imgs3.hcaptcha.com/tip/d55ca962d72f43fd525d86e737667d9de974420d00403986abd624818d41c153/3a0dc297220ff76707c7179917b23d33279a16f8f9bbdbf8314b2cdab98f64b5.jpeg

104.18.124.91

4.9 kB

URL
imgs3.hcaptcha.com/tip/d55ca962d72f43fd525d86e737667d9de974420d00403986abd624818d41c153/3a0dc297220ff76707c7179917b23d33279a16f8f9bbdbf8314b2cdab98f64b5.jpeg
IP
104.18.124.91:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 128x128, components 3
Size
4.9 kB (4860 bytes)
Hash
c89f74fac3a28c19501a319a7141718d
57ef4707e826cfc24620e852731e9097da8f7501
f593016a7704df8b73216a64e6013ae6cac568be2d5c0c89409076077d7af004

HTTP Headers

GET /tip/d55ca962d72f43fd525d86e737667d9de974420d00403986abd624818d41c153/3a0dc297220ff76707c7179917b23d33279a16f8f9bbdbf8314b2cdab98f64b5.jpeg HTTP/1.1
Host: imgs3.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:45 GMT
content-type: image/jpeg
content-length: 4860
alt-svc: h3=":443"; ma=86400
cache-control: public, max-age=86400
cf-bgj: h2pri
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Wed, 08 May 2024 15:57:45 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: cloudflare
cf-ray: 88026856be781c0a-OSL

surl.li/img/favicon.ico

104.26.5.19

200 OK

37 kB

URL GET HTTP/2
surl.li/img/favicon.ico
IP
104.26.5.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://surl.li/sscpp
Certificate
IssuerGoogle Trust Services LLC
Subjectsurl.li
Fingerprint4A:8A:47:88:45:49:9E:79:20:E2:25:13:21:0D:14:FD:40:9F:73:38
ValiditySat, 30 Mar 2024 17:55:26 GMT - Fri, 28 Jun 2024 17:55:25 GMT

File type
MS Windows icon resource - 3 icons, 48x48, 32 bits/pixel, 32x32, 32 bits/pixel
Size
37 kB (36698 bytes)
Hash
ec9741289f19f212fd2ffb2dda1df05c
9b97a75a795b848f086f75db50903dd15954a573
13c9447a56e92641eff376880ff848e6e8e25719f721421f9b276a9b152753d4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/favicon.ico HTTP/1.1
Host: surl.li
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surl.li/sscpp
Cookie: XSRF-TOKEN=eyJpdiI6InEvTWgwdStyNWp2ZWVhTUNGQnpkcmc9PSIsInZhbHVlIjoieEFWdmJjNkhmQWNGOUoyM2VDK0x5WW83U0xtcitiWkF2OVFwZk13VkoreVBUS2hKQWxXVm4rRkw4V1BmTUhQYXZHTXdBcVVtOHd1TzBPdkxmaW9KM3lWUHBjc2pqRjNZeGpPUkhnMWRDL3lxd085cFF3N2JraUVxRGFwOEUvREoiLCJtYWMiOiI5OTIwNjk2ZGJlMmViNWM2ZTlkOGZjYWQ3MzM3ZDhlYWYyZTFiZjFlYjI2NmJhYzAwODZhNDhjMDE4NzhlNTAxIiwidGFnIjoiIn0%3D; surli_application_session=eyJpdiI6IkdBVGpjZzJHOHBNQmJnQ0N0U1kwMFE9PSIsInZhbHVlIjoibDlhQWpTektRODhuT3IzRGFiWTEra2ZFVldESEViV3pLWGR0bkIreng3U2tySURVSC9DRTVZZ2pyQ1p5THlVblVLTmpJc1FZMENEUFhzVkdXSkp3SlFrK3hQaXJJTmhYTXUyR3VQUkEwNVpCZm42UzhXVGxRT1FkUmM0TVYrZ3MiLCJtYWMiOiJiZTI1NzJkNjJiOWIyYjk3NGZmYmY4Zjc1NzhlNzVjY2I0MjBkMzkwYTM5ZDA1ZGJiZDI4MjJhYjZlMmMzMzlhIiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 07 May 2024 15:57:20 GMT
content-type: image/x-icon
last-modified: Fri, 03 May 2024 12:44:45 GMT
etag: W/"6634dc3d-3aee"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 1596
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cQN%2FHCjI8i4br5gl%2FSGqIjMBd62ysubY3UY%2BGkwxbZxHjpuLZGnvApL4ZZAXmd21r5YUiYV5TPJ1sw4nFKkvLDh7iq2%2BDu4pNuJ2L7HboNQ%2Fw3nia7g02Q0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880267bd1e7456bd-OSL
content-encoding: br
X-Firefox-Spdy: h2

discord.com/assets/shared.74860cc421a38a9015bb.js

162.159.136.232

200 OK

152 kB

URL GET HTTP/3
discord.com/assets/shared.74860cc421a38a9015bb.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
152 kB (151919 bytes)
Hash
06093e1c534eb9daf6ad7a3ba68b8aad
09f106e307e7d711f1d99becb127839e1ab83331
eb56f4c6104b8e5b022d3059a0be906fab18ab3df6dd2328179b502e5e64028e

HTTP Headers

GET /assets/shared.74860cc421a38a9015bb.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:31 GMT
content-type: application/javascript
cf-ray: 880268021b220b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"06093e1c534eb9daf6ad7a3ba68b8aad"
last-modified: Sat, 04 May 2024 00:20:23 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y8YcMv3Go9X69xnD5odynLsnpPdhhjH54WLbF8SjLK3YNHBvc%2FvdkBrmmV%2BCIsGiWyExOeUYMimnthC29Os4JqlKAp8%2BhJVCIBNFiN3dWaVJLgN%2BReHHajS0Mgsy"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

imgs3.hcaptcha.com/tip/ef1c8e8b862bef030238360832870f5bbd759dade79451a3d7131cf705f6a18b/0e044f0dc0115dc1d511e2ba4eb52f13065f7f6ade689e88e4b196a79389ff2f.jpeg

104.18.124.91

3.9 kB

URL
imgs3.hcaptcha.com/tip/ef1c8e8b862bef030238360832870f5bbd759dade79451a3d7131cf705f6a18b/0e044f0dc0115dc1d511e2ba4eb52f13065f7f6ade689e88e4b196a79389ff2f.jpeg
IP
104.18.124.91:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 128x128, components 3
Size
3.9 kB (3875 bytes)
Hash
fa1fac2d51995420ad58b5bd53027810
373c650d37091f887b29b8be9931b70e44eb6805
95bbb20ae2809230abf9cd3342330b2aabb85a42ee9d4291e55c80f48e20b5ff

HTTP Headers

GET /tip/ef1c8e8b862bef030238360832870f5bbd759dade79451a3d7131cf705f6a18b/0e044f0dc0115dc1d511e2ba4eb52f13065f7f6ade689e88e4b196a79389ff2f.jpeg HTTP/1.1
Host: imgs3.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:45 GMT
content-type: image/jpeg
content-length: 3875
alt-svc: h3=":443"; ma=86400
cache-control: public, max-age=86400
cf-bgj: h2pri
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Wed, 08 May 2024 15:57:45 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: cloudflare
cf-ray: 88026856be6e1c0a-OSL

imgs3.hcaptcha.com/tip/2b111f39aa1cbc7d9b62a5be65f39c019a4d22a258a62e583aa8e1495ca06164/9b62368dae626c0a00175bfff1c72280840262fbf3fdb48455559ffcbeaeb46d.jpeg

104.18.124.91

2.6 kB

URL
imgs3.hcaptcha.com/tip/2b111f39aa1cbc7d9b62a5be65f39c019a4d22a258a62e583aa8e1495ca06164/9b62368dae626c0a00175bfff1c72280840262fbf3fdb48455559ffcbeaeb46d.jpeg
IP
104.18.124.91:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 128x128, components 3
Size
2.6 kB (2595 bytes)
Hash
e15599a56b4ad3f477b15fb1a97f7229
5ee2e052f62f17281acc29572455729a9b7a5ec4
f83a6b366496b74c02f05701da4349142e36f83a0253f7373cfb1342ac3db082

HTTP Headers

GET /tip/2b111f39aa1cbc7d9b62a5be65f39c019a4d22a258a62e583aa8e1495ca06164/9b62368dae626c0a00175bfff1c72280840262fbf3fdb48455559ffcbeaeb46d.jpeg HTTP/1.1
Host: imgs3.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:45 GMT
content-type: image/jpeg
content-length: 2595
alt-svc: h3=":443"; ma=86400
cache-control: public, max-age=86400
cf-bgj: h2pri
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Wed, 08 May 2024 15:57:45 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: cloudflare
cf-ray: 88026856be721c0a-OSL

imgs3.hcaptcha.com/tip/cd35bd27e315af98cee18d2186d57ef8b1688decb4e2cf24e3062981f9ce491d/382e263c7e0b97277f6bb39028024cd46ffd0685386e8a29512da8473f94a909.jpeg

104.18.124.91

3.8 kB

URL
imgs3.hcaptcha.com/tip/cd35bd27e315af98cee18d2186d57ef8b1688decb4e2cf24e3062981f9ce491d/382e263c7e0b97277f6bb39028024cd46ffd0685386e8a29512da8473f94a909.jpeg
IP
104.18.124.91:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 128x128, components 3
Size
3.8 kB (3847 bytes)
Hash
93da0f5df82904c77a57f9afb3894e51
44f8e189eabd82eefdab8fae788da950175c71ce
852a9d87d3983775bf6d75cddb20ceb780c947758735d6192f6eda9c6786b4d0

HTTP Headers

GET /tip/cd35bd27e315af98cee18d2186d57ef8b1688decb4e2cf24e3062981f9ce491d/382e263c7e0b97277f6bb39028024cd46ffd0685386e8a29512da8473f94a909.jpeg HTTP/1.1
Host: imgs3.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:45 GMT
content-type: image/jpeg
content-length: 3847
alt-svc: h3=":443"; ma=86400
cache-control: public, max-age=86400
cf-bgj: h2pri
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Wed, 08 May 2024 15:57:45 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: cloudflare
cf-ray: 880268578fbb1c0a-OSL

imgs3.hcaptcha.com/tip/ced72ea0420c787e2ade790ae63762adc63c30d2cea6349770f3b3760f80b17b/3a0da8755a8024ef8dab61b08f9bbe9c3f678cc96557e8f95a17e9cfd7315274.jpeg

104.18.124.91

2.8 kB

URL
imgs3.hcaptcha.com/tip/ced72ea0420c787e2ade790ae63762adc63c30d2cea6349770f3b3760f80b17b/3a0da8755a8024ef8dab61b08f9bbe9c3f678cc96557e8f95a17e9cfd7315274.jpeg
IP
104.18.124.91:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 100x100, components 3
Size
2.8 kB (2795 bytes)
Hash
4dcb9dfdccca77a8607cbc7cf9bc940c
7d7b0d7cbad5d0656409118103f3230c244d131b
a7a0df16f96c9f213d28eee7ee5e4e63bb0cbdc1d2b2cf69bb20496ae5e82c26

HTTP Headers

GET /tip/ced72ea0420c787e2ade790ae63762adc63c30d2cea6349770f3b3760f80b17b/3a0da8755a8024ef8dab61b08f9bbe9c3f678cc96557e8f95a17e9cfd7315274.jpeg HTTP/1.1
Host: imgs3.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:45 GMT
content-type: image/jpeg
content-length: 2795
alt-svc: h3=":443"; ma=86400
cache-control: public, max-age=86400
cf-bgj: h2pri
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Wed, 08 May 2024 15:57:45 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: cloudflare
cf-ray: 880268578fc81c0a-OSL

imgs3.hcaptcha.com/tip/96ceac7975169f48e2bcd07bb560d7419e94fc8f5eece4c90534ca4a1107a740/b9058282ed8b3bb0ff1e14f375b76fc8d2b812c2ffe24111e0a5a04f9b730a99.jpeg

104.18.124.91

3.0 kB

URL
imgs3.hcaptcha.com/tip/96ceac7975169f48e2bcd07bb560d7419e94fc8f5eece4c90534ca4a1107a740/b9058282ed8b3bb0ff1e14f375b76fc8d2b812c2ffe24111e0a5a04f9b730a99.jpeg
IP
104.18.124.91:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 128x128, components 3
Size
3.0 kB (3008 bytes)
Hash
480f7d2d33bd7348038628d53251392b
ca9a262a16c866caff17c65a6c2070fac276a94e
b4869943703c24a0a95d5e66be1469c75a835ed2fccf3ad80f2434c78247f887

HTTP Headers

GET /tip/96ceac7975169f48e2bcd07bb560d7419e94fc8f5eece4c90534ca4a1107a740/b9058282ed8b3bb0ff1e14f375b76fc8d2b812c2ffe24111e0a5a04f9b730a99.jpeg HTTP/1.1
Host: imgs3.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:45 GMT
content-type: image/jpeg
content-length: 3008
alt-svc: h3=":443"; ma=86400
cache-control: public, max-age=86400
cf-bgj: h2pri
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Wed, 08 May 2024 15:57:45 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: cloudflare
cf-ray: 880268578fc01c0a-OSL

imgs3.hcaptcha.com/tip/e30cd6e3f885d238dd0833d4ef549d7ae082565dd457cec4e3a519247d4d0c6a/def0e15628851776b093e4e5d9608578169cfbba4172bb435382358a79665849.jpeg

104.18.124.91

3.0 kB

URL
imgs3.hcaptcha.com/tip/e30cd6e3f885d238dd0833d4ef549d7ae082565dd457cec4e3a519247d4d0c6a/def0e15628851776b093e4e5d9608578169cfbba4172bb435382358a79665849.jpeg
IP
104.18.124.91:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 128x128, components 3
Size
3.0 kB (3026 bytes)
Hash
03da1808cfc15ba8bb40ce486be5ee37
568a6e52c90a5b1a088acbc7cd4f4ef264146a74
d4c96dd009107b7e95800efdce1e6850f7ac007fb46ef7112a619eb8cc0b4e3b

HTTP Headers

GET /tip/e30cd6e3f885d238dd0833d4ef549d7ae082565dd457cec4e3a519247d4d0c6a/def0e15628851776b093e4e5d9608578169cfbba4172bb435382358a79665849.jpeg HTTP/1.1
Host: imgs3.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:45 GMT
content-type: image/jpeg
content-length: 3026
alt-svc: h3=":443"; ma=86400
cache-control: public, max-age=86400
cf-bgj: h2pri
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Wed, 08 May 2024 15:57:45 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: cloudflare
cf-ray: 880268578fbe1c0a-OSL

imgs3.hcaptcha.com/tip/2dd4c5254c8bf5f31bc8e87fda9a90d69007442a0d8fe5017554952a5d2006d5/857add4c306a289fb519c56310f8fa64be063aaf1ff010b4e433139afd44a60e.jpeg

104.18.124.91

4.0 kB

URL
imgs3.hcaptcha.com/tip/2dd4c5254c8bf5f31bc8e87fda9a90d69007442a0d8fe5017554952a5d2006d5/857add4c306a289fb519c56310f8fa64be063aaf1ff010b4e433139afd44a60e.jpeg
IP
104.18.124.91:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 128x128, components 3
Size
4.0 kB (3974 bytes)
Hash
66be34cb0fba63bbce64a269cc10f438
ff6f4de5897fb38f0e9bb1e70aa5a40cf03369a1
b844069fcbdad32f64c7e9becd1ac129e88eb1d2fdcd9d591390f556b9ba3b37

HTTP Headers

GET /tip/2dd4c5254c8bf5f31bc8e87fda9a90d69007442a0d8fe5017554952a5d2006d5/857add4c306a289fb519c56310f8fa64be063aaf1ff010b4e433139afd44a60e.jpeg HTTP/1.1
Host: imgs3.hcaptcha.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://newassets.hcaptcha.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:45 GMT
content-type: image/jpeg
content-length: 3974
alt-svc: h3=":443"; ma=86400
cache-control: public, max-age=86400
cf-bgj: h2pri
vary: Origin, Accept-Encoding
cf-cache-status: HIT
expires: Wed, 08 May 2024 15:57:45 GMT
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
access-control-allow-origin: *
server: cloudflare
cf-ray: 880268578fc21c0a-OSL

discord.com/api/v9/science

162.159.136.232

204 No Content

0 B

URL POST HTTP/3
discord.com/api/v9/science
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/v9/science HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Super-Properties: eyJvcyI6IkxpbnV4IiwiYnJvd3NlciI6IkZpcmVmb3giLCJkZXZpY2UiOiIiLCJzeXN0ZW1fbG9jYWxlIjoiZW4tVVMiLCJicm93c2VyX3VzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoWDExOyBMaW51eCB4ODZfNjQ7IHJ2Ojk2LjApIEdlY2tvLzIwMTAwMTAxIEZpcmVmb3gvOTYuMCIsImJyb3dzZXJfdmVyc2lvbiI6Ijk2LjAiLCJvc192ZXJzaW9uIjoiIiwicmVmZXJyZXIiOiJodHRwczovL3N1cmwubGkvIiwicmVmZXJyaW5nX2RvbWFpbiI6InN1cmwubGkiLCJyZWZlcnJlcl9jdXJyZW50IjoiaHR0cHM6Ly9zdXJsLmxpLyIsInJlZmVycmluZ19kb21haW5fY3VycmVudCI6InN1cmwubGkiLCJyZWxlYXNlX2NoYW5uZWwiOiJzdGFibGUiLCJjbGllbnRfYnVpbGRfbnVtYmVyIjoyOTA5OTgsImNsaWVudF9ldmVudF9zb3VyY2UiOm51bGwsImRlc2lnbl9pZCI6MH0=
X-Fingerprint: 1237433153900249202.G2qyshBtuQlE78IRCskQclMSixI
X-Discord-Locale: en-US
X-Discord-Timezone: UTC
X-Debug-Options: bugReporterEnabled
Content-Length: 508
Origin: https://discord.com
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000; cf_clearance=iau4fLyWPvBcCW9lWFv358Po4I4YdX9TI73dQhgQnLE-1715097455-1.0.1.1-x6bbPHJ0GbTFHnA1g7mjzx02_101WPeLJqx.W9UNbsI4ONDEZYoyKEZiMhHjJfWrT1G_g43E4UnRnSnywF1ooA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Tue, 07 May 2024 15:57:45 GMT
access-control-allow-origin: https://discord.com
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Fror0aH80ELzGg8ZH1j7E8pZ3HHxBqxA5GAMUAB7teL2mSl2tpwidpkH9xIK65pZ3TUns%2FT7NfW7e51sbhyW5STcZql4nprVT9VH%2FjgP4K6F0xGQX6%2BRfreuJu27"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'none'; default-src 'none'
server: cloudflare
cf-ray: 880268587a230b06-OSL

discord.com/assets/b6e61cc624d1ee35c8b4.svg

162.159.136.232

200 OK

395 B

URL GET HTTP/3
discord.com/assets/b6e61cc624d1ee35c8b4.svg
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
395 B (395 bytes)
Hash
3e60ff1de94af19ce4bc825b9d2fd18a
c5a4ae459f6596bdefe85021f198826e316b4198
8a32440759eee1d213b1561c980ebe7856fcaffa11588a4b7131cf83fb1c2092

HTTP Headers

GET /assets/b6e61cc624d1ee35c8b4.svg HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: image/svg+xml
cf-ray: 88026813ef700b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"e843c51c0eec3801b70cae5c45ad343f"
last-modified: Mon, 25 Mar 2024 19:49:05 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NplixAAUPkUImatNhU3fhMxCUWjSYK7Qggyg%2FyP7MRRgMU2%2FsrP43%2FPmboohnVuLnSb5ii1jOvWZuetMIrn0S7ZcD52eCWCSAhjk3Ibs6nXKdPChvTW%2BGPrObZ5t"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

127.0.0.1:6465/?v=1

0.0.0.0

0 B

URL GET
127.0.0.1:6465/?v=1
IP
0.0.0.0:0
ASN
#0

Requested by
https://discord.com/invite/sPYNCpZZQ8

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?v=1 HTTP/1.1
Host: 127.0.0.1:6465
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://discord.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: unTqFJqaaTiMm1hF0vUU2w==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

discord.com/invite/sPYNCpZZQ8

162.159.136.232

200 OK

12 kB

URL User Request GET HTTP/2
discord.com/invite/sPYNCpZZQ8
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (2486)
Size
12 kB (12189 bytes)
Hash
7d5612f9c1b7adfb4769165ff79afc4c
ddaf25d08ec7b0266d8db0bda56a1f8e77047ebe
11ab86d95da2769cf7ece9af189ab9db37e56c6508b81757feaea154724eb52e

HTTP Headers

GET /invite/sPYNCpZZQ8 HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://surl.li/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 15:57:31 GMT
content-type: text/html
cf-ray: 880267ff0966b503-OSL
cf-cache-status: HIT
cache-control: private
last-modified: Tue, 07 May 2024 02:08:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-security-policy: default-src 'self'; script-src 'self' 'unsafe-eval' 'unsafe-inline' 'nonce-MjIwLDI5LDE4Miw4OCwyNDIsMTI5LDIxMSwyMzQ=' blob: https://cdn.discordapp.com/animations/ https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/ https://*.hcaptcha.com https://hcaptcha.com https://js.stripe.com https://js.braintreegateway.com https://assets.braintreegateway.com https://www.paypalobjects.com https://checkout.paypal.com https://c.paypal.com https://kit.cash.app; style-src 'self' 'unsafe-inline' https://cdn.discordapp.com https://*.hcaptcha.com https://hcaptcha.com https://kit.cash.app; img-src 'self' blob: data: https://*.discordapp.net https://*.discordapp.com https://*.discord.com https://i.scdn.co https://i.ytimg.com https://i.imgur.com https://media.tenor.co https://media.tenor.com https://c.tenor.com https://*.youtube.com https://*.giphy.com https://static-cdn.jtvnw.net https://pbs.twimg.com https://assets.braintreegateway.com https://checkout.paypal.com https://c.paypal.com https://b.stats.paypal.com https://slc.stats.paypal.com https://hnd.stats.paypal.com https://api.cash.app; font-src 'self' https://fonts.gstatic.com https://cash-f.squarecdn.com; connect-src 'self' https://status.discordapp.com https://status.discord.com https://support.discordapp.com https://support.discord.com https://discordapp.com https://discord.com https://discord-attachments-uploads-prd.storage.googleapis.com https://cdn.discordapp.com https://media.discordapp.net https://images-ext-1.discordapp.net https://images-ext-2.discordapp.net https://router.discordapp.net wss://*.discord.gg https://best.discord.media https://latency.discord.media wss://*.discord.media wss://dealer.spotify.com https://api.spotify.com https://music.amazon.com/embed/oembed https://sentry.io https://api.twitch.tv https://api.stripe.com https://api.braintreegateway.com https://client-analytics.braintreegateway.com https://*.braintree-api.com https://www.googleapis.com https://*.algolianet.com https://*.hcaptcha.com https://hcaptcha.com https://*.algolia.net ws://127.0.0.1:* http://127.0.0.1:*; media-src 'self' blob: disclip: https://*.discordapp.net https://*.discord.com https://*.discordapp.com https://*.youtube.com https://streamable.com https://vid.me https://twitter.com https://oddshot.akamaized.net https://*.giphy.com https://i.imgur.com https://media.tenor.co https://media.tenor.com https://c.tenor.com; frame-src 'self' https://discordapp.com/domain-migration discord: https://www.google.com/recaptcha/ https://recaptcha.net/recaptcha/ https://*.hcaptcha.com https://hcaptcha.com https://js.stripe.com https://hooks.stripe.com https://checkout.paypal.com https://c.paypal.com https://assets.braintreegateway.com https://checkoutshopper-live.adyen.com https://kit.cash.app https://player.twitch.tv https://clips.twitch.tv/embed https://player.vimeo.com https://www.youtube.com/embed/ https://www.tiktok.com/embed/ https://music.amazon.com/embed/ https://music.amazon.co.uk/embed/ https://music.amazon.de/embed/ https://music.amazon.co.jp/embed/ https://music.amazon.es/embed/ https://music.amazon.fr/embed/ https://music.amazon.it/embed/ https://music.amazon.com.au/embed/ https://music.amazon.in/embed/ https://music.amazon.ca/embed/ https://music.amazon.com.mx/embed/ https://music.amazon.com.br/embed/ https://www.youtube.com/s/player/ https://twitter.com/i/videos/ https://www.funimation.com/player/ https://www.redditmedia.com/mediaembed/ https://open.spotify.com/embed/ https://w.soundcloud.com/player/ https://audius.co/embed/ https://*.watchanimeattheoffice.com https://sessionshare.sp-int.playstation.com/embed/ https://localhost:* https://*.discordsays.com https://discordappcom.cloudflareaccess.com/; child-src 'self' blob: https://assets.braintreegateway.com https://checkout.paypal.com https://c.paypal.com; prefetch-src 'self' https://cdn.discordapp.com/assets/;
cross-origin-opener-policy: same-origin-allow-popups
permissions-policy: interest-cohort=()
x-build-id: 7b0693ab56a5123978cafefca1e10e70daf950f6
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XPN9GTtNWXiSLz8Wgp7enj6L8yRH4H8ov23KXBiOpMM3Flpu8KE9mnmyIyhAwpbGDi2lk2MPXW5VY1rwzfuE7Sttgpve5DbZdq1wnWnYDfNmMI6DkjcbRXX57NB0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
set-cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; Expires=Sun, 06 May 2029 15:57:31 GMT; Max-Age=157680000; Path=/; Secure; HttpOnly; SameSite=Lax
__sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; Expires=Sun, 06 May 2029 15:57:31 GMT; Max-Age=157680000; Path=/; Secure; HttpOnly; SameSite=Lax
__cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
_cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000; path=/; domain=.discord.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

discord.com/assets/3e699128b89422e92a31.svg

162.159.136.232

200 OK

137 B

URL GET HTTP/3
discord.com/assets/3e699128b89422e92a31.svg
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
137 B (137 bytes)
Hash
de7079c084523cbb534e908927ab5519
cd4e81dfbcc142ff38ac775c9302f26d3bd28fa0
b5d51114897461dedb697b36086385bdc8b62f56da6914fcec198644a96aa65a

HTTP Headers

GET /assets/3e699128b89422e92a31.svg HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: image/svg+xml
cf-ray: 88026813df6d0b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"7d883ba72b5dbc0229f5d1980205ee34"
last-modified: Mon, 25 Mar 2024 19:49:17 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3%2F7BRWFDxYN7SE0MhVUXBntU2XNBzcLUUOygx0gTEwWQhVtHdIjgUW9Vmg3b%2FEbqGMraS%2F6rGyoBDYpQMrwvUFNWsyjqo1d21HAVV06LGZN2o53OyBONOqkWcc9u"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/assets/13b3227a6d3a1995e394.webm

162.159.136.232

206 Partial Content

160 kB

URL GET HTTP/3
discord.com/assets/13b3227a6d3a1995e394.webm
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
WebM
Size
160 kB (160381 bytes)
Hash
3b0d96ed8113994f3d139088726cfecd
1311abcea5f1922c31ea021c4b681b94aee18b23
313818d6b177a70fbe715a5142d6221ac1a1851eff5a9f6df505670ddcd73074

HTTP Headers

GET /assets/13b3227a6d3a1995e394.webm HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 206 Partial Content
date: Tue, 07 May 2024 15:57:34 GMT
content-type: video/webm
content-length: 160381
content-range: bytes 0-160380/160381
cf-ray: 88026814f8fc0b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: "3b0d96ed8113994f3d139088726cfecd"
last-modified: Mon, 25 Mar 2024 19:49:09 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n3E6%2Fgp%2BlO9zsrXjbmK%2FQenEKOM8tR838hyDgyWcXUD0aYV%2FwbNNS08aaqWmWL37su1OrPFuTH0bzevp9fUpnPEx1sqssGqdp89C0jxJtnmjdBnwCYgvBf2DDoT0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
alt-svc: h3=":443"; ma=86400

127.0.0.1:6468/?v=1

0.0.0.0

0 B

URL GET
127.0.0.1:6468/?v=1
IP
0.0.0.0:0
ASN
#0

Requested by
https://discord.com/invite/sPYNCpZZQ8

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?v=1 HTTP/1.1
Host: 127.0.0.1:6468
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://discord.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: D5iCaGG+PI3GuR94iavGgA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

surl.li/fonts/NunitoSans-Regular.ttf?a427ddbe4dc20889d6e0ac752dce4bea

104.26.5.19

200 OK

139 kB

URL GET HTTP/2
surl.li/fonts/NunitoSans-Regular.ttf?a427ddbe4dc20889d6e0ac752dce4bea
IP
104.26.5.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://surl.li/sscpp
Certificate
IssuerGoogle Trust Services LLC
Subjectsurl.li
Fingerprint4A:8A:47:88:45:49:9E:79:20:E2:25:13:21:0D:14:FD:40:9F:73:38
ValiditySat, 30 Mar 2024 17:55:26 GMT - Fri, 28 Jun 2024 17:55:25 GMT

File type
TrueType Font data, 17 tables, 1st "GDEF", 13 names, Microsoft, language 0x409, Copyright 2016 The Nunito Sans Project Authors (https://github.com/Fonthausen/NunitoSans)Nunito
Size
139 kB (139168 bytes)
Hash
4dac705158fb1ca226d583b3829f82a0
771b9299e1d5d4239c032c7d4243a6f9343f89c4
7acb3e456d98d55be401bb07a32c9cb04e074de37bd58932b11bcf0fe9f59ab0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/NunitoSans-Regular.ttf?a427ddbe4dc20889d6e0ac752dce4bea HTTP/1.1
Host: surl.li
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surl.li/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6IjU5Z3hSWWFCSVJjbDBvd1kvK1pJdkE9PSIsInZhbHVlIjoieEMrR3JUVW44RXFCdFQ4T3BVNkYxMTJzYnFGYVdEQTRKMWY0a1FUcGlPSUxGNlY4a2xFUkoxRUVjZlVFcklRellFVCt3ekE0MERod21kL01yaW1uSHNXTjRIbUlvOFZrMVdpNlgvVWFKdnh2QW9yN09hMHVKbXNkS2ltVGM0TkkiLCJtYWMiOiI2NjBkOTBmMDc3NTc4MzQ2YmYyODQ1YmQ1ZDY1OTUzZjAwNzEwMGQ1NjZlMTM5OTUxYWY1ZDJmNGNmMTlhN2RmIiwidGFnIjoiIn0%3D; surli_application_session=eyJpdiI6IlVTZzh4cDFMSVFzWWVzdzVvbGdvcGc9PSIsInZhbHVlIjoieUxFNzZ2Y1hSWGYxTnV0WlRJbysxdlVueUlYSmdqY2hoZ1hVQVpVK01Za3J3S0UzOXF3Zno5dDhjZnd3MjJ2OUxkb2hHWERhRmtSOWhIcGZmTHAxQ2VjdWxsMDNWVTh6b2ZlOWpqc0xLUk5mTVF6R2N6WVNoRXRBT1NFNFphcngiLCJtYWMiOiJmYWM4NjM1NjQyMWE3ZDk2NDg5Y2QxNDM1ZTU5ZmM5MzgxYmJlY2JmNTM5N2ZlNmZkYTcxN2NlNGJiYTczMzE2IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 15:57:20 GMT
content-type: application/octet-stream
content-length: 139168
last-modified: Fri, 03 May 2024 12:44:45 GMT
etag: "6634dc3d-21fa0"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 730
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=se5mEpHrGRinIds3j9ksdqBbR6LGlJORayTpFh67rNO048MBvbPI1QCwluUPmK3MoU7tjeL%2BN%2Bmngk2n89mdggeLm9ikndjsQIeS7PMCF4K07QVKo8eU2Kc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880267b8becb56bd-OSL
X-Firefox-Spdy: h2

discord.com/assets/90687.370e289ac601b1f7cc56.js

162.159.136.232

200 OK

14 kB

URL GET HTTP/3
discord.com/assets/90687.370e289ac601b1f7cc56.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type

Size
14 kB (13520 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/90687.370e289ac601b1f7cc56.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: application/javascript
cf-ray: 880268134e570b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"739ee207f1bd969fd9c2077b5bcedc9d"
last-modified: Tue, 23 Apr 2024 23:56:21 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yu5%2B67MlNO8ii6o66DIO45rWf9ojlz%2BI9x6rVsa%2F19aL5xYrpbcDVN3KwfVAoqOnghm0ca%2FbcR%2FPMcsGu6E2x4ZrwWuCg8ubTlV6W3k6bq1ZDaGkzJZrtmfzQ0K8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

surl.li/css/app.css

104.26.5.19

200 OK

162 kB

URL GET HTTP/2
surl.li/css/app.css
IP
104.26.5.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://surl.li/sscpp
Certificate
IssuerGoogle Trust Services LLC
Subjectsurl.li
Fingerprint4A:8A:47:88:45:49:9E:79:20:E2:25:13:21:0D:14:FD:40:9F:73:38
ValiditySat, 30 Mar 2024 17:55:26 GMT - Fri, 28 Jun 2024 17:55:25 GMT

File type

Size
162 kB (162169 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/app.css HTTP/1.1
Host: surl.li
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surl.li/sscpp
Cookie: XSRF-TOKEN=eyJpdiI6IjU5Z3hSWWFCSVJjbDBvd1kvK1pJdkE9PSIsInZhbHVlIjoieEMrR3JUVW44RXFCdFQ4T3BVNkYxMTJzYnFGYVdEQTRKMWY0a1FUcGlPSUxGNlY4a2xFUkoxRUVjZlVFcklRellFVCt3ekE0MERod21kL01yaW1uSHNXTjRIbUlvOFZrMVdpNlgvVWFKdnh2QW9yN09hMHVKbXNkS2ltVGM0TkkiLCJtYWMiOiI2NjBkOTBmMDc3NTc4MzQ2YmYyODQ1YmQ1ZDY1OTUzZjAwNzEwMGQ1NjZlMTM5OTUxYWY1ZDJmNGNmMTlhN2RmIiwidGFnIjoiIn0%3D; surli_application_session=eyJpdiI6IlVTZzh4cDFMSVFzWWVzdzVvbGdvcGc9PSIsInZhbHVlIjoieUxFNzZ2Y1hSWGYxTnV0WlRJbysxdlVueUlYSmdqY2hoZ1hVQVpVK01Za3J3S0UzOXF3Zno5dDhjZnd3MjJ2OUxkb2hHWERhRmtSOWhIcGZmTHAxQ2VjdWxsMDNWVTh6b2ZlOWpqc0xLUk5mTVF6R2N6WVNoRXRBT1NFNFphcngiLCJtYWMiOiJmYWM4NjM1NjQyMWE3ZDk2NDg5Y2QxNDM1ZTU5ZmM5MzgxYmJlY2JmNTM5N2ZlNmZkYTcxN2NlNGJiYTczMzE2IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 15:57:20 GMT
content-type: text/css
last-modified: Tue, 30 Apr 2024 07:35:00 GMT
etag: W/"66309f24-27979"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3259
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S40Ez%2Bt%2Bv2Z4VPpSU0RY3o%2FFtv4EWW0cwD%2BCxRx3%2BJId0fxN%2F8UlAG0Rrbf%2BAVMVi4nRiwjOnuMuQLXDSAlO%2FnR%2FCDnU2oUdMcbpVL7wGlCZETrRHrcnuz8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880267b81de656bd-OSL
content-encoding: br
X-Firefox-Spdy: h2

discord.com/assets/57878.f80f2ae72af75d9274b1.js

162.159.136.232

200 OK

9.9 kB

URL GET HTTP/3
discord.com/assets/57878.f80f2ae72af75d9274b1.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (10163), with no line terminators
Size
9.9 kB (9930 bytes)
Hash
fb9ff58d9b50b17fbd01edefea5a0469
eae78cd1cba41fbef0a9385b723d37254067bb49
5a0917d82501070259177045070f4b775c4d20c6edb44db23776f438f2945a86

HTTP Headers

GET /assets/57878.f80f2ae72af75d9274b1.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: application/javascript
cf-ray: 880268132e310b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"68c28533524fca830bec8bfb05b3e36d"
last-modified: Wed, 27 Mar 2024 16:17:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=07jdwscsszPMdQ2nHRhGpgyJbgwEst%2BQDYzKmnj5YQyVOYJfz8a7%2F6s%2Fb7LP40PAPSxOwZW08O40z8T0S8nbFHt%2BQCSFMB5tWh0s4wvcaLqrZw0%2FslhGKjZD8cgD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/assets/sentry.765b00e66783ff42fca1.js

162.159.136.232

200 OK

2.4 kB

URL GET HTTP/3
discord.com/assets/sentry.765b00e66783ff42fca1.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (2395), with no line terminators
Size
2.4 kB (2362 bytes)
Hash
23d8fe9059dbd894afe96cd7f8f0e181
0fe29b84caadbe8b4dccfa4c4cf123fba1c9014d
2e42078423c6f79024c8580a2f1b238c6090fab351be0b13ccd5739e66199a39

HTTP Headers

GET /assets/sentry.765b00e66783ff42fca1.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:31 GMT
content-type: application/javascript
cf-ray: 880268022b450b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"dcf481823510e7f0be5e5c9d70c1e7b1"
last-modified: Wed, 27 Mar 2024 16:17:40 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BUgLQIxE1lUj%2BBSaX3hx2a%2FuHY36FrTf1kbqvvWLQlWCD69UOBMyPhABpn%2B0u7C3iURjtOqlaWsDJY324C62T6w6EbrEqUzO9bWQHmrAdkx5AUgV6LgnOuo4%2Blmj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/api/v9/experiments?with_guild_experiments=true

162.159.136.232

200 OK

38 kB

URL GET HTTP/3
discord.com/api/v9/experiments?with_guild_experiments=true
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JSON text data
Size
38 kB (38451 bytes)
Hash
7fc7c00f1d3f435322bdb818cb60564e
cde946af0484bd884f5fa48b0b1a45e98e41d2ba
4ae59e149d854efebac8d54dc94afe3029a71c755dc82267ff0ed53438d092ea

HTTP Headers

GET /api/v9/experiments?with_guild_experiments=true HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Super-Properties: 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
X-Context-Properties: eyJsb2NhdGlvbiI6IkFjY2VwdCBJbnZpdGUgUGFnZSJ9
X-Discord-Locale: en-US
X-Discord-Timezone: UTC
X-Debug-Options: bugReporterEnabled
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7eqBALqtJ5KSpKVEk3Sq3KOyl3sPdMC84xBWO1Zd9RBYVOKqhtn2TmYhARJGUQ5bbDlxQ9rfXg1JuIURp2yvnKvghqzKzgKctI1l%2F5UBdQlER1Sh98Vzls0WRsJE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'none'; default-src 'none'
server: cloudflare
cf-ray: 880268111aa80b06-OSL
content-encoding: br

discord.com/assets/11250.e28e53af4b334652dba0.js

162.159.136.232

200 OK

9.4 kB

URL GET HTTP/3
discord.com/assets/11250.e28e53af4b334652dba0.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (9617), with no line terminators
Size
9.4 kB (9414 bytes)
Hash
15cb999a3776fb521525c6c855d4277d
ac176ced52c0c5ebc800b96052a584250ff3059f
75b4e53d9d7d84c53334e4c943728697892b2b48b0a5adf3331ffc30b2394bf8

HTTP Headers

GET /assets/11250.e28e53af4b334652dba0.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: application/javascript
cf-ray: 880268132e2f0b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"05b0425932f77874a4975eb8bac986b0"
last-modified: Thu, 02 May 2024 22:56:43 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Rj7PBHh%2FcV7FsyWgquSgFTQOXswPIukPQnrDnU7jltTF7VHbq%2FrLM98mgztQdkM8dmAlQZhJ9zf1A1FsHFKGPKM6pUURROKK5s%2B4TEVDQrbTouB7lYFTkVa%2BgIXc"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/assets/84471.ff79a54e2920c5b8cae0.js

162.159.136.232

200 OK

504 kB

URL GET HTTP/3
discord.com/assets/84471.ff79a54e2920c5b8cae0.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
504 kB (503821 bytes)
Hash
ce0b7fbfb38f75492fdceb6a6fbc6e85
f175c6cccf5e0bf7091c766174589ea063ccf54f
fa2f1ce007cf94faf5a3cb6cba128a930ed3b1442775383f944975e7fc9669e5

HTTP Headers

GET /assets/84471.ff79a54e2920c5b8cae0.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:32 GMT
content-type: application/javascript
cf-ray: 880268061aa10b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"ce0b7fbfb38f75492fdceb6a6fbc6e85"
last-modified: Tue, 07 May 2024 02:08:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FquTKBD9zPKRazFPmBQ0qfMeAQ6FSusxqtArGZSHOBfd4PbeBGlOd5H1d%2FUBCkjIYcELOrVnhbFuswP3zJooWEyh1bZaKcOkM00hV8ycZV0KCjq%2FxrNWyKq3%2BH2G"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

127.0.0.1:6467/?v=1

0.0.0.0

0 B

URL GET
127.0.0.1:6467/?v=1
IP
0.0.0.0:0
ASN
#0

Requested by
https://discord.com/invite/sPYNCpZZQ8

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?v=1 HTTP/1.1
Host: 127.0.0.1:6467
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://discord.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: /8GHABh3Yx+CbYjBqB8Ufg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

discord.com/assets/76990.60564f6faf3cd38a41e1.js

162.159.136.232

200 OK

98 kB

URL GET HTTP/3
discord.com/assets/76990.60564f6faf3cd38a41e1.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
98 kB (98425 bytes)
Hash
29651233922d70ace5cd6e7b080673e4
0fba42a52df68efd18e80d0fcb9ddb88a761a1d1
1de677098e2b05b54e611eeb73960172b6c18138a5794487ecda786e6e06958b

HTTP Headers

GET /assets/76990.60564f6faf3cd38a41e1.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: application/javascript
cf-ray: 880268134e5e0b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"29651233922d70ace5cd6e7b080673e4"
last-modified: Tue, 23 Apr 2024 23:56:22 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nXVnv8dWF0TQIuZ%2FXD8aMeK50xivu%2BJ2v4gFtEmkS4LwjH9V74452N55DGETeYzqk%2FVU1ejUsrrZiCahDW2L3MqGAAUNsLN%2BEoVG%2Fe6hVpAR3OCEjHVRDtTJfo69"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/assets/ec09b0d1e4c64b3c0956.svg

162.159.136.232

200 OK

180 B

URL GET HTTP/3
discord.com/assets/ec09b0d1e4c64b3c0956.svg
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
180 B (180 bytes)
Hash
7be3d705f8fd758f30fdb6d593364954
469caeb23537d7152c40fca8e5a8c9a03013eb07
907d7bc2d1af895ac583237f9005822ad480c51fd03618f5a7819c3d71b62424

HTTP Headers

GET /assets/ec09b0d1e4c64b3c0956.svg HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: image/svg+xml
cf-ray: 88026813df6a0b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"b1d4c5e276e3aaa8ec41e6014dd572b2"
last-modified: Mon, 25 Mar 2024 19:49:13 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aAOLzNBugeQztztcxk2fJs3PfsRXwG%2FOoOGLcssNJEmZJNRupZDqwdc7hDIoNq0p58tsUUkyHjEEl8HkpsHNkxQ1EL5n1DO1JkPODIS2rKzoj%2BIoTKF%2Fp7GRmpSd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/api/v9/auth/location-metadata

162.159.136.232

200 OK

111 B

URL GET HTTP/3
discord.com/api/v9/auth/location-metadata
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
111 B (111 bytes)
Hash
e2dacdafd177c98000ab1f0c55d89344
a854048bd6609dda2506ff8593cb83b01143bbb1
a0aa60af8b7b82512f58b649f36b84e820b89f5e61f2b8f3e650830730d85577

HTTP Headers

GET /api/v9/auth/location-metadata HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Super-Properties: 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
X-Fingerprint: 1237433153900249202.G2qyshBtuQlE78IRCskQclMSixI
X-Discord-Locale: en-US
X-Discord-Timezone: UTC
X-Debug-Options: bugReporterEnabled
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000; cf_clearance=iau4fLyWPvBcCW9lWFv358Po4I4YdX9TI73dQhgQnLE-1715097455-1.0.1.1-x6bbPHJ0GbTFHnA1g7mjzx02_101WPeLJqx.W9UNbsI4ONDEZYoyKEZiMhHjJfWrT1G_g43E4UnRnSnywF1ooA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:36 GMT
content-type: application/json
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
via: 1.1 google
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sUAoS4PlM2610uAtlmBNAIawI58mYa5jOcJ4xuTSOF7i2AqWXfYOJdA%2FWhNYlaLMLrWQyyQJpXrNDFBatoTTJc3fAdpPv7hndb%2BTYqFg2cTFvb4h4GD2FV4yiMzi"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
x-content-type-options: nosniff
content-security-policy: frame-ancestors 'none'; default-src 'none'
server: cloudflare
cf-ray: 8802681c2cb20b06-OSL
content-encoding: br

127.0.0.1:6471/?v=1

0.0.0.0

0 B

URL GET
127.0.0.1:6471/?v=1
IP
0.0.0.0:0
ASN
#0

Requested by
https://discord.com/invite/sPYNCpZZQ8

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?v=1 HTTP/1.1
Host: 127.0.0.1:6471
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://discord.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: H0/YNt+SreXEYtS8oRO9JQ==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

discord.com/assets/99387.423b4ff6d4ce760e821e.css

162.159.136.232

200 OK

2.1 MB

URL GET HTTP/3
discord.com/assets/99387.423b4ff6d4ce760e821e.css
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type

Size
2.1 MB (2140333 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/99387.423b4ff6d4ce760e821e.css HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:31 GMT
content-type: text/css
cf-ray: 880268021b210b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"517fa6531da35726159b13a47b4a17ed"
last-modified: Tue, 07 May 2024 01:11:57 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=y%2FjjjCIUHCRhWUAc64%2FuEnxWZD7OLW%2BeubZudT8Ll84lnrThwbEgGZQAN54BQ0HArtzvsTQXgjJ7QDje%2FWxhrN5VmanD3BSL497MwGqOVWmI41CrDlGOd5Wml63r"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/assets/21d34f5cf1e245c0dc9d.js

162.159.136.232

200 OK

20 kB

URL GET HTTP/3
discord.com/assets/21d34f5cf1e245c0dc9d.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (19721)
Size
20 kB (19770 bytes)
Hash
53763b806f39386a65f82c2134110e33
b31eb38cd17306ce3e32c65c95eaebede7de39e7
789aa9daed9953157e395cd40acf41242661d241ad74cd91a56f3731db524974

HTTP Headers

GET /assets/21d34f5cf1e245c0dc9d.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: application/javascript
cf-ray: 880268134e590b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"53763b806f39386a65f82c2134110e33"
last-modified: Tue, 23 Apr 2024 23:56:23 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tBQs55jQSYDlHc4oRSDUdBbPu35ogVD7%2FdgL1JuMPjEf9PwiTL935iYivmTKXbfjfWnLs8UQNUVikZ%2Fhyp16b6z8XSc13Tqc%2FjmgJ10o2wzTs5ilqCaEPo0qW%2FAl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

surl.li/fonts/roboto/Roboto-Regular.ttf

104.26.5.19

200 OK

130 kB

URL GET HTTP/2
surl.li/fonts/roboto/Roboto-Regular.ttf
IP
104.26.5.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://surl.li/sscpp
Certificate
IssuerGoogle Trust Services LLC
Subjectsurl.li
Fingerprint4A:8A:47:88:45:49:9E:79:20:E2:25:13:21:0D:14:FD:40:9F:73:38
ValiditySat, 30 Mar 2024 17:55:26 GMT - Fri, 28 Jun 2024 17:55:25 GMT

File type
TrueType Font data, 18 tables, 1st "GDEF", 8 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.RobotoRegularVersion 2.137; 2017Roboto-Regularhtt
Size
130 kB (129584 bytes)
Hash
afe8eacfc0903cc0612dc696881f0480
ba879317acdc045b8fa78cb8f948650627d0477c
7277cfb805def6410f317129b8e1f78bdd47d1a4e24c233077d06e88a36e57ae

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/roboto/Roboto-Regular.ttf HTTP/1.1
Host: surl.li
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surl.li/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6IjU5Z3hSWWFCSVJjbDBvd1kvK1pJdkE9PSIsInZhbHVlIjoieEMrR3JUVW44RXFCdFQ4T3BVNkYxMTJzYnFGYVdEQTRKMWY0a1FUcGlPSUxGNlY4a2xFUkoxRUVjZlVFcklRellFVCt3ekE0MERod21kL01yaW1uSHNXTjRIbUlvOFZrMVdpNlgvVWFKdnh2QW9yN09hMHVKbXNkS2ltVGM0TkkiLCJtYWMiOiI2NjBkOTBmMDc3NTc4MzQ2YmYyODQ1YmQ1ZDY1OTUzZjAwNzEwMGQ1NjZlMTM5OTUxYWY1ZDJmNGNmMTlhN2RmIiwidGFnIjoiIn0%3D; surli_application_session=eyJpdiI6IlVTZzh4cDFMSVFzWWVzdzVvbGdvcGc9PSIsInZhbHVlIjoieUxFNzZ2Y1hSWGYxTnV0WlRJbysxdlVueUlYSmdqY2hoZ1hVQVpVK01Za3J3S0UzOXF3Zno5dDhjZnd3MjJ2OUxkb2hHWERhRmtSOWhIcGZmTHAxQ2VjdWxsMDNWVTh6b2ZlOWpqc0xLUk5mTVF6R2N6WVNoRXRBT1NFNFphcngiLCJtYWMiOiJmYWM4NjM1NjQyMWE3ZDk2NDg5Y2QxNDM1ZTU5ZmM5MzgxYmJlY2JmNTM5N2ZlNmZkYTcxN2NlNGJiYTczMzE2IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 15:57:20 GMT
content-type: application/octet-stream
content-length: 129584
last-modified: Fri, 03 May 2024 12:44:45 GMT
etag: "6634dc3d-1fa30"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 730
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zAgIQpj8I%2Fs9kzzD9FLDvpGT6RUliQ35ZQgxDXDK1tr7pjI9Iiy%2Baed3sUMsNI8svMezUivZGI5zEvpWC41VKDFkKkkijS3mTzaGyfXmgGRxbE8mixF9FEU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880267b8bece56bd-OSL
X-Firefox-Spdy: h2

discord.com/assets/64787.359c4aba4bf61ba67cc0.js

162.159.136.232

200 OK

8.8 kB

URL GET HTTP/3
discord.com/assets/64787.359c4aba4bf61ba67cc0.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (9245), with no line terminators
Size
8.8 kB (8846 bytes)
Hash
affa4040b5b85d7aad962e8e388db496
2b2637018fed423ff851c3131447278caea496c7
4a8cacaa3cf5952ceca24048ceb3390beabac2234bbd38ea74861ab91d3b422c

HTTP Headers

GET /assets/64787.359c4aba4bf61ba67cc0.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:31 GMT
content-type: application/javascript
cf-ray: 880268021b320b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"8d6c8b8c9b81e5059ba17f2444dc376a"
last-modified: Wed, 27 Mar 2024 16:17:39 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=We88R5X%2FXkymVz4VDlnh20vqnGzZYNwE5kB0bHZo%2BIHRbssysMWteXp4lcYlZsD2CZc5oIboPX9Pw38NwOt8c%2BHWErKQbRI7b4M3Zf8ucSb4j2JAYjBHcMaw2YJS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/assets/24217.fbecbc1d6a974fbc777e.js

162.159.136.232

200 OK

14 kB

URL GET HTTP/3
discord.com/assets/24217.fbecbc1d6a974fbc777e.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (13836)
Size
14 kB (13891 bytes)
Hash
67372e1a2d6f79166686fbc585daf578
6d3829c9d142359672020887039ae9c733ee9df6
91edf528e1738ba548f95d7341ea4b4dcbe01faa9e3fbf8cc27c7ce929f65f64

HTTP Headers

GET /assets/24217.fbecbc1d6a974fbc777e.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:32 GMT
content-type: application/javascript
cf-ray: 880268061a960b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"67372e1a2d6f79166686fbc585daf578"
last-modified: Wed, 27 Mar 2024 16:17:39 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MPIdnHkGrFjFr4HnShmPeHr0MQvulA1Tco8ovWqUlSjJ%2B7VupR%2BNjZ5H5R54MiDEjY%2BCaOfaKcwOur7B4cZ8zuLA%2BNsNHZC93wvbSi7bI%2F165%2B53rXM49AsQRHAI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

127.0.0.1:6469/?v=1

0.0.0.0

0 B

URL GET
127.0.0.1:6469/?v=1
IP
0.0.0.0:0
ASN
#0

Requested by
https://discord.com/invite/sPYNCpZZQ8

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?v=1 HTTP/1.1
Host: 127.0.0.1:6469
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://discord.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8LKMh9TYB3QsWiCaJLXHYw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

127.0.0.1:6472/?v=1

0.0.0.0

0 B

URL GET
127.0.0.1:6472/?v=1
IP
0.0.0.0:0
ASN
#0

Requested by
https://discord.com/invite/sPYNCpZZQ8

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?v=1 HTTP/1.1
Host: 127.0.0.1:6472
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://discord.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: 8w7a5rgyGpsKynzq8He0+A==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

discord.com/assets/66635.40ded36ecf9973b385c7.js

162.159.136.232

200 OK

110 kB

URL GET HTTP/3
discord.com/assets/66635.40ded36ecf9973b385c7.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
110 kB (110226 bytes)
Hash
899875ebc202ced2d5e364062c991e61
49a1a81a54719e9384d4bf40df3165ab8be5fa37
294020b9a07541ba6cca0aaa93879000fadec243a8094476c4d56a7b74f0c5a3

HTTP Headers

GET /assets/66635.40ded36ecf9973b385c7.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: application/javascript
cf-ray: 880268131dfa0b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"899875ebc202ced2d5e364062c991e61"
last-modified: Fri, 03 May 2024 18:55:29 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2By36RASza8pN0mXGEEECZ1L1DLfVghDsk3SN%2BzBEwFCbZBiqUq73oVCH9WtiRytRzhqWA3%2B2YeflceGhANUiLzbDUJ9X5xiVQ2h6Jnl21MNdlauZfyh2jcLdcIJj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/assets/079e1da8377cb2852bd8.js

162.159.136.232

200 OK

15 kB

URL GET HTTP/3
discord.com/assets/079e1da8377cb2852bd8.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (15305)
Size
15 kB (15354 bytes)
Hash
44c6baae83cebd47c87f7ebacc709d07
fa5f226d537489af2c53f78fe596599eebac0359
449d06e1a6051c2ad2c2be9d33dc59559630d6a44e27c5bf3601106301d704ee

HTTP Headers

GET /assets/079e1da8377cb2852bd8.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: application/javascript
cf-ray: 880268133e3a0b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"44c6baae83cebd47c87f7ebacc709d07"
last-modified: Thu, 02 May 2024 22:56:43 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fHF2h%2BHZff8P73fd57T0%2BrtMtYGtGyFL%2F%2BPn%2FoPa5b4EEHgeMyWaMcUszHhEi8NuL0wSVEdx4%2BIqWG90EnvbCUNxf%2Fyy2JQwSyO0GArF4qEoEWf3JbF3ejfqdRe0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/assets/52030.3323bb09018fbadcad6f.js

162.159.136.232

200 OK

12 kB

URL GET HTTP/3
discord.com/assets/52030.3323bb09018fbadcad6f.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (12298)
Size
12 kB (12353 bytes)
Hash
c07d153eab85b0a2e18058c573850bcf
f3fc461d5cf7cdcf62864914240736bc1151367e
a62e993f5c3e587d4b6be259ac48a07a9643ffd654522ab0037691bf70e257af

HTTP Headers

GET /assets/52030.3323bb09018fbadcad6f.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: application/javascript
cf-ray: 880268134e5b0b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"c07d153eab85b0a2e18058c573850bcf"
last-modified: Tue, 23 Apr 2024 23:56:22 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4mzMCxiQslXntTv%2BpR4TS7Sa4znNtiLwH3igwnUv5ROfJRYpMY44RDX0I7YAHPHu%2FkIL7imuvnrazr1X9kq0ExtPSvsb3K7vUNxLKBuxJgyA5kFl0eDRfOn49DDR"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

127.0.0.1:6464/?v=1

0.0.0.0

0 B

URL GET
127.0.0.1:6464/?v=1
IP
0.0.0.0:0
ASN
#0

Requested by
https://discord.com/invite/sPYNCpZZQ8

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?v=1 HTTP/1.1
Host: 127.0.0.1:6464
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://discord.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: J3wEtVGF8KIGe6MaWk1vfw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

discord.com/assets/304665a447e194ad9c44.svg

162.159.136.232

200 OK

3.1 kB

URL GET HTTP/3
discord.com/assets/304665a447e194ad9c44.svg
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
3.1 kB (3146 bytes)
Hash
02799b7410be627fa7a88303875c8132
4cd594b6972f1081641e15ec286e9bf5a6786b2e
004f3b15b564c0aa1283e18e84b1f4bbc714f5ffedaa5dabd7281c01b08a559c

HTTP Headers

GET /assets/304665a447e194ad9c44.svg HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: image/svg+xml
cf-ray: 88026813ef790b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"81084ff5a27b6e6ff487e479c37d1660"
last-modified: Mon, 25 Mar 2024 19:49:16 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IE3qpR7x68Zbvn3ytv0cyGM%2FVcHGelpcLSTCQgi7L4hP9nnxph%2FQD3xDTagno2Ksrb%2FoYMWdV%2FWs9ytEz%2B7duGFVwpFuE7noi%2FVEKAHiEsQ%2BJzo3o9FVg2mir%2FX%2B"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

surl.li/img/planet-rouded-icon.svg

104.26.5.19

200 OK

5.5 kB

URL GET HTTP/2
surl.li/img/planet-rouded-icon.svg
IP
104.26.5.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://surl.li/sscpp
Certificate
IssuerGoogle Trust Services LLC
Subjectsurl.li
Fingerprint4A:8A:47:88:45:49:9E:79:20:E2:25:13:21:0D:14:FD:40:9F:73:38
ValiditySat, 30 Mar 2024 17:55:26 GMT - Fri, 28 Jun 2024 17:55:25 GMT

File type
SVG Scalable Vector Graphics image
Size
5.5 kB (5492 bytes)
Hash
cf00d275a5654cc07016460a38be539b
cd9c598412e8458b0a281d8990934c8c6cc1e7f2
020cb7186e35ea89767786c09150f598251b2215a0308dbf6469e30d2ecca2bf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /img/planet-rouded-icon.svg HTTP/1.1
Host: surl.li
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surl.li/sscpp
Cookie: XSRF-TOKEN=eyJpdiI6IjU5Z3hSWWFCSVJjbDBvd1kvK1pJdkE9PSIsInZhbHVlIjoieEMrR3JUVW44RXFCdFQ4T3BVNkYxMTJzYnFGYVdEQTRKMWY0a1FUcGlPSUxGNlY4a2xFUkoxRUVjZlVFcklRellFVCt3ekE0MERod21kL01yaW1uSHNXTjRIbUlvOFZrMVdpNlgvVWFKdnh2QW9yN09hMHVKbXNkS2ltVGM0TkkiLCJtYWMiOiI2NjBkOTBmMDc3NTc4MzQ2YmYyODQ1YmQ1ZDY1OTUzZjAwNzEwMGQ1NjZlMTM5OTUxYWY1ZDJmNGNmMTlhN2RmIiwidGFnIjoiIn0%3D; surli_application_session=eyJpdiI6IlVTZzh4cDFMSVFzWWVzdzVvbGdvcGc9PSIsInZhbHVlIjoieUxFNzZ2Y1hSWGYxTnV0WlRJbysxdlVueUlYSmdqY2hoZ1hVQVpVK01Za3J3S0UzOXF3Zno5dDhjZnd3MjJ2OUxkb2hHWERhRmtSOWhIcGZmTHAxQ2VjdWxsMDNWVTh6b2ZlOWpqc0xLUk5mTVF6R2N6WVNoRXRBT1NFNFphcngiLCJtYWMiOiJmYWM4NjM1NjQyMWE3ZDk2NDg5Y2QxNDM1ZTU5ZmM5MzgxYmJlY2JmNTM5N2ZlNmZkYTcxN2NlNGJiYTczMzE2IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 15:57:20 GMT
content-type: image/svg+xml
last-modified: Fri, 03 May 2024 12:44:45 GMT
etag: W/"6634dc3d-1574"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3259
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KW0zE34mbr5DcFDOxNh3Dxx1PPKIx1NBRq5JfZVfism7Bhs2NyHT0uA8RSinfFN%2BVu4RKTp7oDwP%2BF054Yi3JlWFk4yRnUF29wLXrC%2Fq0QEFpd7Gl1UnoG8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880267b82e0356bd-OSL
content-encoding: br
X-Firefox-Spdy: h2

discord.com/assets/19878.38577e57248a8460bd91.js

162.159.136.232

200 OK

49 kB

URL GET HTTP/3
discord.com/assets/19878.38577e57248a8460bd91.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (49325)
Size
49 kB (49380 bytes)
Hash
21a097ce6283b2c869519bd4ab2e264e
80c6057fa48f95d3ba4a53fee57cbad247dd2ce5
42d6d6e717363c7b269397b33f47000a433a4f678ebb22958d5d76e5b00190f2

HTTP Headers

GET /assets/19878.38577e57248a8460bd91.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: application/javascript
cf-ray: 880268133e460b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"21a097ce6283b2c869519bd4ab2e264e"
last-modified: Wed, 27 Mar 2024 16:17:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r3gmnuXsOI%2FZ3dKfaXhC3vKhYKatFsjge%2BWasC75IyZtv5Zmrn2ZCDVAKPncY%2BGK090GtothYCikfJ4SICtoWRYRfztkT5DDDdensA5r1b6%2Bc6%2FSKZbF58Simw2A"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/assets/24217.fbecbc1d6a974fbc777e.js

162.159.136.232

200 OK

14 kB

URL GET HTTP/3
discord.com/assets/24217.fbecbc1d6a974fbc777e.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (13836)
Size
14 kB (13891 bytes)
Hash
67372e1a2d6f79166686fbc585daf578
6d3829c9d142359672020887039ae9c733ee9df6
91edf528e1738ba548f95d7341ea4b4dcbe01faa9e3fbf8cc27c7ce929f65f64

HTTP Headers

GET /assets/24217.fbecbc1d6a974fbc777e.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:31 GMT
content-type: application/javascript
cf-ray: 880268021b2a0b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"67372e1a2d6f79166686fbc585daf578"
last-modified: Wed, 27 Mar 2024 16:17:39 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VlVmlUccRcsZoXUQyIHNP7usiBMEQmc543X8Lod2K3rANhjgszCA8kiUtDQTxHu4R7Qp4aAmUeD%2Bm0%2Bxba5WsEmkMdvXRPSQV4akVyjdHnkOiZtKHSNF5Im6q7HB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

127.0.0.1:6463/?v=1

0.0.0.0

0 B

URL GET
127.0.0.1:6463/?v=1
IP
0.0.0.0:0
ASN
#0

Requested by
https://discord.com/invite/sPYNCpZZQ8

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?v=1 HTTP/1.1
Host: 127.0.0.1:6463
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://discord.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: dh8n3bSp4tBIBmX55CDzhw==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

127.0.0.1:6466/?v=1

0.0.0.0

0 B

URL GET
127.0.0.1:6466/?v=1
IP
0.0.0.0:0
ASN
#0

Requested by
https://discord.com/invite/sPYNCpZZQ8

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?v=1 HTTP/1.1
Host: 127.0.0.1:6466
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://discord.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: zKhJvqsoiLFmUvmqRC11dg==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

surl.li/fonts/rubik/Rubik-Medium.ttf

104.26.5.19

200 OK

116 kB

URL GET HTTP/2
surl.li/fonts/rubik/Rubik-Medium.ttf
IP
104.26.5.19:443
ASN
#13335 CLOUDFLARENET

Requested by
https://surl.li/sscpp
Certificate
IssuerGoogle Trust Services LLC
Subjectsurl.li
Fingerprint4A:8A:47:88:45:49:9E:79:20:E2:25:13:21:0D:14:FD:40:9F:73:38
ValiditySat, 30 Mar 2024 17:55:26 GMT - Fri, 28 Jun 2024 17:55:25 GMT

File type
TrueType Font data, 16 tables, 1st "GDEF", 14 names, Microsoft, language 0x409
Size
116 kB (116056 bytes)
Hash
4dd3023b03ba2b68d4b9da9176b7285a
d734c149587c12d9083c03bc90009c84b52aec78
ce40d27c6c90b990229510c46115ec852237276e1aa09cdebffc6ae085b1d1e2

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/rubik/Rubik-Medium.ttf HTTP/1.1
Host: surl.li
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://surl.li/css/app.css
Cookie: XSRF-TOKEN=eyJpdiI6IjU5Z3hSWWFCSVJjbDBvd1kvK1pJdkE9PSIsInZhbHVlIjoieEMrR3JUVW44RXFCdFQ4T3BVNkYxMTJzYnFGYVdEQTRKMWY0a1FUcGlPSUxGNlY4a2xFUkoxRUVjZlVFcklRellFVCt3ekE0MERod21kL01yaW1uSHNXTjRIbUlvOFZrMVdpNlgvVWFKdnh2QW9yN09hMHVKbXNkS2ltVGM0TkkiLCJtYWMiOiI2NjBkOTBmMDc3NTc4MzQ2YmYyODQ1YmQ1ZDY1OTUzZjAwNzEwMGQ1NjZlMTM5OTUxYWY1ZDJmNGNmMTlhN2RmIiwidGFnIjoiIn0%3D; surli_application_session=eyJpdiI6IlVTZzh4cDFMSVFzWWVzdzVvbGdvcGc9PSIsInZhbHVlIjoieUxFNzZ2Y1hSWGYxTnV0WlRJbysxdlVueUlYSmdqY2hoZ1hVQVpVK01Za3J3S0UzOXF3Zno5dDhjZnd3MjJ2OUxkb2hHWERhRmtSOWhIcGZmTHAxQ2VjdWxsMDNWVTh6b2ZlOWpqc0xLUk5mTVF6R2N6WVNoRXRBT1NFNFphcngiLCJtYWMiOiJmYWM4NjM1NjQyMWE3ZDk2NDg5Y2QxNDM1ZTU5ZmM5MzgxYmJlY2JmNTM5N2ZlNmZkYTcxN2NlNGJiYTczMzE2IiwidGFnIjoiIn0%3D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 07 May 2024 15:57:20 GMT
content-type: application/octet-stream
content-length: 116056
last-modified: Fri, 03 May 2024 12:44:45 GMT
etag: "6634dc3d-1c558"
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 730
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QnG4Oedk7keQ%2BgLFjvjLiJ0xJgQoynf9qDH9Pq4PhwqdnyPni6yainIXau8RDiA3BX5SiHE%2Fs%2BRL8vIISir9xqyEwnYixIDcdgCaOITi7WIKm0mPTdCPw0s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880267b8bed256bd-OSL
X-Firefox-Spdy: h2

discord.com/assets/67535.d4ccc9e274acd6cbdc82.js

162.159.136.232

200 OK

18 kB

URL GET HTTP/3
discord.com/assets/67535.d4ccc9e274acd6cbdc82.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (18219)
Size
18 kB (18274 bytes)
Hash
d0dfc2a1071876b0fb389ca2e99c6c74
84faf5b8423be4160290355d4616e719488bfbbe
2d2b41ae7231ff6e12f6802104525bd71342b82cf0831c009c29865f1c9bfc70

HTTP Headers

GET /assets/67535.d4ccc9e274acd6cbdc82.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: application/javascript
cf-ray: 880268133e3e0b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"d0dfc2a1071876b0fb389ca2e99c6c74"
last-modified: Tue, 23 Apr 2024 23:56:21 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Zk0%2F4wzwZ9NiuMDXrp0f5NHAzIS7IzfK9AZP%2F31EG6s1ZP%2BoqrWiuw%2F0iYrJD0EYKOQKRRpJLZCkXTNgrCHgx4KvyMlFWei3Mc2QKQktA9Jkx%2FN1bQZr4%2Fs1QpMo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/assets/3e0ea01b0dbd07fd8885.svg

162.159.136.232

200 OK

139 B

URL GET HTTP/3
discord.com/assets/3e0ea01b0dbd07fd8885.svg
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
139 B (139 bytes)
Hash
d8307f61f76f425f8834fd27a04c1b3e
5fd275de4826b418e24dfb34abca1dd2d6397b78
e05e223815347635e74c037681ab5036542fbd6c1a0f08a9c923153ccf837441

HTTP Headers

GET /assets/3e0ea01b0dbd07fd8885.svg HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:34 GMT
content-type: image/svg+xml
cf-ray: 88026813df620b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"72a8b168ad2c7eea7b2559b5690c7695"
last-modified: Mon, 25 Mar 2024 19:49:05 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aopAlobwgRsUCcb7TvDKSjlSU%2F2LcHjyoXx%2Fb9UMWJh771TlA0aEgnIMZimuzV1ZW7ElXrs%2BDkFD8pD53K%2FEzJy7stmKmewF8IgOwQtayFNmX%2FMNq9Vp0FdY4%2BdL"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

127.0.0.1:6470/?v=1

0.0.0.0

0 B

URL GET
127.0.0.1:6470/?v=1
IP
0.0.0.0:0
ASN
#0

Requested by
https://discord.com/invite/sPYNCpZZQ8

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /?v=1 HTTP/1.1
Host: 127.0.0.1:6470
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://discord.com
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: foXWZ7aKfisQRuv5RG9vkA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

discord.com/assets/84471.ff79a54e2920c5b8cae0.js

162.159.136.232

200 OK

504 kB

URL GET HTTP/3
discord.com/assets/84471.ff79a54e2920c5b8cae0.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
504 kB (503821 bytes)
Hash
ce0b7fbfb38f75492fdceb6a6fbc6e85
f175c6cccf5e0bf7091c766174589ea063ccf54f
fa2f1ce007cf94faf5a3cb6cba128a930ed3b1442775383f944975e7fc9669e5

HTTP Headers

GET /assets/84471.ff79a54e2920c5b8cae0.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:31 GMT
content-type: application/javascript
cf-ray: 880268022b3d0b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"ce0b7fbfb38f75492fdceb6a6fbc6e85"
last-modified: Tue, 07 May 2024 02:08:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TdqIDH7JvcVVBrYMug9zUrVl2GGF%2FkveuNcwmrEs5vZJB6CRhHcDoeIKYPtP1Wh%2Bqtf3nb6Crw30Fj6fsLV3tMvl93%2B5tjmWoS1D0cS1%2FSQNe42mS2mC4klJyNGo"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

discord.com/assets/43455.8c79ce3e1753b38de4a4.js

162.159.136.232

200 OK

392 kB

URL GET HTTP/3
discord.com/assets/43455.8c79ce3e1753b38de4a4.js
IP
162.159.136.232:443
ASN
#13335 CLOUDFLARENET

Requested by
https://discord.com/invite/sPYNCpZZQ8
Certificate
IssuerCloudflare, Inc.
Subjectdiscord.com
FingerprintA8:AB:66:57:DC:35:70:C3:39:4A:3E:36:5C:AB:B3:0C:B1:E0:61:D3
ValidityFri, 20 Oct 2023 00:00:00 GMT - Sat, 19 Oct 2024 23:59:59 GMT

File type

Size
392 kB (391512 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /assets/43455.8c79ce3e1753b38de4a4.js HTTP/1.1
Host: discord.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://discord.com/invite/sPYNCpZZQ8
Cookie: __dcfduid=831eaae00c8a11ef96724d1fdb12366b; __sdcfduid=831eaae10c8a11ef96724d1fdb12366be61bd40ae6ff248f710dc52c6801fe905c8040fba60b6dc77ceeeea65173e755; __cfruid=9670faa6fa46c8aa800cead723e69c188ff8faf8-1715097451; _cfuvid=mCaFHggcH.KzU4gxKOJdEaaoUXu6YjlN7B.M1VgwJPA-1715097451668-0.0.1.1-604800000
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 07 May 2024 15:57:32 GMT
content-type: application/javascript
cf-ray: 880268061a9f0b06-OSL
cf-cache-status: HIT
access-control-allow-origin: https://discord.com
cache-control: public, max-age=2592000
etag: W/"1f92cda4f59b6888d2f16e6350e0dbdd"
last-modified: Wed, 27 Mar 2024 16:17:41 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Origin, Accept-Encoding
permissions-policy: interest-cohort=()
x-content-type-options: nosniff
x-frame-options: DENY
x-xss-protection: 1; mode=block
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=40ZtysoVqFyPSeVu5oVxbD0HpxVtxHOJOOve%2BBElPb8w%2BehwqFnJJKDeakFYk1j9YXEMhhlXUVa47Wanu%2BFuwIoiPzmfm2YdeUoO9%2FAL0rIeSqEVjYvbl35Tvai9"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (42)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML