200 OK 26 kB IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type HTML document, ASCII text, with very long lines (26095), with no line terminators
Hash 347a2c2bec8618566e2c9d42978dc52a
d080bd783678a975744771c2b2904fc96a66ed74
92e8b3af796d8b07482c45ed34565b91ecc29730fdf7d1bb37c22d3dd6f1dcfb
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST / HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://beastlix.com/?__cf_chl_tk=fSXyhkm3Sfe12DoQnu3pOu8HeneOEo9oelfZFfTKNE4-1751406275-1.0.1.1-ZX54V01.ToKbaBpPEwEybMdfZe0fMAT1duVXa.r1j8M
Content-Type: application/x-www-form-urlencoded
Content-Length: 3608
Origin: https://beastlix.com
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Sec-Fetch-User: ?1
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: text/html; charset=utf-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cUaXEw8xVe3CGMnnQFujlVhpHD4ULRE%2BujA4jdxtTB%2FZ8KUOK%2BgzJTIR9KzMb645Cud7OfRCP1PaTvUXpkxa%2BUR3J3VwNSHzupG5ufoLkTBLDJDUcxI8VcpajkJz5%2F8%3D"}],"group":"cf-nel","max_age":604800}
vary: Accept-Encoding, RSC, Next-Router-State-Tree, Next-Router-Prefetch, Accept-Encoding
x-powered-by: Next.js
cache-control: private, no-cache, no-store, max-age=0, must-revalidate
cf-cache-status: DYNAMIC
content-encoding: br
cf-ray: 9589164cc94a5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1294&min_rtt=0&rtt_var=749&sent=146&recv=104&lost=0&retrans=0&sent_bytes=89995&recv_bytes=18278&delivery_rate=13193834&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=23967&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17173&inflight_dur=91&x=44"
GET beastlix.com/_next/static/chunks/8003-35d6c4e938d60f65.js
200 OK 7.1 kB URL GET beastlix.com/_next/static/chunks/8003-35d6c4e938d60f65.js
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type JavaScript source, ASCII text, with very long lines (7119), with no line terminators
Hash 8014900ea0b06de9aba6c034a95c2e68
f5f9791bc97c1a2973734e6999868eb15e2096e1
bb2ba96a789f1f0c6144a6d6ddba4a09c139b4060a1c9e97af56538d29415c2d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_next/static/chunks/8003-35d6c4e938d60f65.js HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: application/javascript; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kiWMWZcXNRLBYzwB9YQdg%2FZxgcIVwbQESmyoh8BbSAF0FJ5y7Z2x6%2FCBdkOFMtJs%2FuvFKsXxB%2B8fdZ2ihno0cmB9Iy3egcGI50QOMCnotc6JNfWLTfE42db7N44n4jk%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 24 Jun 2025 14:33:42 GMT
etag: W/"1bcf-197a25bea06"
vary: Accept-Encoding
content-encoding: gzip
x-cast-cache: HIT
age: 445
cf-cache-status: HIT
cf-ray: 9589164ea9845690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1699&min_rtt=0&rtt_var=1124&sent=241&recv=138&lost=0&retrans=0&sent_bytes=158200&recv_bytes=35539&delivery_rate=13193834&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=23967&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17346&inflight_dur=140&x=44"
GET beastlix.com/new/landing/block1BgM.webp
200 OK 30 kB URL GET beastlix.com/new/landing/block1BgM.webp
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type RIFF (little-endian) data, Web/P image
Hash f1d26004f83735bd2521a49722ea6c06
6eae79b2d1c8a1539bee33abae3ee09825468b54
7a5783cd7895fd743a8efa30ee7de9402deedc294d8eeb71ea22f676b787ea10
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /new/landing/block1BgM.webp HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: image/webp
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NViVkVoHH0aBvFWsEtlo7ca45b8c2VelT%2BzG5s6kkftxiiu69PrE2xvmBvzl1qRa6HyCOJRysfU1smWRAuQcMLAHGUsqeJj0BU%2BhZU1ebhsCFn6vx1kAUCHe%2BzS1eIg%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Tue, 07 Jan 2025 22:31:13 GMT
etag: W/"772e-19442e4b771"
x-cast-cache: HIT
content-encoding: gzip
cf-cache-status: REVALIDATED
vary: accept-encoding
cf-ray: 9589164ec9955690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1215&min_rtt=0&rtt_var=400&sent=471&recv=164&lost=0&retrans=0&sent_bytes=404844&recv_bytes=42903&delivery_rate=18139738&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=31652&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17438&inflight_dur=175&x=44"
GET beastlix.com/fonts/ttnorms/TTNorms-Regular.woff
200 OK 31 kB URL GET beastlix.com/fonts/ttnorms/TTNorms-Regular.woff
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type Web Open Font Format, TrueType, length 31112, version 0.0
Hash 33f150c6ac81219f18b55864e087dd12
7e3f9fee0b08c64fd733aaf64029c2947130b9a3
0d9f772dcc9cd484c98410488a12c0865b31531a79e8e9c1926945e7b5e66a95
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /fonts/ttnorms/TTNorms-Regular.woff HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/fonts/ttnorms/stylesheet.css
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: font/woff
content-length: 31112
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Unk6Z98wy4Mlx5dGP996C7JtjKaDJEG9P5pz6ejR2JA9zsV8%2FkdVD%2B5HX4qc2X%2FhflzCGV2n%2BipQJtf9Swu30EinWysES6sphyVHw0DqPiEl3B72Pte4jVxrksPzx2I%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Mon, 06 Jan 2025 11:28:08 GMT
etag: W/"7988-1943b5f4abd"
x-cast-cache: HIT
accept-ranges: bytes
cf-cache-status: REVALIDATED
cf-ray: 95891650f9ca5690-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1005&min_rtt=0&rtt_var=493&sent=1053&recv=225&lost=2&retrans=2&sent_bytes=1052765&recv_bytes=50562&delivery_rate=27670830&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=28396&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17811&inflight_dur=233&x=44"
GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1
200 OK 86 B URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/cmg/1
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/j24jd/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
FingerprintFC:98:AC:45:6F:F6:41:18:0B:96:F4:70:AB:D7:E3:D4:3D:B4:66:71
ValidityFri, 27 Jun 2025 18:18:48 GMT - Thu, 25 Sep 2025 19:18:44 GMT
File type PNG image data, 2 x 2, 8-bit/color RGBA, non-interlaced
Hash 70c202196187ab3c11b4e094c20c6de1
9c52b959e74aee9d79cbc9f35d1f9f65a3b8c863
6255b9231d09ebe6aa1ac19ba46bdd81f3df58989c9ef2e11d6cd6e2e7b21643
GET /cdn-cgi/challenge-platform/h/b/cmg/1 HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/j24jd/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:35 GMT
content-type: image/png
content-length: 86
priority: u=4,i=?0
server: cloudflare
cf-ray: 958915e8bf830b06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET beastlix.com/fonts/ttnorms/TTNorms-Bold.woff
200 OK 31 kB URL GET beastlix.com/fonts/ttnorms/TTNorms-Bold.woff
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type Web Open Font Format, TrueType, length 31356, version 0.0
Hash 1009f03324315eb8bb66d610775afe82
0f23bd1f8f9cefd55d70e8adc0630cef4c17ca52
9e710930d6b03e68bdc6ba959f0d2c887130bfb798396be23a681052a65dac08
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /fonts/ttnorms/TTNorms-Bold.woff HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/fonts/ttnorms/stylesheet.css
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: font/woff
content-length: 31356
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cg2z%2BwOGh1OwgRt83yhVAWVYHRNgoyBua7g4nKz7RsUIDkvcQb0AwfiNmH0asz%2BCTyzx8SXvFRK63mbL8JNCMlstliHP6f3VRXqc1miwXyjx5rx%2Fj2sczHZBMVwrUF4%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Mon, 06 Jan 2025 11:28:08 GMT
etag: W/"7a7c-1943b5f4ab5"
x-cast-cache: HIT
accept-ranges: bytes
cf-cache-status: REVALIDATED
cf-ray: 9589165109cc5690-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=822&min_rtt=0&rtt_var=397&sent=993&recv=222&lost=2&retrans=2&sent_bytes=983586&recv_bytes=50419&delivery_rate=27670830&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=28396&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17771&inflight_dur=225&x=44"
GET beastlix.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=958915e35c9e56b1
200 OK 119 kB URL GET beastlix.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=958915e35c9e56b1
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 119 kB (119151 bytes)
Hash a184e000f21418ed39630472a7942e22
eceafd6f8ff9a1be435c9ca317188d83566882a1
869a4d4792f084c807a2996e57556e1a9938d34908db8f8c3070a2936f7756ee
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_page/v1?ray=958915e35c9e56b1 HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://beastlix.com/?__cf_chl_rt_tk=fSXyhkm3Sfe12DoQnu3pOu8HeneOEo9oelfZFfTKNE4-1751406275-1.0.1.1-ZX54V01.ToKbaBpPEwEybMdfZe0fMAT1duVXa.r1j8M
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:35 GMT
content-type: application/javascript; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=h1yp3mM9eEY3VU4b7%2BCj%2FM81LybhQ6PQq%2FK5Zu1EBHcJIp2ZGUQ1qXnvaVuKy7L2%2FLecq5fKejjm8%2FEDH84ml3%2BW8lamXGItlcV%2Bn3wVMg0tb9SZ4bPjtX%2Bzw8Sq690%3D"}],"group":"cf-nel","max_age":604800}
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
content-encoding: br
cf-ray: 958915e42cb75690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=3463&min_rtt=658&rtt_var=2653&sent=54&recv=71&lost=0&retrans=0&sent_bytes=6017&recv_bytes=4571&delivery_rate=534973&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=15497&unsent_bytes=0&cid=d29e2ccc759545a4&ts=310&inflight_dur=29&x=44"
GET beastlix.com/new/landing/block5Bg.webp
200 OK 54 kB URL GET beastlix.com/new/landing/block5Bg.webp
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type RIFF (little-endian) data, Web/P image
Hash c6d0567946b20d3f91228186c8425ade
90e84b04c251dbbe1cfd12cd2220f07beed207f2
5782471d28353cb1ae76e0d8463801d81bef491501aa62f3146004df0fc8ede4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /new/landing/block5Bg.webp HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: image/webp
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v0IjFl0AkxdkDW4%2B6dFrPHOMR1DofXuCRld8U8H5Wsvh1tiMWa7GN0VLHIxiLlm8VEqBpOAkRCF6sZUwZ9ji5hD9jEiazROX3ZnX%2FjqNv%2B%2BmVWC6cNInArymXj6BIOI%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Tue, 07 Jan 2025 22:31:13 GMT
etag: W/"d128-19442e4b771"
x-cast-cache: HIT
content-encoding: gzip
cf-cache-status: REVALIDATED
vary: accept-encoding
cf-ray: 9589164ed99e5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1765&min_rtt=0&rtt_var=851&sent=722&recv=180&lost=0&retrans=0&sent_bytes=686211&recv_bytes=43673&delivery_rate=18139738&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=38107&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17471&inflight_dur=199&x=44"
GET beastlix.com/fonts/source-sans-3/stylesheet.css
200 OK 656 B URL GET beastlix.com/fonts/source-sans-3/stylesheet.css
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
Hash 6ce52493af310d12e72f2ad2530edff1
b63019c9de65d20c5bd68f2506ebc6945d93610c
90f72aaf12432622c732eb030a37c0d97b80368c13bb14f1184ff06332d3b868
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /fonts/source-sans-3/stylesheet.css HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/_next/static/css/f89cf37e5720cb55.css
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: text/css; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Fnn8%2Bt2owydv3dJ8K%2FygW6QTO7L12h37HILY%2FdN3e8CzfVQq93JhhtNcaWMJ7FUNr2OGpJVjdBqLnqYjDm2QWvLLHV0GlwhxAj8Xt5OD%2BAxqV%2Bc8s%2BS%2FpmCEFyUhebY%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Mon, 06 Jan 2025 11:28:08 GMT
etag: W/"290-1943b5f4ab5"
vary: Accept-Encoding
x-cast-cache: HIT
content-encoding: gzip
cf-cache-status: REVALIDATED
cf-ray: 9589165029be5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=761&min_rtt=0&rtt_var=499&sent=984&recv=216&lost=2&retrans=2&sent_bytes=979605&recv_bytes=47443&delivery_rate=27670830&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=28396&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17675&inflight_dur=222&x=44"
GET beastlix.com/_next/static/css/f89cf37e5720cb55.css
200 OK 650 B URL GET beastlix.com/_next/static/css/f89cf37e5720cb55.css
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type ASCII text, with very long lines (650), with no line terminators
Hash 8941179a0958254af7b2b3c49420d795
21d5e6c630b1c669d1678081d2c2479b5f9836ac
c6076ab0276d8e1c5227243e112c7703fd9f873a548ab185c1d0db493b7ed602
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_next/static/css/f89cf37e5720cb55.css HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: text/css; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b9xk97IYdcD2zSLWBnA1Ef6Z1TwN6hub5WLfjLTbTCt1ZJeMhSf%2BF3cUo2Yv%2BxOKzCHparm38VyxrY%2BJS1BcjN9%2Bbio2wvV09kS0I6Q8cc1ghY6V08eiP0wRrhYE5YM%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 24 Jun 2025 14:33:42 GMT
etag: W/"28a-197a25bea0a"
vary: Accept-Encoding
x-cast-cache: HIT
content-encoding: gzip
age: 445
cf-cache-status: HIT
cf-ray: 9589164e89785690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1724&min_rtt=0&rtt_var=1050&sent=167&recv=118&lost=0&retrans=0&sent_bytes=98323&recv_bytes=25049&delivery_rate=13193834&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=23967&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17326&inflight_dur=124&x=44"
GET beastlix.com/_next/static/chunks/app/not-found-7e7b0b0e9b8f6570.js
200 OK 822 B URL GET beastlix.com/_next/static/chunks/app/not-found-7e7b0b0e9b8f6570.js
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type JavaScript source, ASCII text, with very long lines (822), with no line terminators
Hash 2f06c2493bc081c4707fc2a5550cac9e
1cc684e94cf0e085930adefddbe86e95d19e8812
c483c4dab60c2392af4262eab448f856bad96b430e9fa6ac6bc7babbf05d6d40
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_next/static/chunks/app/not-found-7e7b0b0e9b8f6570.js HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: application/javascript; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aHxh6MkZN099bbDuqNccDSXBQIZLu5rFjnOjaSIvjPeLyt%2BkEfUQ0l%2BKH6a8eNonvb%2BOtbkAJqKqv4eiWJtOqFqGHM8WMozFwa9yjU8XbTygq1ruwcMDE%2FaLCVATSQI%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 24 Jun 2025 14:33:42 GMT
etag: W/"336-197a25bea02"
vary: Accept-Encoding
x-cast-cache: HIT
content-encoding: gzip
age: 445
cf-cache-status: HIT
cf-ray: 9589164ea9895690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1598&min_rtt=0&rtt_var=1044&sent=261&recv=139&lost=0&retrans=0&sent_bytes=182167&recv_bytes=35585&delivery_rate=13193834&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=23967&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17347&inflight_dur=143&x=44"
GET beastlix.com/fbq.js
200 OK 408 B IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
Hash 0b834c87557376668b3c3fde729a8db5
872448d973ce02e75d52b31641d961601167d04c
cc63b490224b081fc3bef6a696dc3ecbe7ea7bd45df00c8a53cfe304e7bd5469
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /fbq.js HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: application/javascript; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DGJW6iTiiqeblflLG1kbveEO%2BykLIxAFoEV2YuMg8%2FrH8YhJpAxE2gfm2gpWr3nPpLklnpAHZ%2FNLDICSGuSWlm%2Bc7XFSs0kV%2BWMdESR6IGSrOtTRlyUu%2Fj7Qkox1wQY%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Mon, 06 Jan 2025 11:28:08 GMT
etag: W/"198-1943b5f4aa9"
vary: Accept-Encoding
x-cast-cache: HIT
content-encoding: gzip
cf-cache-status: REVALIDATED
cf-ray: 9589164eb98e5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1255&min_rtt=0&rtt_var=428&sent=468&recv=163&lost=0&retrans=0&sent_bytes=402543&recv_bytes=42856&delivery_rate=18139738&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=31652&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17433&inflight_dur=173&x=44"
403 Forbidden 7.1 kB IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type HTML document, ASCII text, with very long lines (7071), with no line terminators
Hash f3d36f838924f1592f716ec76e1ec740
8ed4f657fb7529d14c1942737f1f9550bab45169
9e90618e468d1c505997474bdd3b2d906bed10ebdf80866940d9b9b4a22fe698
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Tue, 01 Jul 2025 21:44:34 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cf-mitigated: challenge
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ahoBKBRVw6yHJKP2zMoo8Q3Z1HfePP62G%2BIkTc4aFVAnfc36s0Et7O1g4KoVf9ZBEDNpuu3w%2FdMtRjDZh9W7%2BE8q6RcEGfbs3SNbbd2stwTiyRsPMOo7iYY22iKgnak%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 958915e21b1156b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: chlray;desc="958915e21b1156b1", cfL4;desc="?proto=TCP&rtt=512&min_rtt=477&rtt_var=121&sent=7&recv=10&lost=0&retrans=0&sent_bytes=3203&recv_bytes=1123&delivery_rate=7133004&cwnd=253&unsent_bytes=0&cid=d67f863ae7e6a55c&ts=65&x=0"
X-Firefox-Spdy: h2
403 Forbidden 6.6 kB IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type HTML document, ASCII text, with very long lines (6602), with no line terminators
Hash 33d19d41abd4f01f9bb3ee124ece00ee
4cf240a8430589387371a0f9348e0bcf391ec602
31d43b3e8a635269a30185a57fbbedbd5919d2cf7808eacc8a82a9a8919d8acf
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
date: Tue, 01 Jul 2025 21:44:35 GMT
content-type: text/html; charset=UTF-8
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cf-mitigated: challenge
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Full-Version, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: same-origin
origin-agent-cluster: ?1
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
expires: Thu, 01 Jan 1970 00:00:01 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Cq%2Fdu9WqqzsYD8cPOPBgJR1kvW9Wo%2BZEeVAG6pIPi%2BErto%2FgAWEKLfIQ63r0btiP%2BpgnmWKkW0uDTv%2B4LVFvK6bML5fYeADg4ZhCsp3WhT7fxm%2BPEHIyG3fy%2BRpMmWw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 958915e35c9e56b1-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: chlray;desc="958915e35c9e56b1", cfL4;desc="?proto=TCP&rtt=3443&min_rtt=459&rtt_var=5953&sent=14&recv=12&lost=0&retrans=0&sent_bytes=9411&recv_bytes=1190&delivery_rate=7133004&cwnd=253&unsent_bytes=0&cid=d67f863ae7e6a55c&ts=255&x=0"
X-Firefox-Spdy: h2
GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/d/958915e7fee90b06/1751406276427/Rm2IzT1ziNiwybJ
200 OK 188 B URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/d/958915e7fee90b06/1751406276427/Rm2IzT1ziNiwybJ
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/j24jd/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
FingerprintFC:98:AC:45:6F:F6:41:18:0B:96:F4:70:AB:D7:E3:D4:3D:B4:66:71
ValidityFri, 27 Jun 2025 18:18:48 GMT - Thu, 25 Sep 2025 19:18:44 GMT
File type PNG image data, 1 x 44, 8-bit/color RGBA, non-interlaced
Hash a4646f219bfb301532cd8032f215a307
9b6622a7665329405b609bff6cbc56fb685e7e6f
a252ebdd46318589cbf276d58c1db2b0313e0906bc948331ebf035e1f763a5a8
GET /cdn-cgi/challenge-platform/h/b/d/958915e7fee90b06/1751406276427/Rm2IzT1ziNiwybJ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/j24jd/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:39 GMT
content-type: image/png
content-length: 188
priority: u=4,i=?0
server: cloudflare
cf-ray: 958915ff3d290b06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET beastlix.com/twq.js
200 OK 308 B IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
Hash 7f4d9e824f13f7d27acdc868f36f7208
125a712d37aefe5d3e52ce2ae8986e109eb473de
d6768cdba372d919e6d9322bf3cf3a0dfe427d86293aaf16f23d096028a00a1a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /twq.js HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: application/javascript; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EJ%2BngHqMba0oixWw%2B2OHLKXT69mVgdedankv%2B3g%2FCI5218nhJi6Io9gdfrBsm2XNEJCGjl8ttNZSZo7F1YoNHJNEuYJILzg0Tx9w5z7RSlMCBZyzjCc7WfPGBtQ0BLE%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Mon, 06 Jan 2025 11:28:08 GMT
etag: W/"134-1943b5f4b05"
vary: Accept-Encoding
x-cast-cache: HIT
content-encoding: gzip
cf-cache-status: REVALIDATED
cf-ray: 9589164eb9915690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1026&min_rtt=0&rtt_var=544&sent=499&recv=166&lost=0&retrans=0&sent_bytes=436623&recv_bytes=42997&delivery_rate=18139738&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=31652&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17450&inflight_dur=178&x=44"
GET beastlix.com/new/landing/block2_2.webp
200 OK 60 kB URL GET beastlix.com/new/landing/block2_2.webp
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type RIFF (little-endian) data, Web/P image
Hash e84373a6466299fa094ba5363b7b5611
b664588840cddc484127d918b9e723a7150ae1fd
e40b65c3cb0a0765e299a82e05a7b5e093eea9997af4d8f09338efb2e84a2ede
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /new/landing/block2_2.webp HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: image/webp
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kv4LQlDKxQzBLmaGTc1QlcHDsSCb7gRY%2B8cK%2BhLo26Emfq%2FNU4WrrXAhYRdkOuKtxjRiHUvtflvsccoVa1nsorMAKrqchPWdcwXRs03ZlAlS5%2FMWj7aEorfhhkl0r9c%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Tue, 07 Jan 2025 22:31:13 GMT
etag: W/"e896-19442e4b771"
x-cast-cache: HIT
content-encoding: gzip
cf-cache-status: REVALIDATED
vary: accept-encoding
cf-ray: 9589164ec9965690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=945&min_rtt=0&rtt_var=464&sent=580&recv=169&lost=0&retrans=0&sent_bytes=531579&recv_bytes=43145&delivery_rate=18139738&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=31652&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17457&inflight_dur=185&x=44"
GET beastlix.com/fonts/ttnorms/stylesheet.css
200 OK 7.0 kB URL GET beastlix.com/fonts/ttnorms/stylesheet.css
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
Hash 13a30e1d1d98980f8d05fd08ec50bb35
6ea5a517edd970ae8f3ac4d194c27d6bf5ff5433
474eb22e42e75ae5cd195e8b724c0c35ac1f40bb1b6cedb21e7e7f290aa9792c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /fonts/ttnorms/stylesheet.css HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/_next/static/css/f89cf37e5720cb55.css
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: text/css; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BGFiPSYW6EaJoyHQh0m2eyiJsjRWBzIxXrqDBRhroeJsVbIObYN%2FmeH9xDswIP5ObMBSG7oYPLjeRUp8g%2BbmqAumXEuesCqQ1rKnhNZrTM4KIlj1D1prmHG6rVuX57I%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Mon, 06 Jan 2025 11:28:08 GMT
etag: W/"1b47-1943b5f4abd"
vary: Accept-Encoding
content-encoding: gzip
x-cast-cache: HIT
cf-cache-status: REVALIDATED
cf-ray: 9589165029bf5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=771&min_rtt=0&rtt_var=394&sent=987&recv=217&lost=2&retrans=2&sent_bytes=981940&recv_bytes=47488&delivery_rate=27670830&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=28396&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17683&inflight_dur=224&x=44"
GET beastlix.com/_next/static/css/317691348e35dd2f.css
200 OK 2.1 kB URL GET beastlix.com/_next/static/css/317691348e35dd2f.css
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type ASCII text, with very long lines (2131), with no line terminators
Hash c66423fb88d7272cc42515b5c255800c
622df8403db965331f0108ad5e532c6a1831fd1c
28de71941d77d94d371ac216119d39292e7a92b5baf7c36feede5a4db9cc4437
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_next/static/css/317691348e35dd2f.css HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: text/css; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=a87OGkfTLu8R9gIJpQUb4%2FLIdw18fjLZcHVMNnJ3VVIdadpvNOeX%2Bax4gvacdVwjkyVZFVC7POLY6aU75AUpCSf9i%2F%2Bc49bwsIhjWW21OBQr6Jj5rwVT703jq2XxaMY%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 24 Jun 2025 14:33:42 GMT
etag: W/"853-197a25bea0a"
vary: Accept-Encoding
content-encoding: gzip
x-cast-cache: HIT
age: 445
cf-cache-status: HIT
cf-ray: 9589164e897b5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1624&min_rtt=0&rtt_var=987&sent=171&recv=121&lost=0&retrans=0&sent_bytes=99477&recv_bytes=26378&delivery_rate=13193834&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=23967&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17328&inflight_dur=125&x=44"
GET beastlix.com/_next/static/chunks/webpack-bf3547d4acc07ddd.js
200 OK 4.1 kB URL GET beastlix.com/_next/static/chunks/webpack-bf3547d4acc07ddd.js
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type JavaScript source, ASCII text, with very long lines (4146), with no line terminators
Hash 7e356438070917dfde08ed50a6cf0994
2d00e2a03e808a8cb789327ca64e1ce6a5a3a62e
d7b34a7c2c9ba7bb7a275de7e347a02b2d78e2a866be1a5606cb8df0930fd100
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_next/static/chunks/webpack-bf3547d4acc07ddd.js HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: application/javascript; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=faqY1weekz9gNi4MWTBIO5BbmWxF%2BH7RfD720eZgFg2ymPctBqXBqVRItcRdwkWOluXWIQ98ld2oPq8naJ%2Fxc%2BOkVCia%2B3xZovJeYUCAg3SQektex8k5LFKSui8rs%2Fo%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 24 Jun 2025 14:33:42 GMT
etag: W/"1032-197a25bea06"
vary: Accept-Encoding
content-encoding: gzip
x-cast-cache: HIT
age: 445
cf-cache-status: HIT
cf-ray: 9589164e99805690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1699&min_rtt=0&rtt_var=1124&sent=240&recv=136&lost=0&retrans=0&sent_bytes=158173&recv_bytes=33635&delivery_rate=13193834&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=23967&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17345&inflight_dur=140&x=44"
GET beastlix.com/_next/static/chunks/main-app-df523c8931f70c0a.js
200 OK 464 B URL GET beastlix.com/_next/static/chunks/main-app-df523c8931f70c0a.js
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type ASCII text, with very long lines (464), with no line terminators
Hash 780f1f062143f470ccc751e8e9d0ba05
c9deba27d87d3e1b411b741a1d7249479fe500b5
82b916c2ff6e9ac8cdc115f596700aff44c67c4cb3fcae2c6dad80a6baab40fa
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_next/static/chunks/main-app-df523c8931f70c0a.js HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: application/javascript; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lSLOZHEATcAwe8AXc%2FGimAW%2B%2F1GkdC2kd5MNBlbjC9DABpwrRrDOPjP2AfZxDxyqyGFYN%2Bt32wiUTk6ZYmXrXGuPR2RLJB6Ilk4u2U8yzHBx%2FFHdLuzm5t2gAp4u3lo%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 24 Jun 2025 14:33:42 GMT
etag: W/"1d0-197a25bea02"
vary: Accept-Encoding
x-cast-cache: HIT
content-encoding: gzip
age: 445
cf-cache-status: HIT
cf-ray: 9589164ea9835690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1924&min_rtt=0&rtt_var=1286&sent=225&recv=134&lost=0&retrans=0&sent_bytes=141813&recv_bytes=33546&delivery_rate=13193834&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=23967&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17343&inflight_dur=138&x=44"
GET beastlix.com/_next/static/chunks/app/(landing)/page-1e1e95bb992002f2.js
200 OK 19 kB URL GET beastlix.com/_next/static/chunks/app/(landing)/page-1e1e95bb992002f2.js
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type JavaScript source, ASCII text, with very long lines (19255), with no line terminators
Hash 00f581ab6b3ba4d53e971b431f3d56e3
fae5088e4b4fd764dde98a05b5f28a70caef25f5
9453d067eb2e0b36c16c90060524bb0ccaed5aaeff960fe196c16383c63604ed
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_next/static/chunks/app/(landing)/page-1e1e95bb992002f2.js HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: application/javascript; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WMOx6tmDd09qNNkpKldKD6UkEwo%2F4iqyc9aj9RMEvDYxOk5BV6dxuQVNxd%2Buo4h%2FRe9faRLxCvlqFJDu%2Fs80VzFEgza42LDqzpP%2BWBicbQzylUyK%2FSZd8iLxdeNg9eQ%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 24 Jun 2025 14:33:42 GMT
etag: W/"4b37-197a25bea02"
vary: Accept-Encoding
content-encoding: gzip
x-cast-cache: HIT
age: 445
cf-cache-status: HIT
cf-ray: 9589164eb98d5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=894&min_rtt=0&rtt_var=849&sent=368&recv=150&lost=0&retrans=0&sent_bytes=292262&recv_bytes=39172&delivery_rate=18139738&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=30234&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17360&inflight_dur=151&x=44"
GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/958915e7fee90b06/1751406276442/9b3e7d03b1abe730b4d012cd99e4de2b6db9c37a2129e42fd1711ac75bfd064a/HjPFFVKnsBNa5Co
401 Unauthorized 1 B URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/pat/958915e7fee90b06/1751406276442/9b3e7d03b1abe730b4d012cd99e4de2b6db9c37a2129e42fd1711ac75bfd064a/HjPFFVKnsBNa5Co
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/j24jd/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
FingerprintFC:98:AC:45:6F:F6:41:18:0B:96:F4:70:AB:D7:E3:D4:3D:B4:66:71
ValidityFri, 27 Jun 2025 18:18:48 GMT - Thu, 25 Sep 2025 19:18:44 GMT
File type very short file (no magic)
Hash ff44570aca8241914870afbc310cdb85
58668e7669fd564d99db5d581fcdb6a5618440b5
6da43b944e494e885e69af021f93c6d9331c78aa228084711429160a5bbd15b5
GET /cdn-cgi/challenge-platform/h/b/pat/958915e7fee90b06/1751406276442/9b3e7d03b1abe730b4d012cd99e4de2b6db9c37a2129e42fd1711ac75bfd064a/HjPFFVKnsBNa5Co HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/j24jd/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 401 Unauthorized
date: Tue, 01 Jul 2025 21:44:40 GMT
content-type: text/plain; charset=utf-8
content-length: 1
www-authenticate: PrivateToken challenge="AAIAGXBhdC1pc3N1ZXIuY2xvdWRmbGFyZS5jb20gmz59A7Gr5zC00BLNmeTeK225w3ohKeQv0XEax1v9BkoAGWNoYWxsZW5nZXMuY2xvdWRmbGFyZS5jb20=", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAscjm_UO_k901rNdCKgLw5bvI4i6M_jDNCIXpfs2LRbtxwLOrUyplqVvML_hVlB5tIDMuj0ihhaOFHose-Y0_UjQnNUGE_vol46VvGgscTMtTjU4xINriap8AMTIygvljEBt6my-nBwkUGhY3U9v5iKC-eWR5bTfvrqFsuIVxafkSfhHqDXB4KLGNjvOOV71GGJ9x4yxA-C2OcULZ1uDDKuvAaMhuiWdF6OzSTXruP9yPg1vmuteavOW1re0YDbCbtK16PhHdSzWym7v_FrvId-2zf26j50FlTd_vl_DcKNDVCgWDoU0uX3cU6V3rSQoVXREEqPr-2ywSGru8ZuXRoQIDAQAB", max-age=20, PrivateToken challenge="AAIAHXNhdC5wYXQtaXNzdWVyLmNsb3VkZmxhcmUuY29tIJs-fQOxq-cwtNASzZnk3ittucN6ISnkL9FxGsdb_QZKABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEAsLS4HBnLGydwK-bLQGRCaoyMsrXBRrDgQVmxS06j3UF0nYSd6GdTGCKIu1WV60eg-tJtTttfEVq7wHVQf4vzjYBidmCh88ebzxKv2GB6PESSodf5MsEup9xd5dxpkYScgL1CCJq89kRrOQ_CS61bvkL_oGyZf4ffqG5THgaOsopqj8dFLH6_SMy9yf8EgMYqpyjxfKsD-1_qb1m1DRjJEKPWKIGwmHXIKQJUqsxZFm4_Inwkxx7QMpVP4GyqlTxFVz7stWwJRSkMLHjEM_IWLUYfPhuwIUVqmRjGsY1n8flA1bRfxaWHNDxoi25-M2BKTP9NkNNJBbTKErhrZ9LGywIDAQAB", max-age=20, PrivateToken challenge="AAIALHBwLWlzc3Vlci1wcm9kdWN0aW9uLnJlc2VhcmNoLmNsb3VkZmxhcmUuY29tIJs-fQOxq-cwtNASzZnk3ittucN6ISnkL9FxGsdb_QZKABljaGFsbGVuZ2VzLmNsb3VkZmxhcmUuY29t", token-key="MIIBUjA9BgkqhkiG9w0BAQowMKANMAsGCWCGSAFlAwQCAqEaMBgGCSqGSIb3DQEBCDALBglghkgBZQMEAgKiAwIBMAOCAQ8AMIIBCgKCAQEApfbVKW9jv_cm7VCxn62oVAVC5hFmu-kZjUyoHVY59NkyKyHKMDjFTQQtwRz5WaCrisTztPUBe5IEqngHq_K6n0LVGgP-vP5_EV8Q63SdqECb9NxgQT_jnGDYKP38YIvPHP47CMaQOOm6F4tfy50OTdVLxmir-nwtG4EsjQpjbWt5h0uKnWtYHo0z3T2TGAaak3xueW6uC1Y9XvXRyQ4VLq2YT2Pj5nG5iT9qz95HGc0b9CcuEADcgyRRUmYpFDKa4E7gznEbKSul9XcN8oNCkL49spyNT1stpPVhL9fnQZz0zdIsTIdKR-iKQoy9HKyPEeNpcQhrSF7DgSPJTnR6xwIDAQAB", max-age=20
priority: u=4,i=?0
server: cloudflare
cf-ray: 958916049a400b06-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET beastlix.com/_next/static/chunks/1651-089d0a917c582200.js
200 OK 12 kB URL GET beastlix.com/_next/static/chunks/1651-089d0a917c582200.js
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type JavaScript source, ASCII text, with very long lines (11569), with no line terminators
Hash 6d26c272ef124d89e220e497cb32ef19
c91e4725e913afc0cc546f01c82750e6b21753b0
671a4cbea1c35c8df822d35c3b95a256b792468f5a318504e59d4b8d284072f0
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_next/static/chunks/1651-089d0a917c582200.js HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: application/javascript; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uYRSGXFXWmRpWyWVNefLoDa5WuucWidH2vxKMYhslg%2FM4gDurdTT4B8gC0edfV4r%2BKqt%2F8eDVaDT9TT5mtz4uJt18u7%2FP4LcSVJncwnK2GpMtec7He0%2B%2Fap3alWRI2Y%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 24 Jun 2025 14:33:42 GMT
etag: W/"2d31-197a25bea0a"
vary: Accept-Encoding
content-encoding: gzip
x-cast-cache: HIT
age: 445
cf-cache-status: HIT
cf-ray: 9589164eb98c5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1075&min_rtt=0&rtt_var=998&sent=379&recv=151&lost=0&retrans=0&sent_bytes=302347&recv_bytes=39220&delivery_rate=18139738&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=30234&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17361&inflight_dur=157&x=44"
GET beastlix.com/new/landing/triangles.webp
200 OK 12 kB URL GET beastlix.com/new/landing/triangles.webp
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type RIFF (little-endian) data, Web/P image
Hash f05371865ecf62cab6e1001717f97449
00d6417678f2f685bfc86621c08404ce4253bd5e
002a8352268a2601a960a8e9b0d195162969c477e0588d706db73ff7311b8ced
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /new/landing/triangles.webp HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: image/webp
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jeflT9nHsyGD%2F67VzOJMLyKdsd6n%2BTpCwHI3JJTzv49zvaPP60dvnIsvTw9ATsGb72IvdYNwoTvfPeloxHTd3c6MkxK893iN16w5SiDjjgcJw0r6%2B%2Fr8NBDR1KBvPgM%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Tue, 07 Jan 2025 22:31:13 GMT
etag: W/"2e10-19442e4b771"
x-cast-cache: HIT
content-encoding: gzip
cf-cache-status: REVALIDATED
vary: accept-encoding
cf-ray: 9589164eb9925690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1026&min_rtt=0&rtt_var=544&sent=526&recv=166&lost=0&retrans=0&sent_bytes=468275&recv_bytes=42997&delivery_rate=18139738&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=31652&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17453&inflight_dur=179&x=44"
GET beastlix.com/new/landing/block3Bg.webp
200 OK 32 kB URL GET beastlix.com/new/landing/block3Bg.webp
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type RIFF (little-endian) data, Web/P image
Hash 9e48516d30fc0185a62d4d44782d7114
8c8de6204cf95cb371c8181dfa68609b82874802
9f65b5f84da360952bf621b40cb8c01719e3d66f386154fe73122a06eed3e5f9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /new/landing/block3Bg.webp HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: image/webp
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ey1bjbB2OuNy4zoiuOsKezDpjxY%2FqWfkJm8Aj2uEKzn2AGhc1ZdV4Oe7zwkD96SEMDxJF%2Bk3nu1LVrSboTB49kZmrn%2F14BrvsOWtsMSvZaOolzR78cyh7jROyspoiO8%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Tue, 07 Jan 2025 22:31:13 GMT
etag: W/"7ce0-19442e4b771"
x-cast-cache: HIT
content-encoding: gzip
cf-cache-status: REVALIDATED
vary: accept-encoding
cf-ray: 9589164ec9975690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=945&min_rtt=0&rtt_var=464&sent=580&recv=169&lost=0&retrans=0&sent_bytes=531579&recv_bytes=43145&delivery_rate=18139738&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=31652&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17459&inflight_dur=185&x=44"
GET beastlix.com/new/custom/mr_beast.jpg
200 OK 152 kB URL GET beastlix.com/new/custom/mr_beast.jpg
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1080, components 3
Size 152 kB (151541 bytes)
Hash 2a83744867b471113094645a226355ab
605f45ad6bcea2b46522d278c5abe9c81c6572cb
b6ad622dc4bcedf05af0c01f8790aa5407d1f6b0c23b6a53bff521f44fa8053e
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /new/custom/mr_beast.jpg HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: image/jpeg
content-length: 151541
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MvMjru2n10Lr1C8Uw9asFK%2FiRokrwWEYZ8KCCJzjQgUNbciV1MV1%2BPx%2Bc9FLS%2B9r%2FzBRoOTKNUgnyz08GEU2xqoxX4Bp%2FAteXmXj5iVTJxdi3kXgKs5QQGoGb76%2FsDQ%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Mon, 10 Mar 2025 15:22:20 GMT
etag: W/"24ff5-19580a65978"
x-cast-cache: HIT
accept-ranges: bytes
cf-cache-status: REVALIDATED
cf-ray: 9589164ee9a25690-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=997&min_rtt=0&rtt_var=334&sent=671&recv=174&lost=0&retrans=0&sent_bytes=631597&recv_bytes=43395&delivery_rate=18139738&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=38107&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17465&inflight_dur=193&x=44"
POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1142944750:1751401754:chenSWsZEpk7KlN9-mrIJYDastpQQxgNeLr9ZrB5Drw/958915e7fee90b06/enwH62R9kQQiPhBgJ13F70Rxu_BdK3o1mRIkaivNIpA-1751406275-1.2.1.1-gMqxDr9bUSM.on91prCoRw7tD99G3BRWCCYSMvEArzW649WjMpDfF4a2Aq4nu16l
200 OK 285 kB URL POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1142944750:1751401754:chenSWsZEpk7KlN9-mrIJYDastpQQxgNeLr9ZrB5Drw/958915e7fee90b06/enwH62R9kQQiPhBgJ13F70Rxu_BdK3o1mRIkaivNIpA-1751406275-1.2.1.1-gMqxDr9bUSM.on91prCoRw7tD99G3BRWCCYSMvEArzW649WjMpDfF4a2Aq4nu16l
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/j24jd/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
FingerprintFC:98:AC:45:6F:F6:41:18:0B:96:F4:70:AB:D7:E3:D4:3D:B4:66:71
ValidityFri, 27 Jun 2025 18:18:48 GMT - Thu, 25 Sep 2025 19:18:44 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 285 kB (285036 bytes)
Hash 2b69092796684fcfbbf7f0dbb48f1961
539a46b9124a4a46c998e65efc100e4a55156027
d2cd1af9ce3d2e08f2b33f6286f62bcbb2978b452f9c4e430f256faed4f908e6
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1142944750:1751401754:chenSWsZEpk7KlN9-mrIJYDastpQQxgNeLr9ZrB5Drw/958915e7fee90b06/enwH62R9kQQiPhBgJ13F70Rxu_BdK3o1mRIkaivNIpA-1751406275-1.2.1.1-gMqxDr9bUSM.on91prCoRw7tD99G3BRWCCYSMvEArzW649WjMpDfF4a2Aq4nu16l HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/j24jd/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
cf-chl: enwH62R9kQQiPhBgJ13F70Rxu_BdK3o1mRIkaivNIpA-1751406275-1.2.1.1-gMqxDr9bUSM.on91prCoRw7tD99G3BRWCCYSMvEArzW649WjMpDfF4a2Aq4nu16l
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 4194
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:36 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: VDtw1NEmm7ap/WISChUOhQFJcKvRJY7bc8MHytWwNkTk5SNCsabdhREIzvZ0w2NZbDzvQoH5QRjRFCllfR1sbCANz1olgDnJrjilJQlFgT0NcmOvNDaOaEehkaandUNHSwAtM7+Qr083Q5PxG6wusDh6yILo/kwZilf29Nyjt/xGzDPtu7HIag/VijTaQ+b0wdIN4W6z3cWKgJmU8gmRHhNAcqeG8dVfOKLhWY2gNehy2IqGpdNoNWdBEsb67TXJT3p7VcUvGg5O4iE8rk6uECN6hqngtrwkEjSkxOIuDmei20LJxWmQgQEQH0yW+PNlxWaWpcuVNiJ63eM3/yj66ePd5go50okSa2j+4a+Gz18lvBgZS3N5X4Wl5BNV3AxOKQZPWVAnYoraGKEu5oPqhoBAu66Vaeg3r4st4J6bddKX4HUvSAXrrAhzIfvi2bsGlwmQOQJE1pQmPTF9YD75FXnt0ook5Ylc9C/st9fkEXCF2qFo8JBPMkcaqargfEiAcFTkd8SH49NPPBiabaAEjppQnpa+PAiL0K/8ce730nwX1DBmpfRiu7FEIC8TBRcjueLuSB6/t7cwry3WP8ofcHVqoMLu7wmcBzHpSHJ9LAAsakcESlM5n5p0JH2miBUIpLUycGhshoufcbA+lf0gu9D8a5h+e9eghBrHuGlkHSaSbGru+pkLGTI2IBKbBjk6G4gGrd44UbLEIel4EO98rcR4kVDciiUhOjOabZvxvQpouelNXflToLU1y5rXPHf1n1I3jyt3hOWLG1EqosBeZg==$5twbsHv0VvICuY6GuRmM0A==
priority: u=3,i=?0
server: cloudflare
cf-ray: 958915eb8a6b0b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET beastlix.com/new/custom/mr_beast_mob.jpg
200 OK 92 kB URL GET beastlix.com/new/custom/mr_beast_mob.jpg
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 688x634, components 3
Hash cd565f6e551458f37afa81a010345290
cf79b6c17c2eeb7eb26dbdb07057fb0d8645e017
5d96597c981501838d7291efb6d7fa51a1093032f1b2b4211ec88ab6c11567fc
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /new/custom/mr_beast_mob.jpg HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: image/jpeg
content-length: 92003
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0JD3r22mWwhGsmIe%2BStyEcKZotXn5E33upwWdUs0sd%2FGGLqYHJ6zVci6fU%2F7ywnNanrONAl9ubU43J9Vuu1Gb7NgLTwF0IqwxrCwV2WQ9f1Ahu69CGcaTDD8wpbCACQ%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Thu, 06 Mar 2025 22:18:24 GMT
etag: W/"16763-1956d89d404"
x-cast-cache: HIT
accept-ranges: bytes
cf-cache-status: REVALIDATED
cf-ray: 9589164e89765690-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1061&min_rtt=0&rtt_var=776&sent=387&recv=155&lost=0&retrans=0&sent_bytes=307509&recv_bytes=42497&delivery_rate=18139738&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=30234&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17397&inflight_dur=162&x=44"
GET beastlix.com/new/landing/block5Mobile.webp
200 OK 21 kB URL GET beastlix.com/new/landing/block5Mobile.webp
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type RIFF (little-endian) data, Web/P image
Hash 1c7fe573ca47cd563c79920b4f9c262e
d33337fe8dd023420e98e164d3744679898c5e1a
597c551769acbbb8aac81167c78718c2fac6dde65952a7a7b2925d38ba0f87dc
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /new/landing/block5Mobile.webp HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: image/webp
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S7WMCEmEvFFTGDFiDfK%2B28afz5KWETxaJLJja1eEjrqmQreR1Cp5N2HLq3oUMAD9pOzMSiMDbaa%2BbTRm2dYlA3AXyazULk5UiLo%2FbMr9K99OM23SyEWXZ5M3zXd1uOY%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Tue, 07 Jan 2025 22:31:13 GMT
etag: W/"52e4-19442e4b771"
x-cast-cache: HIT
content-encoding: gzip
cf-cache-status: REVALIDATED
vary: accept-encoding
cf-ray: 9589164ed99f5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1714&min_rtt=0&rtt_var=1086&sent=688&recv=178&lost=0&retrans=0&sent_bytes=648104&recv_bytes=43578&delivery_rate=18139738&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=38107&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17468&inflight_dur=196&x=44"
GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/j24jd/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
200 OK 26 kB URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/j24jd/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
IP
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
FingerprintFC:98:AC:45:6F:F6:41:18:0B:96:F4:70:AB:D7:E3:D4:3D:B4:66:71
ValidityFri, 27 Jun 2025 18:18:48 GMT - Thu, 25 Sep 2025 19:18:44 GMT
File type HTML document, ASCII text, with very long lines (26532), with no line terminators
Hash 4f08d6fc8161390a0a6bed48ecbe054a
d3e46c129f66ddb1c7bea537641d2163e06f8826
7caa75dbfe756705ea5731f145ce3f87d085cb8680357b8ce81209ad33b4a872
GET /cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/j24jd/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/ HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:35 GMT
content-type: text/html; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
permissions-policy: accelerometer=(),autoplay=(),browsing-topics=(),camera=(),clipboard-read=(),clipboard-write=(),geolocation=(),gyroscope=(),hid=(),interest-cohort=(),magnetometer=(),microphone=(),payment=(),publickey-credentials-get=(),screen-wake-lock=(),serial=(),sync-xhr=(),usb=()
content-security-policy: default-src 'none'; script-src 'nonce-P8MYk7DmYpL43Oc4' 'unsafe-eval'; script-src-attr 'none'; worker-src blob:; style-src 'unsafe-inline'; img-src 'self'; connect-src 'self'; frame-src 'self' blob:; child-src 'self' blob:; form-action 'none'; base-uri 'self'; sandbox allow-same-origin allow-scripts allow-popups allow-forms
cross-origin-embedder-policy: require-corp
cross-origin-opener-policy: same-origin
cross-origin-resource-policy: cross-origin
origin-agent-cluster: ?1
accept-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
critical-ch: Sec-CH-UA-Bitness, Sec-CH-UA-Arch, Sec-CH-UA-Mobile, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Platform, Sec-CH-UA, UA-Bitness, UA-Arch, UA-Full-Version, UA-Mobile, UA-Model, UA-Platform-Version, UA-Platform, UA
referrer-policy: same-origin
document-policy: js-profiling
priority: u=4,i=?0
server: cloudflare
cf-ray: 958915e7fee90b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
GET beastlix.com/new/custom/mr_beast.svg
200 OK 996 B URL GET beastlix.com/new/custom/mr_beast.svg
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type SVG Scalable Vector Graphics image
Hash 2b3113ef6cdd6173b5648b3cc51f8aa1
8b57f1f3fc656ae4b6854fd264edd37faf438d6b
d1d9350ce2d1b4e119614ea27f52d983a205f71d54d5cd197a88bc708401a961
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /new/custom/mr_beast.svg HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: image/svg+xml
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kep8ky8EZoFIQeI93QzhnGjyFqLinAZRUwGjWs2JdSPbKRQS%2FsUB42fHXJ0sv0m2LiJhzy4tw3kw0Y42osBw%2FAhGJIUNZoURQs51YMoZ%2FsIreH6OrNj%2FW0Fy8U%2Fq4hg%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Thu, 06 Mar 2025 13:31:53 GMT
etag: W/"3e4-1956ba7cc94"
vary: Accept-Encoding
x-cast-cache: HIT
cf-cache-status: REVALIDATED
content-encoding: br
cf-ray: 9589164e89775690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1255&min_rtt=0&rtt_var=428&sent=469&recv=163&lost=0&retrans=0&sent_bytes=403573&recv_bytes=42856&delivery_rate=18139738&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=31652&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17434&inflight_dur=173&x=44"
GET beastlix.com/_next/static/chunks/app/global-error-fe201d1ef534f112.js
200 OK 1.4 kB URL GET beastlix.com/_next/static/chunks/app/global-error-fe201d1ef534f112.js
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type JavaScript source, ASCII text, with very long lines (1388), with no line terminators
Hash 8ca48ed0d2a1a5682754bac07d67d8fd
7c9f9f86aee10c66b96aa5ef12159df0e36f0cf9
a70d13ae98e69275eac6f58c2d6aa8036ace599fc4e72660df186ad6127acc9b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_next/static/chunks/app/global-error-fe201d1ef534f112.js HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: application/javascript; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1PPflYO4pyAQ2yUO3lvS4UXD0azK5ZFWJsrVXWyGirwUYKZ2P7hF%2FPzt3ZmSl1ThtkR7FS8ZYtKaZUUAmY2aoO8OoBAlHURRfiONCVQR%2FiGXPl%2BYku0t%2BJBkn4VqeuM%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 24 Jun 2025 14:33:42 GMT
etag: W/"56c-197a25bea02"
vary: Accept-Encoding
content-encoding: gzip
x-cast-cache: HIT
age: 445
cf-cache-status: HIT
cf-ray: 9589164ea98a5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1308&min_rtt=0&rtt_var=866&sent=307&recv=145&lost=0&retrans=0&sent_bytes=227761&recv_bytes=38328&delivery_rate=13193834&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=23967&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17351&inflight_dur=147&x=44"
GET beastlix.com/fonts/ttnorms/TTNorms-Black.woff
200 OK 31 kB URL GET beastlix.com/fonts/ttnorms/TTNorms-Black.woff
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type Web Open Font Format, TrueType, length 31216, version 0.0
Hash 5a246f88fc7f4539fa8d90711016d1c0
9eb704fe64bf328ada5b4fc909fc03b135e96813
5f48c991bdc64557d6496e3e290d351881e3f10ae469fdfc332b03aca7a2ca02
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /fonts/ttnorms/TTNorms-Black.woff HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/fonts/ttnorms/stylesheet.css
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: font/woff
content-length: 31216
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Py3koyNLwjcNTYMLtSMFC%2Bx2PK%2FhRe%2BEdhh8TWHoHoNJ3MWeet%2BpUhjwWKMPc6%2BucKAVWQ30S6bUssmLozqY%2FAykWP8Zxe%2BSOm4v5TsxOJeVqlSmn0ohYzVQOlKHcng%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Mon, 06 Jan 2025 11:28:08 GMT
etag: W/"79f0-1943b5f4ab5"
x-cast-cache: HIT
accept-ranges: bytes
cf-cache-status: REVALIDATED
cf-ray: 9589165109cb5690-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1005&min_rtt=0&rtt_var=493&sent=1072&recv=226&lost=2&retrans=2&sent_bytes=1073303&recv_bytes=51787&delivery_rate=27670830&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=28396&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17813&inflight_dur=234&x=44"
GET beastlix.com/_next/static/css/8608792f3b5f7f74.css
200 OK 8.5 kB URL GET beastlix.com/_next/static/css/8608792f3b5f7f74.css
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type ASCII text, with very long lines (8528), with no line terminators
Hash f6eea2c332af5e9f6c1a95b382e645e9
8826e8c79885c8a1b68061395c9cd8ff2bdc4074
23bc36de0472509a2d230a105eaa19f08784668e62510939c78a5876636459ff
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_next/static/css/8608792f3b5f7f74.css HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: text/css; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rEntFCU08ZTlnfZOwf76hmu54xg1Pixk5EQMtDBTHoQVGkdSMBhAtlTEJQmIWPf5vhxowSNAFlxoe5ir%2FXFl4nv%2BgSSDInEzVEfyZWu92Q2fHQINltHkbvTNNO6hZuA%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 24 Jun 2025 14:33:42 GMT
etag: W/"2150-197a25bea0a"
vary: Accept-Encoding
content-encoding: gzip
x-cast-cache: HIT
age: 445
cf-cache-status: HIT
cf-ray: 9589164e89795690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1624&min_rtt=0&rtt_var=987&sent=175&recv=122&lost=0&retrans=0&sent_bytes=100970&recv_bytes=27022&delivery_rate=13193834&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=23967&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17330&inflight_dur=126&x=44"
GET beastlix.com/_next/static/css/2b3198649a078c56.css
200 OK 2.0 kB URL GET beastlix.com/_next/static/css/2b3198649a078c56.css
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type ASCII text, with very long lines (1956), with no line terminators
Hash a40a0db04beb37ff985968da200beeb9
43599a6376c0e01d48e68a6a16325b01def3191a
c6ce83ab109eb73ee51d309e1b8996660a62a5a0b9b724b54bcbd31dba3bb9de
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_next/static/css/2b3198649a078c56.css HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: text/css; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FYO6ix7joeOBxEiETOmaUiOuH8zVB9Z0GW6dbg2KDpehQT2Sa6FYcBQlZS2K9ZjuhMP7mNAjmXDJfEY7tq9TxlYf55Y%2BHsil8s5WlMBgxCNAJK5cLNC%2BsRWRxm6eLDE%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 24 Jun 2025 14:33:42 GMT
etag: W/"7a4-197a25bea0a"
vary: Accept-Encoding
content-encoding: gzip
x-cast-cache: HIT
age: 445
cf-cache-status: HIT
cf-ray: 9589164e997f5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1825&min_rtt=0&rtt_var=1162&sent=229&recv=135&lost=0&retrans=0&sent_bytes=146173&recv_bytes=33591&delivery_rate=13193834&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=23967&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17343&inflight_dur=139&x=44"
GET beastlix.com/_next/static/chunks/app/(landing)/layout-ca81564ca7ab2f8a.js
200 OK 226 B URL GET beastlix.com/_next/static/chunks/app/(landing)/layout-ca81564ca7ab2f8a.js
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type ASCII text, with no line terminators
Hash 7a5367f9275c124ff441c9f2dda2be9a
56f8efc747406730e680b5583b239301797b3f64
0d653de16d82ad5663b217d4f67165a5b6d771a51a38c219689792e8566c0eb8
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_next/static/chunks/app/(landing)/layout-ca81564ca7ab2f8a.js HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: application/javascript; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1b1T0n3rAnQbjncvfl1JGjtMNiFJEmLMqnc542Cyqqb59EaiODTiHdUikXPJHUm9Hw75GVjMla0I1Sf%2Bfbb3NmNI8B%2FnR5U%2B%2FIOgOKCp8vwo%2B5%2FIrrX9IjBeaDWuG70%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 24 Jun 2025 14:33:42 GMT
etag: W/"e2-197a25bea02"
vary: Accept-Encoding
x-cast-cache: HIT
content-encoding: gzip
age: 445
cf-cache-status: HIT
cf-ray: 9589164ea9855690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1214&min_rtt=0&rtt_var=836&sent=315&recv=146&lost=0&retrans=0&sent_bytes=236481&recv_bytes=38372&delivery_rate=15597250&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=25520&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17354&inflight_dur=147&x=44"
GET beastlix.com/new/landing/block2_1.webp
200 OK 35 kB URL GET beastlix.com/new/landing/block2_1.webp
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type RIFF (little-endian) data, Web/P image
Hash 27af9080beb8306cddacd1a9037925bc
be2a7157460eb6ecec53392c3a0a4b403e86ff48
64f67f85d1e3bbdf632351a794605b742e8293f29c762897dcf855ecbcda6d4b
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /new/landing/block2_1.webp HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: image/webp
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OqZVybI8%2F%2B1aDoqPFj2cVWWs5J5e%2FZmDGiqZwdEW6rJiCiO4xTEKxXCWQ06GXPCW7ue1pbOVprAbDr0Vgme%2FRIod4gVyRKtnQd7oVYL2SE8Cj6A2R8ZYlfnA7hETkoY%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Tue, 07 Jan 2025 22:31:13 GMT
etag: W/"8a08-19442e4b771"
x-cast-cache: HIT
content-encoding: gzip
cf-cache-status: REVALIDATED
vary: accept-encoding
cf-ray: 9589164ec9945690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1026&min_rtt=0&rtt_var=544&sent=526&recv=166&lost=0&retrans=0&sent_bytes=468275&recv_bytes=42997&delivery_rate=18139738&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=31652&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17453&inflight_dur=179&x=44"
POST beastlix.com/cdn-cgi/challenge-platform/h/b/flow/ov1/515301190:1751405381:0rL9StJIz__SOc7zBcUOS28LW4utQqBcgf6wK7-qEZA/958915e35c9e56b1/OskTqtejRfbouQ6IjB4kVVJgmZSMTeE8UW9FaJLdsuw-1751406275-1.2.1.1-JwHnh54Mt7TOCsjwjQ9.Ch_6DH_uX1KKWVSSZqnuNURtmak6m7bi6tLnn22tKKjz
200 OK 19 kB URL POST beastlix.com/cdn-cgi/challenge-platform/h/b/flow/ov1/515301190:1751405381:0rL9StJIz__SOc7zBcUOS28LW4utQqBcgf6wK7-qEZA/958915e35c9e56b1/OskTqtejRfbouQ6IjB4kVVJgmZSMTeE8UW9FaJLdsuw-1751406275-1.2.1.1-JwHnh54Mt7TOCsjwjQ9.Ch_6DH_uX1KKWVSSZqnuNURtmak6m7bi6tLnn22tKKjz
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type ASCII text, with very long lines (19168), with no line terminators
Hash 07146102bb01f960a79c45212d3ae4bf
ebf58e701ac2a97d8a1ee681c1ad4755d1b7a6c1
dad06c54d56b5658298d86a9f98b8ac006dba1bac05db298cacacc0ee7371cb1
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/515301190:1751405381:0rL9StJIz__SOc7zBcUOS28LW4utQqBcgf6wK7-qEZA/958915e35c9e56b1/OskTqtejRfbouQ6IjB4kVVJgmZSMTeE8UW9FaJLdsuw-1751406275-1.2.1.1-JwHnh54Mt7TOCsjwjQ9.Ch_6DH_uX1KKWVSSZqnuNURtmak6m7bi6tLnn22tKKjz HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://beastlix.com/
cf-chl: OskTqtejRfbouQ6IjB4kVVJgmZSMTeE8UW9FaJLdsuw-1751406275-1.2.1.1-JwHnh54Mt7TOCsjwjQ9.Ch_6DH_uX1KKWVSSZqnuNURtmak6m7bi6tLnn22tKKjz
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 1943
Origin: https://beastlix.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:35 GMT
content-type: text/plain; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OFnohUVMUvDnxjLQ9HvkgwVd5HpS0nZfPswT0b1EOnNGvP6TVzi%2Bo2CipBVG2tqsz7D1Y9C9BrkJT7jVoAFTljVhX6cuRq65UNuU7SdQIqMjsBPksPwdn%2FiCdl4QbIA%3D"}],"group":"cf-nel","max_age":604800}
cf-chl-gen: mJtPf9TyfemKgJLnsbgKWlE/WhbtQ6SgwImFeAnniqM=$hTynO7qLRK+RbF9hf7gv+Q==
content-encoding: br
cf-ray: 958915e66cc75690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1199&min_rtt=0&rtt_var=392&sent=122&recv=94&lost=0&retrans=0&sent_bytes=69682&recv_bytes=8629&delivery_rate=13193834&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=23967&unsent_bytes=0&cid=d29e2ccc759545a4&ts=674&inflight_dur=85&x=44"
GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=958915e7fee90b06&lang=auto
200 OK 141 kB URL GET challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=958915e7fee90b06&lang=auto
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/j24jd/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
FingerprintFC:98:AC:45:6F:F6:41:18:0B:96:F4:70:AB:D7:E3:D4:3D:B4:66:71
ValidityFri, 27 Jun 2025 18:18:48 GMT - Thu, 25 Sep 2025 19:18:44 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Size 141 kB (140829 bytes)
Hash aee7e145f408d3a313e00b24bbd34b52
29f0c4aee6b4392328285e00f7d799c99715c8b6
1281212afce3ae8d352e4edc4e08f0d678daf87918ec17047dd6903d024cc10e
GET /cdn-cgi/challenge-platform/h/b/orchestrate/chl_api/v1?ray=958915e7fee90b06&lang=auto HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/j24jd/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:35 GMT
content-type: application/javascript; charset=UTF-8
cache-control: private, max-age=0, no-store, no-cache, must-revalidate, post-check=0, pre-check=0
priority: u=3,i=?0
server: cloudflare
cf-ray: 958915e8dfac0b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1142944750:1751401754:chenSWsZEpk7KlN9-mrIJYDastpQQxgNeLr9ZrB5Drw/958915e7fee90b06/enwH62R9kQQiPhBgJ13F70Rxu_BdK3o1mRIkaivNIpA-1751406275-1.2.1.1-gMqxDr9bUSM.on91prCoRw7tD99G3BRWCCYSMvEArzW649WjMpDfF4a2Aq4nu16l
200 OK 30 kB URL POST challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/flow/ov1/1142944750:1751401754:chenSWsZEpk7KlN9-mrIJYDastpQQxgNeLr9ZrB5Drw/958915e7fee90b06/enwH62R9kQQiPhBgJ13F70Rxu_BdK3o1mRIkaivNIpA-1751406275-1.2.1.1-gMqxDr9bUSM.on91prCoRw7tD99G3BRWCCYSMvEArzW649WjMpDfF4a2Aq4nu16l
IP
Requested by https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/j24jd/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
FingerprintFC:98:AC:45:6F:F6:41:18:0B:96:F4:70:AB:D7:E3:D4:3D:B4:66:71
ValidityFri, 27 Jun 2025 18:18:48 GMT - Thu, 25 Sep 2025 19:18:44 GMT
File type ASCII text, with very long lines (29516), with no line terminators
Hash 8fae357d5d21413fbd15c318993dae6d
e537e822d745bbb25ba12ca890ef5e7395128a9e
db8a17075ce3d434bd25bc5fe7b122b13e0cf1216e95d60a66bd5cefe827d7e7
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/1142944750:1751401754:chenSWsZEpk7KlN9-mrIJYDastpQQxgNeLr9ZrB5Drw/958915e7fee90b06/enwH62R9kQQiPhBgJ13F70Rxu_BdK3o1mRIkaivNIpA-1751406275-1.2.1.1-gMqxDr9bUSM.on91prCoRw7tD99G3BRWCCYSMvEArzW649WjMpDfF4a2Aq4nu16l HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://challenges.cloudflare.com/cdn-cgi/challenge-platform/h/b/turnstile/if/ov2/av0/rcv/j24jd/0x4AAAAAAADnPIDROrmt1Wwj/light/fbE/new/normal/auto/
cf-chl: enwH62R9kQQiPhBgJ13F70Rxu_BdK3o1mRIkaivNIpA-1751406275-1.2.1.1-gMqxDr9bUSM.on91prCoRw7tD99G3BRWCCYSMvEArzW649WjMpDfF4a2Aq4nu16l
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 35586
Origin: https://challenges.cloudflare.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:42 GMT
content-type: text/plain; charset=UTF-8
cf-chl-gen: ZDREjXbhKeIlKAMMnnSDx/vXWh25FvLFHKG2x9kyypu2w8kjfwjU0rvkT88Fp2iy$L0TnsEwYWnpGY+H+Tcb1mg==
priority: u=3,i=?0
server: cloudflare
cf-ray: 9589160fcc190b06-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
server-timing: cfExtPri
POST beastlix.com/cdn-cgi/challenge-platform/h/b/flow/ov1/515301190:1751405381:0rL9StJIz__SOc7zBcUOS28LW4utQqBcgf6wK7-qEZA/958915e35c9e56b1/OskTqtejRfbouQ6IjB4kVVJgmZSMTeE8UW9FaJLdsuw-1751406275-1.2.1.1-JwHnh54Mt7TOCsjwjQ9.Ch_6DH_uX1KKWVSSZqnuNURtmak6m7bi6tLnn22tKKjz
200 OK 4.2 kB URL POST beastlix.com/cdn-cgi/challenge-platform/h/b/flow/ov1/515301190:1751405381:0rL9StJIz__SOc7zBcUOS28LW4utQqBcgf6wK7-qEZA/958915e35c9e56b1/OskTqtejRfbouQ6IjB4kVVJgmZSMTeE8UW9FaJLdsuw-1751406275-1.2.1.1-JwHnh54Mt7TOCsjwjQ9.Ch_6DH_uX1KKWVSSZqnuNURtmak6m7bi6tLnn22tKKjz
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type ASCII text, with very long lines (4156), with no line terminators
Hash 207b1361b10703c9a5282cda70874a43
716bd3c94bd8fec8d7b4069f445a0a59d5164b2e
e07d69108ac924cddb55f9ca0f55fad3d745067b9cf29ef5b2647934452b8c4f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
POST /cdn-cgi/challenge-platform/h/b/flow/ov1/515301190:1751405381:0rL9StJIz__SOc7zBcUOS28LW4utQqBcgf6wK7-qEZA/958915e35c9e56b1/OskTqtejRfbouQ6IjB4kVVJgmZSMTeE8UW9FaJLdsuw-1751406275-1.2.1.1-JwHnh54Mt7TOCsjwjQ9.Ch_6DH_uX1KKWVSSZqnuNURtmak6m7bi6tLnn22tKKjz HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://beastlix.com/
cf-chl: OskTqtejRfbouQ6IjB4kVVJgmZSMTeE8UW9FaJLdsuw-1751406275-1.2.1.1-JwHnh54Mt7TOCsjwjQ9.Ch_6DH_uX1KKWVSSZqnuNURtmak6m7bi6tLnn22tKKjz
cf-chl-ra: 0
Content-Type: text/plain;charset=UTF-8
Content-Length: 4290
Origin: https://beastlix.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:51 GMT
content-type: text/html; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FQ93HN5f4NBsF7oNrl55dIvgAN6dWwd5ehbobXhbEJSlETl80DwOz%2BayUBLFCo%2Fm9hyVIt2POcQKd0NgfA3Jr8g0hktiSRGa1mGAF6OiFlkF0ujPxPkUKpVssukJKYU%3D"}],"group":"cf-nel","max_age":604800}
set-cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn; HttpOnly; SameSite=None; Partitioned; Secure; Path=/; Domain=beastlix.com; Expires=Wed, 01 Jul 2026 21:44:51 GMT
cf-chl-out: Z01ff1ayiwGbU1fqxc3xESgg9a5WDxRf66ALTCtiJvlpfLtYdx88OtwTpxp1Jz2QaPmCdWf25D8lHp6ADSwcMQ==$TXNhf0pETRc0OeV70DNWBQ==
cf-chl-out-s: TUHqP9h0kRxKNkZa5S2KC8hGFMiCENiAs4tRJiqQkTz76P/C1JlEUP6HSrDkWURCw+O3F9QiCbtw6THIUnHKjBj/tS9BgduXuCD4fxXzWD9FzNJf1+0rtKE7BdDNBSxW4otkidqiTyMcrjCPY58sqGy101+rfnIM0EzkFokvQZOYb4HhW5iC129Z+7ZDthomEFWuOrxPj6NfCJWuzusShgOmFwwKAxeZklwYH6G+ZPnA+7EbJGvx1EzR+nWiuF4x/D37WDPyhMpuFVcOdCu3Vpbh7KeqiEoGfvEG6CuBpMhVLOuCcbwQMdqyz1LVP21W0npLgZw0WH0FnzeVf1/t6v1eLfIRKE77efBW++wxp9g=$osfhuy66+pntRIjQ2nzjyA==
content-encoding: br
cf-ray: 9589164bd92a5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1102&min_rtt=0&rtt_var=487&sent=138&recv=99&lost=0&retrans=0&sent_bytes=85160&recv_bytes=13677&delivery_rate=13193834&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=23967&unsent_bytes=0&cid=d29e2ccc759545a4&ts=16943&inflight_dur=87&x=44"
GET beastlix.com/_next/static/css/0d7f01007d4df3d7.css
200 OK 74 kB URL GET beastlix.com/_next/static/css/0d7f01007d4df3d7.css
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type ASCII text, with very long lines (65536), with no line terminators
Hash 1484703337977a45b1b502303cfd48ac
7684aab03879447d2748f903f71b033930ebbd57
8a8588c246b1b89aab105b253baa3eaa7056809c7dce14b153cbe6b2452383c2
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_next/static/css/0d7f01007d4df3d7.css HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: text/css; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1wEdt4Lmm1kdWvkpeU1OgwaNiv548%2B4o5XcG16tnD0udouhbhxStjdQuDDGVZvpg%2Fb1rKs7MnfGzTRYmWYrIcYvkd3wp8kO8lijLNrW5Z42h4fpmjHBLtplXeBXKuA0%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 24 Jun 2025 14:33:42 GMT
etag: W/"12233-197a25bea0a"
vary: Accept-Encoding
content-encoding: gzip
x-cast-cache: HIT
age: 445
cf-cache-status: HIT
cf-ray: 9589164e897a5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1525&min_rtt=0&rtt_var=938&sent=180&recv=124&lost=0&retrans=0&sent_bytes=103972&recv_bytes=27709&delivery_rate=13193834&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=23967&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17332&inflight_dur=127&x=44"
GET beastlix.com/_next/static/chunks/fd9d1056-da5caefe92cdbb5c.js
200 OK 173 kB URL GET beastlix.com/_next/static/chunks/fd9d1056-da5caefe92cdbb5c.js
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 173 kB (172835 bytes)
Hash a2e6693b6b8e2ae5167ce7ceb21dd431
625b83e4cdbc0bc71ca90f7de6633000d5908f96
a87677f28d0d640a628d81e90ec37a86c6674c1c656277318f17b14c9542d045
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_next/static/chunks/fd9d1056-da5caefe92cdbb5c.js HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: application/javascript; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6S6PCqusADu6nl5avFPoWxO%2FkfKj%2FkIOgmjJTdTRpiQMfYhGSmnvbwEeuUvOVU1AnsulXCVXtrFqDfwOgXc4CNR1WFh%2FgHWnmSoBMBD9MbXPi5hJPOg8mYbh30PKgLU%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 24 Jun 2025 14:33:42 GMT
etag: W/"2a323-197a25bea06"
vary: Accept-Encoding
content-encoding: gzip
x-cast-cache: HIT
age: 445
cf-cache-status: HIT
cf-ray: 9589164e99815690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1924&min_rtt=0&rtt_var=1286&sent=225&recv=134&lost=0&retrans=0&sent_bytes=141813&recv_bytes=33546&delivery_rate=13193834&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=23967&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17343&inflight_dur=138&x=44"
GET beastlix.com/_next/static/chunks/9157-1ba04d5623695b43.js
200 OK 159 kB URL GET beastlix.com/_next/static/chunks/9157-1ba04d5623695b43.js
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 159 kB (159124 bytes)
Hash d07df211aa09f7a327fd8f7536b1f0f1
5e3565273ec641ac5cfd756f5a472cab88fb2fbf
c9a61872f0519908e071b9a59fef73f722cfd24c6b3b2800b82a5d8edef6705a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_next/static/chunks/9157-1ba04d5623695b43.js HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: application/javascript; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=sDDY49k9vYu2Cir5SIZejxfwpc5wMzufMbvTtZYbkWyfXGewfmHtcZeaTwoxvvENQrJ3maTK2ZrlZy5o2moo780g2Ry42n9wMjCXYQMZTKg4nc%2BNWEJhG8HGDHpxT5c%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 24 Jun 2025 14:33:42 GMT
etag: W/"26d94-197a25bea06"
vary: Accept-Encoding
content-encoding: gzip
x-cast-cache: HIT
age: 445
cf-cache-status: HIT
cf-ray: 9589164ea9865690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1442&min_rtt=0&rtt_var=1096&sent=280&recv=143&lost=0&retrans=0&sent_bytes=203794&recv_bytes=38240&delivery_rate=13193834&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=23967&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17349&inflight_dur=144&x=44"
GET beastlix.com/api/extra/promoIp
200 OK 16 B URL GET beastlix.com/api/extra/promoIp
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
Hash 7363e85fe9edee6f053a4b319588c086
a15e2127145548437173fc17f3e980e3f3dee2d0
c955e57777ec0d73639dca6748560d00aa5eb8e12f13ebb2ed9656add3908f97
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /api/extra/promoIp HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://beastlix.com/
content-type: application/json
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: application/json
content-length: 16
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xjLSxlVoOlVwI%2BjiuqCJ5EeD9FVj0kCRbiKe%2FOHTRzC%2BhbcuMOBAIZyKNpATGP2e7TgOQtMmUi43i0uWWFlaIEsm0UhCX7JdVe2KG5MVija8BehHmUGT6hpaT9UNOLI%3D"}],"group":"cf-nel","max_age":604800}
vary: Origin
cf-cache-status: DYNAMIC
cf-ray: 95891651a9d95690-OSL
server: cloudflare
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=924&min_rtt=0&rtt_var=335&sent=1111&recv=229&lost=2&retrans=2&sent_bytes=1118186&recv_bytes=51928&delivery_rate=27670830&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=28396&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17895&inflight_dur=242&x=44"
GET beastlix.com/_next/static/css/33d281c8208aa46a.css
200 OK 2.6 kB URL GET beastlix.com/_next/static/css/33d281c8208aa46a.css
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type ASCII text, with very long lines (2644), with no line terminators
Hash 9d935283d4552afa39b54bab1beea66b
144c949c211c4280cba0fd88949206f468e1357a
5f91900db8f97cf0c851424457aaed6b05a56fa946ef6845cdad4403375ee67c
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_next/static/css/33d281c8208aa46a.css HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: text/css; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B1rx5RPULppfovTSvWrlfbXrQcsD9My7Vtot3r2DqV73wLxcEuHKM52f%2FjjFNAa2dfXtZ1noCKSS81nlTlnnJ%2FNsR2jnYtcZzN%2F5%2BnFQOtCflG5BcSYbZXJpYMJ58h0%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 24 Jun 2025 14:33:42 GMT
etag: W/"a54-197a25bea0a"
vary: Accept-Encoding
content-encoding: gzip
x-cast-cache: HIT
age: 445
cf-cache-status: HIT
cf-ray: 9589164e897c5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1924&min_rtt=0&rtt_var=1286&sent=203&recv=132&lost=0&retrans=0&sent_bytes=120474&recv_bytes=32279&delivery_rate=13193834&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=23967&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17340&inflight_dur=135&x=44"
GET beastlix.com/favicon.ico
200 OK 27 kB IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type MS Windows icon resource - 1 icon, 80x80, 32 bits/pixel
Hash 9486eedc7adbedb673e2d13ff53d694f
593e82845889df7ac55405be300ebe67f3610694
393a5a6dfc60be0498402043769134cce07b6a878d705d47f279b03ab9f63a80
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://beastlix.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:35 GMT
content-type: image/x-icon
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PyOqHY%2B6d%2FFb2%2Fv5BWjR7gvx%2Bcia72E0KFHp9SSJGX1fJcDPAkK%2Ft2JWg2X9r5QOAsrMfsOSwv%2F55Pkr0sB14pgqzO4nu9%2FVuK%2FwXiyKyCwvaYuXz00LNS%2F2h5OrsDs%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Mon, 06 Jan 2025 11:28:08 GMT
etag: W/"67fe-1943b5f4aa9"
vary: Accept-Encoding
cf-cache-status: EXPIRED
content-encoding: br
cf-ray: 958915e49cba5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1377&min_rtt=0&rtt_var=835&sent=109&recv=87&lost=0&retrans=0&sent_bytes=62045&recv_bytes=5835&delivery_rate=13193834&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=23967&unsent_bytes=0&cid=d29e2ccc759545a4&ts=540&inflight_dur=76&x=44"
GET beastlix.com/_next/static/chunks/2117-75e95bc6d3a97fd2.js
200 OK 124 kB URL GET beastlix.com/_next/static/chunks/2117-75e95bc6d3a97fd2.js
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size 124 kB (123529 bytes)
Hash 8ea3db30a77daa398d15e1302f875c75
f815f87fbf3257bb181bc04980c6e9b71f2e81d7
910e0627398328c246392b8338a7074e03266ff173a8db30c7fa4f58f166538d
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_next/static/chunks/2117-75e95bc6d3a97fd2.js HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: application/javascript; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wsZWgYVock8y4nTc6DVyQXg14L4r27UxHUHZpt7mZbAsSsDuOT3bbqpG8PJNtXhIVwejEAhZbKpZt9gXVjeiphceypuxcyRKj427Gc71C9WbScL1v8i4LumOV7CYYfE%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 24 Jun 2025 14:33:42 GMT
etag: W/"1e289-197a25bea0a"
vary: Accept-Encoding
content-encoding: gzip
x-cast-cache: HIT
age: 445
cf-cache-status: HIT
cf-ray: 9589164ea9825690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1924&min_rtt=0&rtt_var=1286&sent=208&recv=134&lost=0&retrans=0&sent_bytes=122206&recv_bytes=33546&delivery_rate=13193834&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=23967&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17342&inflight_dur=136&x=44"
GET beastlix.com/_next/static/chunks/659-54b059e6e08fb9d4.js
200 OK 17 kB URL GET beastlix.com/_next/static/chunks/659-54b059e6e08fb9d4.js
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type JavaScript source, ASCII text, with very long lines (16885), with no line terminators
Hash 92e08aec0392d441d004a46aac516d7e
4739d06699347f638550a9ab00bb453df47fd068
30354c5f8e08c54d8e98ca983e284be8cefbd0f1a72067e75b7361041ef8d61f
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_next/static/chunks/659-54b059e6e08fb9d4.js HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: application/javascript; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ISOjIC%2BvEsLunq0WYvuXZUpTyRNB6s%2BODt3xugJriJT1%2B7aUdOpGuGhbq1EZsFYnCBLTdc55C8cxzjqWkMZr8pmsQ%2BU22sWfHMW%2FwPmUxbyACr54ZnN8tf7F1C1YTa8%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 24 Jun 2025 14:33:42 GMT
etag: W/"41f5-197a25bea0a"
vary: Accept-Encoding
content-encoding: gzip
x-cast-cache: HIT
age: 445
cf-cache-status: HIT
cf-ray: 9589164ea98b5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1442&min_rtt=0&rtt_var=1096&sent=280&recv=143&lost=0&retrans=0&sent_bytes=203794&recv_bytes=38240&delivery_rate=13193834&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=23967&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17349&inflight_dur=144&x=44"
GET beastlix.com/favicon.ico
200 OK 27 kB IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type MS Windows icon resource - 1 icon, 80x80, 32 bits/pixel
Hash 9486eedc7adbedb673e2d13ff53d694f
593e82845889df7ac55405be300ebe67f3610694
393a5a6dfc60be0498402043769134cce07b6a878d705d47f279b03ab9f63a80
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:53 GMT
content-type: image/x-icon
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lJj%2BEAXsRa98%2FtuVt0Xm0MxH%2BincTShYbTCCx0MEnU%2B%2BaYZ2L00ouZRnCTdVd2rpCQ1cAG6SK9s5hkzv7uco8%2BiYJbgbDQQrF5NSLAdof32KjOtnyfKlxwy14t4JCQo%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Mon, 06 Jan 2025 11:28:08 GMT
etag: W/"67fe-1943b5f4aa9"
vary: Accept-Encoding
age: 17
cf-cache-status: STALE
content-encoding: br
cf-ray: 95891652d9ed5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=942&min_rtt=0&rtt_var=287&sent=1113&recv=231&lost=2&retrans=2&sent_bytes=1118848&recv_bytes=52625&delivery_rate=27670830&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=28396&unsent_bytes=0&cid=d29e2ccc759545a4&ts=18110&inflight_dur=263&x=44"
GET challenges.cloudflare.com/turnstile/v0/b/07af8245c728/api.js?onload=QVybo7&render=explicit
200 OK 49 kB URL GET challenges.cloudflare.com/turnstile/v0/b/07af8245c728/api.js?onload=QVybo7&render=explicit
IP
Certificate IssuerGoogle Trust Services
Subjectchallenges.cloudflare.com
FingerprintFC:98:AC:45:6F:F6:41:18:0B:96:F4:70:AB:D7:E3:D4:3D:B4:66:71
ValidityFri, 27 Jun 2025 18:18:48 GMT - Thu, 25 Sep 2025 19:18:44 GMT
File type JavaScript source, ASCII text, with very long lines (48827)
Hash cca133e54f2791b0cc3562449fe447b5
56b6d37ab92a7098e7a12612a2a6cee54a3c306a
c50b430d25297399159bfcf9ea12b93cd64200082534a6ee3170defa4d694657
GET /turnstile/v0/b/07af8245c728/api.js?onload=QVybo7&render=explicit HTTP/1.1
Host: challenges.cloudflare.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://beastlix.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 01 Jul 2025 21:44:35 GMT
content-type: application/javascript; charset=UTF-8
last-modified: Thu, 19 Jun 2025 22:00:39 GMT
cache-control: max-age=31536000, stale-if-error=10800, stale-while-revalidate=31536000, public
access-control-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 958915e51d670b69-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
GET beastlix.com/new/landing/block1Bg.webp
200 OK 24 kB URL GET beastlix.com/new/landing/block1Bg.webp
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 1450x480, Scaling: [none]x[none], YUV color, decoders should clamp
Hash 43ecadeebe099275233f25da3d5d7b25
939a8734db86195892ca05078d12bcc5ab0cbedc
64cc10e9de9290364654d6f2387eb1333e22f59931d05f9d3626102670f1eea3
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /new/landing/block1Bg.webp HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: image/webp
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oyyhOfwOzf1warhfouiIvL9DviyXZqmt5kFJNyV5c2q7QDusfjdhJLrqCJbm7z1XZIGQRJT7V4qGBuqy3SEF9%2BARIWAs8cM%2B5ExjePioxqMMAEF8fuMF0YhMvezYJYw%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Tue, 07 Jan 2025 22:31:13 GMT
etag: W/"5f7e-19442e4b771"
x-cast-cache: HIT
content-encoding: gzip
cf-cache-status: REVALIDATED
vary: accept-encoding
cf-ray: 9589164eb9935690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1046&min_rtt=0&rtt_var=447&sent=550&recv=167&lost=0&retrans=0&sent_bytes=497075&recv_bytes=43047&delivery_rate=18139738&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=31652&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17456&inflight_dur=182&x=44"
GET beastlix.com/new/landing/block3Bg2.webp
200 OK 42 kB URL GET beastlix.com/new/landing/block3Bg2.webp
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type RIFF (little-endian) data, Web/P image
Hash d478c3f4a716990ed217e6ace31734d3
c773fb06a91834dfa0874a7ac02e1ed063709706
5111eb0ea2e9c86e8f4c57da58821b50781c345eeb65a397dfe10799f34c21f2
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /new/landing/block3Bg2.webp HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: image/webp
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EuQvferqrOLOyjQ16YjYDhffs56h%2B1yMVk8syK5AVeezKobXrU72GOe9UeQGjgfmW%2FyDmUOFOWtl3gTbHzogw8IHgjpFBYi5zp%2BM4XNHTyxH4G3iMAMyxqeuovEIE%2BE%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Tue, 07 Jan 2025 22:31:13 GMT
etag: W/"a50e-19442e4b771"
x-cast-cache: HIT
content-encoding: gzip
cf-cache-status: REVALIDATED
vary: accept-encoding
cf-ray: 9589164ed99c5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=927&min_rtt=0&rtt_var=573&sent=577&recv=168&lost=0&retrans=0&sent_bytes=528703&recv_bytes=43096&delivery_rate=18139738&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=31652&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17457&inflight_dur=184&x=44"
GET beastlix.com/new/landing/block5BgMobile.webp
200 OK 49 kB URL GET beastlix.com/new/landing/block5BgMobile.webp
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type RIFF (little-endian) data, Web/P image
Hash 3ce596f2875175161c32cc277e495175
de336df23f662cb35e35030d7ac43105fd6f75af
3f6626eb2f59ea9fc3a1297d7fb2aa365f5270f0ae3a84586a3eca83dd243ec1
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /new/landing/block5BgMobile.webp HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: image/webp
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NrswG4nfGk4zeKO4Y6F6w7K8ZuDIAjs0wdWYzKoZaGIwmRw0jKNsLkcc5f7YaaP6u%2BS243pR2htxtb1GUMu9SSvydqgy4ZMg9zlE%2Bli2jQIge6K%2BHHGngZhLIfAx5Tg%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Tue, 07 Jan 2025 22:31:13 GMT
etag: W/"bfb2-19442e4b771"
x-cast-cache: HIT
content-encoding: gzip
cf-cache-status: REVALIDATED
vary: accept-encoding
cf-ray: 9589164ed99d5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=997&min_rtt=0&rtt_var=334&sent=675&recv=174&lost=0&retrans=0&sent_bytes=635816&recv_bytes=43395&delivery_rate=18139738&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=38107&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17466&inflight_dur=194&x=44"
GET beastlix.com/api/extra/pixel
200 OK 71 B URL GET beastlix.com/api/extra/pixel
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
Hash 428647be4acae0d85bd0799a59237001
25b1dbe5aaaf5fe53a11fdb05fd14bcad3e92ebb
edad519cb99926a099d84224b6b7427bbfbaa60c6ecc1673c039a0723be93006
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /api/extra/pixel HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://beastlix.com/
content-type: application/json
DNT: 1
Connection: keep-alive
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:53 GMT
content-type: application/json
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=K8b3nLb%2B%2BKhKcFVbNq49B7MC%2F2n8ubRw008sELexS2G8ieXBIeYzYvoEKDHmBLjFhEhDXNZ%2BQ2orxARCG9XamxjHJtx%2BkKxWB0Ol4wPlaz2x5mgPrI8%2BTbpfy5L6If8%3D"}],"group":"cf-nel","max_age":604800}
vary: Origin, accept-encoding
content-encoding: gzip
cf-cache-status: DYNAMIC
cf-ray: 95891651a9d85690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=943&min_rtt=0&rtt_var=217&sent=1120&recv=232&lost=2&retrans=2&sent_bytes=1126064&recv_bytes=52670&delivery_rate=27670830&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=28396&unsent_bytes=0&cid=d29e2ccc759545a4&ts=18413&inflight_dur=264&x=44"
301 Moved Permanently 6.6 kB IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET / HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Tue, 01 Jul 2025 21:44:35 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Tue, 01 Jul 2025 22:44:35 GMT
Location: https://beastlix.com/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BpzGglsIcn23vsb3BxYHy2YkkyALj5l5dCsXSWBJJikk939%2BSk0CR14Jud%2BsF4ZECXPu9b3%2BRp7hM1t8KFKpGIi09CWzhtj%2B1El44jL4F%2FOk7boiwfCofpPCTcvudbs%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 958915e32efd56b9-OSL
alt-svc: h2=":443"; ma=60
server-timing: cfL4;desc="?proto=TCP&rtt=513&min_rtt=513&rtt_var=256&sent=1&recv=3&lost=0&retrans=0&sent_bytes=0&recv_bytes=397&delivery_rate=0&cwnd=249&unsent_bytes=0&cid=0000000000000000&ts=0&x=0"
GET beastlix.com/favicon.ico
200 OK 27 kB IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type MS Windows icon resource - 1 icon, 80x80, 32 bits/pixel
Hash 9486eedc7adbedb673e2d13ff53d694f
593e82845889df7ac55405be300ebe67f3610694
393a5a6dfc60be0498402043769134cce07b6a878d705d47f279b03ab9f63a80
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /favicon.ico HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://beastlix.com/?__cf_chl_rt_tk=fSXyhkm3Sfe12DoQnu3pOu8HeneOEo9oelfZFfTKNE4-1751406275-1.0.1.1-ZX54V01.ToKbaBpPEwEybMdfZe0fMAT1duVXa.r1j8M
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:35 GMT
content-type: image/x-icon
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Kx1EKPNY7JDbKWp8jJFNnljS%2FEDVwQmlr8IlMl83rBsqeit%2Fj362Pv%2FXPnuWkQBU2%2BIugmR9kRaYDOMjr7bYt8VmWAw%2FitM7oa755N2dcO2VjzxnzXTfwiigGUwyQ7M%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Mon, 06 Jan 2025 11:28:08 GMT
etag: W/"67fe-1943b5f4aa9"
vary: Accept-Encoding
cf-cache-status: EXPIRED
content-encoding: br
cf-ray: 958915e45cb85690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1352&min_rtt=0&rtt_var=1574&sent=97&recv=82&lost=0&retrans=0&sent_bytes=54356&recv_bytes=5615&delivery_rate=13193834&ss_exit_cwnd=0&ss_exit_reason=0&cwnd=28697&unsent_bytes=0&cid=d29e2ccc759545a4&ts=435&inflight_dur=36&x=44"
GET beastlix.com/_next/static/css/3b1fd672ed5608bd.css
200 OK 8.1 kB URL GET beastlix.com/_next/static/css/3b1fd672ed5608bd.css
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type ASCII text, with very long lines (8080), with no line terminators
Hash 3cb1044f342a57e47b25329d72d5dced
9c88092e249745f7791f53c2abc08aa02c512e4c
e760ce7ee0492f732a5d1cd0cf1924b01a209edf24613d6582c29b872f7d20d9
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_next/static/css/3b1fd672ed5608bd.css HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: text/css; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qI1e1gj3Pd8Z0gFq0RpUOxTjLCfd%2BWUioDwh9T%2FeDY2GokzevGwD%2FAHxE%2BT8G4N%2FVhkgGdTik%2BK08aPk9XsUjJYn8zavaXJtKsqlgz%2ByYgMFB3lMLFixbdsu28QhEjc%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 24 Jun 2025 14:33:42 GMT
etag: W/"1f90-197a25bea0a"
vary: Accept-Encoding
content-encoding: gzip
x-cast-cache: HIT
age: 445
cf-cache-status: HIT
cf-ray: 9589164e997e5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1924&min_rtt=0&rtt_var=1286&sent=198&recv=131&lost=0&retrans=0&sent_bytes=117765&recv_bytes=31638&delivery_rate=13193834&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=23967&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17339&inflight_dur=135&x=44"
GET beastlix.com/_next/static/chunks/5868-942610d2c4b6db17.js
200 OK 37 kB URL GET beastlix.com/_next/static/chunks/5868-942610d2c4b6db17.js
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type JavaScript source, ASCII text, with very long lines (36869), with no line terminators
Hash 4e35ff9f6e1939fec97de5ebebd00589
4f9fc1d4393bdd0ac565ef85c0ed6ad2ef83cba6
5afce0586fcf35b9c04fbe5a3d32123c74f2ef0344ff4e7a90b7258afcba7fb4
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /_next/static/chunks/5868-942610d2c4b6db17.js HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: application/javascript; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mEYmneqkCgrARNkdiiXDTjfaC9VWi5A0a1IY8fja3bzsuWfNdzgJL%2BBAjWjDts1mu3vDj825biPD%2FmZoBSmNPZbBR%2FVd1M05P3W8jtR7b%2FdP9dFNu%2BcU9SXEOlrPNM8%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=31536000, immutable
last-modified: Tue, 24 Jun 2025 14:33:42 GMT
etag: W/"9005-197a25bea0a"
vary: Accept-Encoding
content-encoding: gzip
x-cast-cache: HIT
age: 445
cf-cache-status: HIT
cf-ray: 9589164ea9885690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1214&min_rtt=0&rtt_var=836&sent=315&recv=146&lost=0&retrans=0&sent_bytes=236481&recv_bytes=38372&delivery_rate=15597250&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=25520&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17354&inflight_dur=147&x=44"
GET beastlix.com/land/gifts.png
200 OK 39 kB URL GET beastlix.com/land/gifts.png
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type PNG image data, 146 x 186, 8-bit/color RGBA, non-interlaced
Hash a28357f6c9f39f6ec64467e56d3a088f
cb234100a21aaacf188eee7b9b42de088714cc49
8ff0124600e50a161b28e2ca5bfe0af59aea0df8925436fe9930041b26b1082a
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /land/gifts.png HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: image/png
content-length: 39210
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UuKKQb2Gh6c07aL3xIfzCefYv96XAdTRKXTYyy9l7D%2B3wpwNdKu%2FBKwqS7wTRtX45FtzaSqPR%2Btdxm8cSl%2FNpll5qRlvKq0WcmxypwvBcRl6J3Ns%2FKz54SVMicNYz0c%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Mon, 06 Jan 2025 11:28:08 GMT
etag: W/"992a-1943b5f4ac1"
x-cast-cache: HIT
accept-ranges: bytes
cf-cache-status: REVALIDATED
cf-ray: 9589164ee9a15690-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1026&min_rtt=0&rtt_var=544&sent=500&recv=166&lost=0&retrans=0&sent_bytes=437600&recv_bytes=42997&delivery_rate=18139738&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=31652&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17451&inflight_dur=178&x=44"
GET beastlix.com/fonts/inter/stylesheet.css
200 OK 6.3 kB URL GET beastlix.com/fonts/inter/stylesheet.css
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
Hash bdf5a025fbabbaa5d6f4abca1d0e67aa
b039f5f4911a96afdeaa786c89b2ade709bb5956
fb1c3b9832b8b6cc300b0da8665955e7c05f63dae8fe6cd820b351eb79cacaaa
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /fonts/inter/stylesheet.css HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/_next/static/css/f89cf37e5720cb55.css
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: text/css; charset=UTF-8
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hAyFz0EiLQ8OcsehLTUolA%2BJNTlc90kET3XSbAq%2BDNK%2BFmqSOE2oMc97CgH70zseQn8Ik%2B1Z3Qo%2Fejbg6CGZBrwm4eAeWHJaFdbC7d71uoF9EFmx9oYOrsODoWIYcbs%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Mon, 06 Jan 2025 11:28:08 GMT
etag: W/"18a7-1943b5f4ab1"
vary: Accept-Encoding
content-encoding: gzip
x-cast-cache: HIT
cf-cache-status: REVALIDATED
cf-ray: 9589165029bd5690-OSL
server: cloudflare
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=761&min_rtt=0&rtt_var=499&sent=985&recv=216&lost=2&retrans=2&sent_bytes=980687&recv_bytes=47443&delivery_rate=27670830&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=28396&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17675&inflight_dur=222&x=44"
GET beastlix.com/fonts/ttnorms/TTNorms-ExtraBoldItalic.woff
200 OK 35 kB URL GET beastlix.com/fonts/ttnorms/TTNorms-ExtraBoldItalic.woff
IP
Certificate IssuerGoogle Trust Services
Subjectbeastlix.com
Fingerprint0C:0A:2E:8C:D9:59:15:D0:EB:5B:2E:5C:D4:27:74:12:38:82:74:FC
ValiditySat, 28 Jun 2025 22:16:38 GMT - Fri, 26 Sep 2025 23:11:38 GMT
File type Web Open Font Format, TrueType, length 34680, version 0.0
Hash 9a30e8f0dd95fceaa89cf08605ea7236
1d44d7d9c95c173576f844b081ce9300873099cd
8adb6b1b4270089cb85b970e5f1a9dafa6187d864534bb55a3f9775b4b957528
Analyzer Verdict Alert Quad9 DNS malicious Sinkholed
GET /fonts/ttnorms/TTNorms-ExtraBoldItalic.woff HTTP/1.1
Host: beastlix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://beastlix.com/fonts/ttnorms/stylesheet.css
Cookie: cf_clearance=bdizDiuU64TkGbooaC_wGwGcBuHrKNJ07mzGtSsWkp0-1751406291-1.2.1.1-LaX3fZZl5EEQMk3_8ci4cqptO_Iyts0NMkaEERmb.h2Dz6M4mKmSdWFsw6OqFD6GfKVk7he5IxSymZCk7XxFKrmQfR1dDm.PB3kNwXZKLBZMFYvQS4uJDVZLUH1R5BBq.BCryDbT3uLgp3bcfQyYe5_ruagWbN26WA8VbLYkjj4EEH3JhnhZXr3XdV6YKyYlO8WCBA7yfaTp4UybFsMuWYgZXXfQQaR4cDBZ7CPHpiH2yw_DbbIN7UyT_LHQ3DQFBP8lTdCoGPmM7xJbUOBy1XnXnMI9SZAnVQWOu.z8gLsPzGLRHfjjX9ygmlat4GNPdmJbLudV9h5OAxsOr.r.My4l8hWBUppT19zaMVyqV6gsoIkZ.RLlU2pFztDTBoPn
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 01 Jul 2025 21:44:52 GMT
content-type: font/woff
content-length: 34680
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6cfqtUOuRZRJDcg47wNUumYme%2Fas9VaHZCLn5mAVuyVqSf8yQfzDQaRdGSJfRmRSMewEjBLSVGjbRc1gewafnvTH5ZCsEO8400hKikfbNCRLxGC8n6qWOxPRIztNYFw%3D"}],"group":"cf-nel","max_age":604800}
cache-control: public, max-age=14400
last-modified: Mon, 06 Jan 2025 11:28:08 GMT
etag: W/"8778-1943b5f4ab5"
x-cast-cache: HIT
accept-ranges: bytes
cf-cache-status: REVALIDATED
cf-ray: 9589165119ce5690-OSL
server: cloudflare
vary: Accept-Encoding
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=QUIC&rtt=1022&min_rtt=0&rtt_var=614&sent=1022&recv=224&lost=2&retrans=2&sent_bytes=1016484&recv_bytes=50515&delivery_rate=27670830&ss_exit_cwnd=28697&ss_exit_reason=2&cwnd=28396&unsent_bytes=0&cid=d29e2ccc759545a4&ts=17808&inflight_dur=231&x=44"
104.21.88.190
0.0.0.0