flikcover.com/index/index/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html
188.114.97.1 227 kB URL flikcover.com/index/index/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html
IP 188.114.97.1:0
Size 227 kB (226792 bytes)
Hash 35076dc539921c45cd11337a4fb44865
b898066efc40415b439e60311e2e48302b1b9956
c12ef5af5e5464e3ef4f632b569a3749196558ebae049130edbef46abf5d85b0
Analyzer Verdict Alert urlquery phishing Phishing - Amazon
OpenPhish phishing Amazon.com Inc.
Quad9 DNS malicious Sinkholed
GET /index/index/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html/index/login/index.html HTTP/1.1
Host: flikcover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Thu, 25 Apr 2024 03:37:59 GMT
content-type: text/html; charset=utf-8
set-cookie: sa0c19f20=6u3kgn5k9b01i5telcobg9chm0; path=/; HttpOnly
expires: Thu, 19 Nov 1981 08:52:00 GMT
pragma: no-cache
cache-control: no-cache,must-revalidate
location: /index/login/index.html
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IfD2BOzv3LDRoo2BcNXpnsoKlWdRUXS50IAHr2LswsHkGnIxEFEaXxS6xWsAMaJHjfVh1XpioLxLxBLWjpzuyG2iqXcDTPzAanokJCZ9F6RTkiWxaQehhqmstnJj%2Ft%2B1"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879b4c305962b518-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
flikcover.com/static/index/css/main.css
188.114.97.1 246 kB URL flikcover.com/static/index/css/main.css
IP 188.114.97.1:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 246 kB (246266 bytes)
Hash 62ff28c55f8159cc084f1c82f84c3b12
d0eb11a30cf87270f2d92401cf426ea3d805182a
cfe0e13115bf23dae63f17031ea3102c4efa5ceb7902f3dd7a4a5923f20fa05e
Analyzer Verdict Alert urlquery phishing Phishing - Amazon
OpenPhish phishing Amazon.com Inc.
Quad9 DNS malicious Sinkholed
GET /static/index/css/main.css HTTP/1.1
Host: flikcover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flikcover.com/index/login/index.html
Cookie: sa0c19f20=6u3kgn5k9b01i5telcobg9chm0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 03:38:00 GMT
content-type: text/css
last-modified: Thu, 19 Aug 2021 13:40:00 GMT
vary: Accept-Encoding
etag: W/"611e5f30-172b0"
expires: Thu, 25 Apr 2024 12:13:21 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 12279
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EjtfDHJfX1cUTlrAUdMFr3IJmXh4tAAfN2SVCYDKlI7%2BBiB8cm5Ok9il2sj%2Fw%2FQivkV23A3CTIF32TekY0cnfJ%2FWcMMcJbyT6A5w38moFfIWmvn23xqVHe7R8jZi%2BSJU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879b4c381c1d56c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
flikcover.com/static/index/css/common.css
188.114.97.1200 OK 226 kB URL GET HTTP/3 flikcover.com/static/index/css/common.css
IP 188.114.97.1:443
Requested by https://flikcover.com/index/login/index.html
Certificate IssuerLet's Encrypt
Subjectflikcover.com
FingerprintE1:5C:CF:64:D9:E9:F1:4A:E7:E0:AB:7C:D8:FF:A4:51:4D:38:4A:AE
ValidityWed, 17 Apr 2024 07:14:50 GMT - Tue, 16 Jul 2024 07:14:49 GMT
File type Unicode text, UTF-8 text, with very long lines (7033), with CRLF line terminators
Size 226 kB (225986 bytes)
Hash 81fde7918c34685880063fdd83b8de2d
7c7c9d1172c1016f6bcc5de3474d224ce832d752
44cfadf841e99b39ac309e388291436dd2750d29634901eb9e749a7e99ec7299
Analyzer Verdict Alert urlquery phishing Phishing - Amazon
OpenPhish phishing Amazon.com Inc.
Quad9 DNS malicious Sinkholed
GET /static/index/css/common.css HTTP/1.1
Host: flikcover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flikcover.com/index/login/index.html
Cookie: sa0c19f20=6u3kgn5k9b01i5telcobg9chm0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 25 Apr 2024 03:38:00 GMT
content-type: text/css
last-modified: Thu, 19 Aug 2021 14:00:20 GMT
vary: Accept-Encoding
etag: W/"611e63f4-4a04"
expires: Thu, 25 Apr 2024 06:19:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 33506
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PjxzOyj5gmxRX3y3RWpWfnyC%2F6Jkdl8wlT6pEGgxBvW2EhyZHsf370wy%2BmwN%2B1lJo2chHigbGlRi7TagT%2FQIt%2FmuihGTZar6EXpRFGVzF35AAEbDig0SZqThCDAImweY"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879b4c381c1f56c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
cdn.dcloud.net.cn/img/shadow-grey.png
106.54.228.253 136 B URL cdn.dcloud.net.cn/img/shadow-grey.png
IP 106.54.228.253:0
ASN #45090 Shenzhen Tencent Computer Systems Company Limited
File type PNG image data, 1 x 6, 4-bit colormap, non-interlaced
Hash 5a962adf74d92ae702467b3f47976547
36f74049375584e3fa69b5ef87e9572336ff9e7a
ad4ebea1c3496dd2924789ee009174a2c6289d1200e9811f458fd46f172d1d6f
GET /img/shadow-grey.png HTTP/1.1
Host: cdn.dcloud.net.cn
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flikcover.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 25 Apr 2024 03:38:05 GMT
Content-Type: image/png
Content-Length: 136
Last-Modified: Thu, 06 Jun 2019 06:42:07 GMT
Connection: close
ETag: "5cf8b5bf-88"
Expires: Thu, 25 Apr 2024 05:38:05 GMT
Cache-Control: max-age=7200
Set-Cookie: __uni__uid=rBEQg2Yp0B1ilgxqZi+JAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; domain=dcloud.net.cn; path=/; secure; httponly; samesite=none
Accept-Ranges: bytes
flikcover.com/static/jquery-3.5.0.min.js
188.114.97.1200 OK 90 kB URL GET HTTP/3 flikcover.com/static/jquery-3.5.0.min.js
IP 188.114.97.1:443
Requested by https://flikcover.com/index/login/index.html
Certificate IssuerLet's Encrypt
Subjectflikcover.com
FingerprintE1:5C:CF:64:D9:E9:F1:4A:E7:E0:AB:7C:D8:FF:A4:51:4D:38:4A:AE
ValidityWed, 17 Apr 2024 07:14:50 GMT - Tue, 16 Jul 2024 07:14:49 GMT
File type JavaScript source, ASCII text, with very long lines (65451)
Hash 12108007906290015100837a6a61e9f4
1d6ae46f2ffa213dede37a521b011ec1cd8d1ad3
c4dccdd9ae25b64078e0c73f273de94f8894d5c99e4741645ece29aeefc9c5a4
Analyzer Verdict Alert urlquery phishing Phishing - Amazon
OpenPhish phishing Amazon.com Inc.
Quad9 DNS malicious Sinkholed
GET /static/jquery-3.5.0.min.js HTTP/1.1
Host: flikcover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flikcover.com/index/login/index.html
Cookie: sa0c19f20=6u3kgn5k9b01i5telcobg9chm0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 03:38:00 GMT
content-type: application/javascript
last-modified: Mon, 27 Apr 2020 14:07:18 GMT
vary: Accept-Encoding
etag: W/"5ea6e716-15d95"
expires: Thu, 25 Apr 2024 06:19:33 GMT
cache-control: max-age=43200
strict-transport-security: max-age=31536000
cf-cache-status: HIT
age: 33506
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n0q1IfHORKjLjDwrnA8epbc1B1RQrchwoGWOEOndXN5Sv6rMI8pvZKq%2BB2lWyfm9qJzQ6%2BfR%2FJXYVnDaoWA85cNxiDyW68BOssu%2BTqafZCdjvE1jBQTkA%2ByPADc5CVTp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879b4c382c2056c5-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
flikcover.com/static/index/fonts/Rubik-BlackItalic.77c7f123.ttf
188.114.97.1200 OK 192 kB URL GET HTTP/3 flikcover.com/static/index/fonts/Rubik-BlackItalic.77c7f123.ttf
IP 188.114.97.1:443
Requested by https://flikcover.com/index/login/index.html
Certificate IssuerLet's Encrypt
Subjectflikcover.com
FingerprintE1:5C:CF:64:D9:E9:F1:4A:E7:E0:AB:7C:D8:FF:A4:51:4D:38:4A:AE
ValidityWed, 17 Apr 2024 07:14:50 GMT - Tue, 16 Jul 2024 07:14:49 GMT
File type TrueType Font data, 18 tables, 1st "GPOS", 15 names, Microsoft, language 0x409, Copyright (c) 2015 by Hubert & Fischer. All rights reserved.Rubik BlackItalicHubert&Fischer: Rub
Size 192 kB (192004 bytes)
Hash 77c7f123391595707a1d0690dddaa11e
3f77b9d3d8155511d94d72a410c80b3d18001cde
ce0e6de088497437824e571c7a0c38974f205a0bbb8b20ae5b309e419662f063
Analyzer Verdict Alert urlquery phishing Phishing - Amazon
OpenPhish phishing Amazon.com Inc.
Quad9 DNS malicious Sinkholed
GET /static/index/fonts/Rubik-BlackItalic.77c7f123.ttf HTTP/1.1
Host: flikcover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flikcover.com/static/index/css/common.css
Cookie: sa0c19f20=6u3kgn5k9b01i5telcobg9chm0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 25 Apr 2024 03:38:01 GMT
content-type: application/octet-stream
content-length: 192004
last-modified: Thu, 19 Aug 2021 13:45:30 GMT
etag: "611e607a-2ee04"
strict-transport-security: max-age=31536000
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HJqCL2Tw95rN1i7ux%2FPr7qf4geU0s01r4XufrNFVH4TL0Bukxn9TH0FPSlr2YQdm3xikxg09Xt83BMl2nM0mPTf98%2BCpcfqBRg%2FKeb0rMj4CncznOok4dpxpicNj47Bq"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 879b4c389c5e56c5-OSL
alt-svc: h3=":443"; ma=86400
flikcover.com/index/login/index.html
188.114.97.1200 OK 5.7 kB URL User Request GET HTTP/2 flikcover.com/index/login/index.html
IP 188.114.97.1:443
Certificate IssuerLet's Encrypt
Subjectflikcover.com
FingerprintE1:5C:CF:64:D9:E9:F1:4A:E7:E0:AB:7C:D8:FF:A4:51:4D:38:4A:AE
ValidityWed, 17 Apr 2024 07:14:50 GMT - Tue, 16 Jul 2024 07:14:49 GMT
File type JavaScript source, Unicode text, UTF-8 text, with very long lines (5827), with no line terminators
Hash 3553de0e77749cb0f05f44fcd9733622
7cef9bf8ec773ae60384362361e12563bb9d6f62
caccc3e3d6580aada7a55d498c852cd446afeeb7fc566ddad19d4f7da7bfbb1c
Analyzer Verdict Alert urlquery phishing Phishing - Amazon
OpenPhish phishing Amazon.com Inc.
Quad9 DNS malicious Sinkholed
GET /index/login/index.html HTTP/1.1
Host: flikcover.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: sa0c19f20=6u3kgn5k9b01i5telcobg9chm0
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 25 Apr 2024 03:38:00 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B8fmKFESUC9wwFr6UnA0FD%2BkbM4bILPTvwMIUDH%2BMpBslcmv%2BvK2mIAiLW9seoGPz98G%2FWP5Ha3tS%2BSFfVigf%2FUraO1W7zMUJadQXu9aHCJy7mKWI5OMl1GJH5zGENrG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 879b4c354aa0b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2