{"report_id":"9d72d0a7-3b85-498d-914a-4ced3d484da2","version":6,"status":"done","tags":[],"date":"2026-02-18T18:32:02Z","url":{"schema":"https","addr":"flexworrksports.com/scure","fqdn":"flexworrksports.com","domain":"flexworrksports.com","tld":"com"},"ip":{"addr":"172.67.154.67","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"final":{"url":{"schema":"https","addr":"flexworrksports.com/scure/","fqdn":"flexworrksports.com","domain":"flexworrksports.com","tld":"com"},"title":"flexworrksports.com/scure/","dom":{"size":14128,"mime_type":"text/html; charset=utf-8","magic":"JavaScript source, Unicode text, UTF-8 text, with very long lines (10605)","md5":"b20741be1b52e92cfeda2c1abcbbeb3d","sha1":"149357dedc7a6884f100c94987821600728d22cf","sha256":"45a5b91affd6504823c386afb9187991bf6934c75a2b5acf2912a75557a45a96","sha512":"3816e8dfb62d65cf07db2bd9a4cffdb5f43b0f56da184c7ef9b078eef06f43d13f65bd7363431619a564be5b23f5f21e08fdffb63c7a14fa5f9d98aaeaee9fa6","ssdeep":"192:CzPyj2WZyTE8WqgGSeOy/ioqVFYb+f3abqfmRWdQ9fYe5hdzeAlB2dOCRSAGy58H:CO6WZyTECQyapB6LB2/RdP7tU","tlshash":"eb525ba673841ba9a64509e94258e10790f9d41f342525cdfbfeb393fb39962f81c3b0","dom_hash":"domhash89312d09e8d7947896db71bd04e43e9f","first_seen":"","last_seen":"","times_seen":0,"resource_available":false,"data":null}},"submit":{"url":{"schema":"https","addr":"flexworrksports.com/scure","fqdn":"flexworrksports.com","domain":"flexworrksports.com","tld":"com"},"ip":{"addr":"172.67.154.67","port":0,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"tags":null,"meta":null,"user":{"user_id":"akbkyowd9geqr98"}},"settings":{"access":"public","device_type":"desktop","expires_at":"2027-03-25T18:32:02Z","useragent":"Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0","referer":"","cookies":null,"exit_node":"z0yflva4pidy47h"},"stats":{"alert_count":{"ids":0,"urlquery":0,"analyzer":1}},"detection":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-18","alert":"Sinkholed","trigger":"flexworrksports.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null},"summary":[{"fqdn":"flexworrksports.com","ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"domain_registered":"unknown","domain_rank":0,"first_seen":"No data","last_seen":"No data","alert_count":3,"request_count":3,"received_data":82563,"sent_data":1438,"comment":"","tags":null,"fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}]}],"files":null,"artifacts":{"windows_shortcuts":null,"files":null,"telegram":null,"pdfs":null,"clipboard":null},"sensors":{"ids":null,"analyzer":null,"urlquery":null},"javascript":{"script":[{"url":{"schema":"https","addr":"flexworrksports.com/scure/","fqdn":"flexworrksports.com","domain":"flexworrksports.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":true,"md5":"e5c3aa6ea759dc366863d89af86f5a1b","sha1":"dc76a8e4ccc047052a561acc258075470347e521","sha256":"fb1744d0ce389f0eb52db2dbf8080d6eae7f0cca9d546bbd81169ed12bb150e0","sha512":"6414678e1c7bb84cddefdcd459f1da3625cf71fad3a1d733b7e90f9919acfba8f7fad499c7ff06feb8aa81e40a1bb68fce098a398b14a6e53e31a52a19ac9923","ssdeep":"192:8zPyj2WZyTE8WqgGSeOy/ioqVFYb+f3abqfmRWdQ9fYe5hdzeAlB2dOCRc:8O6WZyTECQyapB6LB2/Rc","tlshash":"cc32c3b673881ba9e64409e94258e21790f9d42e342525cdebf2b797f03da62fc1c370","size":10936,"data":"","first_seen":"2026-02-18T18:32:03.958414Z","last_seen":"2026-02-18T18:32:05.877685Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}},{"url":{"schema":"https","addr":"flexworrksports.com/scure/","fqdn":"flexworrksports.com","domain":"flexworrksports.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"introduction_type":"scriptElement","is_inline":false,"md5":"3b62280ea57160baa008b67a54d5c289","sha1":"261b2ed0cac4005e065302456624e07bcc3146fe","sha256":"e79d17c06a97e8d185bc489675c71de07d89ce514254d4b3a54e01ec782d718d","sha512":"fc17c6fb5a728d3bb75779858f7c54b2cf3dcf55ec0f8490166f575c77f8ad7a061c1a80e69d9a5ec56fe08cb4820c45adfd33ee938673a5d0d30bcdd555a173","ssdeep":"","tlshash":"ef51ed48f8d3688d5647343d0fdfa00570baa607c91ede04ba2c62915fb8d3952fa9ec","size":2637,"data":"","first_seen":"2026-02-18T18:32:03.940385Z","last_seen":"2026-02-18T18:32:05.880507Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"eval":null,"write":[{"md5":"bb5c171099826b901e2add0da263f001","sha1":"79547291d51adbd387d0595776a2cfb7519e0f31","sha256":"2207ea433c0957cac8be2b30b247ecdb51ef082790fc0d584f26008307edeab4","sha512":"1645e15c7942d689365ebeb55d7a2494b4b0e2ad81eb2d7a012d489abeaeae9a984c1d6f00ab457e324fefaebb03b21c61c219d55493035e35d4e2de652af7b2","ssdeep":"","tlshash":"f85134497cd36c8d5657353c0fdfa00520baa607091ade447a1ca2925fb4e3992fe9dc","size":3113,"data":"","first_seen":"2026-02-18T18:32:03.968483Z","last_seen":"2026-02-18T18:32:05.882137Z","times_seen":2,"alerts":{"ids":null,"analyzer":null,"urlquery":null}}],"console":null},"http":[{"url":{"schema":"https","addr":"flexworrksports.com/scure/","fqdn":"flexworrksports.com","domain":"flexworrksports.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-18T18:31:41.099Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"flexworrksports.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 24 Jan 2026 10:54:40 GMT","end":"Fri, 24 Apr 2026 11:51:45 GMT"},"fingerprint":{"sha1":"FA:2A:2B:C1:3F:3D:ED:1B:3A:93:16:CA:4A:8F:13:8E:C5:CF:59:99","sha256":"A9:07:18:BB:21:A5:F1:1F:8D:96:30:67:DB:8A:AF:04:B2:57:E5:B5:0D:CB:69:23:BC:7F:D8:E4:58:E3:11:B0"}}},"request":{"raw":"GET /scure/ HTTP/1.1\r\nHost: flexworrksports.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 200 OK\r\ndate: Wed, 18 Feb 2026 18:31:41 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nlast-modified: Wed, 11 Feb 2026 19:13:05 GMT\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nstrict-transport-security: max-age=31536000\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=R2U9bhOhapnwkyAIezncPFjWnfBg2iExx%2FzAb%2FgiG3Ri%2BBa%2FqZ%2BFPOR3kTzDnomtLZNpi6JfFl3gaoflXXNwxOzkAdQO7WJVcKC1Az8xgHkDqn0%3D\"}]}\r\ncf-cache-status: DYNAMIC\r\ncontent-encoding: br\r\ncf-ray: 9cff9a51eabd11c5-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"200","status_text":"OK","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11187,"size_decoded":0,"mime_type":"text/html","magic":"JavaScript source, ASCII text, with very long lines (10605)","md5":"24d27173c26035317690c0bc8544b4e7","sha1":"5870b523297e50753985768ff5e5c4d54911ecfb","sha256":"b42931bcbbf7986c8fde53de56ae936ca1b8a233d472820c445dee4206e28cfe","sha512":"3f8023805ca15fdc2abee5f1928d931aa6eb4390f9400851f4167f8f24564a93a41e4d7ef3c4e602b7b50ab06a061fab1853f06391dde8bf59b16ff59d4e7fc0","ssdeep":"192:OzPyj2WZyTE8WqgGSeOy/ioqVFYb+f3abqfmRWdQ9fYe5hdzeAlB2dOCRx:OO6WZyTECQyapB6LB2/Rx","tlshash":"7b32e5b673881bb5a6440ae95258e21790f9d42e342525cdebf2b797f03da62fc1c370","first_seen":"2026-02-18T18:32:03.919215Z","last_seen":"2026-02-18T18:32:05.87352Z","times_seen":2,"resource_available":false,"data":null}},"time_used":49,"timings":{"blocked":-1,"dns":0,"connect":0,"send":0,"wait":49,"receive":0,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-18","alert":"Sinkholed","trigger":"flexworrksports.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"flexworrksports.com/favicon.ico","fqdn":"flexworrksports.com","domain":"flexworrksports.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":false,"resource_type":"img","requested_by":"https://flexworrksports.com/scure/","date":"2026-02-18T18:31:41.305Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"flexworrksports.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 24 Jan 2026 10:54:40 GMT","end":"Fri, 24 Apr 2026 11:51:45 GMT"},"fingerprint":{"sha1":"FA:2A:2B:C1:3F:3D:ED:1B:3A:93:16:CA:4A:8F:13:8E:C5:CF:59:99","sha256":"A9:07:18:BB:21:A5:F1:1F:8D:96:30:67:DB:8A:AF:04:B2:57:E5:B5:0D:CB:69:23:BC:7F:D8:E4:58:E3:11:B0"}}},"request":{"raw":"GET /favicon.ico HTTP/1.1\r\nHost: flexworrksports.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: image/avif,image/webp,*/*\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nReferer: https://flexworrksports.com/scure/\r\nSec-Fetch-Dest: image\r\nSec-Fetch-Mode: no-cors\r\nSec-Fetch-Site: same-origin\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/3 404 Not Found\r\ndate: Wed, 18 Feb 2026 18:31:41 GMT\r\ncontent-type: text/html\r\nserver: cloudflare\r\nvary: Accept-Encoding\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nage: 6\r\ncache-control: max-age=14400\r\ncf-cache-status: HIT\r\npriority: u=6,i=?0\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=X0BNK7iS7wuiVdyFQ3p0MlQVIyfHqhU%2FUueQweStY%2Be%2B8LC1C1T6SrDCrIhSds2ynFjFJGn5gPYtuP4fgoux4%2B4RStho45zI%2BXZS7nL%2Bao5HthQ%3D\"}]}\r\ncontent-encoding: br\r\ncf-ray: 9cff9a5339ceeff0-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nserver-timing: cfExtPri\r\n\r\n","headers":null,"cookies":null,"status_code":"404","status_text":"Not Found","fingerprints":[{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":58296,"size_decoded":0,"mime_type":"text/html","magic":"HTML document, ASCII text, with very long lines (56756)","md5":"cbb42513032d6c09e496731ac16c20a9","sha1":"c92f38a701aad58408451d24dd4c47b05f158cf0","sha256":"d189695b2f3bb92369881f2428fa861dca9d9a94c638d9bdc4e2fa747d6f315b","sha512":"3d76f1018afceaba7cbb4083f4a5b5758966ec2aa5d5c6b07d72361782809f7ed4bd34ed9e0c4154d01a2db7192155de8251e5a834dd90b8d9823d916e1b7285","ssdeep":"768:cHJYDDQHVZHIs91TXESJBjgBSp00yCqJ3Z+IYM3WiesRQiULO0bpD9tcNQEfdom2:cmDD6oeFUycwpk06hWp1b99c7VM","tlshash":"8443021803de40a2cd8978d9426f2f3d842a1863da1c94bd1f5b6df4ca0d8a4767f1e9","first_seen":"2024-11-25T13:26:01.204756Z","last_seen":"2026-06-21T23:47:03.95785Z","times_seen":12468,"resource_available":true,"data":null}},"time_used":38,"timings":{"blocked":0,"dns":0,"connect":0,"send":0,"wait":21,"receive":17,"ssl":0},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-18","alert":"Sinkholed","trigger":"flexworrksports.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}},{"url":{"schema":"https","addr":"flexworrksports.com/scure","fqdn":"flexworrksports.com","domain":"flexworrksports.com","tld":"com"},"ip":{"addr":"188.114.96.1","port":443,"asn":13335,"as":"CLOUDFLARENET","country":"","country_code":"zz"},"is_navigation_request":true,"resource_type":"document","requested_by":"","date":"2026-02-18T18:31:41.010Z","timestamp":0,"http_version":"","security_state":"secure","security_info":{"cipher_suite":"TLS_AES_128_GCM_SHA256","key_group_name":"x25519","signature_name":"ECDSA-P256-SHA256","protocol":"TLSv1.3","cert":{"subject":{"commonName":"flexworrksports.com","organization":""},"issuer":{"commonName":"WE1","organization":"Google Trust Services"},"validity":{"start":"Sat, 24 Jan 2026 10:54:40 GMT","end":"Fri, 24 Apr 2026 11:51:45 GMT"},"fingerprint":{"sha1":"FA:2A:2B:C1:3F:3D:ED:1B:3A:93:16:CA:4A:8F:13:8E:C5:CF:59:99","sha256":"A9:07:18:BB:21:A5:F1:1F:8D:96:30:67:DB:8A:AF:04:B2:57:E5:B5:0D:CB:69:23:BC:7F:D8:E4:58:E3:11:B0"}}},"request":{"raw":"GET /scure HTTP/1.1\r\nHost: flexworrksports.com\r\nUser-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0\r\nAccept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8\r\nAccept-Language: en-US,en;q=0.5\r\nAccept-Encoding: gzip, deflate, br\r\nDNT: 1\r\nConnection: keep-alive\r\nUpgrade-Insecure-Requests: 1\r\nSec-Fetch-Dest: document\r\nSec-Fetch-Mode: navigate\r\nSec-Fetch-Site: cross-site\r\nPragma: no-cache\r\nCache-Control: no-cache\r\n\r\n","headers":null,"cookies":null,"method":"GET"},"response":{"raw":"HTTP/2 301 Moved Permanently\r\ndate: Wed, 18 Feb 2026 18:31:41 GMT\r\ncontent-type: text/html\r\nlocation: https://flexworrksports.com/scure/\r\nserver: cloudflare\r\nstrict-transport-security: max-age=31536000\r\ncf-cache-status: DYNAMIC\r\nnel: {\"report_to\":\"cf-nel\",\"success_fraction\":0.0,\"max_age\":604800}\r\nreport-to: {\"group\":\"cf-nel\",\"max_age\":604800,\"endpoints\":[{\"url\":\"https://a.nel.cloudflare.com/report/v4?s=n%2BCoW%2F6IZjpFiipyVX%2Fhl8j2txmQToLY55j6%2BfbrYOkGR6D%2BSr2gSrW2qt7FgN2KH7MvUGk8bar%2Bz1nd6rPqYldm9J1K3P73hODD6e3W4Uhi8IE%3D\"}]}\r\ncf-ray: 9cff9a5189d711c5-ARN\r\nalt-svc: h3=\":443\"; ma=86400\r\nX-Firefox-Spdy: h2\r\n\r\n","headers":null,"cookies":null,"status_code":"301","status_text":"Moved Permanently","fingerprints":[{"name":"HSTS","description":"HTTP Strict Transport Security (HSTS) informs browsers that the site should only be accessed using HTTPS.","website":"https://www.rfc-editor.org/rfc/rfc6797#section-6.1","common_platform_enumeration":"","icon":"","categories":["Security"]},{"name":"Cloudflare","description":"Cloudflare is a web-infrastructure and website-security company, providing content-delivery-network services, DDoS mitigation, Internet security, and distributed domain-name-server services.","website":"https://www.cloudflare.com","common_platform_enumeration":"","icon":"CloudFlare.svg","categories":["CDN"]}],"data":{"size":11187,"size_decoded":0,"mime_type":"text/html","magic":"","md5":"d41d8cd98f00b204e9800998ecf8427e","sha1":"da39a3ee5e6b4b0d3255bfef95601890afd80709","sha256":"e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855","sha512":"cf83e1357eefb8bdf1542850d66d8007d620e4050b5715dc83f4a921d36ce9ce47d0d13c5d85f2b0ff8318d2877eec2f63b931bd47417a81a538327af927da3e","ssdeep":"","tlshash":"","first_seen":"0001-01-01T00:00:00Z","last_seen":"2026-06-22T01:29:48.472844Z","times_seen":16622693,"resource_available":true,"data":null}},"time_used":117,"timings":{"blocked":29,"dns":1,"connect":8,"send":0,"wait":55,"receive":0,"ssl":21},"alerts":{"ids":null,"analyzer":[{"sensor_name":"dns4eu","sensor_type":"DNS","title":"DNS4EU","description":"DNS4EU","scan_date":"2026-02-18","alert":"Sinkholed","trigger":"flexworrksports.com","verdict":"malicious","severity":"medium","comment":"","link":"https://www.joindns4.eu/","meta":null}],"urlquery":null}}]}