Report - launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1

Report Overview

Submitted URL
launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
IP
172.67.190.32
ASN
#13335 CLOUDFLARENET
Submitted
2024-05-11 00:00:40
Access
public
Website Title
MLO - LauncherLeaks.net
Final URL
launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
80

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
launcherleaks.net	unknown	unknown	No data	No data	25 kB	4.9 MB	104.21.10.110
code.jquery.com	634	unknown	No data	No data	411 B	32 kB	151.101.130.137
cdn.jsdelivr.net	439	unknown	No data	No data	411 B	22 kB	151.101.129.229
use.fontawesome.com	942	unknown	No data	No data	3.6 kB	703 kB	104.21.27.152
fonts.gstatic.com	unknown	unknown	No data	No data	1.1 kB	95 kB	142.250.74.163
fonts.googleapis.com	8877	unknown	No data	No data	468 B	13 kB	142.250.74.170

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed
2024-05-11	medium	launcherleaks.net	Sinkholed

ThreatFox

No alerts detected

JavaScript (25)

	URL	Size	First Seen	Last Seen
	launcherleaks.net/uploads/javascript_global/root_map.js?v=5b601352f91715377628	2.0 kB	2024-05-11	2024-05-11
Pretty URL launcherleaks.net/uploads/javascript_global/root_map.js?v=5b601352f91715377628 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-11 02:01:01 Last Seen2024-05-11 02:14:26 Times Seen2 Hash c5276bd665ee41fbaf15e8cac326cee4 b5aeb0988d8805c66eafcbac67521e1d6cc33f3c 7b2060343adc75fad631fbdf1299c2c30dde52c9db29d17269aa55bc4e1ca9b7 Loading...

	unknown	842 B	2024-05-11	2024-05-20
Pretty Introduced by domTimer Embedded in HTML false Observations First Seen2024-05-11 02:01:01 Last Seen2024-05-20 01:04:13 Times Seen6 Hash 0c5c7252dc54a5103a522d423a9ec930 848a79ae3f517dcd842a2540c2065ac5724c3831 7db13bccbaada72d653d829e0997e4bd3447148a7a02acb80a49ca857849ddc2 Loading...

	launcherleaks.net/uploads/set_resources_30/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.js	135 kB	2023-05-21	2024-05-22
Pretty URL launcherleaks.net/uploads/set_resources_30/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.js IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-21 21:52:57 Last Seen2024-05-22 00:38:58 Times Seen69 Hash d76dc704cfe2bb6f6a5fb1528c395c67 b58e50e0c92c404c26673305a2e4a259937c6a16 776e433644a3f8258ae65109332b33eaf7f9d98de6d9dff61624a84db0ca0988 Loading...

	unknown	163 B	2023-04-14	2024-05-23
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-14 06:36:23 Last Seen2024-05-23 05:30:52 Times Seen304 Hash 411867b319241d427a5b90e512a1e738 77c9861729f51f36501e4aaa7a4f8bda898b40b1 c1c19f5ec30646ad750d86fc0dd2fdc2b6e08f3939a3f7cbfd94ec8c1c379f81 Loading...

	launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1	754 B	2023-09-29	2024-05-22
Pretty URL launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-09-29 12:27:51 Last Seen2024-05-22 00:38:57 Times Seen34 Hash d90699ff0cbec337c87a1ddb61a2dd87 d9fd9e8f7648949adfbeef3e287f5379f53223f6 62411a27a2991326bcd74c93512d5f2d2690f6fbe0950fb8c693eaa525b4c67d Loading...

	unknown	247 B	2024-05-11	2024-05-11
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-11 02:01:01 Last Seen2024-05-11 02:01:01 Times Seen1 Hash e5d0d485b2dc6aebc791b19145b2a4b0 30a7e37c6dbf567e8e5682b5e3c8014f103cb5b4 436e0fb1782f1238a25ad74ed5bbfedaa93151bdd72ece929002a6b406ac85e7 Loading...

	code.jquery.com/jquery-3.5.1.min.js	90 kB	2023-03-07	2024-05-23
Pretty URL code.jquery.com/jquery-3.5.1.min.js IP 151.101.130.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:01 Last Seen2024-05-23 06:29:54 Times Seen146691 Hash dc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d Loading...

	launcherleaks.net/uploads/javascript_core/plugins_plugins.js?v=5b601352f91715377628	1.1 kB	2024-04-26	2024-05-22
Pretty URL launcherleaks.net/uploads/javascript_core/plugins_plugins.js?v=5b601352f91715377628 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 00:57:31 Last Seen2024-05-22 00:38:57 Times Seen34 Hash f47067a41e54253a29308eb2e67c5257 3b81b436be06acfb8bc9819fab27e42c4b4af8b0 bdf77d658c86b10a9a85b4349845dc373d1f8bb3cd4e9dfb9d1103101172b9db Loading...

	launcherleaks.net/uploads/javascript_global/root_front.js?v=5b601352f91715377628	105 kB	2024-05-07	2024-05-22
Pretty URL launcherleaks.net/uploads/javascript_global/root_front.js?v=5b601352f91715377628 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:34:36 Last Seen2024-05-22 00:38:58 Times Seen32 Hash 6e01bd7e0c52534ffbac351178db9e8e fe8fab060ac244b1d09bb18e621d72646e59f55e bfc743c8d846e46e5ed124a9e25eee9a63bbf98cd332650fb1eb13ae6e7220cd Loading...

	launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1	57 B	2023-03-07	2024-05-23
Pretty URL launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:59 Last Seen2024-05-23 06:39:00 Times Seen11253 Hash 2a2781f9bb6302c2f96df0d1e96ef524 796bb90146495848c0c479533c367edadb94f1a9 1b60af0ce49d65e8b1006457c16883d60e53a0054bb157c57c3b03a82ee9964d Loading...

	launcherleaks.net/uploads/javascript_global/root_js_lang_1.js?v=5b601352f91715377628	108 kB	2024-05-07	2024-05-22
Pretty URL launcherleaks.net/uploads/javascript_global/root_js_lang_1.js?v=5b601352f91715377628 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:34:35 Last Seen2024-05-22 00:38:58 Times Seen50 Hash dfb4f4a37cacac558a02e348876805dc a3c9316578d617bd8869a2a234b2216586b27a45 8a21a5cc24b20509a317b3fb30c4a0feabc3eed7d754d402ccdb07e07341e8af Loading...

	launcherleaks.net/uploads/javascript_core/front_front_core.js?v=5b601352f91715377628	38 kB	2024-05-07	2024-05-22
Pretty URL launcherleaks.net/uploads/javascript_core/front_front_core.js?v=5b601352f91715377628 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:34:35 Last Seen2024-05-22 00:38:58 Times Seen40 Hash 1612610c00673b890b0f26e0d269ebcf cda49bb78ebb69eb3adc6ca326d1f4cc407fdec0 5006e6adadffb976db882bfcde9fe4baca631b4ba497ad4c4988118f793319fa Loading...

	launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1	1.4 kB	2024-05-11	2024-05-11
Pretty URL launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-11 02:01:01 Last Seen2024-05-11 02:01:01 Times Seen1 Hash 223f5c92bad97bf81b4e91c497eda834 88ad767997f3accd55e725074abec50877369a89 01fb554bdd9d7a227667e8b1668336c07a7967870a85270b11ccc86e3aecefef Loading...

	launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1	934 B	2024-05-07	2024-05-22
Pretty URL launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-07 19:34:35 Last Seen2024-05-22 00:38:58 Times Seen32 Hash 20a64d799591c9b87f6637cbd6d82b3d 17ddc2b3fac5b4171e9850450845031747e9b17e 64ba70c3b4405945ce4c0c56d7cc2f3295311f76effc2f952e86c7530bac808f Loading...

	launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1	152 B	2023-03-13	2024-05-22
Pretty URL launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 20:48:10 Last Seen2024-05-22 00:38:58 Times Seen147 Hash 32ee5f1e31e3be36abdcd7f154a65c74 08739291134455f7e553ec3185d6ba923b7a658c 50e20db0de17fdccd7711d55b90c78559824b9457ab3aa9712fe4183af906a1f Loading...

	launcherleaks.net/uploads/javascript_core/global_global_core.js?v=5b601352f91715377628	39 kB	2024-05-07	2024-05-22
Pretty URL launcherleaks.net/uploads/javascript_core/global_global_core.js?v=5b601352f91715377628 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:34:35 Last Seen2024-05-22 00:38:58 Times Seen49 Hash 5ff684590fec461dcdd6b828227c33fa e744b611415ea7633f726fc192bcc329ac9098cc a51566d963014d0e21f963bf48131950fd463ff1e234c31ebc9b346a775db42d Loading...

	unknown	166 B	2023-04-14	2024-05-23
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-14 06:36:23 Last Seen2024-05-23 05:30:52 Times Seen302 Hash b3e842a6c0f384dd341556f48a584fa1 ae83201c7d3a8c7f08b46557c85a214329b31872 ebf5058ae600c9966d2c3ef0835639c0d0702743c378ffb1c7b5e47c0b5176bb Loading...

	launcherleaks.net/cdn-cgi/challenge-platform/scripts/jsd/main.js	7.9 kB	2024-05-11	2024-05-11
Pretty URL launcherleaks.net/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-11 02:01:01 Last Seen2024-05-11 02:01:02 Times Seen2 Hash 388858220d243932244093fbd5de2fb0 bdb70d8adb355f40308163086d3cbf880850d680 a5e237d5747e80151727867424ba6d53cf56809b5abd54bcfc8dd70cabbf879d Loading...

	launcherleaks.net/uploads/javascript_global/root_library.js?v=5b601352f91715377628	354 kB	2024-04-06	2024-05-22
Pretty URL launcherleaks.net/uploads/javascript_global/root_library.js?v=5b601352f91715377628 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-06 18:45:54 Last Seen2024-05-22 00:38:58 Times Seen41 Hash 7cbb9aaf57dbc57cb1f08313a6a1958f c51bdede7f247aff1303f30bc04542d47ba1ca72 a422773a794729cf98ce172eec6df5c82174cef1021174af4fd71dddb65d86a4 Loading...

	launcherleaks.net/uploads/javascript_global/root_framework.js?v=5b601352f91715377628	447 kB	2024-05-07	2024-05-22
Pretty URL launcherleaks.net/uploads/javascript_global/root_framework.js?v=5b601352f91715377628 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-05-07 19:34:36 Last Seen2024-05-22 00:38:58 Times Seen35 Hash 50791ee1f0d3b2adf2d6c69e6ba39bf7 89ac8af38c365405139f63ce0b865f93f5668bcd 60253d41c720b041f9f16425c069a52a4649cc15df0e0d19a31739446ea16b8a Loading...

	cdn.jsdelivr.net/npm/sweetalert2@11	76 kB	2024-04-17	2024-05-20
Pretty URL cdn.jsdelivr.net/npm/sweetalert2@11 IP 151.101.129.229 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-17 18:06:27 Last Seen2024-05-20 11:29:10 Times Seen93 Hash 230c939d3b3fc96a5cf7fec7d22891c0 5c664950c68e5630583db458390152ad0e1c64d9 ef7aceda0ec9484ac6f22b195c2b1edfd29fe721ae78f823cafa2dffc71108d4 Loading...

	launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1	437 B	2024-04-26	2024-05-22
Pretty URL launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 00:57:31 Last Seen2024-05-22 00:38:58 Times Seen33 Hash 7301321027f6dcc230eccabd2cf858ab 178e26972661057ac35c24325f5105cdea367a7d a3bfff7b98413607f8284bf6a35b860e5d3c35be9f4cffcdfe9844a7cf7667c1 Loading...

	launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1	749 B	2024-04-26	2024-05-22
Pretty URL launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 00:57:31 Last Seen2024-05-22 00:38:58 Times Seen33 Hash 9682254ff6eac77cb2baf06c8ae9a356 8e68982bc6e6f847d5acaf95a326aff4296f28b9 44f659bdf4df037e0c5e4bd81f8fd7ecaa434d55f3e5608c9fe28362fd0a6816 Loading...

	unknown	164 B	2023-04-14	2024-05-23
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-04-14 06:36:23 Last Seen2024-05-23 05:30:52 Times Seen303 Hash b750e6c6113e9f8c308d46e706440977 d594ae97a1ff12e12846a8fc62dc153d45223b7f 1f833e4732eb802ef961cf2b0dc34fc95839c03054c4a5bec0a541b4f062a487 Loading...

	launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1	1.1 kB	2024-05-11	2024-05-11
Pretty URL launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1 IP 104.21.10.110 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-11 02:01:01 Last Seen2024-05-11 02:01:01 Times Seen1 Hash b00b9a55b96f62e296d1f0dd0e398e20 cc2d66e38c742e0cc41d494364c5ec4e07e37a50 6f75dc27d45b94ae8e59a4b270b2a6c8b36b85aa190c40ea4976c8de4a70322e Loading...

HTTP Transactions (52)

URL IP Response Size

launcherleaks.net/uploads/monthly_2024_05/cq9aTZx.png.9b918e8db585b3135a669ceeb209ebe5.png

104.21.10.110

200 OK

6.6 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_05/cq9aTZx.png.9b918e8db585b3135a669ceeb209ebe5.png
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 214 x 200, 8-bit/color RGBA, non-interlaced
Size
6.6 kB (6596 bytes)
Hash
2fc19a8bacd5d0e4d73a306fab8166e0
0f2fce7d0bf503da891f81231fd00aebe7a1d970
49b78f2f11c1bac3763b0131923b05101f20693a46765374d1b193ef86132b25

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_05/cq9aTZx.png.9b918e8db585b3135a669ceeb209ebe5.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: image/png
content-length: 6596
last-modified: Fri, 10 May 2024 06:58:19 GMT
etag: "663dc58b-19c4"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 6719
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=z2BlbsuF5EjHIrOxoFT2aTIflZ55YCdtE0RONrYfAIjBXSLNYLKIWZrpbeZRO%2B%2Bbeqj4zFW3%2FlinpaYODDXNr0JhvgoN4whVcLi0UolUWDuTXO8hGHLPtD55QU6B4bGfrYjfaA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd43109f57127-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2024_05/whats_good.png.40364159aef5b39ed655b09bb1841614.png

104.21.10.110

200 OK

551 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_05/whats_good.png.40364159aef5b39ed655b09bb1841614.png
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 1920 x 1080, 8-bit/color RGBA, non-interlaced
Size
551 kB (551370 bytes)
Hash
bd6e64a379de435c2abc2d7946bbfad1
4b24ed6d44f368df35c1d5829579346ae242a770
150df326b0b235af1a0a736475a8809ec47d7a04165180f30519e9ffa2e295e5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_05/whats_good.png.40364159aef5b39ed655b09bb1841614.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: image/png
content-length: 551370
last-modified: Fri, 10 May 2024 06:58:17 GMT
etag: "663dc589-869ca"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 6719
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bmAAWoYrqTmij9pkQkgN15WgscSobl9xPTlFOvSv7UongGU3z81gcK%2BhdBoMQAYT1vz5eZTbYhl2CVVKJ4RGwbY2m29oAn1J%2FQkfqjcx1MJQhhfwLOri%2B2YZfGjbgphNLnW%2BEg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd43109f87127-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2024_05/adad.png.9f96c04a666b8a8b1fdbfab4434dcb1d.png

104.21.10.110

200 OK

295 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_05/adad.png.9f96c04a666b8a8b1fdbfab4434dcb1d.png
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 1920 x 1080, 8-bit/color RGB, non-interlaced
Size
295 kB (295333 bytes)
Hash
18ef5cd95531bb3dd64d9e06e29e8626
5b94f1bdfa2b1f235349d37ff7cb386671cb8a83
0b827376ee9a9be1006489f2900bf7f67edab2f0e2ea939a8bf5615af9620c33

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_05/adad.png.9f96c04a666b8a8b1fdbfab4434dcb1d.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: image/png
content-length: 295333
last-modified: Fri, 10 May 2024 06:58:17 GMT
etag: "663dc589-481a5"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 2125
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5PtpFwaTd75afZEgRVnQG4U6lTYGezd%2FzwZBA7%2FL1tS34XZbAFnzeVATLjANqRvPuEQNktoGIsTqLUslOas84F1Sy2VYtHfawNNMSc5MDDuvxl%2Fh%2BvVxD1QpTRq%2BX%2BQhAABcgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd43109f97127-OSL
alt-svc: h3=":443"; ma=86400

code.jquery.com/jquery-3.5.1.min.js

151.101.130.137

200 OK

31 kB

URL GET HTTP/2
code.jquery.com/jquery-3.5.1.min.js
IP
151.101.130.137:443
ASN
#54113 FASTLY

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerSectigo Limited
Subject*.jquery.com
FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D
ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65451)
Size
31 kB (30879 bytes)
Hash
dc5e7f18c8d36ac1d3d4753a87c98d0a
c8e1c8b386dc5b7a9184c763c88d19a346eb3342
f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d

HTTP Headers

GET /jquery-3.5.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d84"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Fri, 10 May 2024 23:49:58 GMT
age: 1241171
x-served-by: cache-lga21981-LGA, cache-hel1410023-HEL
x-cache: HIT, HIT
x-cache-hits: 64, 401195
x-timer: S1715384999.744287,VS0,VE0
vary: Accept-Encoding
content-length: 30879
X-Firefox-Spdy: h2

launcherleaks.net/applications/core/interface/js/spacer.png

104.21.10.110

200 OK

137 B

URL GET HTTP/3
launcherleaks.net/applications/core/interface/js/spacer.png
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 1 x 1, 8-bit colormap, non-interlaced
Size
137 B (137 bytes)
Hash
a41d6e3396dc05c78cc77b2d2466534d
0ed5c70f6c2012837adc192b1570cdc8551defbe
dc1b146a3d93548cfd8893783085c4d22a389d361f6b0816643b67f19233000d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /applications/core/interface/js/spacer.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: image/png
content-length: 137
last-modified: Fri, 10 May 2024 05:26:35 GMT
etag: "663db00b-89"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 6719
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zMLzSNqL8cLIunfhboeF%2BElvMnd%2BwzJdVK%2BbqCZcwPJj6pggXr2s1UWlG4r2vDm1VAlSMF87oH7ZvglBuyWPGYo1Bm15aS3CugPoPySOWGhy0IF51q2cykyVkRdE59frerz8kA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd43109fc7127-OSL
alt-svc: h3=":443"; ma=86400

cdn.jsdelivr.net/npm/sweetalert2@11

151.101.129.229

200 OK

21 kB

URL GET HTTP/2
cdn.jsdelivr.net/npm/sweetalert2@11
IP
151.101.129.229:443
ASN
#54113 FASTLY

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGlobalSign nv-sa
Subjectjsdelivr.net
Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09
ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT

File type
JavaScript source, ASCII text, with very long lines (52172)
Size
21 kB (21319 bytes)
Hash
230c939d3b3fc96a5cf7fec7d22891c0
5c664950c68e5630583db458390152ad0e1c64d9
ef7aceda0ec9484ac6f22b195c2b1edfd29fe721ae78f823cafa2dffc71108d4

HTTP Headers

GET /npm/sweetalert2@11 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 11.10.8
x-jsd-version-type: version
etag: W/"129b5-XGZJUMaOVjBYPbRYOQFSrQ4cZNk"
content-encoding: br
accept-ranges: bytes
date: Fri, 10 May 2024 23:49:58 GMT
age: 31213
x-served-by: cache-fra-eddf8230029-FRA, cache-hel1410034-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 21319
X-Firefox-Spdy: h2

launcherleaks.net/applications/core/interface/font/fontawesome-webfont.woff2?v=4.7.0

104.21.10.110

200 OK

77 kB

URL GET HTTP/3
launcherleaks.net/applications/core/interface/font/fontawesome-webfont.woff2?v=4.7.0
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /applications/core/interface/font/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: application/octet-stream
content-length: 77160
last-modified: Fri, 10 May 2024 05:26:35 GMT
etag: "663db00b-12d68"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w1SCIvuL9%2Bxk2WbPZ2%2FqoGuybptUdlFPO0J0RxjEYrkp66XX7j9vnJQTEVIUxbFJEu7t4McsmXbg5yKEfAy57HLfdOnM52rTGWDfJQY0432n%2FAqQdxblhUt4pc%2B6m%2FjS%2FRQL%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd430e9da7127-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2024_05/image(19).png.2aa78230b74798e345b60e3f00462916.png.6412ca9337466b2e3d9e4d392340cf49.png

104.21.10.110

200 OK

2.1 MB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_05/image(19).png.2aa78230b74798e345b60e3f00462916.png.6412ca9337466b2e3d9e4d392340cf49.png
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 1607 x 1080, 8-bit/color RGBA, non-interlaced
Size
2.1 MB (2100356 bytes)
Hash
f8f3bbfe615b3811bc862cc33fd85dba
45c1dad753241f8ff93afb7f5215175a880624c5
2be690f365c2de1f783be2d1d635d1684d9f7ee0c20e4cfaadfb6fbd92c1a64d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_05/image(19).png.2aa78230b74798e345b60e3f00462916.png.6412ca9337466b2e3d9e4d392340cf49.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: image/png
content-length: 2100356
last-modified: Fri, 10 May 2024 06:58:17 GMT
etag: "663dc589-200c84"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 6719
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yumKICCzR6EVSPdyGFhUDbxFbRNOLLf2G%2BvGwR828QHp6rO348hZHp8Zl4eA0vuDyyw3qRFe91PevbBfR8tWL9A89zX8MrtoJbo6zkYdp8ItVVdqJZPeeIGD9WsXApO%2BOw1eUQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd43109fb7127-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/category/3-mlo/page/4/main_script.js

104.21.10.110

301 Moved Permanently

0 B

URL GET HTTP/3
launcherleaks.net/category/3-mlo/page/4/main_script.js
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /category/3-mlo/page/4/main_script.js HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 301 Moved Permanently
date: Fri, 10 May 2024 23:49:58 GMT
content-type: ;charset=UTF-8
content-length: 0
location: https://launcherleaks.net/category/3-mlo/
x-ips-loggedin: 0
vary: Cookie, Accept-Encoding
x-xss-protection: 0, 1; mode=block
x-frame-options: sameorigin, SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-content-security-policy: frame-ancestors 'self'
referrer-policy: strict-origin-when-cross-origin
expires: 0
cache-control: no-cache, no-store, must-revalidate, max-age=0, s-maxage=0
strict-transport-security: max-age=15768000; includeSubDomains;
x-content-type-options: nosniff
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zsV9DJM8uZvI1efi2Cj44jhM%2B3FCFFYxxc7q93FeGr1MdxDZSfahLZkIGqTBWeEBl6QiKTfdBsYXGqzslbH9r23Wmf%2BsV5qQpKO5HruXGkQCknlow37w5Tgu%2F%2BaAhc573PYs8A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881dd43109f67127-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/javascript_global/root_framework.js?v=5b601352f91715377628

104.21.10.110

200 OK

103 kB

URL GET HTTP/3
launcherleaks.net/uploads/javascript_global/root_framework.js?v=5b601352f91715377628
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
103 kB (103026 bytes)
Hash
0eda1f36739625c60048726e4024e83f
30575ec089b93e1b5f386c3ac89777da978d61f7
6f421d2ee2fcf610752e7f6a266671d65cd921fe7e89e55fc8dd8da4c26b167c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/javascript_global/root_framework.js?v=5b601352f91715377628 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: application/javascript
last-modified: Fri, 10 May 2024 20:07:55 GMT
etag: W/"663e7e9b-6d379"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 6936
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7EUE5uo4LtGwpekkIGHYb8Jw6ytBmSPNXCmaZRp2%2F2A%2FGg8HMKErx3Vev%2FBQPAHeM7T%2FovdgtpC2YlLXrdJeOkrMJbQHzCTpFApCm50SgeIXWwSWQT%2FBr3h9mCIv75uaCq6pMQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd4312a0e7127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/javascript_global/root_js_lang_1.js?v=5b601352f91715377628

104.21.10.110

200 OK

143 kB

URL GET HTTP/3
launcherleaks.net/uploads/javascript_global/root_js_lang_1.js?v=5b601352f91715377628
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
143 kB (143245 bytes)
Hash
57d1d216a21c1a3de7b4c4b042149ced
2c517ddd7fcb2946928b7403be5f451df23344a9
dfaca00ae764350684e7afe3d08ed329cce614a8990980a55221d7cd6e18920b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/javascript_global/root_js_lang_1.js?v=5b601352f91715377628 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: application/javascript
last-modified: Fri, 10 May 2024 20:07:55 GMT
etag: W/"663e7e9b-1a6e3"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 6936
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HgMLb3Bxp125ep3Uf55cA7ocfIIsQNOe8Fmifkk6z3wwpThE8osQZuYOP8l%2BTLsnt%2BLMvhEmvcqWOvxer59mhF3BfoJdrAYYMi3KQhJdGGR7%2FTbqZ%2F4hnIBIbixQ5VhLADepWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd4311a037127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

use.fontawesome.com/releases/v6.4.2/webfonts/fa-solid-900.woff2

104.21.27.152

200 OK

150 kB

URL GET HTTP/2
use.fontawesome.com/releases/v6.4.2/webfonts/fa-solid-900.woff2
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 150020, version 772.1280
Size
150 kB (150020 bytes)
Hash
d5e647388e2415268b700d3df2e30a0d
97f0942c6627ddd89fb62170e5cac9a2cbd6c98c
886c86112a804ef1ddd1cb206af4c8c40e34b73c26652ca231404aa35a6b30d9

HTTP Headers

GET /releases/v6.4.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 23:49:59 GMT
content-type: font/woff2
content-length: 150020
access-control-allow-origin: *
etag: "d5e647388e2415268b700d3df2e30a0d"
last-modified: Fri, 22 Sep 2023 01:46:37 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 886187
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zI9bPioHJq1GPLfyGKeE%2FqA7yWrLMLwixOBX3RNsk9VdPDq6wmgDwZkKQJuVls1pciWIryWpkus3%2BB4DOWEG6zyiVkI7enARjPIdHbrLko%2B39XxSqEDIF3V%2FGw%2FGCQ1RUvvk1oL8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881dd436e8fb56c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

launcherleaks.net/uploads/javascript_core/global_global_core.js?v=5b601352f91715377628

104.21.10.110

200 OK

10 kB

URL GET HTTP/3
launcherleaks.net/uploads/javascript_core/global_global_core.js?v=5b601352f91715377628
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
10 kB (10137 bytes)
Hash
32da161ba50883fdafee017ac6eef0f7
54a3680b4f49c561e913079b6ab3a0f2c8f8ad77
c298fa2233d435c2573d8d1288090cd22a09c7a544224dd35f8bb8404de5b9f3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/javascript_core/global_global_core.js?v=5b601352f91715377628 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: application/javascript
last-modified: Fri, 10 May 2024 20:07:55 GMT
etag: W/"663e7e9b-9734"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 6936
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UgkqDtg126h49AGoiN3li7pJBAhZ2lDxcbZZsz3MDIbLU9I%2FSjHbqjT2Bt8KtCrd%2FRpYji43Qy2%2BzTPOo7aDDksS10LhdvDgVluelPevrBZyo%2BtQcz44JqiPtRl38OCwmtZ1xQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd4312a0f7127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

use.fontawesome.com/releases/v6.4.2/webfonts/fa-solid-900.woff2

104.21.27.152

200 OK

150 kB

URL GET HTTP/2
use.fontawesome.com/releases/v6.4.2/webfonts/fa-solid-900.woff2
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 150020, version 772.1280
Size
150 kB (150020 bytes)
Hash
d5e647388e2415268b700d3df2e30a0d
97f0942c6627ddd89fb62170e5cac9a2cbd6c98c
886c86112a804ef1ddd1cb206af4c8c40e34b73c26652ca231404aa35a6b30d9

HTTP Headers

GET /releases/v6.4.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 23:49:59 GMT
content-type: font/woff2
content-length: 150020
access-control-allow-origin: *
etag: "d5e647388e2415268b700d3df2e30a0d"
last-modified: Fri, 22 Sep 2023 01:46:37 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 886187
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aUutE6A%2FW1l7B3bdM0RQipcU2OdoL5nvCdWwpcpKXdT2NCYeycpgNBOh%2FUalNSzKX%2Fxa6ibANIM90qjkVeOVmUTVsBIDpwi9wezqjrwGVYekL0fWhgDkp7Yp6IJbv7hOeqFwDLqW"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881dd437492d56c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

launcherleaks.net/uploads/javascript_global/root_library.js?v=5b601352f91715377628

104.21.10.110

200 OK

164 kB

URL GET HTTP/3
launcherleaks.net/uploads/javascript_global/root_library.js?v=5b601352f91715377628
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
164 kB (163805 bytes)
Hash
7106d4fddc79e1c116fa2c6dd623d4a6
7673accc0635ba4f436ed173686d69133fb05853
bae7cfd597f1b414b840d32a65bec957a894b3a0cb4cb7fe56d88242c2708c10

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/javascript_global/root_library.js?v=5b601352f91715377628 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: application/javascript
last-modified: Fri, 10 May 2024 20:07:55 GMT
etag: W/"663e7e9b-567ce"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 6936
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v0W52ITsbSD2yjh2CJvgIuv%2BloDKmvg5iMH5AL1%2Byd%2BsbqVpbwPSCfxUWI%2Fc4KpPIj8hhyyOWayy9I1ztFFsQ4fr%2BavRyDPD7V9lyY71lJv1AzM%2BolKQrw%2B47r5qd0bNwGFTsQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd43109fd7127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

use.fontawesome.com/releases/v6.4.2/css/v4-shims.css

104.21.27.152

200 OK

51 kB

URL GET HTTP/2
use.fontawesome.com/releases/v6.4.2/css/v4-shims.css
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (27374)
Size
51 kB (51041 bytes)
Hash
665de85010641f678f0178a9d330a7af
bf1ec2791cd06922f4a1b67480f75209d85e6deb
0e0a27c105caf20bd4cc76fe58f222d856ab8f626447846842dddca8ce7509ef

HTTP Headers

GET /releases/v6.4.2/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 23:49:59 GMT
content-type: text/css
etag: W/"665de85010641f678f0178a9d330a7af"
last-modified: Fri, 22 Sep 2023 01:46:32 GMT
vary: Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 891117
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MD4wQv4w%2FKqlozWqhUsUhze05nZ%2B5%2F49xX%2BVnBm%2BX2N69AA1z8MQ684EbNF6%2BTpGHpqysaV1yRCqR4anKxOMO4%2FVdhpNwX%2FShqX3olkvL1LsGiHMFZAh6umSGEW4Vk5D5clBOuMI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881dd433fe9c56c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

142.250.74.163

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 14:44:38 GMT
expires: Fri, 09 May 2025 14:44:38 GMT
cache-control: public, max-age=31536000
age: 119121
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2

142.250.74.163

200 OK

47 kB

URL GET HTTP/2
fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD
ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 46704, version 1.0
Size
47 kB (46704 bytes)
Hash
30a274cd01b6eeb0b082c918b0697f1e
393311bde26b99a4ad935fa55bad1dce7994388b
88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42

HTTP Headers

GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 09 May 2024 14:44:38 GMT
expires: Fri, 09 May 2025 14:44:38 GMT
cache-control: public, max-age=31536000
age: 119121
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

launcherleaks.net/uploads/javascript_core/plugins_plugins.js?v=5b601352f91715377628

104.21.10.110

200 OK

1.0 kB

URL GET HTTP/3
launcherleaks.net/uploads/javascript_core/plugins_plugins.js?v=5b601352f91715377628
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
1.0 kB (1018 bytes)
Hash
d9481b3001492b7885f1e32babe38bce
7e02add2b839c312b339e762cee15115a5cdea9f
04d49ffa91748bb9e21e0bac59ec934c27755da01deb3e9448d8d6f0ce26c492

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/javascript_core/plugins_plugins.js?v=5b601352f91715377628 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: application/javascript
last-modified: Fri, 10 May 2024 20:07:55 GMT
etag: W/"663e7e9b-42e"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 6936
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b1o%2Bf5%2Fj%2BvtDkMH10NjkIvkv4u4mG6FnYj%2F%2FCUo%2B5Nxx%2Fb8x%2BxvIKxW7WfTgSlxGy3uJOOhwBC9248ubcAMsbGasYrMoJ4XbPUPY4rgNfp1GPx9XJlBieMeCKQ3cDzSanZeJug%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd4312a117127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

use.fontawesome.com/releases/v6.4.2/webfonts/fa-regular-400.woff2

104.21.27.152

200 OK

24 kB

URL GET HTTP/2
use.fontawesome.com/releases/v6.4.2/webfonts/fa-regular-400.woff2
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 24488, version 772.1280
Size
24 kB (24488 bytes)
Hash
747442fa76f1d9a31f9a54a2e8a4b448
07fc0ae14bb3187839082aed3bca11dfb1e04524
9169d8be7a8177e5a92a4d04b6de7f6504b938573bf4da5889871c4f376d3849

HTTP Headers

GET /releases/v6.4.2/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 10 May 2024 23:49:59 GMT
content-type: font/woff2
content-length: 24488
access-control-allow-origin: *
etag: "747442fa76f1d9a31f9a54a2e8a4b448"
last-modified: Fri, 22 Sep 2023 01:46:36 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 886187
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Kf1sccKshwpLr5gOvKFZuXHRyw52V18kG%2F2MC0VjwIM2FjT%2FO7905kTWYwJYxTY6Xq6ceJab%2B85%2Fi%2BjQLVVSAPPAQo8U12Z7Aur547j7XsY87MxDKO%2BAZjdvjzK32tUtD9nphaFf"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881dd438ca8956c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

launcherleaks.net/uploads/javascript_core/front_front_core.js?v=5b601352f91715377628

104.21.10.110

200 OK

18 kB

URL GET HTTP/3
launcherleaks.net/uploads/javascript_core/front_front_core.js?v=5b601352f91715377628
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
18 kB (18108 bytes)
Hash
3ff378ab184810a9a3e9035f45db5e38
c5d4a3aa4797ab68bcb70dba83938a966dacaf94
b47e67efce79f2b5e00d52ec0280f6aff61a6000f1bbe4bab77a37bdb7b08990

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/javascript_core/front_front_core.js?v=5b601352f91715377628 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: application/javascript
last-modified: Fri, 10 May 2024 20:07:55 GMT
etag: W/"663e7e9b-952f"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 6936
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9uUqzKGVBfZcf7O9TsmIUKi3DfJqetlKEzg9rVg30Ev3RgTsISABbrYx3QMUlHg4XmhWdM8Pn3L1JyNcKQrqYEfF%2B5d9kNfex%2BH%2F4fw%2B%2BTEmZ9JE4kRHe6cF%2FbWauTMHzkeWpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd4313a187127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/javascript_global/root_map.js?v=5b601352f91715377628

104.21.10.110

200 OK

8.7 kB

URL GET HTTP/3
launcherleaks.net/uploads/javascript_global/root_map.js?v=5b601352f91715377628
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
8.7 kB (8653 bytes)
Hash
72171784072a18dd4589e65d550d195c
e64d4b115066c83c7131ebcf98ee23666382daa4
259ccd5fdf114edc62e07e49c4f12b5faf02be173faaed3c7c33d4bc22773e9e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/javascript_global/root_map.js?v=5b601352f91715377628 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: application/javascript
last-modified: Fri, 10 May 2024 21:47:08 GMT
etag: W/"663e95dc-7bf"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 6936
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4Bz%2BTsI4WoR43EhhU0%2FP%2BopfDkuf81BFBSShwAIR1umQQlo8ezZKtw3ypiNvkuA3MWCyCas3j3aQIf6b1g4dMiFAm1A3Sjc4eskL36Vzc09IcFQ8GLM5HqfkfKrndMJ3KN286Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd4313a197127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/category/3-mlo/

104.21.10.110

200 OK

25 kB

URL GET HTTP/3
launcherleaks.net/category/3-mlo/
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
25 kB (24570 bytes)
Hash
f742c0da1e4a0f4e31b48d55c80ac4d0
4d9a027d54baeefe5c0867a2aef39cea19d71cac
7a54709c53330caecc90da8357bec04bea0516ad185bca6a2804c1feded75116

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /category/3-mlo/ HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:59 GMT
content-type: text/html;charset=UTF-8
x-ips-loggedin: 0
vary: Cookie, Accept-Encoding
x-xss-protection: 0, 1; mode=block
x-frame-options: sameorigin, SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-content-security-policy: frame-ancestors 'self'
referrer-policy: strict-origin-when-cross-origin
last-modified: Fri, 10 May 2024 23:49:59 GMT
expires: Sat, 11 May 2024 00:04:59 GMT
cache-control: no-cache="Set-Cookie", max-age=900, public, s-maxage=900, stale-while-revalidate, stale-if-error
strict-transport-security: max-age=15768000; includeSubDomains;
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BSVEUiMgnfeK%2B1knSeiR3xR2IN%2FBpB8T0T7k3ov%2BIDRlpDS%2BshA%2Ft5bpdba6tLX0ekJ6KBbNfW8yLe%2BEBrFh0J3smxkVD%2FKq9x4G9%2Bo0UUwsgc7%2Fx0hW7jROfrjPJQUKL%2BN%2FOQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881dd4340c197127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/javascript_global/root_front.js?v=5b601352f91715377628

104.21.10.110

200 OK

133 kB

URL GET HTTP/3
launcherleaks.net/uploads/javascript_global/root_front.js?v=5b601352f91715377628
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
133 kB (132840 bytes)
Hash
1e1ddc200c7b212d22992ea6e207154b
4989083441fa82f3209e75eee61e6d9022f076c6
cca23c9ff662a9fdc287ac99ca49216ccae0e356b0ac72177cd4432cc3d8ad5d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/javascript_global/root_front.js?v=5b601352f91715377628 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: application/javascript
last-modified: Fri, 10 May 2024 20:07:55 GMT
etag: W/"663e7e9b-19bce"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 6936
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XF2YvC1gZCfCyXyYApxaz27gzzn30uJ6dAW3wf5VOhdWe9os7H%2Bj8osTdlf%2FqR8UScgbFlcc73ZWi5aRZ9l9gzuNQONagW9CsLIn61UWxW8KsQwgec%2FzFwoaacZjNbwOyW5xeQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd4312a127127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2024_04/IMG_1344.thumb.jpeg.acfb993717e95ea11050a9580ddbfc90.jpeg

104.21.10.110

200 OK

13 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_04/IMG_1344.thumb.jpeg.acfb993717e95ea11050a9580ddbfc90.jpeg
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 82x82, components 3
Size
13 kB (12691 bytes)
Hash
a802be7d6f8552e8b543593638c7639c
84a1b0682c77b17bd9a1d8d26c8de3758e1dc90d
5b0088688f4a2772b8272582d12d8fe37530e3bab43f8dc797da5f042fe86442

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_04/IMG_1344.thumb.jpeg.acfb993717e95ea11050a9580ddbfc90.jpeg HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:50:00 GMT
content-type: image/jpeg
content-length: 12691
last-modified: Wed, 10 Apr 2024 19:17:03 GMT
etag: "6616e5af-3193"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 1305
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rxKDGONjlFXn17DzoaEOO2InLwYLn4xjoLcPq%2BUCVs9sbF6nNgb0mW2cnvRqUfim15FwAP2q6WKK3cClbRroNHrQ3tmBT6zL5UFyFW30foVC0h7uhMK9tOnQvNL8uTDXytUD7w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd43aefc17127-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/cdn-cgi/challenge-platform/scripts/jsd/main.js

104.21.10.110

302 Found

0 B

URL GET HTTP/3
launcherleaks.net/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 302 Found
date: Fri, 10 May 2024 23:50:00 GMT
content-length: 0
location: /cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js
access-control-allow-origin: *
cache-control: max-age=300, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HDdsGdf%2B5vM5VgcsOQaap7a%2FFYPtRVTikSfVdKqTnQfViX%2BslsgPBDcXI%2FUeZN1YkuLmIT540z5joIwFPNO6h8u5OZskqdJTmpvM8RWLxJa95PChBLvnIlABYrSlUHM3VoSu4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd43b281c7127-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/cdn-cgi/challenge-platform/h/g/jsd/r/881dd42b987956af

104.21.10.110

200 OK

0 B

URL POST HTTP/3
launcherleaks.net/cdn-cgi/challenge-platform/h/g/jsd/r/881dd42b987956af
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /cdn-cgi/challenge-platform/h/g/jsd/r/881dd42b987956af HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12268
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:50:00 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=3OSRMfCZfRvY9wTzit0TbNJV3Arg4iPaVscyy7zk9e0-1715385000-1.0.1.1-h4cCXDwG_HfLuHzNVRTEZloWiI7JKcOjjUNG8Olq67UzVhqXtsFYdIVURYb_tOF1ypHwHiFxJxJHSTiXDQiBzw; Path=/; Expires=Sat, 10-May-25 23:50:00 GMT; Domain=.launcherleaks.net; HttpOnly; Secure; SameSite=None; Partitioned
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2XZ6g1CIjf8Qr54KYYHZTXRQhCPSa9OdJ8kWJLXfmSBHJBQYwjjw2jXWGwImwdsDaDL%2FDytqY4f7go4bNUbO11fsgHb3DoaqKIlyRyoy6y8LNe3MCCXbtpmq9XtbXWUSYUEJgw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881dd43cd9907127-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2024_04/IMG_1351.thumb.jpeg.ff4211bea06728c0710d5c65c51d40bf.jpeg

104.21.10.110

200 OK

152 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_04/IMG_1351.thumb.jpeg.ff4211bea06728c0710d5c65c51d40bf.jpeg
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 500x270, components 3
Size
152 kB (151870 bytes)
Hash
4340b542e6cf154b33aab9b893ee4b5d
d32c08bdda0b14b66a4dd3484d7cf53a431ab442
ed578be8ee6864274dffc5da8debf3749aa412549b3b05bc7cafdd3cc43ed38c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_04/IMG_1351.thumb.jpeg.ff4211bea06728c0710d5c65c51d40bf.jpeg HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:50:00 GMT
content-type: image/jpeg
content-length: 151870
last-modified: Wed, 10 Apr 2024 19:14:31 GMT
etag: "6616e517-2513e"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PZXsYZTMTimvdpXi3Sdbv%2BXjEPGVVMALKH5KNPBAuDERcb2ifZxV9XSbuEzGsLcp8WKWvLO%2BnOYpD%2BWl20rprdfM8bf3PqTZ72Ev3c6fZQNvvmK2knblY5KJhiCNOEHyvCm7Yw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd43aefc07127-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2024_04/o_1g5ql513842ja4377r1a7hvrk14.webp.ebe67b93c0425a99d1c40d256bbe2be9.thumb.jpg.b6b98d587e51a419834bb1699df31085.jpg

104.21.10.110

200 OK

147 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_04/o_1g5ql513842ja4377r1a7hvrk14.webp.ebe67b93c0425a99d1c40d256bbe2be9.thumb.jpg.b6b98d587e51a419834bb1699df31085.jpg
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 500x284, components 3
Size
147 kB (147419 bytes)
Hash
449a5ccf1292f857125db1a2317dc80e
67f11039d646ef05c112c25281734b4f46bc3643
70d14c808454161c405d48183d1839ffd6bafa85c8532d08a307a974b09f43f7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_04/o_1g5ql513842ja4377r1a7hvrk14.webp.ebe67b93c0425a99d1c40d256bbe2be9.thumb.jpg.b6b98d587e51a419834bb1699df31085.jpg HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:50:00 GMT
content-type: image/jpeg
content-length: 147419
last-modified: Tue, 09 Apr 2024 07:40:29 GMT
etag: "6614f0ed-23fdb"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tVC%2Ba4P3JlXrxQZwsx2TBznlHGUhx1%2B1G%2FxHu%2FdYOdLKpCDYjfQ5RQEIsT7aGpaQRZDeaUysi0%2BwIANy1Mo369YFVm5bnW7hQkgzLN2K6rjep9oUJNuVqWq2ITnRNlHVtpHNcw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd43b482c7127-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2024_04/PINKTRAPHOUSE.thumb.jpg.bc551df2b549e8de54c3e9421dfd18df.jpg

104.21.10.110

200 OK

215 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_04/PINKTRAPHOUSE.thumb.jpg.bc551df2b549e8de54c3e9421dfd18df.jpg
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 500x282, components 3
Size
215 kB (215164 bytes)
Hash
536c03606bcfa03201f03b7d1b40e003
5f32bafbcc9863e1f4b2a68e73f59a26ab14c6ca
a67326547e2823b6909d89846f21e47c349ae7b739ae68c470e014a3650c618c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_04/PINKTRAPHOUSE.thumb.jpg.bc551df2b549e8de54c3e9421dfd18df.jpg HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:50:00 GMT
content-type: image/jpeg
content-length: 215164
last-modified: Tue, 09 Apr 2024 07:30:25 GMT
etag: "6614ee91-3487c"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=d%2Fkcji4STpG7iSHquWiJ25WPvX%2BJAC2gnSI0%2FsEyXy3HChD61gj%2FnbmAzjNU0fCsMXiqr8F0FiNCQtsB32ldac8e5sDELBYLVCzmWZNT%2FA6fB54ci6TqAVt78FW01X3FyICP6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd43b482a7127-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2024_04/image.thumb.jpg.626acddda1858234497b4c4a73be63c8.jpg

104.21.10.110

200 OK

24 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_04/image.thumb.jpg.626acddda1858234497b4c4a73be63c8.jpg
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 129x129, components 3
Size
24 kB (24056 bytes)
Hash
a7894883510f5d87e58c27c8e44a9d88
dfd6aa718691f6a5bcb2c139821c72bbc47d7dc3
fd449a95f1c2cc23b4f8a5c382c911c607360429a3cdfd28246d6f5707049e6e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_04/image.thumb.jpg.626acddda1858234497b4c4a73be63c8.jpg HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:50:00 GMT
content-type: image/jpeg
content-length: 24056
last-modified: Tue, 09 Apr 2024 07:22:31 GMT
etag: "6614ecb7-5df8"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VACihNO70yQfQfgL%2FF1iSiWtG%2Blb8ZRNveatuXzROgn2dPesH0kMCZSB3605oJ2eKVaBav5P1ETjSDntQ0YQlcjt82hIbsfAANnXT494x1aDA6QY%2FW8OAD6TSnKw6YNdKgrLrg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd43b482b7127-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/css_built_30/223ae211f0236ea36ac9f7bf920a797a_all.min.css?v=5b601352f91715371675

104.21.10.110

200 OK

23 kB

URL GET HTTP/3
launcherleaks.net/uploads/css_built_30/223ae211f0236ea36ac9f7bf920a797a_all.min.css?v=5b601352f91715371675
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
23 kB (23028 bytes)
Hash
a93195d10045771760d20b1070880924
4631712c7f7d1928e55eed93c70b2bf74d9bcf64
5596f5207a35c5d202a8e63f649b76dcdf05daa5d1f68dce60d5e7d76ff8223f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_30/223ae211f0236ea36ac9f7bf920a797a_all.min.css?v=5b601352f91715371675 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: text/css
last-modified: Fri, 10 May 2024 20:07:55 GMT
etag: W/"663e7e9b-196b8"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 2129
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qsvo8ovNePO6uANbyi%2BWMozZ0GWeU1NtT03q%2FQ4e2WK%2BLBFUsiHrFlrKFZPJX1OcdWm%2BTe%2FjQHcvqvhLjKzMXNrcLC8CiOq62ZfZ2TqasEvFSlIjTCWeGVUj0MOkLJBelkPVCg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd430e9de7127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2024_02/android-chrome-512x512.png?v=1712605004

104.21.10.110

200 OK

49 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_02/android-chrome-512x512.png?v=1712605004
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
49 kB (49186 bytes)
Hash
390058981d8c33cf7f7ac83df7289560
853f6dd48c10c41a4dc288b8fe6d8987ae14f136
ab56bf944922cd6347a06f5de4cb913f823cd8ba96f6d1b2ce31edf10d62e789

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_02/android-chrome-512x512.png?v=1712605004 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p; cf_clearance=3OSRMfCZfRvY9wTzit0TbNJV3Arg4iPaVscyy7zk9e0-1715385000-1.0.1.1-h4cCXDwG_HfLuHzNVRTEZloWiI7JKcOjjUNG8Olq67UzVhqXtsFYdIVURYb_tOF1ypHwHiFxJxJHSTiXDQiBzw; ips4_ipsTimezone=UTC; ips4_hasJS=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:50:00 GMT
content-type: image/png
content-length: 49186
last-modified: Tue, 06 Feb 2024 04:19:31 GMT
etag: "65c1b353-c022"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xODX7d0hHwjmKCtNzLmV%2BZtWb0mziG3cPzUL6dpBIc%2FJe8ZYtqZgfOz5o7OpMqF4TDySDCbLiXZu32rhNi7Z4rK7rBsluC6xe3N7jnbPfWDyUlaUf21vstz2XQ5idQaobN4u%2Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd43dda077127-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/set_resources_30/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.js

104.21.10.110

200 OK

42 kB

URL GET HTTP/3
launcherleaks.net/uploads/set_resources_30/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.js
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
gzip compressed data, from Unix
Size
42 kB (41660 bytes)
Hash
ac5a2b79ce69ab326fc2ef07e0ff4847
9f0efafdef6324b8bb7bc6b496a278fc9e61f007
b41e13d4a80b1329042466eb00f3e24759a64aa0a90be52e600dca46d938c26f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/set_resources_30/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.js HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: application/javascript
last-modified: Fri, 10 May 2024 20:07:57 GMT
etag: W/"663e7e9d-20e7b"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 6719
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ytl5Er8qGyh8LZ4J3se4tR9K7WpibDmnCSZNe7FqikmWvbbZ2E9XyRhzJz9p3GXOc9d2vHABtgA89AfwCXfyqByQ5dobH5BDrY0iledzi35NBQxx3S%2FzZxI11B8qH5eru7NDmg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd4313a1a7127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/css_built_30/49037c9bdbc019a877c9a3ae069caf24_v4-font-face.min.css?v=5b601352f91715371675

104.21.10.110

200 OK

2.1 kB

URL GET HTTP/3
launcherleaks.net/uploads/css_built_30/49037c9bdbc019a877c9a3ae069caf24_v4-font-face.min.css?v=5b601352f91715371675
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
ASCII text, with very long lines (2118), with no line terminators
Size
2.1 kB (2094 bytes)
Hash
b6101f639076962fd2da7db9e0240616
0d98a723a5341bffe16a3c643abd7ee4d165f9c2
024de7c0bd52cff150b794194508d32f8688584096c26c2339fc341a6a3a0bbf

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_30/49037c9bdbc019a877c9a3ae069caf24_v4-font-face.min.css?v=5b601352f91715371675 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: text/css
last-modified: Fri, 10 May 2024 20:07:55 GMT
etag: W/"663e7e9b-82e"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 2129
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FPZVdGqoEVoeEQKqLL0wtjMcx7ChgXIKQgmHJQ1FIqd7wU6oRH6DyCHWD5M40OscvEyeFHVD5H%2F9S8vBrhQ5A50rBE8psT9pd8Q5QGZ2C2UOdRp7n223ywp8YQJcErXi0GeB9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd430e9e17127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

use.fontawesome.com/releases/v6.4.2/webfonts/fa-brands-400.woff2

104.21.27.152

200 OK

110 kB

URL GET HTTP/2
use.fontawesome.com/releases/v6.4.2/webfonts/fa-brands-400.woff2
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 109808, version 772.1280
Size
110 kB (109808 bytes)
Hash
005c9aa92b564b73b7582cc4f1fa49cb
373361ed756b1fe68ce2f5968d467826b6973bb5
faae6fc0aa94cc5bde5076647c817a23206096a1cbeda10d1c6f3d89d6163ed1

HTTP Headers

GET /releases/v6.4.2/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 23:49:59 GMT
content-type: font/woff2
content-length: 109808
access-control-allow-origin: *
etag: "005c9aa92b564b73b7582cc4f1fa49cb"
last-modified: Fri, 22 Sep 2023 01:46:37 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 876210
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T9nouLOAyOK1mtz4nNDa0slOftc8jGts%2Fv97Pv2uuYhziBg8bgxv1SVrJj7B0O7CVMmWjnTX3MxW3TLl3wPXd6HefC7ci1kTWtnD8HlmyoE6zK%2B9bvfgRXA2Ap%2FWbKPBAs0t6%2BPI"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881dd436b8e356c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

launcherleaks.net/uploads/css_built_30/05e81b71abe4f22d6eb8d1a929494829_responsive.css?v=5b601352f91715371675

104.21.10.110

200 OK

36 kB

URL GET HTTP/3
launcherleaks.net/uploads/css_built_30/05e81b71abe4f22d6eb8d1a929494829_responsive.css?v=5b601352f91715371675
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
ASCII text, with very long lines (36086), with no line terminators
Size
36 kB (36086 bytes)
Hash
6a6abd6eb83fe08b498b0fdcd470b9e6
cc38a66f61f7cb0c0bf4bcfb2067c34d0410b5d0
5008d5e9bd10eea3c48217fc3a797895a56aadb808b04dda8381dd35e6544f22

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_30/05e81b71abe4f22d6eb8d1a929494829_responsive.css?v=5b601352f91715371675 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: text/css
last-modified: Fri, 10 May 2024 20:07:55 GMT
etag: W/"663e7e9b-8cf6"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 2129
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Uz%2FhhtCR6u3PsbMZU1uldiugNSaTpaT6ESkHNF8T53FBNUaTva2xv9%2FIr3s1uO%2FFRNdaPt8xjadYVWKEfT5JOsLAF62p5mzVYZ4aVvYZymUe%2BuXDU3BkFN4wtILyh49E5Jmh3A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd430e9dd7127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/css_built_30/cf8ed800cb3aa957a985c65b10088f13_widgets.css?v=5b601352f91715371675

104.21.10.110

200 OK

1.3 kB

URL GET HTTP/3
launcherleaks.net/uploads/css_built_30/cf8ed800cb3aa957a985c65b10088f13_widgets.css?v=5b601352f91715371675
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
ASCII text, with very long lines (1318), with no line terminators
Size
1.3 kB (1314 bytes)
Hash
d21aaf9e8fce876a92211a45cc745489
67c3e77aa755c97fd91bcf5edd821983e7831c66
7b78ae368e245c3d311f9becdfc084286ab94bd9bd6f6835acc18c713d365735

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_30/cf8ed800cb3aa957a985c65b10088f13_widgets.css?v=5b601352f91715371675 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: text/css
last-modified: Fri, 10 May 2024 20:07:56 GMT
etag: W/"663e7e9c-522"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 2125
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ND9Ftg8LVzhUcYRas64BjRmwJrmRZwNN6whJyfuAWZavuGg%2BUw2ETRjOsi%2Fukrfd%2BXorIJc8WFA9YENArnMVk%2BwB6uj42aVcZ%2FTMmfLhpvf2vFB2GeqCjKQEaCZA5MBvrPy1ZQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd430f9ee7127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&display=swap

142.250.74.170

200 OK

12 kB

URL GET HTTP/2
fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&display=swap
IP
142.250.74.170:443
ASN
#15169 GOOGLE

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79
ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT

File type
ASCII text
Size
12 kB (12070 bytes)
Hash
fa399c57b8f59144c0b18302c33dfea5
6d420f186305a23da0e971a03d14d76d988bb56c
00008d2a6bb44551ff155148e5fedbcc0fdf8d710d908581fdf04dd96dfb31ca

HTTP Headers

GET /css2?family=Inter:wght@300;400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 10 May 2024 23:49:59 GMT
date: Fri, 10 May 2024 23:49:59 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

launcherleaks.net/uploads/css_built_30/5a0da001ccc2200dc5625c3f3934497d_core_responsive.css?v=5b601352f91715371675

104.21.10.110

200 OK

5.1 kB

URL GET HTTP/3
launcherleaks.net/uploads/css_built_30/5a0da001ccc2200dc5625c3f3934497d_core_responsive.css?v=5b601352f91715371675
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
ASCII text, with very long lines (5154), with no line terminators
Size
5.1 kB (5064 bytes)
Hash
13e9ca6da01b78cd4c466c067987386d
30f8913376f38cae8f022acdb5fa59cb1e01c350
a0574e732d420fe0518d65f9b289403deababc7fe421793cb8e68fc81e5e169c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_30/5a0da001ccc2200dc5625c3f3934497d_core_responsive.css?v=5b601352f91715371675 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: text/css
last-modified: Fri, 10 May 2024 20:07:55 GMT
etag: W/"663e7e9b-13c8"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 2128
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QGqgVX4ufFD5gyu7B6tOUxuWaTdR483Ym4hznfQhQ17j00VR6C%2FnuKzJm8hpPzfSphuMvXcxn4odhFX1lKiRVbOwG5KiLDg%2F9mgjEAqSNse3sPVd75l61JbTKy4%2BQhF%2B6k4T1g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd430e9e37127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/css_built_30/29bd99919d9bcfd58c5a255c6957b8a6_convert.css?v=5b601352f91715371675

104.21.10.110

200 OK

6.0 kB

URL GET HTTP/3
launcherleaks.net/uploads/css_built_30/29bd99919d9bcfd58c5a255c6957b8a6_convert.css?v=5b601352f91715371675
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
ASCII text, with very long lines (5974), with no line terminators
Size
6.0 kB (5973 bytes)
Hash
3122f113533bcd072b07afac347b2ecf
b58b3ac9baebafdab1aaccb741abd76417c7084d
677dcf4790d3a2bb8446ca28e4e0f209bc643bd1eb17a1bdf6910129ee4a65df

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_30/29bd99919d9bcfd58c5a255c6957b8a6_convert.css?v=5b601352f91715371675 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: text/css
last-modified: Fri, 10 May 2024 20:07:55 GMT
etag: W/"663e7e9b-1755"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 2129
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VTkULbsjroM5g4agTvDlc8VWuP92rgU6pQ2Sk7FQ5DbPpWA%2Fi6k5lm1aMc67UI6zme785%2BkDUKisNAtBk5Ib7%2Bi7tBB4prgaZwP1mvUK1A1ccYZaxbSRamO8GG%2FqiktXH6VZUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd430e9df7127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/css_built_30/90eb5adf50a8c640f633d47fd7eb1778_core.css?v=5b601352f91715371675

104.21.10.110

200 OK

24 kB

URL GET HTTP/3
launcherleaks.net/uploads/css_built_30/90eb5adf50a8c640f633d47fd7eb1778_core.css?v=5b601352f91715371675
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
ASCII text, with very long lines (24436), with no line terminators
Size
24 kB (24436 bytes)
Hash
dbf0c11712220a5c0e6d3a16a30537b7
a7802a5e157c297d96918fdb9653113a8be2d2c0
25cdbcf81638889b7b7a72a0d6412087ccada860d2908f81ec76f9f514675900

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_30/90eb5adf50a8c640f633d47fd7eb1778_core.css?v=5b601352f91715371675 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: text/css
last-modified: Fri, 10 May 2024 20:07:55 GMT
etag: W/"663e7e9b-5f74"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 2129
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oIt0L2Apoa9k4rppKm3aHwU2zOv21w5czbWbWHMN5zzR81bJd1IJ4onXiG0o41Om0qUcUG0sI2MfYG144PopxHpowN83W50Y8wyCXM5efiwjYK03R8JDGFOTuP%2Fuxj9rgHeOkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd430e9e27127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/css_built_30/258adbb6e4f3e83cd3b355f84e3fa002_custom.css?v=5b601352f91715371675

104.21.10.110

200 OK

24 kB

URL GET HTTP/3
launcherleaks.net/uploads/css_built_30/258adbb6e4f3e83cd3b355f84e3fa002_custom.css?v=5b601352f91715371675
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
ASCII text, with very long lines (24027), with no line terminators
Size
24 kB (24027 bytes)
Hash
44b39f09358e9979f8963c513d0e305d
7aeebf26077529acd3a52b3944ee44203a0087a6
0cfa459cc16dd0931c575dc0a36ed95c6658961954e2cae85006c2025dc3add5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_30/258adbb6e4f3e83cd3b355f84e3fa002_custom.css?v=5b601352f91715371675 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: text/css
last-modified: Fri, 10 May 2024 20:07:56 GMT
etag: W/"663e7e9c-5ddb"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 2128
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g1Fe4IskIqjcf%2FigT2N5J0%2FxO%2BoBthR6tlmYfCFHOutyZZC9mrw1bSWdswnlGaxDMjK7vkss9uvhvM2IDdxA6L1UkLchFnPLTeC%2BQZz8ZARadwJ4MJ%2BkDFDFR7VggdKmlbQClA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd430f9ef7127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

use.fontawesome.com/releases/v6.4.2/css/all.css

104.21.27.152

200 OK

102 kB

URL GET HTTP/2
use.fontawesome.com/releases/v6.4.2/css/all.css
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
ASCII text, with very long lines (52276)
Size
102 kB (102217 bytes)
Hash
5222e06b77a1692fa2520a219840e6be
8b4236206a8b86af3761a244277663046d7ff7ee
0934b1fc0d3a766d41d3adf5e7a115875e66e98ebba408d965a41cf3d2cb4ab5

HTTP Headers

GET /releases/v6.4.2/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 23:49:59 GMT
content-type: text/css
etag: W/"5222e06b77a1692fa2520a219840e6be"
last-modified: Fri, 22 Sep 2023 01:46:33 GMT
vary: Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 886992
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vsvmzPyiXnCVW4JBiHmXu2ptbmZO2G6VhEeqUWjNyK3xugDCUZs2A9snpJxK4K5YfPO%2FP12yMyW1gFSHQogYadLTwKrMfMtksJAFcgT%2BeAN0J0K%2Ftb3MmxB13ON9VHIycQJArbBZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881dd433fe9b56c0-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

launcherleaks.net/cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js

104.21.10.110

200 OK

7.9 kB

URL GET HTTP/3
launcherleaks.net/cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
JavaScript source, ASCII text, with very long lines (7930), with no line terminators
Size
7.9 kB (7930 bytes)
Hash
388858220d243932244093fbd5de2fb0
bdb70d8adb355f40308163086d3cbf880850d680
a5e237d5747e80151727867424ba6d53cf56809b5abd54bcfc8dd70cabbf879d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/challenge-platform/h/g/scripts/jsd/1b3559406bc8/main.js HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 23:50:00 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
cache-control: max-age=14400, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rH1JvjwWE7nu4BaxqLuyOnUSM8KVXxQEWalqXoRo1ro0fEXFMwXbmJm7OFo8RKZy19waDipNLC0vbALfaOjozY%2FLtTmCbSxsTEIt8fahcqNPYVuyauDgz%2F2PO7GQszXJF6zG%2BA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd43b68497127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/monthly_2024_02/android-chrome-36x36.png?v=1712605004

104.21.10.110

200 OK

1.3 kB

URL GET HTTP/3
launcherleaks.net/uploads/monthly_2024_02/android-chrome-36x36.png?v=1712605004
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
PNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced
Size
1.3 kB (1282 bytes)
Hash
6643840bd35c7cddf0811e8969b64875
886f7f812fda1694e4184083e178c8b8c6b08be3
ee3561daab5ce98f4859fc704e7584e53d0858ac073fd02569fb96b5cdc59209

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/monthly_2024_02/android-chrome-36x36.png?v=1712605004 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p; cf_clearance=3OSRMfCZfRvY9wTzit0TbNJV3Arg4iPaVscyy7zk9e0-1715385000-1.0.1.1-h4cCXDwG_HfLuHzNVRTEZloWiI7JKcOjjUNG8Olq67UzVhqXtsFYdIVURYb_tOF1ypHwHiFxJxJHSTiXDQiBzw; ips4_ipsTimezone=UTC; ips4_hasJS=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 23:50:00 GMT
content-type: image/png
content-length: 1282
last-modified: Tue, 06 Feb 2024 04:19:31 GMT
etag: "65c1b353-502"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 2081
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Cv6kEEAuNwBUZCUjfWpTR1ku5rIUWy%2BqdrrWDu9xV%2BxirQiqQEIR6y920BrxHOLpgBNJTCBp0DO7wFAwUhKmRqUpDrTPVe%2Fp9cmWoqEVmdFOBqGG%2BhqKl2w2Qzk47UNsrNf%2BLQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd43dda087127-OSL
alt-svc: h3=":443"; ma=86400

launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1

104.21.10.110

200 OK

101 kB

URL User Request GET HTTP/2
launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type

Size
101 kB (100787 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: text/html;charset=UTF-8
set-cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p; path=/; secure; HttpOnly
x-ips-loggedin: 0
vary: Cookie, Accept-Encoding
x-xss-protection: 0, 1; mode=block
x-frame-options: sameorigin, SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-content-security-policy: frame-ancestors 'self'
referrer-policy: strict-origin-when-cross-origin
expires: 0
cache-control: no-cache, no-store, must-revalidate, max-age=0, s-maxage=0
strict-transport-security: max-age=15768000; includeSubDomains;
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cyaFG0IIWTO6jPtFKvu9CywzPpnDlPl5BEcOjoo5YjpRtvgKkdk3Tm18m6jjw2TuWECtYRml1K3ZArLSkOENUeQHWJqm3Slebs43jHVfVXfKYARGQGW94cHm0ye%2BNdfRhEIAaQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881dd42b987956af-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

launcherleaks.net/uploads/css_built_30/63225940445060c5a9f21d31e95bf58e_downloads.css?v=5b601352f91715371675

104.21.10.110

200 OK

2.8 kB

URL GET HTTP/3
launcherleaks.net/uploads/css_built_30/63225940445060c5a9f21d31e95bf58e_downloads.css?v=5b601352f91715371675
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
ASCII text, with very long lines (2792), with no line terminators
Size
2.8 kB (2780 bytes)
Hash
fe0bd138756a85503456321e52e02699
fc9b793c3c1f3d6d5696d087c9903adbf17d790c
7b5f5a1d668712f681d05f1e19d93d4a46ba9c7dbee3f4e68121edbe5eb77ddc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_30/63225940445060c5a9f21d31e95bf58e_downloads.css?v=5b601352f91715371675 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: text/css
last-modified: Fri, 10 May 2024 20:07:55 GMT
etag: W/"663e7e9b-adc"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 2125
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Bu2UfR4OBOrR2CXZdcMqPFds6TLX1q895i1DcAi8tGo9JV3LX50Wxznc82xL8Ce5hcCKMFei%2FqSH7dIpUMSjf02IejKQVABETQdKSURQ509FH6aBI3yJgXhThAofvt7ouvutuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd430f9e57127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/set_resources_30/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.css

104.21.10.110

200 OK

15 kB

URL GET HTTP/3
launcherleaks.net/uploads/set_resources_30/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.css
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
ASCII text, with very long lines (14925)
Size
15 kB (15180 bytes)
Hash
a695c6b6c6a2d0e245136a61110d64ce
2b3d7aa150054e72098c83f6fe6dcad72944defb
172381b5313c5d1c2c9972f45e7e4c12f1a59c2f185cca365a8750dcea48acf6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/set_resources_30/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.css HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: text/css
last-modified: Fri, 10 May 2024 20:07:56 GMT
etag: W/"663e7e9c-3b4c"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 6719
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y3AnR0ILmDJoZmBMsLC6HsfoaEHSODlYXOV4tSaDQ%2FXEf3obHMvSJE1tnmGo0eayINusrcTrcmcUQP7MHxSu9cbiMNOj%2F2SLeTqM1CX0FGfThsMcyE8jbORGbtFuLB%2FwX%2Ff01w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd430f9f07127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

use.fontawesome.com/releases/v6.4.2/webfonts/fa-brands-400.woff2

104.21.27.152

200 OK

110 kB

URL GET HTTP/2
use.fontawesome.com/releases/v6.4.2/webfonts/fa-brands-400.woff2
IP
104.21.27.152:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerCloudflare, Inc.
Subjectuse.fontawesome.com
FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78
ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 109808, version 772.1280
Size
110 kB (109808 bytes)
Hash
005c9aa92b564b73b7582cc4f1fa49cb
373361ed756b1fe68ce2f5968d467826b6973bb5
faae6fc0aa94cc5bde5076647c817a23206096a1cbeda10d1c6f3d89d6163ed1

HTTP Headers

GET /releases/v6.4.2/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 10 May 2024 23:50:00 GMT
content-type: font/woff2
content-length: 109808
access-control-allow-origin: *
etag: "005c9aa92b564b73b7582cc4f1fa49cb"
last-modified: Fri, 22 Sep 2023 01:46:37 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 876211
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xspejb6011TkxytQqe1%2F280WYVwrUF59qLNeN4hFtPoLgQNwd8baok88BV7hZ9YHfIFaY5Cx4gXSv47gdMY7kAgqVcnfsRve4byUKB%2FD6B4yvsPCLaUEpnbTwlCb%2FuuvjX8lDa%2Bp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881dd43a7bf456c0-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

launcherleaks.net/uploads/css_built_30/341e4a57816af3ba440d891ca87450ff_framework.css?v=5b601352f91715371675

104.21.10.110

200 OK

331 kB

URL GET HTTP/3
launcherleaks.net/uploads/css_built_30/341e4a57816af3ba440d891ca87450ff_framework.css?v=5b601352f91715371675
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type

Size
331 kB (330976 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_30/341e4a57816af3ba440d891ca87450ff_framework.css?v=5b601352f91715371675 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: text/css
last-modified: Fri, 10 May 2024 20:07:55 GMT
etag: W/"663e7e9b-50ce0"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 2129
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HzAy%2BaZr9BYFog6CbujaUym9yP5W443x0E9BDfEhQHyUQEbgbiFjg%2FNmIIMiqszp3x2KpZqAYhtMlne7qQz%2F%2BH7cCcZ4nTB5aRT2vm87izUEUrAoajY2BaTddO4Cek4F%2BuOWWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd430e9dc7127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

launcherleaks.net/uploads/css_built_30/20e9fb241d987e07d4fc702c601c3ed8_downloads_responsive.css?v=5b601352f91715371675

104.21.10.110

200 OK

934 B

URL GET HTTP/3
launcherleaks.net/uploads/css_built_30/20e9fb241d987e07d4fc702c601c3ed8_downloads_responsive.css?v=5b601352f91715371675
IP
104.21.10.110:443
ASN
#13335 CLOUDFLARENET

Requested by
https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
Certificate
IssuerGoogle Trust Services LLC
Subjectlauncherleaks.net
FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E
ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT

File type
ASCII text, with very long lines (944), with no line terminators
Size
934 B (934 bytes)
Hash
fe5ac1a4ab4caea663a65254c9c964cf
f47bb77e21cc6cc7f5ac57f69ea00f1d3a59fcfc
d306fddb662c56c73a09b45ffd3abaea135ed7312932c422817ce3aeb36706b4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /uploads/css_built_30/20e9fb241d987e07d4fc702c601c3ed8_downloads_responsive.css?v=5b601352f91715371675 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/category/3-mlo/page/4/?csrfKey=b519962b708da0941f2be4b74271fad7&listResort=1
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=8cu07if0bh40sr4ka349d2er2p
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 10 May 2024 23:49:58 GMT
content-type: text/css
last-modified: Fri, 10 May 2024 20:07:55 GMT
etag: W/"663e7e9b-3a6"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 2126
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=u4%2F3PqGZmKgi3lFDhpIDsp3zJ%2BQdcItOgqqZTmqNYBMiJQJLCYGeo4yH5wpxtHcbH1KudHSq%2BkmD6ng6Ndf4j4lx1zl36PbkGUp4bsMgt0X%2FXpIBuTJqFX1HLtrKEYyI2vkHvw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 881dd430f9e77127-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (25)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash