Report - flickreviewers.com/

Report Overview

Visited public
2025-04-03 10:31:42
Tags
URL
flickreviewers.com/
Finishing URL
flickreviewers.com/
IP / ASN
151.101.2.184
#54113 FASTLY
Title
Netflix Jobs

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
flickreviewers.com	unknown	2025-03-16	2025-04-03	2025-04-03	1.7 kB	165 kB	151.101.2.184
fonts.gstatic.com	unknown	2008-02-11	2014-04-02	2025-04-02	3.2 kB	207 kB	142.250.178.67
img.funnelish.com	unknown	2017-04-30	2021-05-14	2025-04-03	1.0 kB	6.7 kB	151.101.2.132
analytics.app.funnelish.com	unknown	2017-04-30	2023-10-28	2025-04-03	1.0 kB	910 B	34.111.146.89

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

Scan Date	Severity	Indicator	Alert
2025-04-02	medium	flickreviewers.com/	Netflix Inc.
2025-04-02	medium	flickreviewers.com/	Netflix Inc.
2025-04-02	medium	flickreviewers.com/	Netflix Inc.

PhishTank

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (8)

	URL	From	Size	First Seen	Last Seen
	flickreviewers.com/	ScriptElement	90 B	2025-04-03	2025-06-01
Pretty URL flickreviewers.com/ IP 151.101.2.184 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-03 10:21 Last Seen2025-06-01 17:06 Times Seen6 Hash 83d6ae4b8e85fc6e5bfba0bc3730b18d e7a04191975146b9917714d316972cc108357f5c 714295eab8e4a68adc7a8bff38931d68ea55e35c0412f83b151904c193c24c75 Loading...

	flickreviewers.com/	ScriptElement	20 B	2023-03-10	2025-06-01
Pretty URL flickreviewers.com/ IP 151.101.2.184 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 01:06 Last Seen2025-06-01 17:06 Times Seen51 Hash 6b5934199b6934ffcccc34933ba5a19b 1db464a8fca4f4d47a8192670f3793089c4291de 31e6942423afd0b78378666a6cd81d07c3d4af79e3979f4350788f0a690a7de9 Loading...

	flickreviewers.com/	ScriptElement	356 B	2025-04-03	2025-06-01
Pretty URL flickreviewers.com/ IP 151.101.2.184 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-03 10:21 Last Seen2025-06-01 17:06 Times Seen6 Hash 0e563ce7b254838ac08bc8c58691ae62 7d458ea7650f3aacb2a59f7cdd8be31990e89c24 bd377e05778d34f8bbe80407dd539348d773cc1ad50985308196cec111a233af Loading...

	flickreviewers.com/	ScriptElement	17 B	2024-08-05	2025-06-01
Pretty URL flickreviewers.com/ IP 151.101.2.184 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-05 06:27 Last Seen2025-06-01 17:06 Times Seen42 Hash be78a30ff1a50ef526d7f345a8979ffe 4ebffc2495f33f7a034547f71a8af781ca2088f1 2cd631e80f0d66ffdcbb6807ce7912c86958e0deff3f23881883a6993373f6e0 Loading...

	flickreviewers.com/core.min.js	ScriptElement	79 kB	2025-01-20	2025-06-01
Pretty URL flickreviewers.com/core.min.js IP 151.101.2.184 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2025-01-20 18:39 Last Seen2025-06-01 17:06 Times Seen44 Hash f512ccec4a56de76f3bb9f7f799a9d91 d4a7aaf61d1b4c69df3480b95a879fe15bca40e2 6a3a940f138366798b5e1970737016be82cefadea5136747d3db619a548536d1 Loading...

	flickreviewers.com/	ScriptElement	7.9 kB	2023-03-10	2025-06-01
Pretty URL flickreviewers.com/ IP 151.101.2.184 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-10 01:06 Last Seen2025-06-01 17:06 Times Seen53 Hash 64205afed553776bd6b32fdf6fe05d0b a1d105ed3e8799b960a9fbb532c5f79814b08d10 7377049825e92bef3d485ea1aff055b8c931eded48a0f550190d3cfa16f05a9f Loading...

	flickreviewers.com/	ScriptElement	20 B	2024-05-15	2025-06-01
Pretty URL flickreviewers.com/ IP 151.101.2.184 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML true Observations First Seen2024-05-15 19:43 Last Seen2025-06-01 17:06 Times Seen14 Hash 57d3e5276a0f71871b2f1042ba4ee376 115e9834e1d5d45c4e45f6c0de8600007e2f8132 caef3369b7b08b2466d1436b4cd63392873851058ae79dceadcbabb00167ded9 Loading...

	flickreviewers.com/	ScriptElement	2.8 kB	2025-04-03	2025-04-03
Pretty URL flickreviewers.com/ IP 151.101.2.184 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML true Observations First Seen2025-04-03 10:21 Last Seen2025-04-03 10:51 Times Seen3 Hash 12580153c1e1f6b34eb91875dea3af6a d3a07bb7a92963f98874561d66fe460183a5a9e7 ff8cba2affa51059dc9d8ff4292890fbc75861a952e1ae1c49b3a812a624f564 Loading...

HTTP Transactions (13)

URL IP Response Size

flickreviewers.com/core.min.css

151.101.2.184

200 OK

51 kB

URL GET
flickreviewers.com/core.min.css
IP
151.101.2.184:443
ASN
#54113 FASTLY

Requested by
https://flickreviewers.com/
Certificate
IssuerCertainly
Subjectflickreviewers.com
Fingerprint30:95:49:FC:B3:2B:2A:40:CC:21:EE:11:18:E3:98:82:1D:36:46:68
ValiditySun, 16 Mar 2025 15:42:19 GMT - Tue, 15 Apr 2025 15:42:18 GMT

File type

Size
51 kB (50858 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Netflix Inc.

HTTP Headers

GET /core.min.css HTTP/1.1
Host: flickreviewers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flickreviewers.com/
Cookie: x-country_code=NO; x-geo-city=oslo; x-geo-latitude=59.930; x-geo-longitude=10.820; X-ResourcesToken=1743683480_0x54d1aab9f726e316346cb1af85908b2faea2ea1e; X-Page=F_51468_411492_1306246_1462257
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Sat, 04 Jan 2025 11:48:51 GMT
cache-control: no-store
via: 1.1 varnish, 1.1 varnish
content-type: text/css; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
age: 100072
date: Thu, 03 Apr 2025 10:31:20 GMT
x-served-by: cache-hel1410021-HEL, cache-hel1410032-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 0
x-timer: S1743676281.755313,VS0,VE1
vary: Accept-Encoding
set-cookie: x-country_code=NO;
x-geo-city=oslo;
x-geo-latitude=59.930;
x-geo-longitude=10.820;
content-length: 9962
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMaxKUBGEe.woff2

142.250.178.67

200 OK

20 kB

URL GET
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMaxKUBGEe.woff2
IP
142.250.178.67:443
ASN
#15169 GOOGLE

Requested by
https://flickreviewers.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 20408, version 1.0
Size
20 kB (20408 bytes)
Hash
e8730678d4610fa908d3cba1ef0b4ddf
1efcbee909ce74bf04878d74867f12a1e41ae7a4
e921785496ed2d98c2257c88a6f838afa6acbee05cb8467048501bfe2a301461

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMaxKUBGEe.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flickreviewers.com
DNT: 1
Connection: keep-alive
Referer: https://flickreviewers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20408
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 27 Mar 2025 18:15:49 GMT
expires: Fri, 27 Mar 2026 18:15:49 GMT
cache-control: public, max-age=31536000
age: 576932
last-modified: Wed, 08 Jan 2025 18:23:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.178.67

200 OK

40 kB

URL GET
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
142.250.178.67:443
ASN
#15169 GOOGLE

Requested by
https://flickreviewers.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Size
40 kB (40128 bytes)
Hash
9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flickreviewers.com
DNT: 1
Connection: keep-alive
Referer: https://flickreviewers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 27 Mar 2025 18:15:43 GMT
expires: Fri, 27 Mar 2026 18:15:43 GMT
cache-control: public, max-age=31536000
age: 576938
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

img.funnelish.com/51468/411492/1740521887-BrandAssets_Logos_02-NSymbol.jpg?auto=webp&fit=bounds&width=40&height=40

151.101.2.132

200 OK

148 B

URL GET
img.funnelish.com/51468/411492/1740521887-BrandAssets_Logos_02-NSymbol.jpg?auto=webp&fit=bounds&width=40&height=40
IP
151.101.2.132:443
ASN
#54113 FASTLY

Requested by
https://flickreviewers.com/
Certificate
IssuerLet's Encrypt
Subjectimg.funnelish.com
FingerprintCD:F0:2E:BA:0A:54:F0:D0:B1:5C:94:30:50:3E:4A:74:6A:2D:BA:CC
ValidityFri, 21 Feb 2025 18:52:43 GMT - Thu, 22 May 2025 18:52:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 40x23, Scaling: [none]x[none], YUV color, decoders should clamp
Size
148 B (148 bytes)
Hash
92f321be2e42f0ea93b543a3299d72c4
d7f3fde603dc91b8ed6fc7d9369b18976c4fc81b
d3e13b63b758a5be5c8db195590778822ffa0d790d510b2a7e878b90f429a368

HTTP Headers

GET /51468/411492/1740521887-BrandAssets_Logos_02-NSymbol.jpg?auto=webp&fit=bounds&width=40&height=40 HTTP/1.1
Host: img.funnelish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flickreviewers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
cache-control: max-age=31536000
content-type: image/webp
etag: "xhsRL5wY4c3bE4/+ayAnKWwqvclqKov+w3azuqcQJ3E"
fastly-io-info: ifsz=13447 idim=940x529 ifmt=jpeg ofsz=148 odim=40x23 ofmt=webp
fastly-io-served-by: vpop-ehle2110032
fastly-stats: io=1
server: UploadServer
x-goog-generation: 1740521887880297
x-goog-hash: crc32c=mnLEZw==, md5=LJ1xF1q8b17RBPTHscbX8A==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 13447
x-guploader-uploadid: AKDAyIte_Z83dN5VO6l_kURozuCtw4R3yvHNfXvafF4yojS-M6UbGz_ghuVROJQBlNcWzc8U
accept-ranges: bytes
age: 587
date: Thu, 03 Apr 2025 10:31:21 GMT
via: 1.1 varnish
x-served-by: cache-hel1410024-HEL
x-cache: HIT
x-cache-hits: 0
x-timer: S1743676282.914888,VS0,VE1
vary: Accept
content-length: 148
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMawCUBGEe.woff2

142.250.178.67

200 OK

41 kB

URL GET
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMawCUBGEe.woff2
IP
142.250.178.67:443
ASN
#15169 GOOGLE

Requested by
https://flickreviewers.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40572, version 1.0
Size
41 kB (40572 bytes)
Hash
c127ab3cd3cd07eb1105370e70d67d76
82677e46b52b8d93d5f34c9bbef71032d1cfee3c
d758e85352971dffe51a5992405eb8f9b316b1bed82495445c328699ee400830

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMawCUBGEe.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flickreviewers.com
DNT: 1
Connection: keep-alive
Referer: https://flickreviewers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40572
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 31 Mar 2025 13:07:11 GMT
expires: Tue, 31 Mar 2026 13:07:11 GMT
cache-control: public, max-age=31536000
age: 249850
last-modified: Wed, 08 Jan 2025 18:23:13 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

analytics.app.funnelish.com/view

34.111.146.89

204 No Content

0 B

URL OPTIONS
analytics.app.funnelish.com/view
IP
34.111.146.89:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://flickreviewers.com/
Certificate
IssuerGoogle Trust Services
Subjectanalytics.app.funnelish.com
Fingerprint89:99:DA:CC:76:CE:D5:86:BA:1B:06:73:75:58:50:E0:C6:F7:DD:64
ValidityMon, 24 Mar 2025 02:02:52 GMT - Sun, 22 Jun 2025 02:56:46 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /view HTTP/1.1
Host: analytics.app.funnelish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://flickreviewers.com/
Origin: https://flickreviewers.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
access-control-allow-headers: content-type
access-control-allow-methods: GET,HEAD,PUT,PATCH,POST,DELETE
access-control-allow-origin: *
allow: OPTIONS, POST
vary: Origin,Access-Control-Request-Method,Access-Control-Request-Headers
x-cloud-trace-context: 306b6fc89f5d2b7c29acbc3f889239b2
date: Thu, 03 Apr 2025 10:31:25 GMT
content-type: text/html
server: Google Frontend
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

flickreviewers.com/

151.101.2.184

200 OK

33 kB

URL User Request GET
flickreviewers.com/
IP
151.101.2.184:443
ASN
#54113 FASTLY

Certificate
IssuerCertainly
Subjectflickreviewers.com
Fingerprint30:95:49:FC:B3:2B:2A:40:CC:21:EE:11:18:E3:98:82:1D:36:46:68
ValiditySun, 16 Mar 2025 15:42:19 GMT - Tue, 15 Apr 2025 15:42:18 GMT

File type

Size
33 kB (33149 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Netflix Inc.

HTTP Headers

GET / HTTP/1.1
Host: flickreviewers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin, <https://images.funnelish.com>; rel=preconnect; crossorigin, <https://img.youtube.com>; rel=preconnect; crossorigin
x-index: 9
x-step-type: 5
via: 1.1 varnish, 1.1 varnish
x-country: lv
content-type: text/html; charset=UTF-8
x-page: F_51468_411492_1306246_1462257
content-encoding: gzip
accept-ranges: bytes
date: Thu, 03 Apr 2025 10:31:20 GMT
age: 100072
x-served-by: cache-hel1410022-HEL, cache-hel1410032-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 41
x-timer: S1743676280.435697,VS0,VE0
vary: X-Country, Accept-Encoding
set-cookie: x-country_code=NO;
x-geo-city=oslo;
x-geo-latitude=59.930;
x-geo-longitude=10.820;
X-ResourcesToken=1743683480_0x54d1aab9f726e316346cb1af85908b2faea2ea1e; Path=/; SameSite=None; Secure
X-Page=F_51468_411492_1306246_1462257; Path=/; SameSite=None; Secure
content-length: 9401
X-Firefox-Spdy: h2

flickreviewers.com/core.min.js

151.101.2.184

200 OK

79 kB

URL GET
flickreviewers.com/core.min.js
IP
151.101.2.184:443
ASN
#54113 FASTLY

Requested by
https://flickreviewers.com/
Certificate
IssuerCertainly
Subjectflickreviewers.com
Fingerprint30:95:49:FC:B3:2B:2A:40:CC:21:EE:11:18:E3:98:82:1D:36:46:68
ValiditySun, 16 Mar 2025 15:42:19 GMT - Tue, 15 Apr 2025 15:42:18 GMT

File type

Size
79 kB (79028 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
OpenPhish	phishing	Netflix Inc.

HTTP Headers

GET /core.min.js HTTP/1.1
Host: flickreviewers.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flickreviewers.com/
Cookie: x-country_code=NO; x-geo-city=oslo; x-geo-latitude=59.930; x-geo-longitude=10.820; X-ResourcesToken=1743683480_0x54d1aab9f726e316346cb1af85908b2faea2ea1e; X-Page=F_51468_411492_1306246_1462257
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
last-modified: Sat, 04 Jan 2025 06:08:01 GMT
cache-control: no-store
via: 1.1 varnish, 1.1 varnish
content-type: text/javascript; charset=utf-8
content-encoding: gzip
accept-ranges: bytes
age: 100072
date: Thu, 03 Apr 2025 10:31:20 GMT
x-served-by: cache-hel1410027-HEL, cache-hel1410032-HEL
x-cache: MISS, HIT
x-cache-hits: 0, 0
x-timer: S1743676281.753667,VS0,VE1
vary: Accept-Encoding
set-cookie: x-country_code=NO;
x-geo-city=oslo;
x-geo-latitude=59.930;
x-geo-longitude=10.820;
content-length: 22765
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2

142.250.178.67

200 OK

40 kB

URL GET
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2
IP
142.250.178.67:443
ASN
#15169 GOOGLE

Requested by
https://flickreviewers.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40128, version 1.0
Size
40 kB (40128 bytes)
Hash
9a01b69183a9604ab3a439e388b30501
8ed1d59003d0dbe6360481017b44665153665fbe
20b535fa80c8189e3b87d1803038389960203a886d502bc2ef1857affc2f38d2

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMa3yUBA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flickreviewers.com
DNT: 1
Connection: keep-alive
Referer: https://flickreviewers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40128
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 27 Mar 2025 18:15:43 GMT
expires: Fri, 27 Mar 2026 18:15:43 GMT
cache-control: public, max-age=31536000
age: 576938
last-modified: Wed, 08 Jan 2025 18:23:10 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMaxKUBGEe.woff2

142.250.178.67

200 OK

20 kB

URL GET
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMaxKUBGEe.woff2
IP
142.250.178.67:443
ASN
#15169 GOOGLE

Requested by
https://flickreviewers.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 20408, version 1.0
Size
20 kB (20408 bytes)
Hash
e8730678d4610fa908d3cba1ef0b4ddf
1efcbee909ce74bf04878d74867f12a1e41ae7a4
e921785496ed2d98c2257c88a6f838afa6acbee05cb8467048501bfe2a301461

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMaxKUBGEe.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flickreviewers.com
DNT: 1
Connection: keep-alive
Referer: https://flickreviewers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 20408
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 27 Mar 2025 18:15:49 GMT
expires: Fri, 27 Mar 2026 18:15:49 GMT
cache-control: public, max-age=31536000
age: 576932
last-modified: Wed, 08 Jan 2025 18:23:12 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

img.funnelish.com/51468/411492/1740521232-netflix.jpg

151.101.2.132

200 OK

4.8 kB

URL GET
img.funnelish.com/51468/411492/1740521232-netflix.jpg
IP
151.101.2.132:443
ASN
#54113 FASTLY

Requested by
https://flickreviewers.com/
Certificate
IssuerLet's Encrypt
Subjectimg.funnelish.com
FingerprintCD:F0:2E:BA:0A:54:F0:D0:B1:5C:94:30:50:3E:4A:74:6A:2D:BA:CC
ValidityFri, 21 Feb 2025 18:52:43 GMT - Thu, 22 May 2025 18:52:42 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 940x529, Scaling: [none]x[none], YUV color, decoders should clamp
Size
4.8 kB (4784 bytes)
Hash
1721b9efacf81129f6b1a8cb5e740155
e7b2be867cff300b90e7976d6687b66f85b5914b
1762b573cef759afb30e4eb8cc94504aa4d38448e476e94667a894b1dfb6fabc

HTTP Headers

GET /51468/411492/1740521232-netflix.jpg HTTP/1.1
Host: img.funnelish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flickreviewers.com
DNT: 1
Connection: keep-alive
Referer: https://flickreviewers.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
cache-control: max-age=31536000
content-type: image/webp
etag: "92IzBLnXVOHSai67ZjO3x5XgXxWZSkkLPjku3IpxPS8"
fastly-io-info: ifsz=21281 idim=940x529 ifmt=jpeg ofsz=4784 odim=940x529 ofmt=webp
fastly-io-served-by: vpop-ehle2110036
fastly-stats: io=1
server: UploadServer
x-goog-generation: 1740521232260609
x-goog-hash: crc32c=ha8KrQ==, md5=dvqBeUGEf/BrKr5J3nmOLw==
x-goog-metageneration: 1
x-goog-storage-class: STANDARD
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 21281
x-guploader-uploadid: AKDAyIu6mSb-aXjl5TV1TNdwb2Qbnqd-cybmNScAT6HpF8oEGuS0IgmqQUCsz6vryB4jcrnc
accept-ranges: bytes
date: Thu, 03 Apr 2025 10:31:21 GMT
via: 1.1 varnish
age: 1021287
x-served-by: cache-hel1410023-HEL
x-cache: HIT
x-cache-hits: 1
x-timer: S1743676281.167682,VS0,VE2
vary: Accept
content-length: 4784
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMawCUBGEe.woff2

142.250.178.67

200 OK

41 kB

URL GET
fonts.gstatic.com/s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMawCUBGEe.woff2
IP
142.250.178.67:443
ASN
#15169 GOOGLE

Requested by
https://flickreviewers.com/
Certificate
IssuerGoogle Trust Services
Subject*.gstatic.com
Fingerprint63:D6:50:6F:98:C5:59:D1:5A:FF:9D:8D:C3:C1:04:A1:B9:1A:3E:6B
ValidityMon, 10 Mar 2025 08:37:01 GMT - Mon, 02 Jun 2025 08:37:00 GMT

File type
Web Open Font Format (Version 2), TrueType, length 40572, version 1.0
Size
41 kB (40572 bytes)
Hash
c127ab3cd3cd07eb1105370e70d67d76
82677e46b52b8d93d5f34c9bbef71032d1cfee3c
d758e85352971dffe51a5992405eb8f9b316b1bed82495445c328699ee400830

HTTP Headers

GET /s/roboto/v47/KFO7CnqEu92Fr1ME7kSn66aGLdTylUAMawCUBGEe.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flickreviewers.com
DNT: 1
Connection: keep-alive
Referer: https://flickreviewers.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 40572
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 31 Mar 2025 13:07:11 GMT
expires: Tue, 31 Mar 2026 13:07:11 GMT
cache-control: public, max-age=31536000
age: 249850
last-modified: Wed, 08 Jan 2025 18:23:13 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

analytics.app.funnelish.com/view

34.111.146.89

200 OK

69 B

URL POST
analytics.app.funnelish.com/view
IP
34.111.146.89:443
ASN
#396982 GOOGLE-CLOUD-PLATFORM

Requested by
https://flickreviewers.com/
Certificate
IssuerGoogle Trust Services
Subjectanalytics.app.funnelish.com
Fingerprint89:99:DA:CC:76:CE:D5:86:BA:1B:06:73:75:58:50:E0:C6:F7:DD:64
ValidityMon, 24 Mar 2025 02:02:52 GMT - Sun, 22 Jun 2025 02:56:46 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
69 B (69 bytes)
Hash
f0431d6594fbf49fdbd7a74f0edafce1
5e67903f1b2bc4db137a956b8da0e825c0ff6678
733fef4d5bd3cf6b3b546ca06632588918665c8b751af0ba43396486857bc35c

HTTP Headers

POST /view HTTP/1.1
Host: analytics.app.funnelish.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flickreviewers.com/
Content-Type: application/json
Content-Length: 392
Origin: https://flickreviewers.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-origin: *
content-type: application/json; charset=UTF-8
vary: Origin
x-cloud-trace-context: 0b7cff9bd9c24aba29acbc3f889237f3
date: Thu, 03 Apr 2025 10:31:25 GMT
server: Google Frontend
content-length: 69
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Quad9 DNS

ThreatFox

JavaScript (8)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (13)

URL GET

IP

ASN

Requested by

Certificate

File type

Size

Hash

Detections

HTTP Headers

URL GET