| www.googletagmanager.com/gtag/js?id=UA-195162716-6 | 142.250.74.168 | 200 OK | 73 kB |
URL GET HTTP/2www.googletagmanager.com/gtag/js?id=UA-195162716-6 IP142.250.74.168:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (4179) Hashb2aef070a771c4333d8d9f15c0dbe85e aba3096677467ef242d7e690e301e0a99daba994 7b8e133261a72735957fa75a4a1a5fe13ca02bdf9c184270ab8eeb26aff6d611
GET /gtag/js?id=UA-195162716-6 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 09:36:14 GMT
expires: Fri, 26 Apr 2024 09:36:14 GMT
cache-control: private, max-age=900
last-modified: Fri, 26 Apr 2024 09:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73191
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,500,700 | 142.250.74.106 | 200 OK | 89 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:300,400,500,700 IP142.250.74.106:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50 ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT
File typegzip compressed data, max compression Hashea069f12a05cc5a5a5056a1147eae04f 4f6c7708d1412ab80994465e738cfa5e24ddc9d3 96dbcc15a6b4bed183031eda8fdfdfb68c22aa446e9f369151cfee4b50af62ea
GET /css?family=Roboto:300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 09:36:14 GMT
date: Fri, 26 Apr 2024 09:36:14 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| flaredownload.com/assets/hl-7067c1b8.js | 104.21.19.111 | 200 OK | 12 kB |
URL GET HTTP/3flaredownload.com/assets/hl-7067c1b8.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (305) Hasha9ae5cdde3d6c9cee9a04986b7171460 2d4b868b4bae0ec19887905ef79f466ed49d83a8 51705f7291a5f8eda50e504dd6da666a8e5bbd6a2e0efb855ee25696a4e718f9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-7067c1b8.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1286
access-control-allow-origin: *
etag: W/"6628bc74-506"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ke2T3aBRfCrfEsOs3dLG5XuBaNzJtqlgSG9VkN6nbN4Dt6Nuk99jl5NfLw2VDrh2yIvpVKw2u%2FSdROXI8JvUXB%2FksJXHFTGMn%2F3EhkmIsJ6ZM0n%2FEX1sX38mwk%2FMik69xUdu0AVFOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a59656ed87569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/prod/images/18e8c55ad549933e62ee40b8c7adbdd0.png | 104.21.19.111 | | 3.2 kB |
URL GET flaredownload.com/prod/images/18e8c55ad549933e62ee40b8c7adbdd0.png IP104.21.19.111:0
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typePNG image data, 100 x 100, 8-bit colormap, non-interlaced Hash18e8c55ad549933e62ee40b8c7adbdd0 f7bc824a4c70a4babc07b21fcbd413885128e92e 69bec757694a537e73efba217eaca74df87935a063fe5c6a25f22c7e196f6520
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /prod/images/18e8c55ad549933e62ee40b8c7adbdd0.png HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _ga_CK9NSGSVJF=GS1.1.1714124174.1.0.1714124174.0.0.0; _ga=GA1.1.1051564354.1714124175
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: image/png
content-length: 3235
last-modified: Mon, 24 Apr 2023 09:10:42 GMT
etag: "64464792-ca3"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FtW6i1x0eJ6HoreNg7BTITNxk4QdaJFVOgdNKHSWjCrSswvyrssE4H2S4LWrnxOcT0YMNZHDU6MkgUvrdh%2BlpJYW7U2Gp75nqJ9msZ8gZkLoa12Kbeb5LQfBP9mWKmIiWR9xJJa9HA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
accept-ranges: bytes
server: cloudflare
cf-ray: 87a5965bfab1569f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-4173c2ad.css | 104.21.19.111 | 200 OK | 5.9 kB |
URL GET HTTP/3flaredownload.com/assets/hl-4173c2ad.css IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (26351), with no line terminators Hash7323c52adfed69b4bd221270053d8abe 5a8b914eab2322240f501a9324f0547158f25cac 95a27e54e57c057a7033ed25a2a7503b2383570e50d17136d56bd9637a9fb238
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-4173c2ad.css HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=26489
access-control-allow-origin: *
etag: W/"6628bc74-6779"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jPuV8g6%2FJH8OA5YAj4ihIF9g1soGsLOHMLfZz5Bkp05pSkWfq3DYXqEsvI1RLsCchRU7AxRpuwCTPL22Ye1y1JohtzX2ljhKp8xzlV%2Fx%2B1dtsbXrZLE%2F9nBG9V1mLN28utDt8PBLTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a5965a1891569f-OSL
content-encoding: br
|
|
| flaredownload.com/assets/hl-b93b9165.woff2 | 104.21.19.111 | 200 OK | 8.0 kB |
URL GET HTTP/3flaredownload.com/assets/hl-b93b9165.woff2 IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7988, version 1.0 Hash087457026965f98466618a478c4b1b07 00b024ccb35e3694de662d180d6ea7f56de6d654 b93b9165269362989e2855d0bf0ae232d7193a45c43627b2d03b26d7eb98263b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-b93b9165.woff2 HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-4173c2ad.css
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _ga_CK9NSGSVJF=GS1.1.1714124174.1.0.1714124174.0.0.0; _ga=GA1.1.1051564354.1714124175
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/octet-stream
content-length: 7988
last-modified: Wed, 24 Apr 2024 08:01:55 GMT
etag: "6628bc73-1f34"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9GgRtFY9FTt1bAdQNEeq7Qfpb7mc0FP7HSU7rIcCoLHMuxpmlmfxeUWeLNDLySbBXzpf%2B7%2F%2Bn9%2F%2F071eeKDKooctShVFoQwNnN7V%2FSQy%2Buewx97Exb9xbAyr5%2BwhOWW84TbWMXJFjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a5965c2ad9569f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-41e46faf.woff2 | 104.21.19.111 | 200 OK | 7.9 kB |
URL GET HTTP/3flaredownload.com/assets/hl-41e46faf.woff2 IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 7900, version 1.0 Hash9ed361bba8488aeb2797b82befda20f1 6f80d965a066aff81c0a344d4b7297bd009cc099 41e46faff74c6a77d581689ec35eb040f6c96d17f4d2c5b25dccd42ed498b01c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-41e46faf.woff2 HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-4173c2ad.css
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _ga_CK9NSGSVJF=GS1.1.1714124174.1.0.1714124174.0.0.0; _ga=GA1.1.1051564354.1714124175
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/octet-stream
content-length: 7900
last-modified: Wed, 24 Apr 2024 08:01:55 GMT
etag: "6628bc73-1edc"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ijdUxcmaElta9KhArjQAPiZb7z8YPI%2FgJlW5dVGokgpLGkCgh7OCyzjZMFPYZQJ%2BecuSUarLELOk0At17Dl%2FihAGQ%2FtlTXJIkD6xYTLjUg%2F7Ia5eRt0yzhCaHLoE7YgINUA1wuZGUw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a5965c2ae4569f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-17d51bdc.js | 104.21.19.111 | 200 OK | 664 B |
URL GET HTTP/3flaredownload.com/assets/hl-17d51bdc.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (2036), with no line terminators Hashb71e2975dfe2572e7c984ac8fb7850bc e5dc109789599087040f8f2351925f8a18769fc9 2fd00d98c29406f4d02c164da422ac5ec446bbc54a08cbe1ad0f6b2329691a09
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-17d51bdc.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2037
access-control-allow-origin: *
etag: W/"6628bc74-7f5"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9rd0xNt26XlSebhRHj1wPR9qQrobVywcJLE1zY6xKRvmPMq8Vd0ZW0MbQUyGYF4TEoJSO1PTjWGM%2F7LKNhaiF%2FviFWNkjOZKbTG8MAJZRdTHRPDNNWTbHXbkbwPTBbhB8Dub099POQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a5965a28c3569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-b357b190.js | 104.21.19.111 | 200 OK | 94 kB |
URL GET HTTP/3flaredownload.com/assets/hl-b357b190.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashcd6e0eff789221181a0b8471967bcb8d 71586e5b8ca6df344fd58e8a1772baa3734bb190 b7baa94b8d9f78408c104d46f5b9df36b49a27a09719b7a5b80be68d72d5651e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-b357b190.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=265728
access-control-allow-origin: *
etag: W/"6628bc74-40e00"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nEZBnHqK9CqVxpSeMaBF0lvV7vs1q9FALyMvt18wrB0pjkiI2ya6Yf9uD5MJe4%2FbpOSugNByw3Sds%2FFiVAUDZtSPrwO%2FXjgtyPjStqr0x1CWgGJIwK1QLa2lfhKx498NgPLTQRTbrg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 1
server: cloudflare
cf-ray: 87a59657fe5e569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-792ddeea.js | 104.21.19.111 | 200 OK | 4.5 kB |
URL GET HTTP/3flaredownload.com/assets/hl-792ddeea.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (779), with no line terminators Hashe1bfd6e4c6daa2b1a3cd4a3f2a1f8f29 188fedf3f8cef02e6c8ee2de4f794cab6a320df3 ad5e274fa644479d71df93bc54e4a12553195cd85ca9d583feaedc74f1cc2046
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-792ddeea.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-83316dfd.js
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _ga_CK9NSGSVJF=GS1.1.1714124174.1.0.1714124174.0.0.0; _ga=GA1.1.1051564354.1714124175
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=780
access-control-allow-origin: *
etag: W/"6628bc74-30c"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l4L6hjIq8ZJs5LmorIA%2B77LMkmobiGXWwZ543WZgryRHJN3VpStyQo0VmxLOPA2q9RGqNrRc%2BPyfivi2dPNq0ERrmGhztvHQ6C6PPDfOT3z5DiE2DkL3mMIgfz9m0%2BuklQhGFpsu0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a5965c0abc569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-35a77ba0.js | 104.21.19.111 | 200 OK | 34 kB |
URL GET HTTP/3flaredownload.com/assets/hl-35a77ba0.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (37102) Hashf87da472e47dc575b6cb8dc377d18916 bff262654ae71f3be0a658cfbe5a53c787c05d55 5c38207c92f3650eaef6616521c8b1e0a03ceb384030f1c2b67cb75e25925ca8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-35a77ba0.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=72018
access-control-allow-origin: *
etag: W/"6628bc74-11952"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3OtODt69WG6K7ke3l982WOnDBJB3O8PWoJH3xTwd%2BalseWY2yWuTABZeF%2FvVX8ubgTkK%2BeWtUqCpELghRTcGz%2FpfrC9HMaM7o8iuX%2BhGFySLinRQcA5GncQ4u41Q3Jg8t0nc0QIOKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a59656ed8b569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-7067c1b8.js | 104.21.19.111 | 200 OK | 8.5 kB |
URL GET HTTP/3flaredownload.com/assets/hl-7067c1b8.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (305) Hasha9ae5cdde3d6c9cee9a04986b7171460 2d4b868b4bae0ec19887905ef79f466ed49d83a8 51705f7291a5f8eda50e504dd6da666a8e5bbd6a2e0efb855ee25696a4e718f9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-7067c1b8.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-b357b190.js
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1286
access-control-allow-origin: *
etag: W/"6628bc74-506"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ke2T3aBRfCrfEsOs3dLG5XuBaNzJtqlgSG9VkN6nbN4Dt6Nuk99jl5NfLw2VDrh2yIvpVKw2u%2FSdROXI8JvUXB%2FksJXHFTGMn%2F3EhkmIsJ6ZM0n%2FEX1sX38mwk%2FMik69xUdu0AVFOA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a59656fd99569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-4bc0c634.js | 104.21.19.111 | 200 OK | 7.6 kB |
URL GET HTTP/3flaredownload.com/assets/hl-4bc0c634.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (4793), with no line terminators Hash2ecddb69cae17a5edf492efb2310ca5e b46bed0e479e87309c86d11d52ae0c1bcf5f3108 70f02ddb19f6c743759171a9303d9aa660ecda8df117380a40c464196b620b61
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-4bc0c634.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=4794
access-control-allow-origin: *
etag: W/"6628bc74-12ba"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2pzIVShF0nT12PZMoENaxiDaoW6btYpWYIrM6btkuUcQ20EHxzW4ENQE5FtqN4xP56aulkVDftLGXZnAB2TlCJJu%2BC0xyqirmjgAFDe%2FyZ9AyZHrQF6LOzWEZwT7sUDLOn2rjvvVAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a59656cd6f569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-0b01f32c.js | 104.21.19.111 | 200 OK | 2.8 kB |
URL GET HTTP/3flaredownload.com/assets/hl-0b01f32c.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeJavaScript source, ASCII text, with very long lines (2919), with no line terminators Hasheb74b27cdf7931830bf93e970811a9c0 742f6576a102dc9e281410d84de8d014970a6e7d 7041a1fd974f76d20401e2974f4c563e3bbb3a489348fff8513a3f24c5ee59c2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-0b01f32c.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-83316dfd.js
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _ga_CK9NSGSVJF=GS1.1.1714124174.1.0.1714124174.0.0.0; _ga=GA1.1.1051564354.1714124175
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2842
access-control-allow-origin: *
etag: W/"6628bc74-b1a"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6f4UIVNdGPRwjBGFOOKuB6E%2FSexaeRlgXybNB%2Fo%2Bs82AR7it8AkfTeVuuLelY2GD6N5oBxd4w%2BYLiym4cYdhFfid4dJga27aeJPNAA%2BbumDBwlDcQHes6akRGBwQqNK6XCOgckr%2BMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a5965c0abb569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-0f0a1934.js | 104.21.19.111 | 200 OK | 872 B |
URL GET HTTP/3flaredownload.com/assets/hl-0f0a1934.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (920), with no line terminators Hashd22a177c0deaa7423e2002ddc6bffb27 73d940fb7a6f3129902b89da8dcfd2a59b621d0b b2844a6a8344d13bebb9c4a8dc5c5b89d4ea28ae3bb05e273fe74a8d006fa920
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-0f0a1934.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-4bc0c634.js
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=873
access-control-allow-origin: *
etag: W/"6628bc74-369"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UkJDHAYoe5def49zRQPfpa4owHARSkreWkZtESUEaNpwes8gbeOlbC9yWJDx5MkCFQ9%2Fg3Cr6mpoG0OlnsovaNg255%2FAb5pOakIF7SdrzNqJyd%2FoF%2BpUEaZGt%2FnPE5UVyr7QVcCaJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87a59659d864569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-83316dfd.js | 104.21.19.111 | 200 OK | 6.1 kB |
URL GET HTTP/3flaredownload.com/assets/hl-83316dfd.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (6412), with no line terminators Hash27a35e0ced45379f41358a6beedea7fa e7f50dd1456fb36c9d10d469061701f6832996e7 e6fa07feb0815b3f09ed4ca05e6e145aedfe7e96cd7783d357f4332e33629048
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-83316dfd.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-aafe1345.js
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _ga_CK9NSGSVJF=GS1.1.1714124174.1.0.1714124174.0.0.0; _ga=GA1.1.1051564354.1714124175
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=6097
access-control-allow-origin: *
etag: W/"6628bc74-17d1"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PnO%2BITVVcT1SI7e7ZQZPZOer8TdFGWJJrlkVKhRk%2BDqKya3kzWeSTPRKV76r%2BZNAhnFiZNNjsVl%2FnSXcn33X5hYYIOCw8Pc2%2B7vRZup0brEbxBxthX4ddwQ7EHzxhIYkA1Ttu3rhYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87a5965b2a06569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-7c523d10.js | 104.21.19.111 | 200 OK | 561 B |
URL GET HTTP/3flaredownload.com/assets/hl-7c523d10.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (583), with no line terminators Hashc4e16824e2d23ad53b814db935bea17e 97c58a335f3bd169c0ed15ecc0978ab0280c27d0 c801c0119e2696729255f92db679d9e56f56ff050c1ce1d269c5863aa5ea7c3a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-7c523d10.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-aafe1345.js
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _ga_CK9NSGSVJF=GS1.1.1714124174.1.0.1714124174.0.0.0; _ga=GA1.1.1051564354.1714124175
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=562
access-control-allow-origin: *
etag: W/"6628bc74-232"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m4%2BNV4lrziYE2hBXl64l8dEIKcqs6JNbJ8TxwYAmlmaNmPtM%2B644L5buSnJnbcdLYn5TN4WCfBajUOGTYj%2FwJjaMhWSVu4oQO5o5D4W2pLaoMCZzdW2QFyWKtLz2RujjZST5zBxvcw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87a5965b29ff569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-5c945f3d.js | 104.21.19.111 | 200 OK | 3.2 kB |
URL GET HTTP/3flaredownload.com/assets/hl-5c945f3d.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeJavaScript source, ASCII text, with very long lines (3246), with no line terminators Hash219e485e2d1dfaadc5e91eec4faf82c6 400e7de51772ba591e025016ecec38c0bf77cf7d a3806ab273401f7bd3c37908cdaadbc2baea37c0e4846cd34cefdbb85299b5b2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-5c945f3d.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-b357b190.js
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=3167
access-control-allow-origin: *
etag: W/"6628bc74-c5f"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7onS8sslC9PP3oNLeQMlFYnzMVbgX6Obs%2B1BO47BP4NsqCnkvCVEW%2Fu5D%2BOv%2BVEM7KP%2FI4ozRYh0jzTodvD3MvAOsTspPU2wckTcHbMNFoFrT6F%2FXLOXcOXrtse%2FQif0iWPHP2dJFQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a59656cd68569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-de833af9.js | 104.21.19.111 | 200 OK | 690 B |
URL GET HTTP/3flaredownload.com/assets/hl-de833af9.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeJavaScript source, ASCII text, with very long lines (704), with no line terminators Hash25a523c7c0658e2bf768f0e26f59fbd8 fdae37e60c01daf3551830ba3639873e313e6495 37c6c8ba37235a274a7739b7021a9ea8104d57dd951ede499d1691f28175fb59
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-de833af9.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=691
access-control-allow-origin: *
etag: W/"6628bc74-2b3"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BQvwWs%2FXnmYxAlxQSrf4eSPmKpmLmNlpyUkGux9760aF%2BD86obNhJb3zG%2BfYcjVqiC22cdB%2BGBufS5VegGUfIG102NPTPn6srjULdkYSMIr8rQhi5cKCKZBRmBTl60EcVz2i2vFgHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a59656ed91569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-aafe1345.js | 104.21.19.111 | 200 OK | 340 B |
URL GET HTTP/3flaredownload.com/assets/hl-aafe1345.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (356), with no line terminators Hash351ebb77c07870fe756ee5d8cf3d70b1 9a37323d3d2f9f8b24c4dd027f3ec44aed7222d7 0a212e5a7a669e277678c049ea9415781709f2793bce926b7f7484394d21382e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-aafe1345.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=341
access-control-allow-origin: *
etag: W/"6628bc74-155"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FHnwSf3rD6TDPQCdzXiXLLsZ041hhqacuSGcnWXr2mNuHSmVTH8Xd6o4C748kAstpKcs1L1OGFTtyuX%2BaxmJ1VH%2FgBGGPIoR0ZalUFh1OvzrJoc6Nc%2BAma1xqTHVV8x7l8iJnNoRWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a5965a28c2569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-83316dfd.js | 104.21.19.111 | 200 OK | 6.1 kB |
URL GET HTTP/3flaredownload.com/assets/hl-83316dfd.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (6412), with no line terminators Hash27a35e0ced45379f41358a6beedea7fa e7f50dd1456fb36c9d10d469061701f6832996e7 e6fa07feb0815b3f09ed4ca05e6e145aedfe7e96cd7783d357f4332e33629048
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-83316dfd.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=6097
access-control-allow-origin: *
etag: W/"6628bc74-17d1"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PnO%2BITVVcT1SI7e7ZQZPZOer8TdFGWJJrlkVKhRk%2BDqKya3kzWeSTPRKV76r%2BZNAhnFiZNNjsVl%2FnSXcn33X5hYYIOCw8Pc2%2B7vRZup0brEbxBxthX4ddwQ7EHzxhIYkA1Ttu3rhYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a5965a48f1569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-d98910d4.css | 104.21.19.111 | 200 OK | 78 kB |
URL GET HTTP/3flaredownload.com/assets/hl-d98910d4.css IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (65329) Hasha1713c7a8fb53e78bbd5a1c76068791d c15ca4f1e62bde996f9c72fb4a3e3f584b966741 cd7e4b31039bf939306ab3d38291f59e92069a24744e4b359b557aba0eb5b219
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-d98910d4.css HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=77791
access-control-allow-origin: *
etag: W/"6628bc74-12fdf"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k7FJcgmwMXaCTRsWY23iBKGglY8nQya8JrGKdLt2LOOyO3aMLkiP5AgG4AAdDIwb9o971mKcF2%2Bi%2BzLuS9%2F%2B2qtHZdvZKFgD44WGXKRW4YUHJKHidlaXBJ0f6yGWzK613Yq7tOADkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a59657ee52569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-30e661e5.js | 104.21.19.111 | 200 OK | 616 B |
URL GET HTTP/3flaredownload.com/assets/hl-30e661e5.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (636), with no line terminators Hashc8a1d9712fd0a2af805bdea6d50dd196 d49f9fd6c2c6f26dde1fadd1f26fff3b0e516202 13f8fbd804d1300ad8df1f02d9c5ceef85f72eeb9f48912c6e99f9cbef6b921c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-30e661e5.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=617
access-control-allow-origin: *
etag: W/"6628bc74-269"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FCgKsBhjvaUNN%2F3eUDIJgzASERXF5avD92IVKrfrfRuNlU69YXNLc9vKMjeK3wtPIl5RxcC9IfB39VUY%2B1ZFexctCsFsw7UgBBmTecTvstHXsJ%2F9fpo8CRn41PNGaddl90BK%2FI7QTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a5965beaab569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/visit/get-data?landingId=7748&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource= | 104.21.19.111 | 200 OK | 7.4 kB |
URL GET HTTP/3flaredownload.com/visit/get-data?landingId=7748&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource= IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typetroff or preprocessor input, Unicode text, UTF-8 text, with very long lines (8013), with no line terminators Hash257815e5ecb2194150c3a02335e787fe 52f63e0526d9bfba14ea3d8ae28b387eeba33784 791321f35269e793c6f99221032e9d1e81a8dc7d0d3f679cdb5f0cabbc5c0483
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /visit/get-data?landingId=7748&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource= HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
sentry-trace: 47e6189284794904b4691c0c3aec8d07-82142c4f4490a177-0
baggage: sentry-environment=production,sentry-public_key=9056b383582c444792eb65c1726488d9,sentry-trace_id=47e6189284794904b4691c0c3aec8d07,sentry-sample_rate=0.1,sentry-sampled=false
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:13 GMT
content-type: application/json; charset=UTF-8
set-cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; path=/; HttpOnly; SameSite=Lax
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UrzhdreVyWBfvAFNsQJyC1Cxr5hSRooG23m6oEIkM8R7iE3uU7lj%2BUNlelFPQCdrjd%2FfR1DRKdNb3UfhkN4vWx3t8NDTiHNRctynTeNW5FLP0YiZ0u%2BSict3BJlqFeqFrYLnhQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a596554bd4569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-de833af9.js | 104.21.19.111 | 200 OK | 690 B |
URL GET HTTP/3flaredownload.com/assets/hl-de833af9.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeJavaScript source, ASCII text, with very long lines (704), with no line terminators Hash25a523c7c0658e2bf768f0e26f59fbd8 fdae37e60c01daf3551830ba3639873e313e6495 37c6c8ba37235a274a7739b7021a9ea8104d57dd951ede499d1691f28175fb59
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-de833af9.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-7067c1b8.js
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=691
access-control-allow-origin: *
etag: W/"6628bc74-2b3"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BQvwWs%2FXnmYxAlxQSrf4eSPmKpmLmNlpyUkGux9760aF%2BD86obNhJb3zG%2BfYcjVqiC22cdB%2BGBufS5VegGUfIG102NPTPn6srjULdkYSMIr8rQhi5cKCKZBRmBTl60EcVz2i2vFgHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 1
server: cloudflare
cf-ray: 87a59657ae2b569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.googletagmanager.com/gtag/js?id=G-CK9NSGSVJF&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 250 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-CK9NSGSVJF&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com FingerprintFC:B1:16:E0:D8:F3:2B:F3:AB:33:E5:E1:23:57:F4:48:66:FD:4D:52 ValidityMon, 08 Apr 2024 06:34:55 GMT - Mon, 01 Jul 2024 06:34:54 GMT
File typeJavaScript source, ASCII text, with very long lines (5945) Size250 kB (250133 bytes) Hash497163dec611545865fd359ce0add3f6 ff502c4d63796371cd727a5d720e785e8890b2fe 4b8cec9b9f79ee5e69e56a210ab0630f584154c3f4eb3bb67f0880399f8a4613
GET /gtag/js?id=G-CK9NSGSVJF&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Fri, 26 Apr 2024 09:36:14 GMT
expires: Fri, 26 Apr 2024 09:36:14 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 88659
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| flaredownload.com/assets/hl-d3fbdfe4.js | 104.21.19.111 | 200 OK | 915 B |
URL GET HTTP/3flaredownload.com/assets/hl-d3fbdfe4.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (943), with no line terminators Hashc031800c96fa289ab0f286d46661bea2 0b56e63ed6e2cdedd318c9030a1f6056ea5eac72 3e5d95a8678551eacf124da824401720a824943199ae59ea9a2c49df75b06255
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-d3fbdfe4.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=916
access-control-allow-origin: *
etag: W/"6628bc74-394"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hyn2jgyeD2%2Bj2P71TLMFrGxdWzMA%2BFAx6CW8h9wSpMP7qKhuOIklgIVLMbnn%2FocjMuT2WTpzpeX6l1EuX4anDuA9rhbCklanGygggrmGbEhtqj6RJ%2BrppuOhI6ENjh%2BG%2B%2BnlmD0PFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a5965a28cc569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/prod/images/2f40fa92fce11c340f70807da03ac0b2.png | 0.0.0.0 | | 0 B |
URL GET flaredownload.com/prod/images/2f40fa92fce11c340f70807da03ac0b2.png IP0.0.0.0:0
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /prod/images/2f40fa92fce11c340f70807da03ac0b2.png HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _ga_CK9NSGSVJF=GS1.1.1714124174.1.0.1714124174.0.0.0; _ga=GA1.1.1051564354.1714124175
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| flaredownload.com/lead/prefill | 104.21.19.111 | 200 OK | 64 B |
URL POST HTTP/3flaredownload.com/lead/prefill IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash0a00dc476383c35bcfbc0ea44c3a60ea 36ebdfa0bfa4aa0ec8f4d7417d2112bae7d406db 819bd596583bc3bc638b2fa8d87d80b16551a1d68abb86261795db848cc226d2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /lead/prefill HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
sentry-trace: 47e6189284794904b4691c0c3aec8d07-919fe7e3cdc53a92-0
baggage: sentry-environment=production,sentry-public_key=9056b383582c444792eb65c1726488d9,sentry-trace_id=47e6189284794904b4691c0c3aec8d07
Content-Length: 56
Origin: https://flaredownload.com
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _ga_CK9NSGSVJF=GS1.1.1714124174.1.0.1714124174.0.0.0; _ga=GA1.1.1051564354.1714124175
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/json; charset=UTF-8
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B6L6jHkXPtY5GBRkVEN%2B0o9gv09eG%2B%2BLmGjU5uzNJ7XXaa5jkyicOMlH338C%2BU2%2Fb8a8wGRwQGnasaLc%2BVnehMkp1d8df%2BGkFlQ1RWJAcyjS9bdtlet3TGBVVoODcS4nW1JE3Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a5965bda86569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-69cc381a.js | 104.21.19.111 | 200 OK | 418 B |
URL GET HTTP/3flaredownload.com/assets/hl-69cc381a.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (440), with no line terminators Hash027f4ce7ab8f79f3351900b02e709fc2 1916fbd0a01a1cedb02f7a2b4640b6160d941e7d 11179c843f7538e955b1b01e0b3e2b17b9b34d55205748efa5968e24d1d690ee
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-69cc381a.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=419
access-control-allow-origin: *
etag: W/"6628bc74-1a3"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BNK5XvjRc8hiKzDcgiDosISV8Ul0cX2H6CNX18vA6goefCHphXYI23jMcEs1%2Bo1Yi1rHPjNOmdOTTWKR1IBQ0c%2BJUWkJigiHriLrwbMK5o%2BeOv1JdGGZheMOfmspliTCilbUrvMEsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a59656cd74569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| secureanalytic.com/scripts/push/script/02eyoyxdkz?url=flaredownload.com | 188.114.96.1 | 200 OK | 7.3 kB |
URL GET HTTP/2secureanalytic.com/scripts/push/script/02eyoyxdkz?url=flaredownload.com IP188.114.96.1:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerLet's Encrypt Subjectsecureanalytic.com FingerprintE8:56:22:9E:5D:B8:81:BD:9C:20:0E:24:64:BE:C4:CA:4E:D6:C9:63 ValidityFri, 29 Mar 2024 10:27:40 GMT - Thu, 27 Jun 2024 10:27:39 GMT
File typeJavaScript source, ASCII text, with very long lines (7538), with no line terminators Hash43371965de7a64da1278fcac3cc5ef2d f7f12fd6748850ea316c34b26637c6f73aa1df6e bbf1acffd2306b3a13dc2809d014593b969df7b19ac3069f6ef0b84c3f00f7c0
GET /scripts/push/script/02eyoyxdkz?url=flaredownload.com HTTP/1.1
Host: secureanalytic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript;charset=UTF-8
expires: 0
cache-control: max-age=14400, must-revalidate
x-xss-protection: 1; mode=block
pragma: no-cache
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src * 'self' https://* blob: data:; font-src 'self' data:
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-content-type-options: nosniff
permissions-policy: camera=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), sync-xhr=()
cf-cache-status: EXPIRED
last-modified: Fri, 26 Apr 2024 07:26:12 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cjCZrEXzgxCneos0HoHT2JtERl%2BpZ6WvfFjdp4Wfrdtydfn5xZIAWMOoSJ%2Fll6Ml7eg8Xrs%2BavKrL1onszRRrfryjtkpooPSwxKmIwRcmH%2FH6GuLAoA7KGa1OsnPijF2ACEVRiU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a59657ece4b51e-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| flaredownload.com/assets/hl-0f0a1934.js | 104.21.19.111 | 200 OK | 872 B |
URL GET HTTP/3flaredownload.com/assets/hl-0f0a1934.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (920), with no line terminators Hashd22a177c0deaa7423e2002ddc6bffb27 73d940fb7a6f3129902b89da8dcfd2a59b621d0b b2844a6a8344d13bebb9c4a8dc5c5b89d4ea28ae3bb05e273fe74a8d006fa920
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-0f0a1934.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=873
access-control-allow-origin: *
etag: W/"6628bc74-369"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UkJDHAYoe5def49zRQPfpa4owHARSkreWkZtESUEaNpwes8gbeOlbC9yWJDx5MkCFQ9%2Fg3Cr6mpoG0OlnsovaNg255%2FAb5pOakIF7SdrzNqJyd%2FoF%2BpUEaZGt%2FnPE5UVyr7QVcCaJg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a59657ee5b569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-aafe1345.js | 104.21.19.111 | 200 OK | 340 B |
URL GET HTTP/3flaredownload.com/assets/hl-aafe1345.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (356), with no line terminators Hash351ebb77c07870fe756ee5d8cf3d70b1 9a37323d3d2f9f8b24c4dd027f3ec44aed7222d7 0a212e5a7a669e277678c049ea9415781709f2793bce926b7f7484394d21382e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-aafe1345.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-0f0a1934.js
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=341
access-control-allow-origin: *
etag: W/"6628bc74-155"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FHnwSf3rD6TDPQCdzXiXLLsZ041hhqacuSGcnWXr2mNuHSmVTH8Xd6o4C748kAstpKcs1L1OGFTtyuX%2BaxmJ1VH%2FgBGGPIoR0ZalUFh1OvzrJoc6Nc%2BAma1xqTHVV8x7l8iJnNoRWw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a5965a790e569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-edb2da2a.js | 104.21.19.111 | 200 OK | 1.4 kB |
URL GET HTTP/3flaredownload.com/assets/hl-edb2da2a.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeJavaScript source, ASCII text, with very long lines (1438), with no line terminators Hash862c9cf6fcd7b7f9a63460432c1c4cd4 fd37338a883a89512e82afbc9c5e226b871d4fed cd09ea827717eb9bf6f24164c61f1c8c8fbf4c41d80b4c9bdf48cefede2e3290
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-edb2da2a.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-4bc0c634.js
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1413
access-control-allow-origin: *
etag: W/"6628bc74-585"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y66gibVBeBI9OvcU75AxAfFgI3UPiX1m0f0aA7trFrYSTWHK29LX6bjDrnJRcT6NUZDo3M2H45x6Z6clUEo%2FanoWqDwzNpRSCuoXdH7Bh%2FJ123GXUgNAV%2FqDU0VMhOppXSlA9%2FPYWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 1
server: cloudflare
cf-ray: 87a59657ae1f569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-7c523d10.js | 104.21.19.111 | 200 OK | 561 B |
URL GET HTTP/3flaredownload.com/assets/hl-7c523d10.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (583), with no line terminators Hashc4e16824e2d23ad53b814db935bea17e 97c58a335f3bd169c0ed15ecc0978ab0280c27d0 c801c0119e2696729255f92db679d9e56f56ff050c1ce1d269c5863aa5ea7c3a
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-7c523d10.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=562
access-control-allow-origin: *
etag: W/"6628bc74-232"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m4%2BNV4lrziYE2hBXl64l8dEIKcqs6JNbJ8TxwYAmlmaNmPtM%2B644L5buSnJnbcdLYn5TN4WCfBajUOGTYj%2FwJjaMhWSVu4oQO5o5D4W2pLaoMCZzdW2QFyWKtLz2RujjZST5zBxvcw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a5965a28ca569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/favicon.ico | 104.21.19.111 | 200 OK | 4.3 kB |
URL GET HTTP/3flaredownload.com/favicon.ico IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeMS Windows icon resource - 1 icon, 32x32, 32 bits/pixel Hash1ba2ae710d927f13d483fd5d1e548c9b c0605efed936ee2600284e6480521d06fa64f872 db74ab0b78338c1f778f8398c45f4103c99aea0e845a3118a7750b4eeafd3445
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:13 GMT
content-type: image/x-icon
last-modified: Wed, 13 Sep 2023 08:04:59 GMT
etag: W/"65016d2b-10be"
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vDHPajQez1XWrccrSyjCwi1tHom097GaqrwaBJedm73JN2qE%2FxC7BMOZA0Izj5F1wVEwaJ3q5tQEm3iEQ%2F7yf6uQkuU9MGSOlbHL9KRU22KOKmbng1%2FIsONf38VD4jUwl7p%2F6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a596560c91569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/prod/images/f4a32eb2e5f203dab4882f7b7581b06e.png | 104.21.19.111 | 200 OK | 9.2 kB |
URL GET HTTP/3flaredownload.com/prod/images/f4a32eb2e5f203dab4882f7b7581b06e.png IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typePNG image data, 100 x 100, 8-bit/color RGBA, non-interlaced Hashf4a32eb2e5f203dab4882f7b7581b06e 8d51933205a3ed27c2c6bd0182142d6f8432d929 83ec91fc25549922aa0f873a3dc6a3e71f83d8b8cd75fb018475762be29a894e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /prod/images/f4a32eb2e5f203dab4882f7b7581b06e.png HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: image/png
content-length: 9232
last-modified: Tue, 03 Aug 2021 15:21:51 GMT
etag: "61095f0f-2410"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Nkj8Yhzkz80mEqdX7JqkqkHtkIYRw%2F0JtoU106KLZttVyxnHwzIImp07LjV2WrQBzo%2FRQ1ei22AFHo5%2FvuM3gb4FCglWYPUFIjyayFOxkSeBeKyFm8Fj3nK%2B7mMwKDWlmbX03MtuUA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a5965b0985569f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| event.secureanalytic.com/register/event_log/v9e179lqez | 188.114.97.1 | 200 OK | 0 B |
URL POST HTTP/2event.secureanalytic.com/register/event_log/v9e179lqez IP188.114.97.1:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerLet's Encrypt Subjectsecureanalytic.com FingerprintE8:56:22:9E:5D:B8:81:BD:9C:20:0E:24:64:BE:C4:CA:4E:D6:C9:63 ValidityFri, 29 Mar 2024 10:27:40 GMT - Thu, 27 Jun 2024 10:27:39 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /register/event_log/v9e179lqez HTTP/1.1
Host: event.secureanalytic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/
Content-type: application/json
Content-Length: 114
Origin: https://flaredownload.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-length: 0
expires: 0
cache-control: no-cache, no-store, max-age=0, must-revalidate
x-xss-protection: 1; mode=block
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
x-pushplatformapp-params:
content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src * 'self' https://* blob: data:; font-src 'self' data:
x-pushplatformapp-alert: pushPlatformApp.pushSubscription.deleted
x-frame-options: SAMEORIGIN
access-control-expose-headers: Authorization, Link, X-Total-Count, X-pushPlatformApp-alert, X-pushPlatformApp-error, X-pushPlatformApp-params
access-control-allow-origin: *
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-content-type-options: nosniff
permissions-policy: camera=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), sync-xhr=()
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cWOEBRjjLXuOkvWr33RF%2FnIRYx8QNf2mTYHjpmAh0wEBRAdEMNsYUa30%2F9jxKsCGdmc%2Fob8UxhpPDC6wI%2FQks2OGP%2FK1OdNiSoD5q1G5Mf5%2B2WFahEWbN8bTMvepOH0BD1sxUibcW1yLmXo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a5965cb9e656be-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= | 104.21.19.111 | 200 OK | 417 B |
URL User Request GET HTTP/2flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= IP104.21.19.111:443
CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeHTML document, ASCII text, with very long lines (456), with no line terminators Hash6be884f51e3edba635422ef342d01f3b 127c56555828806ee0e4451ba832c13c9a8b6351 7a6bdedfea3298f30b0e65498286b636a39e45b3b5b46dae529d351d902405f7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 09:36:13 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cIY25LtgOCmtrSakZI%2Fq1SF3nV3hjVP68vBjDMaPEoT9hSQ1SmmsUNlRCQ9otntqHUSRsiTcmkbnQggsvmajxvHtUtrl%2Fnts6hV2Ux6nesFOgZEQer1hSWBVlppfG7OxNKOtIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a59650bb9e569d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| flaredownload.com/assets/hl-69cc381a.js | 104.21.19.111 | 200 OK | 418 B |
URL GET HTTP/3flaredownload.com/assets/hl-69cc381a.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (440), with no line terminators Hash027f4ce7ab8f79f3351900b02e709fc2 1916fbd0a01a1cedb02f7a2b4640b6160d941e7d 11179c843f7538e955b1b01e0b3e2b17b9b34d55205748efa5968e24d1d690ee
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-69cc381a.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-4bc0c634.js
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=419
access-control-allow-origin: *
etag: W/"6628bc74-1a3"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BNK5XvjRc8hiKzDcgiDosISV8Ul0cX2H6CNX18vA6goefCHphXYI23jMcEs1%2Bo1Yi1rHPjNOmdOTTWKR1IBQ0c%2BJUWkJigiHriLrwbMK5o%2BeOv1JdGGZheMOfmspliTCilbUrvMEsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 1
server: cloudflare
cf-ray: 87a59657ae1a569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-30e661e5.js | 104.21.19.111 | 200 OK | 616 B |
URL GET HTTP/3flaredownload.com/assets/hl-30e661e5.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (636), with no line terminators Hashc8a1d9712fd0a2af805bdea6d50dd196 d49f9fd6c2c6f26dde1fadd1f26fff3b0e516202 13f8fbd804d1300ad8df1f02d9c5ceef85f72eeb9f48912c6e99f9cbef6b921c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-30e661e5.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-83316dfd.js
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _ga_CK9NSGSVJF=GS1.1.1714124174.1.0.1714124174.0.0.0; _ga=GA1.1.1051564354.1714124175
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=617
access-control-allow-origin: *
etag: W/"6628bc74-269"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FCgKsBhjvaUNN%2F3eUDIJgzASERXF5avD92IVKrfrfRuNlU69YXNLc9vKMjeK3wtPIl5RxcC9IfB39VUY%2B1ZFexctCsFsw7UgBBmTecTvstHXsJ%2F9fpo8CRn41PNGaddl90BK%2FI7QTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a5965c0ac3569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-edb2da2a.js | 104.21.19.111 | 200 OK | 1.4 kB |
URL GET HTTP/3flaredownload.com/assets/hl-edb2da2a.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeJavaScript source, ASCII text, with very long lines (1438), with no line terminators Hash862c9cf6fcd7b7f9a63460432c1c4cd4 fd37338a883a89512e82afbc9c5e226b871d4fed cd09ea827717eb9bf6f24164c61f1c8c8fbf4c41d80b4c9bdf48cefede2e3290
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-edb2da2a.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:13 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1413
access-control-allow-origin: *
etag: W/"6628bc74-585"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y66gibVBeBI9OvcU75AxAfFgI3UPiX1m0f0aA7trFrYSTWHK29LX6bjDrnJRcT6NUZDo3M2H45x6Z6clUEo%2FanoWqDwzNpRSCuoXdH7Bh%2FJ123GXUgNAV%2FqDU0VMhOppXSlA9%2FPYWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a59656dd7d569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/prod/images/2f40fa92fce11c340f70807da03ac0b2.png | 104.21.19.111 | 200 OK | 971 B |
URL GET HTTP/3flaredownload.com/prod/images/2f40fa92fce11c340f70807da03ac0b2.png IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typePNG image data, 111 x 75, 8-bit colormap, non-interlaced Hash2f40fa92fce11c340f70807da03ac0b2 89ef777357b185dee8937a3da0983f39f156fb10 44990fb54269fdec9302792e2c01543679151dbfb279e63089e28656884b3794
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /prod/images/2f40fa92fce11c340f70807da03ac0b2.png HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _ga_CK9NSGSVJF=GS1.1.1714124174.1.0.1714124174.0.0.0; _ga=GA1.1.1051564354.1714124175
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: image/png
content-length: 971
last-modified: Thu, 13 Jan 2022 13:22:43 GMT
etag: "61e027a3-3cb"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HVXxjRq8LSvj%2FF7sV13cmWWG3O9kt24btWiolaNMOdRIUSYroyhYXzM4mALPZ2Cy3EsZzRBe9M8ISz0xZRUm%2F7EbGQTQTE%2FAIJA58sTZ2KOg5jZPXuMLvUJUOf%2BT4XcQJnMceMKUNQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
accept-ranges: bytes
server: cloudflare
cf-ray: 87a5965bfab8569f-OSL
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-d3fbdfe4.js | 104.21.19.111 | 200 OK | 915 B |
URL GET HTTP/3flaredownload.com/assets/hl-d3fbdfe4.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (943), with no line terminators Hashc031800c96fa289ab0f286d46661bea2 0b56e63ed6e2cdedd318c9030a1f6056ea5eac72 3e5d95a8678551eacf124da824401720a824943199ae59ea9a2c49df75b06255
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-d3fbdfe4.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-aafe1345.js
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _ga_CK9NSGSVJF=GS1.1.1714124174.1.0.1714124174.0.0.0; _ga=GA1.1.1051564354.1714124175
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=916
access-control-allow-origin: *
etag: W/"6628bc74-394"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hyn2jgyeD2%2Bj2P71TLMFrGxdWzMA%2BFAx6CW8h9wSpMP7qKhuOIklgIVLMbnn%2FocjMuT2WTpzpeX6l1EuX4anDuA9rhbCklanGygggrmGbEhtqj6RJ%2BrppuOhI6ENjh%2BG%2B%2BnlmD0PFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87a5965b5a39569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-0b01f32c.js | 104.21.19.111 | 200 OK | 2.8 kB |
URL GET HTTP/3flaredownload.com/assets/hl-0b01f32c.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeJavaScript source, ASCII text, with very long lines (2919), with no line terminators Hasheb74b27cdf7931830bf93e970811a9c0 742f6576a102dc9e281410d84de8d014970a6e7d 7041a1fd974f76d20401e2974f4c563e3bbb3a489348fff8513a3f24c5ee59c2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-0b01f32c.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2842
access-control-allow-origin: *
etag: W/"6628bc74-b1a"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6f4UIVNdGPRwjBGFOOKuB6E%2FSexaeRlgXybNB%2Fo%2Bs82AR7it8AkfTeVuuLelY2GD6N5oBxd4w%2BYLiym4cYdhFfid4dJga27aeJPNAA%2BbumDBwlDcQHes6akRGBwQqNK6XCOgckr%2BMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a5965beaa3569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-ac68def5.js | 104.21.19.111 | 200 OK | 1.9 kB |
URL GET HTTP/3flaredownload.com/assets/hl-ac68def5.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeJavaScript source, ASCII text, with very long lines (1960), with no line terminators Hash0ff6ab8d653238e85c26fc3cfe55015a 18ec157045ee471ba8530e17f0ca0f5fb6bd9d1e 5d8585fce9ef9ba564f252ce8f290814d7b563d5b4d5b6b44b03f49b1e6c0668
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-ac68def5.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource=
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1923
access-control-allow-origin: *
etag: W/"6628bc74-783"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=trmrsyKDwRJu%2BE0%2Ba0lgS2oAC%2BApXenf5JXgNugcBvPdPHWfA9cKLbRV1fUcbDJJW4bjx6NJ4R3wIEhD%2F5VJJJcBsoivx8ZLuqtAV8Aqax87BnRRWmjcrm%2FWQnB0FCxhenfVIX8QIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a5965bfaac569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-ac68def5.js | 104.21.19.111 | 200 OK | 1.9 kB |
URL GET HTTP/3flaredownload.com/assets/hl-ac68def5.js IP104.21.19.111:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeJavaScript source, ASCII text, with very long lines (1960), with no line terminators Hash0ff6ab8d653238e85c26fc3cfe55015a 18ec157045ee471ba8530e17f0ca0f5fb6bd9d1e 5d8585fce9ef9ba564f252ce8f290814d7b563d5b4d5b6b44b03f49b1e6c0668
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-ac68def5.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-30e661e5.js
Cookie: visitInfo::7748=b73ece4e07d7abf6cfdae21c685de0c040237cdf0ea9d95ccfdfdb8e0cdfa32aa%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7748%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%224e37d45500d703c02e1c8c5365b69611%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22bb4bd61b%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%2208a7531b-bb45-43dc-8c19-fcdfc51c16a8%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; _ga_CK9NSGSVJF=GS1.1.1714124174.1.0.1714124174.0.0.0; _ga=GA1.1.1051564354.1714124175
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1923
access-control-allow-origin: *
etag: W/"6628bc74-783"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=trmrsyKDwRJu%2BE0%2Ba0lgS2oAC%2BApXenf5JXgNugcBvPdPHWfA9cKLbRV1fUcbDJJW4bjx6NJ4R3wIEhD%2F5VJJJcBsoivx8ZLuqtAV8Aqax87BnRRWmjcrm%2FWQnB0FCxhenfVIX8QIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87a5965ceb9d569f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| event.secureanalytic.com/register/event_log/v9e179lqez | 188.114.97.1 | 200 OK | 0 B |
URL OPTIONS HTTP/2event.secureanalytic.com/register/event_log/v9e179lqez IP188.114.97.1:443
Requested byhttps://flaredownload.com/en_us/unlock-content-now-1?&subid=08a7531b-bb45-43dc-8c19-fcdfc51c16a8&networkid=200347&publisher=bb4bd61b&isNewTr=1&stream=BOXING&email=&subsource=&subsource= CertificateIssuerLet's Encrypt Subjectsecureanalytic.com FingerprintE8:56:22:9E:5D:B8:81:BD:9C:20:0E:24:64:BE:C4:CA:4E:D6:C9:63 ValidityFri, 29 Mar 2024 10:27:40 GMT - Thu, 27 Jun 2024 10:27:39 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /register/event_log/v9e179lqez HTTP/1.1
Host: event.secureanalytic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://flaredownload.com/
Origin: https://flaredownload.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 09:36:14 GMT
content-length: 0
expires: 0
cache-control: no-cache, no-store, max-age=0, must-revalidate
access-control-allow-headers: content-type
x-xss-protection: 1; mode=block
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src * 'self' https://* blob: data:; font-src 'self' data:
access-control-allow-methods: POST
x-frame-options: SAMEORIGIN
access-control-expose-headers: Authorization, Link, X-Total-Count, X-pushPlatformApp-alert, X-pushPlatformApp-error, X-pushPlatformApp-params
access-control-allow-origin: *
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-content-type-options: nosniff
permissions-policy: camera=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), sync-xhr=()
access-control-max-age: 1800
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9jLMIxPMIC%2BGFpX5g7qK3rx7bJHBJxnA%2F4gCgq%2Fqz5PDOLkKEVsWseicyX5ql5Xhkqo7G%2FY%2BjGjF5nCYEslY9hRVU3VgCQgLbNhe7nkItiFb6vebnMsppG6x8E8PD1a5lKuN1FeZB5F5rEo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a5965bc92056be-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|