| launcherleaks.net/uploads/monthly_2024_04/cq9aTZx.png.c8fa2de155b3501a586e838cc5e8168d.png | 104.21.10.110 | 200 OK | 6.6 kB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2024_04/cq9aTZx.png.c8fa2de155b3501a586e838cc5e8168d.png IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typePNG image data, 214 x 200, 8-bit/color RGBA, non-interlaced Hash2fc19a8bacd5d0e4d73a306fab8166e0 0f2fce7d0bf503da891f81231fd00aebe7a1d970 49b78f2f11c1bac3763b0131923b05101f20693a46765374d1b193ef86132b25
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2024_04/cq9aTZx.png.c8fa2de155b3501a586e838cc5e8168d.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: image/png
content-length: 6596
last-modified: Thu, 11 Apr 2024 12:53:45 GMT
etag: "6617dd59-19c4"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 6111
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=D3zQGcL0fS6XQPHONCF1SBVq%2BwpP%2Fl2axbUPcDC144WIa%2F7a29BUjn9aZHv3q%2BP0h0g8TF%2FA9ROB5WSxBhX0j51RNqeebT8stpcJBMWvdB2I1zilFFy7WQcFrRAxk9EE0RVUew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554f9750b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/monthly_2024_04/whats_good.png.7a69ecec6247d8d13d02c05581db0b6b.png | 104.21.10.110 | 200 OK | 551 kB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2024_04/whats_good.png.7a69ecec6247d8d13d02c05581db0b6b.png IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typePNG image data, 1920 x 1080, 8-bit/color RGBA, non-interlaced Size551 kB (551370 bytes) Hashbd6e64a379de435c2abc2d7946bbfad1 4b24ed6d44f368df35c1d5829579346ae242a770 150df326b0b235af1a0a736475a8809ec47d7a04165180f30519e9ffa2e295e5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2024_04/whats_good.png.7a69ecec6247d8d13d02c05581db0b6b.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: image/png
content-length: 551370
last-modified: Thu, 11 Apr 2024 06:32:35 GMT
etag: "66178403-869ca"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3hOONUk3hU%2BHOSs%2FkuqqhIRKxnyu9sBcFX1ewJLpHaP88g48n1wAevUkbWb%2FHd2dXscjBWxP6%2F53S%2Bu2zxV8DsAWpiTnn%2B9jh0eKd6%2BoTW1RN8%2FrcZl95KxlYPP79slwSO3y8w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a555097b0b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/monthly_2024_04/adad.png.e52979bb8e22af2923bdefb76ba81178.png | 104.21.10.110 | 200 OK | 295 kB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2024_04/adad.png.e52979bb8e22af2923bdefb76ba81178.png IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typePNG image data, 1920 x 1080, 8-bit/color RGB, non-interlaced Size295 kB (295333 bytes) Hash18ef5cd95531bb3dd64d9e06e29e8626 5b94f1bdfa2b1f235349d37ff7cb386671cb8a83 0b827376ee9a9be1006489f2900bf7f67edab2f0e2ea939a8bf5615af9620c33
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2024_04/adad.png.e52979bb8e22af2923bdefb76ba81178.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: image/png
content-length: 295333
last-modified: Thu, 11 Apr 2024 06:34:25 GMT
etag: "66178471-481a5"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M8%2B9zGjW3bhYaRF%2Bg09qeV7UUp2nMXssR0cLp6DCnJu9fcqXqv2Ijd7G3LH6pn1jQfnRXu0Jh0%2FynAdjHhw05%2BbdhvrQ3jYUx8klDSLd5eITnCpMJESwD6O%2B9ExACbT8U2uWFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a555097d0b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/applications/core/interface/js/spacer.png | 104.21.10.110 | 200 OK | 137 B |
URL GET HTTP/3launcherleaks.net/applications/core/interface/js/spacer.png IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typePNG image data, 1 x 1, 8-bit colormap, non-interlaced Hasha41d6e3396dc05c78cc77b2d2466534d 0ed5c70f6c2012837adc192b1570cdc8551defbe dc1b146a3d93548cfd8893783085c4d22a389d361f6b0816643b67f19233000d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /applications/core/interface/js/spacer.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: image/png
content-length: 137
last-modified: Thu, 04 Apr 2024 02:57:28 GMT
etag: "660e1718-89"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 6101
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IIq2bVMcfFutKQbnDDIaPV7MxkbOlZUtV8NB19u%2FdTJ0%2FOZwlPd%2BIMQ0CjbX8ar2iKw%2B%2FKDqORLsQ90FoqGriXPzLsomuRynj5Xy5TpaSy5sm0XJkQQdry3F1vOk72DcnjSV3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a555198c0b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| cdn.jsdelivr.net/npm/sweetalert2@11 | 151.101.129.229 | 200 OK | 21 kB |
URL GET HTTP/2cdn.jsdelivr.net/npm/sweetalert2@11 IP151.101.129.229:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGlobalSign nv-sa Subjectjsdelivr.net Fingerprint05:87:2C:BA:73:14:21:54:82:00:8B:AD:85:8F:E9:C6:4D:C7:66:09 ValidityWed, 27 Sep 2023 18:13:13 GMT - Mon, 28 Oct 2024 18:13:12 GMT
File typeJavaScript source, ASCII text, with very long lines (52172) Hash230c939d3b3fc96a5cf7fec7d22891c0 5c664950c68e5630583db458390152ad0e1c64d9 ef7aceda0ec9484ac6f22b195c2b1edfd29fe721ae78f823cafa2dffc71108d4
GET /npm/sweetalert2@11 HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=604800, s-maxage=43200
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
content-type: application/javascript; charset=utf-8
x-jsd-version: 11.10.8
x-jsd-version-type: version
etag: W/"129b5-XGZJUMaOVjBYPbRYOQFSrQ4cZNk"
content-encoding: br
accept-ranges: bytes
date: Tue, 07 May 2024 19:34:09 GMT
age: 14898
x-served-by: cache-fra-eddf8230029-FRA, cache-hel1410033-HEL
x-cache: HIT, HIT
vary: Accept-Encoding
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 21319
X-Firefox-Spdy: h2
|
|
| code.jquery.com/jquery-3.5.1.min.js | 151.101.194.137 | 200 OK | 31 kB |
URL GET HTTP/2code.jquery.com/jquery-3.5.1.min.js IP151.101.194.137:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65451) Hashdc5e7f18c8d36ac1d3d4753a87c98d0a c8e1c8b386dc5b7a9184c763c88d19a346eb3342 f7f6a5894f1d19ddad6fa392b2ece2c5e578cbf7da4ea805b6885eb6985b6e3d
GET /jquery-3.5.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-15d84"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 May 2024 19:34:09 GMT
age: 966621
x-served-by: cache-lga21981-LGA, cache-hel1410025-HEL
x-cache: HIT, HIT
x-cache-hits: 64, 23364
x-timer: S1715110450.666848,VS0,VE0
vary: Accept-Encoding
content-length: 30879
X-Firefox-Spdy: h2
|
|
| launcherleaks.net/uploads/css_built_27/341e4a57816af3ba440d891ca87450ff_framework.css?v=f71abd72281714889716 | 104.21.10.110 | 200 OK | 61 kB |
URL GET HTTP/3launcherleaks.net/uploads/css_built_27/341e4a57816af3ba440d891ca87450ff_framework.css?v=f71abd72281714889716 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typegzip compressed data, from Unix Hash698f513215bf8bd2e500066a807a4164 a756d60e3ab741559df793e5846d4441d595b7dc f15ad67d5fdfff0e82cec4b01a0d8831057a87ae150ffeee5f47c553cec4640d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/css_built_27/341e4a57816af3ba440d891ca87450ff_framework.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:16 GMT
etag: W/"663723f4-50ce0"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ru%2FH8IW4dWxacZFGwCOXxsQSdCM5BlDtPaZBUBTqyd3E8Sgw0IUYGWvrRc2276pqC83bo3C9VxME6C7TqrB7ZUc0JZC5EWYa4rOQeLNHQDC6hDf2r7oUYSeWeyx5MDD3nAfRgA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554d9120b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/css_built_27/29bd99919d9bcfd58c5a255c6957b8a6_convert.css?v=f71abd72281714889716 | 104.21.10.110 | 200 OK | 1.9 kB |
URL GET HTTP/3launcherleaks.net/uploads/css_built_27/29bd99919d9bcfd58c5a255c6957b8a6_convert.css?v=f71abd72281714889716 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typegzip compressed data, from Unix Hash075fcfd21ff80f72b115a2e1e8899edd b4f52028b218747ffdc75b3af4c168627df0a02f c07da8bc9d6cb91977e07d6a25c8eb7bd0b40ac53633a2ebde34927764988981
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/css_built_27/29bd99919d9bcfd58c5a255c6957b8a6_convert.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:18 GMT
etag: W/"663723f6-1755"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JpbnflmugliVBX8nZiYPfhql8fIHO0fyOdI1YvPUSWygqD%2FMcYx27uIpmWD5LujzoDZwaS8nztZjOAY8QK50386dlAbWaZlgzVh%2BzWOao3WBXCuaykJEzz8r%2B2UUIuf%2FqlWT8Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554d9230b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/applications/core/interface/font/fontawesome-webfont.woff2?v=4.7.0 | 104.21.10.110 | 200 OK | 77 kB |
URL GET HTTP/3launcherleaks.net/applications/core/interface/font/fontawesome-webfont.woff2?v=4.7.0 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 77160, version 4.459 Hashaf7ae505a9eed503f8b8e6982036873e d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c 2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /applications/core/interface/font/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: application/octet-stream
content-length: 77160
last-modified: Thu, 04 Apr 2024 02:57:28 GMT
etag: "660e1718-12d68"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E7J1PQ9xTC9XcnxfROlN0sajt5JVBuPkvjYNiRO4UCqfKKElNjASqTVUBoOYFisfMuYOheyHo5o1LficAHy4dah9vx4mgc%2FojDKW1rxsXuDEzd34aK6D%2FouMIJr9Dp7OjSuzNA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554d90a0b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/monthly_2024_04/image(19).png.2aa78230b74798e345b60e3f00462916.png.4e336bf7c14fbdc1f4db64c294c8c35e.png | 104.21.10.110 | 200 OK | 2.1 MB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2024_04/image(19).png.2aa78230b74798e345b60e3f00462916.png.4e336bf7c14fbdc1f4db64c294c8c35e.png IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typePNG image data, 1607 x 1080, 8-bit/color RGBA, non-interlaced Size2.1 MB (2100356 bytes) Hashf8f3bbfe615b3811bc862cc33fd85dba 45c1dad753241f8ff93afb7f5215175a880624c5 2be690f365c2de1f783be2d1d635d1684d9f7ee0c20e4cfaadfb6fbd92c1a64d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2024_04/image(19).png.2aa78230b74798e345b60e3f00462916.png.4e336bf7c14fbdc1f4db64c294c8c35e.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: image/png
content-length: 2100356
last-modified: Thu, 11 Apr 2024 06:36:43 GMT
etag: "661784fb-200c84"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L2UOQx1SW7ousLAzgPooNLvVi7tr37kCyhwISZ5O3SVBpl412Ktj4yYLnO1QptUaYuS0ghy7EepVCbGB6wyoAr2yrHN0mKe6yWvp%2BUVNraTxiDnXkU%2F1CTCQlQRiKXmTmRjLzA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a555097e0b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/javascript_core/global_global_core.js?v=f71abd72281715110437 | 104.21.10.110 | 200 OK | 10 kB |
URL GET HTTP/3launcherleaks.net/uploads/javascript_core/global_global_core.js?v=f71abd72281715110437 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typegzip compressed data, from Unix Hashafa8e63edb7fc769e1284dcda0ca1cbe 19f093a9d5d5358b8349ed825d1c208aeaac8c0d 9fd0045c2f08e29a29834356311d936fb0f040d0752367a354f570964c8cf347
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/javascript_core/global_global_core.js?v=f71abd72281715110437 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 19:33:56 GMT
etag: W/"663a8224-9734"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wzdA9%2BAvWX6Gl7oqVbm%2BxyTGmP1pxKm7vkD8TY4jQlTkvbt6p7oKLVvfdcus7jkTIxxZ%2B%2FMr%2F%2BxWDumSvt74NavJ8eS3xElHhGdEdGzgNtQn%2FMhL3qc%2BSnWXxoVgV3hzrMW86g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a555199e0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/javascript_core/front_front_core.js?v=f71abd72281715110437 | 104.21.10.110 | 200 OK | 9.5 kB |
URL GET HTTP/3launcherleaks.net/uploads/javascript_core/front_front_core.js?v=f71abd72281715110437 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typegzip compressed data, from Unix Hash12324e04350dced0d5cff0397679675f 353ca9a18e368b377417d801b1c5abfbbae732d3 0df15524a8fded8336666a940f5dfb5cffd6932b33c8c4470a4dbac09004e2b2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/javascript_core/front_front_core.js?v=f71abd72281715110437 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 19:33:56 GMT
etag: W/"663a8224-952f"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tONaxhm9HKVtg1ak6BK47I%2Be%2FpA3PxkRZ0IuR6Oet7XSJtQaI1A%2Fpcf2QqZVQ%2BANFmQkabhhEvRev7%2BLP0RIZ3kDjji2F5vG9EolF2aLmxKtVFTNbvuNIQVM0yDRStqZu%2FV%2FgQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a55519a40b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/css_built_27/05e81b71abe4f22d6eb8d1a929494829_responsive.css?v=f71abd72281714889716 | 104.21.10.110 | 200 OK | 14 kB |
URL GET HTTP/3launcherleaks.net/uploads/css_built_27/05e81b71abe4f22d6eb8d1a929494829_responsive.css?v=f71abd72281714889716 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typegzip compressed data, from Unix Hash17ed09fd2820a9d011bdd9c0492186e2 0e152b5012351ac9ae5958740601626246ec2c2e 777bdc5f6d136687662f6e48ff2411166f4a779aa14d0505073e59a2c1d215dd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/css_built_27/05e81b71abe4f22d6eb8d1a929494829_responsive.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:16 GMT
etag: W/"663723f4-8cf6"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3IIi0dN%2BWh4M0upIyKY%2FGcOu4JilkMAmse5TJz1GJBPn%2Fw7ZJPoAASYWhJbPNc8KpD49RX7dkFg6ie4cKjELXQ6x%2F4UjS0PumUYgOikKBnVaFmx4MyHwvqhBhswxpxbIOsVNSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554d9170b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/css_built_27/49037c9bdbc019a877c9a3ae069caf24_v4-font-face.min.css?v=f71abd72281714889716 | 104.21.10.110 | 200 OK | 8.7 kB |
URL GET HTTP/3launcherleaks.net/uploads/css_built_27/49037c9bdbc019a877c9a3ae069caf24_v4-font-face.min.css?v=f71abd72281714889716 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typegzip compressed data, from Unix Hashf694b9081e00443094c358855cbfd804 1b41e2a2d378c892dc301dc4cc06978e11bb9f23 43f4809ee73c1757c9cb0e62c4c8ed8bafdbf2a3c88a34a873ab71862f2df4ba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/css_built_27/49037c9bdbc019a877c9a3ae069caf24_v4-font-face.min.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:18 GMT
etag: W/"663723f6-82e"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zxRE%2BqcKQSL182H0OREIieXZnH1pt2AzlikPI1DGi7q%2B7WhgpiMCr5rWFfr1RwlRpfg90bCkhoJ7Lw2YUrI%2FTzMI%2FdHEjkk7Jojs0gQYQzbeCmHfVAXvAyeNPOp9Cg2Q6wLCLg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554d93c0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/main_script.js | 104.21.10.110 | 301 Moved Permanently | 0 B |
URL GET HTTP/3launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/main_script.js IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /file/7615-white-custom-clothing-pack-rare-leak/main_script.js HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 301 Moved Permanently
date: Tue, 07 May 2024 19:34:10 GMT
content-type: ;charset=UTF-8
content-length: 0
location: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
x-ips-loggedin: 0
vary: Cookie, Accept-Encoding
x-xss-protection: 0, 1; mode=block
x-frame-options: sameorigin, SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-content-security-policy: frame-ancestors 'self'
referrer-policy: strict-origin-when-cross-origin
expires: 0
cache-control: no-cache, no-store, must-revalidate, max-age=0, s-maxage=0
strict-transport-security: max-age=15768000; includeSubDomains;
x-content-type-options: nosniff
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=WpbxRzNWoaOiio3s09ItamlhUsfG2LfuLv8VE8CKRbfiLux2t9lnpla70heXzhYfBPtaqlIyuB1YGOD8Oj1Iv3TszFQFVbPSUbkR44P0TCloRjlDU5ihPFYKs0o3OvoZwIFLvw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a554f9770b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/css_built_27/223ae211f0236ea36ac9f7bf920a797a_all.min.css?v=f71abd72281714889716 | 104.21.10.110 | 200 OK | 29 kB |
URL GET HTTP/3launcherleaks.net/uploads/css_built_27/223ae211f0236ea36ac9f7bf920a797a_all.min.css?v=f71abd72281714889716 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typegzip compressed data, from Unix Hashd3e785fbdba39827de5e5233e39166a3 8edc6ebe20e6d614fec478085c71471ad5765342 d5244075a300e6b997fb9a1c0a76902b246f97b411d038ae73b65a66d539b345
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/css_built_27/223ae211f0236ea36ac9f7bf920a797a_all.min.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:18 GMT
etag: W/"663723f6-19724"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L12hXx%2FR8fububivkjmsoRx%2BWwRAq3ugd44DnbebljQa89B306aFXIYrRQC2Z%2FFyL%2FP%2FXgEdzT2ejWJKzQfQ1Kt1a8H%2B5gl3zu6Dg%2BueSl%2BnVlPZI%2B0RlC1ZiN8yDdgmdTy3FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554d91d0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| use.fontawesome.com/releases/v6.4.2/webfonts/fa-brands-400.woff2 | 104.21.27.152 | 200 OK | 110 kB |
URL GET HTTP/2use.fontawesome.com/releases/v6.4.2/webfonts/fa-brands-400.woff2 IP104.21.27.152:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerCloudflare, Inc. Subjectuse.fontawesome.com FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78 ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 109808, version 772.1280 Size110 kB (109808 bytes) Hash005c9aa92b564b73b7582cc4f1fa49cb 373361ed756b1fe68ce2f5968d467826b6973bb5 faae6fc0aa94cc5bde5076647c817a23206096a1cbeda10d1c6f3d89d6163ed1
GET /releases/v6.4.2/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 07 May 2024 19:34:10 GMT
content-type: font/woff2
content-length: 109808
access-control-allow-origin: *
etag: "005c9aa92b564b73b7582cc4f1fa49cb"
last-modified: Fri, 22 Sep 2023 01:46:37 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 601661
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1Jd2oBZqm%2FQlnX3D%2FLvLguJ9WhTQ%2BX93ismNR5HKprcvZG1kIC9SBg%2BI3LmKEXFwS1no7fD8so535pO07m9kdcmpp68EwcZbPGH0gkQ4p59lebBkcByNCfLEktefhlpUtMqaPm5C"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a559ffd75688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| use.fontawesome.com/releases/v6.4.2/webfonts/fa-solid-900.woff2 | 104.21.27.152 | 200 OK | 150 kB |
URL GET HTTP/2use.fontawesome.com/releases/v6.4.2/webfonts/fa-solid-900.woff2 IP104.21.27.152:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerCloudflare, Inc. Subjectuse.fontawesome.com FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78 ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 150020, version 772.1280 Size150 kB (150020 bytes) Hashd5e647388e2415268b700d3df2e30a0d 97f0942c6627ddd89fb62170e5cac9a2cbd6c98c 886c86112a804ef1ddd1cb206af4c8c40e34b73c26652ca231404aa35a6b30d9
GET /releases/v6.4.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 07 May 2024 19:34:10 GMT
content-type: font/woff2
content-length: 150020
access-control-allow-origin: *
etag: "d5e647388e2415268b700d3df2e30a0d"
last-modified: Fri, 22 Sep 2023 01:46:37 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 611638
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bRXg7Djj0z83GnLb0rg4X5cwNM8hdi81zfVSI1PFw1c2gCzyczxHzRrdwOr7N83CsZ9Eycupj5vvz39amv%2Fqk2tQxQ3SkWglRI0os3oCE5I7w3YJnSlzB7dTFKAOhC83UQ1S1FhS"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a55a0feb5688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| use.fontawesome.com/releases/v6.4.2/webfonts/fa-solid-900.woff2 | 104.21.27.152 | 200 OK | 150 kB |
URL GET HTTP/2use.fontawesome.com/releases/v6.4.2/webfonts/fa-solid-900.woff2 IP104.21.27.152:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerCloudflare, Inc. Subjectuse.fontawesome.com FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78 ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 150020, version 772.1280 Size150 kB (150020 bytes) Hashd5e647388e2415268b700d3df2e30a0d 97f0942c6627ddd89fb62170e5cac9a2cbd6c98c 886c86112a804ef1ddd1cb206af4c8c40e34b73c26652ca231404aa35a6b30d9
GET /releases/v6.4.2/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 07 May 2024 19:34:10 GMT
content-type: font/woff2
content-length: 150020
access-control-allow-origin: *
etag: "d5e647388e2415268b700d3df2e30a0d"
last-modified: Fri, 22 Sep 2023 01:46:37 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 611638
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HnkpmpxMJbnRDupLZwL7pKWl2vNQbtnByWqqnjDq2FVKomCpqp1sfm0k%2ByAF6%2BxMzaw1cFUtY4dp5TwAHDYjNlGynTybH81Gg2iNM2X0BxwRmwegWnYBBDRSw%2FTmcGvpFBpx1mp8"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a55a88d75688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 | 216.58.207.227 | 200 OK | 47 kB |
URL GET HTTP/2fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 IP216.58.207.227:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 46704, version 1.0 Hash30a274cd01b6eeb0b082c918b0697f1e 393311bde26b99a4ad935fa55bad1dce7994388b 88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 10:54:17 GMT
expires: Tue, 06 May 2025 10:54:17 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 117593
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 | 216.58.207.227 | 200 OK | 47 kB |
URL GET HTTP/2fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 IP216.58.207.227:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 46704, version 1.0 Hash30a274cd01b6eeb0b082c918b0697f1e 393311bde26b99a4ad935fa55bad1dce7994388b 88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 10:54:17 GMT
expires: Tue, 06 May 2025 10:54:17 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 117593
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 | 216.58.207.227 | 200 OK | 47 kB |
URL GET HTTP/2fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 IP216.58.207.227:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 46704, version 1.0 Hash30a274cd01b6eeb0b082c918b0697f1e 393311bde26b99a4ad935fa55bad1dce7994388b 88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 10:54:17 GMT
expires: Tue, 06 May 2025 10:54:17 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 117593
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 | 216.58.207.227 | 200 OK | 47 kB |
URL GET HTTP/2fonts.gstatic.com/s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 IP216.58.207.227:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 46704, version 1.0 Hash30a274cd01b6eeb0b082c918b0697f1e 393311bde26b99a4ad935fa55bad1dce7994388b 88df0b5a7bc397dbc13a26bb8b3742cc62cd1c9b0dded57da7832416d6f52f42
GET /s/inter/v13/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46704
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 10:54:17 GMT
expires: Tue, 06 May 2025 10:54:17 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 23:49:07 GMT
content-type: font/woff2
age: 117593
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| use.fontawesome.com/releases/v6.4.2/webfonts/fa-regular-400.woff2 | 104.21.27.152 | 200 OK | 24 kB |
URL GET HTTP/2use.fontawesome.com/releases/v6.4.2/webfonts/fa-regular-400.woff2 IP104.21.27.152:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerCloudflare, Inc. Subjectuse.fontawesome.com FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78 ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 24488, version 772.1280 Hash747442fa76f1d9a31f9a54a2e8a4b448 07fc0ae14bb3187839082aed3bca11dfb1e04524 9169d8be7a8177e5a92a4d04b6de7f6504b938573bf4da5889871c4f376d3849
GET /releases/v6.4.2/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: font/woff2
content-length: 24488
access-control-allow-origin: *
etag: "747442fa76f1d9a31f9a54a2e8a4b448"
last-modified: Fri, 22 Sep 2023 01:46:36 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 611639
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3zHURDcG9CMcCVgSTPbMXlpIo367DEErnWBdtvVB8loih5OQweZovjp04lcxnQeCV4WOsgAEOZSK1Tun%2FlqxxQxAgpi4JsMR5xRkDtO49OVBQ3uO0%2BMjohe2Rm0%2BUM7u2yvGZh%2BD"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a55f4b8c5688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| launcherleaks.net/uploads/css_built_27/63225940445060c5a9f21d31e95bf58e_downloads.css?v=f71abd72281714889716 | 104.21.10.110 | 200 OK | 1.4 kB |
URL GET HTTP/3launcherleaks.net/uploads/css_built_27/63225940445060c5a9f21d31e95bf58e_downloads.css?v=f71abd72281714889716 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typegzip compressed data, from Unix Hash7ea1af041d5c6347fe40672d787d687a c519faf6e9952ca0279e4dd4e67a776ec8260742 6bc6b9fd365df6a6df54f83d0f8cebb7ea84db212caa1e5fb6e48d9ab822614f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/css_built_27/63225940445060c5a9f21d31e95bf58e_downloads.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:16 GMT
etag: W/"663723f4-adc"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5239
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XJknKkfpHoploy45mFiTgY0w1yTVMJV1jK1zUlPnk3ST8wZgiA97PuGn3O%2FQp0qXBbrNUroPxEX0Ei7VHuCbb0jbN3ECXwPiSvDl2BNudkMko%2BKQ6wVm2ZEtgwLGKFk4h0B8tw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554e9480b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/monthly_2024_04/c43988fd6b9324259e0d8dbbb24662a9.thumb.png.6f07f3cdc25a0a6b2601ccfd74a33394.png | 104.21.10.110 | 200 OK | 134 kB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2024_04/c43988fd6b9324259e0d8dbbb24662a9.thumb.png.6f07f3cdc25a0a6b2601ccfd74a33394.png IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typePNG image data, 500 x 416, 8-bit/color RGBA, non-interlaced Size134 kB (134233 bytes) Hashcd76063eebffdad4e5d7e9f9842375ab f7d4fd9e275395f711326e0afca7ba730fb849d2 4d8369589181951a20033fc2ae1eb77f477890ad8e729ee29def35fef32f7dfa
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2024_04/c43988fd6b9324259e0d8dbbb24662a9.thumb.png.6f07f3cdc25a0a6b2601ccfd74a33394.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/png
content-length: 134233
last-modified: Mon, 29 Apr 2024 20:45:42 GMT
etag: "663006f6-20c59"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3675
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wyx4TM9Si6%2Fg21J8zzNUWG6uWJ0Bwdn9C1RyGmbYQha2B0Nvgt4B3%2Fij4HKhWYTnHJ1sNIHnuw09VVq1lV4vwZ138fPkLYpVoxhyhH%2F%2F99Hv6mCJkDIWrHaiZFtNyhRIxMod9Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a560985d0b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/monthly_2023_06/Screenshot2023-06-24231322.thumb.png.e46eca2b5a1540d9e47d4ac06f38b4ef.png | 104.21.10.110 | 200 OK | 174 kB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2023_06/Screenshot2023-06-24231322.thumb.png.e46eca2b5a1540d9e47d4ac06f38b4ef.png IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typePNG image data, 500 x 430, 8-bit/color RGBA, non-interlaced Size174 kB (173939 bytes) Hash87dada0953eb59beaa79c774c06e08c6 bb81f511a6ceaa260bf36ae388e72e06c06239ba 3b04624e966826cb8fbb98f294b86d0c9cbcbf449d263b5815b5b4288b087420
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2023_06/Screenshot2023-06-24231322.thumb.png.e46eca2b5a1540d9e47d4ac06f38b4ef.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/png
content-length: 173939
last-modified: Mon, 05 Feb 2024 06:15:31 GMT
etag: "65c07d03-2a773"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3675
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jWvzVHfp4%2FFFmSA0Zx%2BIqSfM8AM8syxUfHCy%2BvbwvXUNdxl4N1rL49uvnUwJut1i7Y9aIuiDG6G0i4r9CerzEOvuf3F5Q029nRm13Y3%2FXw3C9lu%2F%2FHKVm1vO1J6AihGLWC4%2FIw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a560986d0b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/monthly_2023_07/GABZ.thumb.png.01040cd3d4e5949cbb6c11a35aef72ba.png | 104.21.10.110 | 200 OK | 111 kB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2023_07/GABZ.thumb.png.01040cd3d4e5949cbb6c11a35aef72ba.png IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typePNG image data, 500 x 244, 8-bit/color RGBA, non-interlaced Size111 kB (111050 bytes) Hash0a353c2beadfe58fbca87e98d9440755 0f9a01cac0ff93981d44b1ce212688fd58bcbd8c 29156be7b5e145a22ca03e8fec0cc2ba5270ac8d7452b4e4482eb2e0740b5f2b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2023_07/GABZ.thumb.png.01040cd3d4e5949cbb6c11a35aef72ba.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/png
content-length: 111050
last-modified: Mon, 05 Feb 2024 07:07:54 GMT
etag: "65c0894a-1b1ca"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3727
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gw5Z%2Bkmwl3oAYawWNWexJkuiS%2FVRompr7inRv%2FXf%2F24oyK%2FJBelFlGdAxDQeMRxWU%2FBwTOANkUwONAjkVQAdH5ni7sBfrnU%2BGiOVoDCUqhRvRpNW6XmXBUxIkkKOui%2F5qQHZqw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a560a87d0b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/monthly_2024_05/Desktop_Screenshot_2023_11.09_-_20_05_56_61.thumb.png.137bae1e69f392a401f2b72204d30ef1.png | 104.21.10.110 | 200 OK | 172 kB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2024_05/Desktop_Screenshot_2023_11.09_-_20_05_56_61.thumb.png.137bae1e69f392a401f2b72204d30ef1.png IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typePNG image data, 500 x 282, 8-bit/color RGBA, non-interlaced Size172 kB (172311 bytes) Hashf1afed96017903c38e0c7d626ebb97e8 5c484b964246cc8694290da55640c5e4db8d8d3b 0c83a790c6a275887b5edb9e2de7c9f0232bace471eecac419b72f80b62d2765
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2024_05/Desktop_Screenshot_2023_11.09_-_20_05_56_61.thumb.png.137bae1e69f392a401f2b72204d30ef1.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/png
content-length: 172311
last-modified: Sun, 05 May 2024 12:28:23 GMT
etag: "66377b67-2a117"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 2201
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jpWxop8GRu9toV9OYoaWD6h316oCtkn2kVVOdP5ZIR9mP3%2BksDRRnsE5%2BlWH1VPLsy5qfmmj93bPDOkD6iMI%2Fx0vFWBviCbLYcseKDmEkSevjapm9TconEt9uo6hLmKTsWPl4g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a560e8cf0b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/javascript_global/root_library.js?v=f71abd72281715110437 | 104.21.10.110 | 200 OK | 421 kB |
URL GET HTTP/3launcherleaks.net/uploads/javascript_global/root_library.js?v=f71abd72281715110437 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typegzip compressed data, from Unix Size421 kB (421076 bytes) Hashcc510b9e754130a325d7672c1c60a1d0 17ba949413093caf7a2e4faa57a371224121926b 1b1be6ad01824f75c7c8960095ffb887560cb54edb798adda57098a70ec2cb26
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/javascript_global/root_library.js?v=f71abd72281715110437 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:10 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 19:33:56 GMT
etag: W/"663a8224-567ce"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ylh7%2FjGM2vMr2xUT%2FzwdNsw3uchg7sJkYod1COyZJOvDEzU9I9FR1VUj9fJozAdnTwBmr6WyOzXqwyDWOU20Qm2oveFbRTRalUQqm54rNjeeyKJh0qjyq2VM3PA3RMDjiDY2gA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a555198e0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| use.fontawesome.com/releases/v6.4.2/css/v4-shims.css | 104.21.27.152 | 200 OK | 162 kB |
URL GET HTTP/2use.fontawesome.com/releases/v6.4.2/css/v4-shims.css IP104.21.27.152:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerCloudflare, Inc. Subjectuse.fontawesome.com FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78 ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT
File typeASCII text, with very long lines (27374) Size162 kB (161568 bytes) Hash665de85010641f678f0178a9d330a7af bf1ec2791cd06922f4a1b67480f75209d85e6deb 0e0a27c105caf20bd4cc76fe58f222d856ab8f626447846842dddca8ce7509ef
GET /releases/v6.4.2/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
etag: W/"665de85010641f678f0178a9d330a7af"
last-modified: Fri, 22 Sep 2023 01:46:32 GMT
vary: Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 616567
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=LViywtIkFy5IlzMAz3iBqSzdzIxk7vcW7VVdB8VAYpwpKT5MU%2BIMXdQzPREFLy%2FEdxYWMz9cVp8rISDxmkl1%2B%2BLkp5iZwMDC5I%2BNGpdPb5C12GiFiP1GJxmyiSJGDik9OwszKIqn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a557fbed5688-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| i.imgur.com/G9K4tiK.jpeg | 151.101.236.193 | 200 OK | 1.5 MB |
IP151.101.236.193:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerSectigo Limited Subject*.imgur.com Fingerprint39:5B:E1:0D:4A:FC:A4:C7:F3:71:DE:C4:5C:12:69:F9:5F:58:9F:42 ValidityThu, 15 Feb 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typeJPEG image data, baseline, precision 8, 5120x2160, components 3 Size1.5 MB (1538268 bytes) Hash802b9c8b0ffb98bc3e0581d5d82cd10e a71d3b1ce13cfa3fd68909e0ced09310dde3721d 9095029baa33ade2b062e31d9f9acf7ab15cc3229d8566304a2b9ebeb0f9269a
GET /G9K4tiK.jpeg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Fri, 03 May 2024 17:39:51 GMT
etag: "802b9c8b0ffb98bc3e0581d5d82cd10e"
x-amz-server-side-encryption: AES256
x-amz-cf-pop: JFK52-P4
x-amz-cf-id: Ca1MeoQ412LDupaS_om-dLT5rLuDQZ1aOQBeIzhu6Cb8AL8w2jUmtg==
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 352459
date: Tue, 07 May 2024 19:34:11 GMT
x-served-by: cache-iad-kjyo7100048-IAD, cache-osl6521-OSL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 43, 0
x-timer: S1715110451.392153,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 1538268
X-Firefox-Spdy: h2
|
|
| launcherleaks.net/uploads/monthly_2022_01/63024853_maxresdefault(7).thumb.jpg.7e9e3d00918758b08374931a8c9a123d.jpg | 104.21.10.110 | 200 OK | 45 kB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2022_01/63024853_maxresdefault(7).thumb.jpg.7e9e3d00918758b08374931a8c9a123d.jpg IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 85", baseline, precision 8, 500x282, components 3 Hashbbe0ab7d965c381cbd07e190fc11edde f75d098033aaeaac06da7bbff82d35f8a1358ef1 7888d217792f159b086f459180d7156e3e038f4300f11819896f4116f11f8e5e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2022_01/63024853_maxresdefault(7).thumb.jpg.7e9e3d00918758b08374931a8c9a123d.jpg HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/jpeg
content-length: 44823
last-modified: Mon, 05 Feb 2024 06:10:50 GMT
etag: "65c07bea-af17"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5240
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6B7SA2r%2BTjZBnGDW62ejExhpXiZ2VH9JRRlI5p%2Bvs9msWIQq4Y%2BTloxlO58H7F8enVEwyV%2FU4Vo%2FZqFWGOKC8YJLHeKqod3DzFONS9PxkLzvgq2QcSwVXJHrmkhdVG%2F%2BDdY9Fw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56189820b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/monthly_2024_04/GTA5_2024-03-05_16-50-53.thumb.png.4a46a79390de4789bbe47f99a5060a55.png | 104.21.10.110 | 200 OK | 262 kB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2024_04/GTA5_2024-03-05_16-50-53.thumb.png.4a46a79390de4789bbe47f99a5060a55.png IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typePNG image data, 500 x 282, 8-bit/color RGBA, non-interlaced Size262 kB (262399 bytes) Hash1643bc44ff885f59509b80d480e1a22f 1cfef5386597cffd88dfae3c8f498eb4bac1c4f7 0c23461fa3052f24516a166dc5781412d793759aaaf27fd9b258acb8956e4115
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2024_04/GTA5_2024-03-05_16-50-53.thumb.png.4a46a79390de4789bbe47f99a5060a55.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/png
content-length: 262399
last-modified: Wed, 03 Apr 2024 03:05:36 GMT
etag: "660cc780-400ff"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3675
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DbSsaZDLDPmg6ew2Dqn8roidq%2Fcr5SV7%2FqoJv9vys4%2BKdwqrdseKOUcFJVGmdChZ2iuGyQ96VjE9HdIT5tKnNPmkcX60%2BOKaB1umQ9mBHA8BVPHWkyWbxPZE7La%2F3BUkF0aJ9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56189800b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/monthly_2022_07/143702555_MaleVariant2Front.thumb.jpeg.b5982b752eea7439919b52fa2572a282.jpeg | 104.21.10.110 | 200 OK | 151 kB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2022_07/143702555_MaleVariant2Front.thumb.jpeg.b5982b752eea7439919b52fa2572a282.jpeg IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 500x282, components 3 Size151 kB (150903 bytes) Hashbca70d083201c503e48a3a8e6bae1ce9 4b3b57ab166e81cc24e792267ce6bcf06ebcdb3c 737b339118181c22f8a500aa0eacf3599c0d8bc8c9b11b5bff7780d1cb54a508
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2022_07/143702555_MaleVariant2Front.thumb.jpeg.b5982b752eea7439919b52fa2572a282.jpeg HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/jpeg
content-length: 150903
last-modified: Mon, 05 Feb 2024 05:47:16 GMT
etag: "65c07664-24d77"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3727
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UucIV0QqkvQXZnkqhR%2FNEI%2BedVWgAbeIO%2BAnhDXEF37DUIyDQivXTqhZSpBZv%2FuR9JkzH5ap9Zn%2Bf2UyifFqytWDtEOdynla4JhS%2FcuaMQs7q6%2B%2B4jZrxgUGRvrXcQUKVvdujA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56189830b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| use.fontawesome.com/releases/v6.4.2/webfonts/fa-brands-400.woff2 | 104.21.27.152 | 200 OK | 110 kB |
URL GET HTTP/2use.fontawesome.com/releases/v6.4.2/webfonts/fa-brands-400.woff2 IP104.21.27.152:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerCloudflare, Inc. Subjectuse.fontawesome.com FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78 ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 109808, version 772.1280 Size110 kB (109808 bytes) Hash005c9aa92b564b73b7582cc4f1fa49cb 373361ed756b1fe68ce2f5968d467826b6973bb5 faae6fc0aa94cc5bde5076647c817a23206096a1cbeda10d1c6f3d89d6163ed1
GET /releases/v6.4.2/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: font/woff2
content-length: 109808
access-control-allow-origin: *
etag: "005c9aa92b564b73b7582cc4f1fa49cb"
last-modified: Fri, 22 Sep 2023 01:46:37 GMT
vary: Origin, Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 601662
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xIV3FJrj%2FB8LEajV6%2F5AMqH5K4c8km7Xyan5eZ%2Fu6h0HRbyy6kIrocn13y7el%2F6CGXifDVFt8ZhYLTbg0QrVhDq5GSRRpSFvLqgjwOV%2BE15EnLQNz15uKWLF%2Fq9Gs3bODJXj24eP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a563dcc85688-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.youtube-nocookie.com/s/player/edea0cc6/www-player.css | 142.250.74.78 | 200 OK | 48 kB |
URL GET HTTP/2www.youtube-nocookie.com/s/player/edea0cc6/www-player.css IP142.250.74.78:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hash69c6c2a25cfac2a8ab7182b8a91325da 76d6c2b5a85fd1cedf7ab5022084cc982ef6f11c e4ea3085c10ebdcee3f4b16dd370f467847e40aba7fcae77d60eed0024155864
GET /s/player/edea0cc6/www-player.css HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 47612
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 08:08:14 GMT
expires: Tue, 06 May 2025 08:08:14 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 May 2024 04:16:13 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 127557
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| launcherleaks.net/uploads/monthly_2022_07/maxresdefault.thumb.jpg.42531b6a467eb06c2d99fb40de2e7a2b.jpg | 104.21.10.110 | 200 OK | 230 kB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2022_07/maxresdefault.thumb.jpg.42531b6a467eb06c2d99fb40de2e7a2b.jpg IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 500x282, components 3 Size230 kB (229988 bytes) Hash9f29d7efa15fddffe81bdb3120e71e04 017da9d3a2d15be18f70d24236eabcabfb78fe50 faf62a491715142b89a693e5d081b33e9372254be674adcf7b858e189bcdc1ca
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2022_07/maxresdefault.thumb.jpg.42531b6a467eb06c2d99fb40de2e7a2b.jpg HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/jpeg
content-length: 229988
last-modified: Mon, 05 Feb 2024 05:47:17 GMT
etag: "65c07665-38264"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5239
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B0pLYd79iPupf%2B2LGeTo%2FTvG6IyQFHo4aIfnSlbD9paj1tHEjp9LQDrm%2FtM2ceTqDAwOcz87hpVID98M%2F5MEFcFi5mikY%2FNnx1ArNfzYxPT8GDjkNMcEoB6m5c31yehp7jj%2FRg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56199880b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 16:31:04 GMT
expires: Sat, 03 May 2025 16:31:04 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
age: 356587
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube-nocookie.com/s/player/edea0cc6/player_ias.vflset/en_US/embed.js | 142.250.74.78 | 200 OK | 20 kB |
URL GET HTTP/2www.youtube-nocookie.com/s/player/edea0cc6/player_ias.vflset/en_US/embed.js IP142.250.74.78:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeJavaScript source, ASCII text, with very long lines (3391) Hashee6c1e2c91384312d0ebf1df4325861f ee558609ed5fec4c297e71873e081471bfbdec10 113f71981587732239fcb3db6755eee7fe3006d7397bd8866d0482337b06f5ec
GET /s/player/edea0cc6/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 19624
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 08:10:07 GMT
expires: Tue, 06 May 2025 08:10:07 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 May 2024 04:16:13 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 127444
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&display=swap | 142.250.74.106 | 200 OK | 3.9 MB |
URL GET HTTP/2fonts.googleapis.com/css2?family=Inter:wght@300;400;500;600;700&display=swap IP142.250.74.106:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Size3.9 MB (3946634 bytes) Hasha28c8d1007d491650d01c1c0761c5288 d2a1811a53341b34088d41900d4f2e71fa78741f 1fc86ad72ef67c27cb45051dc348f4fc374580120e3a704b61218ddd98507435
GET /css2?family=Inter:wght@300;400;500;600;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 19:34:09 GMT
date: Tue, 07 May 2024 19:34:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| launcherleaks.net/uploads/monthly_2021_11/feat-P7bpT5uwtA1DIajkJRqhNXK9F.thumb.png.8c51ee5b4146aaed194fc5971b0ad1d4.png | 104.21.10.110 | 200 OK | 208 kB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2021_11/feat-P7bpT5uwtA1DIajkJRqhNXK9F.thumb.png.8c51ee5b4146aaed194fc5971b0ad1d4.png IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typePNG image data, 500 x 282, 8-bit/color RGBA, non-interlaced Size208 kB (208437 bytes) Hash54ba4b4d294ee1f75709a00b260e85f5 ecd2056322e27097f61e0b831a70a594c6dd1b19 7202ef1fc16f209eb888bd2073532f3506ebf50e83bb18fecf48bd3ac5a72c14
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2021_11/feat-P7bpT5uwtA1DIajkJRqhNXK9F.thumb.png.8c51ee5b4146aaed194fc5971b0ad1d4.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/png
content-length: 208437
last-modified: Mon, 05 Feb 2024 04:10:11 GMT
etag: "65c05fa3-32e35"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5239
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rhzIiaB9EJPh8C%2BSetT7u1qMUAfO%2BSXCfE1JlS47JOzfn%2FDhQlhE1tcOx2Z8yfPnE2KI%2BKDJB2lmQhnTw0OEdqpc0gnMII2QKZZXmJ%2F1lAoZaBG6F0KuCsiNpmF4Y5gxA4s2yw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56199860b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/monthly_2022_09/WinRAR-logo.thumb.png.712705727354baba71b104a792cefd63.png | 104.21.10.110 | 200 OK | 231 kB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2022_09/WinRAR-logo.thumb.png.712705727354baba71b104a792cefd63.png IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typePNG image data, 500 x 424, 8-bit/color RGBA, non-interlaced Size231 kB (230689 bytes) Hash675d24d4429664d2b8933941e2035911 5e7826a9b7777ff7240d9824dca1c4d5751e3401 bedb27d2055906aa2dd8ea6ab9260fd67d66fe589a0f86a7f598d4bed22f3494
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2022_09/WinRAR-logo.thumb.png.712705727354baba71b104a792cefd63.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/png
content-length: 230689
last-modified: Mon, 05 Feb 2024 07:21:25 GMT
etag: "65c08c75-38521"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5239
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=orx8VvlJtDoUh43t%2BBShJhyUhr46UlPxo1jdwpUpQ6n%2B4u5AMgUrLzgIqDo3xcgkZkJthppLwPw%2BUfRrfI%2BfzVYPYCDMENxHiwrL9857HaBfPQYZsEvLujHb1jYUDx8OBx6mbw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a563cbba0b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:50:52 GMT
expires: Fri, 02 May 2025 01:50:52 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
age: 495799
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube-nocookie.com/s/player/edea0cc6/www-embed-player.vflset/www-embed-player.js | 142.250.74.78 | 200 OK | 97 kB |
URL GET HTTP/2www.youtube-nocookie.com/s/player/edea0cc6/www-embed-player.vflset/www-embed-player.js IP142.250.74.78:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeJavaScript source, ASCII text, with very long lines (829) Hash313f662ec66b3cb94106e411fba15e0d 39becc293c40b248ce60fafca7413f567d34fa03 d2d3f5afdcae3fd0b7ba628ff725ffc86cb50322d0f0900158ea19e2de701d5b
GET /s/player/edea0cc6/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97382
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 08:08:14 GMT
expires: Tue, 06 May 2025 08:08:14 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 May 2024 04:16:13 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 127557
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| launcherleaks.net/uploads/monthly_2023_03/Glock_Quad_a323ec42-66cc-45c8-ae6f-52fcd45f2f0a_1800x1800_result.thumb.png.997f58c133dcb299d8fe1b18de6b4e19.png | 104.21.10.110 | 200 OK | 168 kB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2023_03/Glock_Quad_a323ec42-66cc-45c8-ae6f-52fcd45f2f0a_1800x1800_result.thumb.png.997f58c133dcb299d8fe1b18de6b4e19.png IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typePNG image data, 475 x 500, 8-bit/color RGBA, non-interlaced Size168 kB (168461 bytes) Hash7a5d9be31cd29be40a6c3b8430e7c444 41e3170594dd57b4d171d51742d76c55045d1006 d154114095070f4b1b5e1c9ae923b18842302262977ddcfb9db7c895564734e2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2023_03/Glock_Quad_a323ec42-66cc-45c8-ae6f-52fcd45f2f0a_1800x1800_result.thumb.png.997f58c133dcb299d8fe1b18de6b4e19.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/png
content-length: 168461
last-modified: Mon, 05 Feb 2024 05:39:34 GMT
etag: "65c07496-2920d"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3675
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uvobBM9iF1bTPhrIxwls6Q9X3jV1ql%2FSIUYZ%2F7BqtIQVT11nwWZwj5uBqnYvjW%2FASqfnZJG%2BhqJ9qDyotx%2BxRdI3aFm87uFq%2B%2Fq5xt%2BV8Ci6G5Mjs%2F6bg9GfF3HDyR78ICz9sw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a563cbbb0b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/css_built_27/5a0da001ccc2200dc5625c3f3934497d_core_responsive.css?v=f71abd72281714889716 | 104.21.10.110 | 200 OK | 70 kB |
URL GET HTTP/3launcherleaks.net/uploads/css_built_27/5a0da001ccc2200dc5625c3f3934497d_core_responsive.css?v=f71abd72281714889716 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typegzip compressed data, from Unix Hashe594c8366afdbabf8f2ad4834cf7d5b0 4aedce78e7e0ebf0baed09f97a0273f27678f0d9 2cdc4e644b53ce4caf71a18dd09c9fc377018c3af6ac14845ed40e3e4fdaeacc
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/css_built_27/5a0da001ccc2200dc5625c3f3934497d_core_responsive.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:16 GMT
etag: W/"663723f4-13c8"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zwCadWbon%2BHgdl3NstczZeXPNw5CfO7IuH7BZ2k0jJeeeIi2ZdFcGQpVL7rpTAb9qtrJ2j1Z3EzmxxcHdwHfW4PLa1NkGSUiYh46y8MahYZ5JyBfa8ejLzgB0Jx4LDKnfEX0uA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554d9430b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/cdn-cgi/challenge-platform/scripts/jsd/main.js | 104.21.10.110 | 302 Found | 0 B |
URL GET HTTP/3launcherleaks.net/cdn-cgi/challenge-platform/scripts/jsd/main.js IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 302 Found
date: Tue, 07 May 2024 19:34:11 GMT
content-length: 0
access-control-allow-origin: *
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js
cache-control: max-age=300, public
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=dHFYXNQ2Cu8nEbqD3NNXh0Ru%2BhFy%2F95xAn%2FXgwp4c8VsxYiJtwpVfkxkjUrN8Ewp1AB3EMzbgrhSIu7KNA6dRmuIa3%2FjDPSlee70y4hRrZTBhOMm89olS9kYbs5AAoBRg%2F0s1A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a5641c2e0b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/monthly_2023_05/cool-profile-picture-ug9oc08q7nn527wu.thumb.jpg.9478251d87f43cb683dcd2562c4b97b5.jpg | 104.21.10.110 | 200 OK | 38 kB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2023_05/cool-profile-picture-ug9oc08q7nn527wu.thumb.jpg.9478251d87f43cb683dcd2562c4b97b5.jpg IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 143x143, components 3 Hash681da64385d290aa19fc820eb98ca135 86d500cb7f0f55be8fab0c408dec7fdc5e6c6e21 d17d023b70273f7a07fe0088cdbd35f39c57695b1ee54b41871a603ce52fc693
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2023_05/cool-profile-picture-ug9oc08q7nn527wu.thumb.jpg.9478251d87f43cb683dcd2562c4b97b5.jpg HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:12 GMT
content-type: image/jpeg
content-length: 37528
last-modified: Mon, 05 Feb 2024 03:46:26 GMT
etag: "65c05a12-9298"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=r%2FzAbiQl0x06HEjemcM59dOM13l6iuKV7OI8PAMcnKW9TD1xKMMLNEg7XlEFg48aqzKGRad5oXYJoZCnHs1T1WsDojoEflbHT6%2FmyF6b9M1fvAsOXU5eEvqwDGAY17WrUJUbHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a5641c300b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube-nocookie.com/s/player/edea0cc6/player_ias.vflset/en_US/base.js | 142.250.74.78 | 200 OK | 813 kB |
URL GET HTTP/2www.youtube-nocookie.com/s/player/edea0cc6/player_ias.vflset/en_US/base.js IP142.250.74.78:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeJavaScript source, ASCII text, with very long lines (555) Size813 kB (812686 bytes) Hash24357d162136b2dde3e7ee1cd01e37a8 b6c2391bb4efb971fb9169d3ccf68330a36e255b f6d29981d8acb8584ff00b6a55f3ee5d3f105b991b78562c4fff89c36915adc7
GET /s/player/edea0cc6/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 812686
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 08:10:07 GMT
expires: Tue, 06 May 2025 08:10:07 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 May 2024 04:16:13 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 127444
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| launcherleaks.net/uploads/monthly_2022_07/4b830b-JPC2.thumb.png.c36755574da3a12a95dd13d061728c79.png | 104.21.10.110 | 200 OK | 270 kB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2022_07/4b830b-JPC2.thumb.png.c36755574da3a12a95dd13d061728c79.png IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typePNG image data, 500 x 282, 8-bit/color RGBA, non-interlaced Size270 kB (270042 bytes) Hasha84983e7de83ac79a074337d38f30315 d073b42584d4d7605ff292de9603796654d2d3e8 3554e1bf917ec7d6cd136f8f7cca4614a0082ae9dae39045dac38f36aae93e21
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2022_07/4b830b-JPC2.thumb.png.c36755574da3a12a95dd13d061728c79.png HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/png
content-length: 270042
last-modified: Mon, 05 Feb 2024 05:48:32 GMT
etag: "65c076b0-41eda"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3727
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PlCnBmA%2BCwNJCHchCdnypdnl3rU24iBqkS9iMYkXEYHTl4qZe3vczKDUe%2F71R4bOqe451TuwXcR%2BI0JyMHAN%2BlKyzTjLi%2BpSk04DtyfNoShbSNS0jv0jEGDOEljhi2nErbQ%2B2w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a563cbbc0b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/monthly_2023_05/maxresdefault.thumb.jpg.ceadfddf5a5c343fd0d3cdc6482a30bd.jpg | 104.21.10.110 | 200 OK | 160 kB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2023_05/maxresdefault.thumb.jpg.ceadfddf5a5c343fd0d3cdc6482a30bd.jpg IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v80), quality = 100", baseline, precision 8, 500x282, components 3 Size160 kB (159877 bytes) Hash2f4c6d753ab67df81d76d0dd0df45920 3c9dba11e164c94f721fac9da4e8443ac7023529 6f23b69150efa18ed586c2742d67626834ac5ff77c281b113b0da9ba4297adbb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2023_05/maxresdefault.thumb.jpg.ceadfddf5a5c343fd0d3cdc6482a30bd.jpg HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug; ips4_ipsTimezone=UTC; ips4_hasJS=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:13 GMT
content-type: image/jpeg
content-length: 159877
last-modified: Mon, 05 Feb 2024 03:44:05 GMT
etag: "65c05985-27085"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v8uwROd6H2vduaQRCgkJTyoOc9IEHVJOlDCZyATMHTrkAWkc234PytMbkHj44sDVVH8ZwuV5uwjiAiginQCy%2BJnvE8DKJGVtKkAlAnjWUDoksZEOKZusIXm7qxAkBw8ynybiJA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56aabb10b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/monthly_2024_02/android-chrome-36x36.png?v=1712605004 | 104.21.10.110 | 200 OK | 1.3 kB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2024_02/android-chrome-36x36.png?v=1712605004 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typePNG image data, 36 x 36, 8-bit/color RGBA, non-interlaced Hash6643840bd35c7cddf0811e8969b64875 886f7f812fda1694e4184083e178c8b8c6b08be3 ee3561daab5ce98f4859fc704e7584e53d0858ac073fd02569fb96b5cdc59209
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2024_02/android-chrome-36x36.png?v=1712605004 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug; ips4_ipsTimezone=UTC; ips4_hasJS=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:13 GMT
content-type: image/png
content-length: 1282
last-modified: Tue, 06 Feb 2024 04:19:31 GMT
etag: "65c1b353-502"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 2280
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FGsiSFSTyDJruEFdTJ4FcIkVzh1Vc9l5ihoru7kePKgIwz5EW9cO6tkUEd1uT1AQED4W484PopkIF%2Fb3E7bdKM%2Bkd4bDkO9PVCoqP1bpyJCz0geaaufEEJTb0V%2BirqXoVRnDxw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56fb9510b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube-nocookie.com/s/player/edea0cc6/player_ias.vflset/en_US/remote.js | 142.250.74.78 | 200 OK | 34 kB |
URL GET HTTP/3www.youtube-nocookie.com/s/player/edea0cc6/player_ias.vflset/en_US/remote.js IP142.250.74.78:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeJavaScript source, ASCII text, with very long lines (543) Hashfc46085092eeec2598954a4493d1e8d2 568269777dce5af286e8e1498578e759552b391f 7af63a9cb99fbdb146894f4665ab18e932deff6e246e36dbc6c93d178a62b749
GET /s/player/edea0cc6/player_ias.vflset/en_US/remote.js HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 33657
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 06 May 2024 08:11:03 GMT
expires: Tue, 06 May 2025 08:11:03 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 02 May 2024 04:16:13 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 127390
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.170 | 200 OK | 0 B |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.170:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 07 May 2024 19:34:14 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| launcherleaks.net/cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js | 104.21.10.110 | 200 OK | 4.1 kB |
URL GET HTTP/3launcherleaks.net/cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typegzip compressed data, from Unix Hash98a9fd3a0df805d3f6cc44d8ef7b0942 af46d7bce52220023548538effccc730abdadd40 350d81c3d30a4c4f2231cfe0485b5cddb9dfe5af0b5c5f8136c76981d09ad2c5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/ce7818f50e39/main.js HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug; ips4_ipsTimezone=UTC; ips4_hasJS=true
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:13 GMT
content-type: application/javascript; charset=UTF-8
cache-control: max-age=14400, public
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CvuZmx9%2B%2F%2F4GouD1DZ7p5k3WTJvlS9FdNv%2FzZrhNcvI1zmi2Ochv1tMJ1cLL77CunDMdcUdM%2Bpj7jX5yRAG7n2iDXotoV1K5uBpg5ks%2B8EEf5S9tluT9vpniJ6eVWmkem%2BMg%2Bw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56fb94c0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 142.250.74.170 | 200 OK | 42 kB |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP142.250.74.170:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hash40b540e1a790e79ed8be991f4eac554e d18531c6127e985fc30980f65d8b4e1ac68a1dc9 705e1724f272124111833e28eeb2ab0b8eaadf814be767acc40f56ffb763006f
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 07 May 2024 19:34:14 GMT
server: ESF
cache-control: private
content-length: 42107
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi_webp/9Ylp0HIu4uM/sddefault.webp | 142.250.74.86 | 200 OK | 28 kB |
URL GET HTTP/2i.ytimg.com/vi_webp/9Ylp0HIu4uM/sddefault.webp IP142.250.74.86:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subjectedgestatic.com FingerprintD2:2C:3D:05:38:12:27:20:C9:64:22:58:3A:99:D5:43:6E:BD:3B:D2 ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 640x480, Scaling: [none]x[none], YUV color, decoders should clamp Hash4d638dceb31d853fa3c94dd906ae2ec1 e6ae56536e627ae6d94e6a5658e7514fc239bf42 b9c8b36e64e5a3136203aaeaebf17994fe420272adbbc1ae8631ce23e8cdf7bb
GET /vi_webp/9Ylp0HIu4uM/sddefault.webp HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/webp
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 28254
date: Tue, 07 May 2024 19:34:14 GMT
expires: Tue, 07 May 2024 21:34:14 GMT
cache-control: public, max-age=7200
etag: "1673862799"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| launcherleaks.net/uploads/monthly_2024_02/android-chrome-512x512.png?v=1712605004 | 104.21.10.110 | 200 OK | 49 kB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2024_02/android-chrome-512x512.png?v=1712605004 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typePNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced Hash390058981d8c33cf7f7ac83df7289560 853f6dd48c10c41a4dc288b8fe6d8987ae14f136 ab56bf944922cd6347a06f5de4cb913f823cd8ba96f6d1b2ce31edf10d62e789
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2024_02/android-chrome-512x512.png?v=1712605004 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug; ips4_ipsTimezone=UTC; ips4_hasJS=true
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:14 GMT
content-type: image/png
content-length: 49186
last-modified: Tue, 06 Feb 2024 04:19:31 GMT
etag: "65c1b353-c022"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y9plPnWZCPEmMo6viWmPpTw96a0W%2BRJUHvwwph0q8hsXoY00eZTj9625vkIRh5dHKGhu6PRgN5c5nkwPbZ2ERgHLg88A0BO%2FIp6g%2Fzb%2BpLpsOIueVK2VgM5bN1NP4XBSWmvzqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56fb94e0b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/cdn-cgi/challenge-platform/h/b/jsd/r/8803a54d4f2056ba | 104.21.10.110 | 200 OK | 0 B |
URL POST HTTP/3launcherleaks.net/cdn-cgi/challenge-platform/h/b/jsd/r/8803a54d4f2056ba IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /cdn-cgi/challenge-platform/h/b/jsd/r/8803a54d4f2056ba HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12208
Origin: https://launcherleaks.net
DNT: 1
Connection: keep-alive
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug; ips4_ipsTimezone=UTC; ips4_hasJS=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:14 GMT
content-type: text/plain; charset=UTF-8
content-length: 0
set-cookie: cf_clearance=J7xUOE46qZkc_zoM7jahtty9znBc_Z1_..ojWizBLSk-1715110454-1.0.1.1-aKYfmrjn_O6lWYGpNbmvW6gi3XJjnM8NCFHLLYSpAQGlHXZ9ISleAIYj7tDqq._hANQ9x4937dEv1hJTTtV5Ow; path=/; expires=Wed, 07-May-25 19:34:14 GMT; domain=.launcherleaks.net; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2B1KkBmEpvdX0hxsw%2BzM8z%2FQzRrXXTmkPepilothNVZm7zUhjdvRnNFJqGZn%2Fur1qwEMqBmTjJ%2B048e5ELxqQOnvR5pvAuWk9m5AbL1qY3S79DPa9jmEbzg3KLfWGdG1aDfFy0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a5726c0f0b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed | 142.250.74.78 | 200 OK | 38 kB |
URL GET HTTP/2www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed IP142.250.74.78:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
File typeHTML document, ASCII text, with very long lines (58090) Hashaca23e827a74a22559d0c701e9657a72 fa69a2a32bb616d3062b5a797f444ff89ddd414e b722ac4177370f4eaa0b55026e5f713a4e62a139a6cf52e56f4bf68a5aeb5149
GET /embed/9Ylp0HIu4uM?feature=oembed HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Tue, 07 May 2024 19:34:11 GMT
strict-transport-security: max-age=31536000
cross-origin-opener-policy-report-only: same-origin; report-to="YOUTUBE_NOCOOKIE_DOMAIN"
origin-trial: AsnbWYr3bqK88n/C2BgXPMpBC+msV4jf6vsgnAir+gFnHw3zXZEKmz271E4vhxTja+7SD2q3dr2BxZlHzvj9HA0AAACBeyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUtbm9jb29raWUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
cross-origin-resource-policy: cross-origin
report-to: {"group":"YOUTUBE_NOCOOKIE_DOMAIN","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/YOUTUBE_NOCOOKIE_DOMAIN"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
content-encoding: br
server: ESF
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/js/th/OfRUkPbLLmIJHiz0sRQ6wXEqxeMXOYMNgt9OZuziQhg.js | 142.250.74.132 | 200 OK | 20 kB |
URL GET HTTP/2www.google.com/js/th/OfRUkPbLLmIJHiz0sRQ6wXEqxeMXOYMNgt9OZuziQhg.js IP142.250.74.132:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintC6:A2:DC:31:5A:53:FA:DD:55:71:A3:F4:DD:43:3D:16:71:B8:B3:99 ValidityTue, 16 Apr 2024 04:20:32 GMT - Tue, 09 Jul 2024 04:20:31 GMT
File typeJavaScript source, ASCII text, with very long lines (51532) Hash04e63424458140569a22bbfa84649e42 5fc8f8462d527e0da3061e14b63b8d60dc8311aa 39f45490f6cb2e62091e2cf4b1143ac1712ac5e31739830d82df4e66ece24218
GET /js/th/OfRUkPbLLmIJHiz0sRQ6wXEqxeMXOYMNgt9OZuziQhg.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 20262
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:14:51 GMT
expires: Fri, 02 May 2025 02:14:51 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 29 Apr 2024 11:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
age: 494363
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| play.google.com/log?format=json&hasfast=true&authuser=0 | 142.250.74.78 | 200 OK | 0 B |
URL OPTIONS HTTP/3play.google.com/log?format=json&hasfast=true&authuser=0 IP142.250.74.78:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Tue, 07 May 2024 19:34:14 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.170 | 200 OK | 0 B |
URL POST HTTP/3jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.170:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
vary: origin, referer, x-origin
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Tue, 07 May 2024 19:34:14 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| play.google.com/log?format=json&hasfast=true&authuser=0 | 142.250.74.78 | 200 OK | 0 B |
URL OPTIONS HTTP/3play.google.com/log?format=json&hasfast=true&authuser=0 IP142.250.74.78:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: x-goog-authuser
Referer: https://www.youtube-nocookie.com/
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web,authorization,origin,x-goog-authuser
content-type: text/plain; charset=UTF-8
date: Tue, 07 May 2024 19:34:14 GMT
server: Playlog
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 142.250.74.170 | 200 OK | 114 B |
URL POST HTTP/3jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP142.250.74.170:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
Hashc274f179e08e731ec49493be824b6616 f51944d04652e9acdbe6bac083f157bc24fc75e1 eec34a31dd6dbf313200f47b464f09d8e0e684a1bf4c0a3fc6abc1d1796e6ed8
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 1332
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Tue, 07 May 2024 19:34:14 GMT
server: ESF
cache-control: private
content-length: 114
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube-nocookie.com
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| play.google.com/log?format=json&hasfast=true&authuser=0 | 142.250.74.78 | 200 OK | 131 B |
URL OPTIONS HTTP/3play.google.com/log?format=json&hasfast=true&authuser=0 IP142.250.74.78:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hashca0b7e866005f6774d284b9f438ebfd2 53644f5ee3640189bdb223473ba6a2d46606c556 502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 555
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Tue, 07 May 2024 19:34:14 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| play.google.com/log?format=json&hasfast=true&authuser=0 | 142.250.74.78 | 200 OK | 131 B |
URL OPTIONS HTTP/3play.google.com/log?format=json&hasfast=true&authuser=0 IP142.250.74.78:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hashca0b7e866005f6774d284b9f438ebfd2 53644f5ee3640189bdb223473ba6a2d46606c556 502e9680cfa78fa8be779cbf4f1947c8eaa3d43bf8c7464800ec772b2ddea358
POST /log?format=json&hasfast=true&authuser=0 HTTP/1.1
Host: play.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-AuthUser: 0
Content-Type: application/x-www-form-urlencoded;charset=utf-8
Content-Length: 413
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
access-control-allow-origin: https://www.youtube-nocookie.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
access-control-allow-headers: X-Playlog-Web
content-type: text/plain; charset=UTF-8
content-encoding: gzip
date: Tue, 07 May 2024 19:34:14 GMT
server: Playlog
cache-control: private
content-length: 131
x-xss-protection: 0
x-frame-options: SAMEORIGIN
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube-nocookie.com/generate_204?Si1FiQ | 142.250.74.78 | 204 No Content | 0 B |
URL GET HTTP/3www.youtube-nocookie.com/generate_204?Si1FiQ IP142.250.74.78:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?Si1FiQ HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Tue, 07 May 2024 19:34:14 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube-nocookie.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 142.250.74.78 | 200 OK | 31 B |
URL POST HTTP/3www.youtube-nocookie.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP142.250.74.78:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1715110456055
Content-Type: application/json
X-Goog-Visitor-Id: CgtLMldLZk5TcmlMNCizhOqxBjIOCgJOTxIIEgQSAgsMIEM%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240501.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1715110452965&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C396%2C248&vis=1&wgl=true&ca_type=image
Content-Length: 7978
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Tue, 07 May 2024 19:34:16 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube-nocookie.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 142.250.74.78 | 200 OK | 31 B |
URL POST HTTP/3www.youtube-nocookie.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP142.250.74.78:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint7C:B7:E1:97:03:6E:82:B6:52:F8:EC:C6:C6:50:D9:DD:80:47:E6:A0 ValidityTue, 16 Apr 2024 03:18:53 GMT - Tue, 09 Jul 2024 03:18:52 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube-nocookie.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1715110480151
Content-Type: application/json
X-Goog-Visitor-Id: CgtLMldLZk5TcmlMNCizhOqxBjIOCgJOTxIIEgQSAgsMIEM%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240501.00.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1715110452965&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C396%2C248&vis=1&wgl=true&ca_type=image
Content-Length: 998
Origin: https://www.youtube-nocookie.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Tue, 07 May 2024 19:34:40 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| launcherleaks.net/uploads/javascript_global/root_js_lang_1.js?v=f71abd72281715110437 | 104.21.10.110 | 200 OK | 108 kB |
URL GET HTTP/3launcherleaks.net/uploads/javascript_global/root_js_lang_1.js?v=f71abd72281715110437 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typeASCII text, with very long lines (65536), with no line terminators Size108 kB (108259 bytes) Hashdfb4f4a37cacac558a02e348876805dc a3c9316578d617bd8869a2a234b2216586b27a45 8a21a5cc24b20509a317b3fb30c4a0feabc3eed7d754d402ccdb07e07341e8af
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/javascript_global/root_js_lang_1.js?v=f71abd72281715110437 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:10 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 19:33:56 GMT
etag: W/"663a8224-1a6e3"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qdfXcH%2B4La9YFn6jdy36AkmPf%2FTcLp7mhzMWYNwRIY0%2BRXXkFlEnAeCI6vquzNwYxS%2BCUJooRxOrmZzHU84e5RuN%2BZN%2FS9VrfJDv4hKRj2it7QnlzjMYuuCwUt3h%2F%2B03R9K3Zg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a555198f0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/monthly_2022_11/271590_20221123180635_1_1296x.thumb.webp.166a2c2dbac4e4c4f2268cea650e863b.webp | 104.21.10.110 | 200 OK | 69 kB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2022_11/271590_20221123180635_1_1296x.thumb.webp.166a2c2dbac4e4c4f2268cea650e863b.webp IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 500x282, Scaling: [none]x[none], YUV color, decoders should clamp Hasha5cafec497475164eaaa1cff49c62d0d efdf9c2d9471d73826ef40789fa53629bea5ff37 f0ef030362846f7c6fb69ae372a67d149d91324668c43d5067de956eaf09a0ec
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2022_11/271590_20221123180635_1_1296x.thumb.webp.166a2c2dbac4e4c4f2268cea650e863b.webp HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/webp
content-length: 68628
last-modified: Mon, 05 Feb 2024 07:25:03 GMT
etag: "65c08d4f-10c14"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3727
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Oc2%2F1JY49yaQkvDSz%2FYQkAeeqLLU5X4wjnnbSg2Kn2ayE7HC0gbpAnjqzkBsxAM8VDmx%2FwTNdOQvaazXhHFryb5e4Z%2Fc0SQs1F2%2BejnjHljqz6cq5vJIdGcwWTOCw%2FHmtuGHWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a563cbbd0b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| i.imgur.com/gbpa60N.jpeg | 151.101.236.193 | 200 OK | 304 kB |
IP151.101.236.193:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerSectigo Limited Subject*.imgur.com Fingerprint39:5B:E1:0D:4A:FC:A4:C7:F3:71:DE:C4:5C:12:69:F9:5F:58:9F:42 ValidityThu, 15 Feb 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typeJPEG image data, baseline, precision 8, 1920x1080, components 3 Size304 kB (303975 bytes) Hash6b3624509dd2b21b8bf528630202d2f3 c9b6b7e104447c635688ea35f6d6741a3f66a1ad aa10e0dd5636ed336e58dfd065e3e5ccb5acddcae04b2489faee68dfe18101a0
GET /gbpa60N.jpeg HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
last-modified: Thu, 25 Apr 2024 15:47:33 GMT
etag: "6b3624509dd2b21b8bf528630202d2f3"
x-amz-server-side-encryption: AES256
x-amz-cf-pop: JFK50-P6
x-amz-cf-id: wKhO_yk60BpzX-zrtbJacWkksGcxEaOtlu9VPpPE3Y_IWnNxys-m_A==
cache-control: public, max-age=31536000
accept-ranges: bytes
age: 1050398
date: Tue, 07 May 2024 19:34:11 GMT
x-served-by: cache-iad-kjyo7100161-IAD, cache-osl6521-OSL
x-cache: Miss from cloudfront, HIT, HIT
x-cache-hits: 33, 0
x-timer: S1715110451.392247,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 303975
X-Firefox-Spdy: h2
|
|
| launcherleaks.net/uploads/css_built_27/20e9fb241d987e07d4fc702c601c3ed8_downloads_responsive.css?v=f71abd72281714889716 | 104.21.10.110 | 200 OK | 934 B |
URL GET HTTP/3launcherleaks.net/uploads/css_built_27/20e9fb241d987e07d4fc702c601c3ed8_downloads_responsive.css?v=f71abd72281714889716 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typeASCII text, with very long lines (944), with no line terminators Hashfe5ac1a4ab4caea663a65254c9c964cf f47bb77e21cc6cc7f5ac57f69ea00f1d3a59fcfc d306fddb662c56c73a09b45ffd3abaea135ed7312932c422817ce3aeb36706b4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/css_built_27/20e9fb241d987e07d4fc702c601c3ed8_downloads_responsive.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:17 GMT
etag: W/"663723f5-3a6"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5239
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yEwR3sb4xF0hYVW9iPNFPhDV5HocGgkLpwSIFbq4PGvuGGmzW2Hx%2FozTNwvk8KXq%2FapH2%2FCrq1FfQmz3ycYPc9hqu9df7UJ90TIuToMn5ti1yNnfULnl3NIv66792stQVhv11w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554e94c0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/javascript_downloads/front_front_view.js?v=f71abd72281715110437 | 104.21.10.110 | 200 OK | 4.4 kB |
URL GET HTTP/3launcherleaks.net/uploads/javascript_downloads/front_front_view.js?v=f71abd72281715110437 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typeJavaScript source, ASCII text, with very long lines (4427), with no line terminators Hashb21f7fe12f63c3f9e923ddf4b50318f6 fa6bbcc23164efc154682bdb588f51d711c0dcdd 3be7ba667b5c819266511385294c565527c129a904cee55a7128915211b2212c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/javascript_downloads/front_front_view.js?v=f71abd72281715110437 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 19:33:57 GMT
etag: W/"663a8225-111e"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Q4T0GdNV7r7IlL6pa8ShIXDnlvVlAYN1Bb4NlvCXC5JdgbUhT%2FtiSsJC9yJ87lGvhz8RccmFWssvD90nYlUvlBvOKspR%2B9OhDI6cWZjaP3dlwtx%2B3wafXwsUEZ6x7QOvTuAlTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a55519a60b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/set_resources_27/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.css | 104.21.10.110 | 200 OK | 15 kB |
URL GET HTTP/3launcherleaks.net/uploads/set_resources_27/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.css IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typeASCII text, with very long lines (14925) Hasha695c6b6c6a2d0e245136a61110d64ce 2b3d7aa150054e72098c83f6fe6dcad72944defb 172381b5313c5d1c2c9972f45e7e4c12f1a59c2f185cca365a8750dcea48acf6
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/set_resources_27/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.css HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:17 GMT
etag: W/"663723f5-3b4c"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wXuo3W4W5e8fQd576%2FTzm3feF0w%2BIT2RZwf5sRSBYTBoHrZDINGz6ILSWwVPJhhyxmV%2FmA2LMXkTK9MPhED9FXmHKaREnVs8k1a1onCTRj%2FK81uP%2FmCsarVU%2Bh7%2FuadtHVwl3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554e9570b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/javascript_global/root_framework.js?v=f71abd72281715110437 | 104.21.10.110 | 200 OK | 447 kB |
URL GET HTTP/3launcherleaks.net/uploads/javascript_global/root_framework.js?v=f71abd72281715110437 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
Size447 kB (447353 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/javascript_global/root_framework.js?v=f71abd72281715110437 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:10 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 19:33:56 GMT
etag: W/"663a8224-6d379"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kLXZQqOPRS%2BbaBEc9VnPE7mA4nfmJ43UKTHD9MSd3aw5n5QyDWqHfqOpek42ibUGc8ZqdSxQ9RwIWNNAx1FuzCUaODKILXuhESVM4pj%2BwZHFgJ22t%2BEJCchJHXNH8%2F8UDuAn9w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a555199a0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/monthly_2024_04/86594cd2864fc6a0de7a78960d88c122fdd70094.thumb.gif.15b70b2fb4dcc87a452c80cc95ab93ff.gif | 104.21.10.110 | 200 OK | 3.9 MB |
URL GET HTTP/3launcherleaks.net/uploads/monthly_2024_04/86594cd2864fc6a0de7a78960d88c122fdd70094.thumb.gif.15b70b2fb4dcc87a452c80cc95ab93ff.gif IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
Size3.9 MB (3945875 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/monthly_2024_04/86594cd2864fc6a0de7a78960d88c122fdd70094.thumb.gif.15b70b2fb4dcc87a452c80cc95ab93ff.gif HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/gif
content-length: 3945875
last-modified: Wed, 17 Apr 2024 18:24:23 GMT
etag: "662013d7-3c3593"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3675
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lZOo5DRJDx6hAYYWqLpKCSU1nsKbb05U5xIrilzrrdXDFVOA%2BlHIgDRtNPfHWe8xXflYFUq1NOXz8%2Fn0q%2Fdb1ghxvv3UMqFY%2B%2BJBg2AbJH4forgv7%2FAbav7al%2Fiek%2BbXxQrB6Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56109050b65-OSL
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/css_built_27/258adbb6e4f3e83cd3b355f84e3fa002_custom.css?v=f71abd72281714889716 | 104.21.10.110 | 200 OK | 24 kB |
URL GET HTTP/3launcherleaks.net/uploads/css_built_27/258adbb6e4f3e83cd3b355f84e3fa002_custom.css?v=f71abd72281714889716 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typeASCII text, with very long lines (23709), with no line terminators Hashbf28efbd565f583f0153cdfa20ccfcb6 a722574c1dcc18700be4f17289a4cd5c206ef63d 0629f57c0d3c375834b1828df484e0853afd113c4863d62cd5ab34b2f2e0e116
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/css_built_27/258adbb6e4f3e83cd3b355f84e3fa002_custom.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:17 GMT
etag: W/"663723f5-5c9d"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lWgabupTv57opyL56FM%2F%2BM74Z1Hcft%2F%2BpBV7bRlWrZYnRYrx9Vn9tu85D%2Flyfqz%2BczhkAqVlRdNcdOPOMflTPbmbrjfO8%2FgcLLUnncLXXWKMKk%2F7lkgdmejNJ8%2F9MEJY%2B2QtyQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554e9540b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| use.fontawesome.com/releases/v6.4.2/css/all.css | 104.21.27.152 | 200 OK | 102 kB |
URL GET HTTP/2use.fontawesome.com/releases/v6.4.2/css/all.css IP104.21.27.152:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerCloudflare, Inc. Subjectuse.fontawesome.com FingerprintCB:BE:6B:C4:5F:DF:18:7A:C3:AD:BF:6C:40:36:18:9F:E2:99:7F:78 ValidityThu, 12 Oct 2023 00:00:00 GMT - Thu, 10 Oct 2024 23:59:59 GMT
File typeASCII text, with very long lines (52276) Size102 kB (102217 bytes) Hash5222e06b77a1692fa2520a219840e6be 8b4236206a8b86af3761a244277663046d7ff7ee 0934b1fc0d3a766d41d3adf5e7a115875e66e98ebba408d965a41cf3d2cb4ab5
GET /releases/v6.4.2/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
etag: W/"5222e06b77a1692fa2520a219840e6be"
last-modified: Fri, 22 Sep 2023 01:46:33 GMT
vary: Accept-Encoding
cache-control: max-age=31536000
cf-cache-status: HIT
age: 612442
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DhWYPHN7b5tvpF5cTAr5SXF0%2BxVwmiXQFxrXQUK5rGxSVRFy7%2FcKrc2SEPt89UNq0PchdyfG%2FNL06C7wH9DjNjjMOSFgcX3kF7dwxIoha4f52n6cUKmOvqbVyJruIYuSQm4YT%2Bph"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a5575af05688-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| launcherleaks.net/uploads/javascript_core/plugins_plugins.js?v=f71abd72281715110437 | 104.21.10.110 | 200 OK | 1.1 kB |
URL GET HTTP/3launcherleaks.net/uploads/javascript_core/plugins_plugins.js?v=f71abd72281715110437 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typeJavaScript source, ASCII text, with very long lines (1085), with no line terminators Hasha3a3b439d522bbb2006fcebe7b4258dc e6afd992d4ffeba64c6ce056d394c130014856eb ca1aecb3a408053150bdbfa325c0c8c19b7a9f2fac2e51a88c82748de03e0989
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/javascript_core/plugins_plugins.js?v=f71abd72281715110437 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 19:33:56 GMT
etag: W/"663a8224-42e"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5x0NKc9LGx%2FxvyepOIWU9VdZJ6fcXYiuEXZ%2BhVS2XTD237VUyRMsZghghXq5pD09rbnQQrKqGFM1jzc%2B9%2FbhFipZuoO0U9dy0n0K6j4OmH5s%2B6ZWRJu94JudLQlqKxVvNqKaSA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a55519a10b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| i.gifer.com/4bXG.webp | 0.0.0.0 | | 0 B |
IP0.0.0.0:0
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerLet's Encrypt Subjectgifer.com Fingerprint97:0F:D7:9D:0C:22:57:27:95:17:B5:9B:EF:86:BD:14:D6:D8:8E:57 ValidityFri, 26 Apr 2024 20:03:56 GMT - Thu, 25 Jul 2024 20:03:55 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /4bXG.webp HTTP/1.1
Host: i.gifer.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 19:34:13 GMT
content-type: text/plain; charset=utf-8
last-modified: Mon, 06 Sep 2021 09:36:14 GMT
vary: Accept-Encoding
etag: W/"6135e10e-19566"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
strict-transport-security: max-age=604800
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| launcherleaks.net/uploads/javascript_global/root_front.js?v=f71abd72281715110437 | 104.21.10.110 | 200 OK | 105 kB |
URL GET HTTP/3launcherleaks.net/uploads/javascript_global/root_front.js?v=f71abd72281715110437 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
Size105 kB (105422 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/javascript_global/root_front.js?v=f71abd72281715110437 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:10 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 19:33:56 GMT
etag: W/"663a8224-19bce"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=h%2B5L%2FLSWPtdtRrn3%2F2YGXJs5RFPQRngr5tVj6F75IHciCBxSHS%2BKiyIcY%2B%2FNGAKEbDwLgzo%2BtEXgSMUAnzwPNtEUiFF4M%2FQTWjrxf5PPYZLnq%2B0p5Jgjb6YZsi4xMQu1zOHjWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a55519a20b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ | 104.21.10.110 | 200 OK | 184 kB |
URL User Request GET HTTP/2launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ IP104.21.10.110:443
CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
Size184 kB (183787 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /file/7615-white-custom-clothing-pack-rare-leak/ HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/html;charset=UTF-8
set-cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug; path=/; secure; HttpOnly
x-ips-loggedin: 0
vary: Cookie, Accept-Encoding
x-xss-protection: 0, 1; mode=block
x-frame-options: sameorigin, SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-content-security-policy: frame-ancestors 'self'
referrer-policy: strict-origin-when-cross-origin
last-modified: Tue, 07 May 2024 19:34:09 GMT
expires: Tue, 07 May 2024 19:49:09 GMT
cache-control: no-cache="Set-Cookie", max-age=900, public, s-maxage=900, stale-while-revalidate, stale-if-error
strict-transport-security: max-age=15768000; includeSubDomains;
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GJcEyv%2FH9tYrWoywty4%2FgmxqKf4zc6jtZBU6S1qRMS18UA6MSHuPxAychhghtzPqFX9TBBDsg2VOiY%2FEz4VEs%2F6SmXV0OcmaeuR7wxfDwIVEl0ipWWH%2Bum0ZDyAEt5HXyWokjA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a54d4f2056ba-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| launcherleaks.net/uploads/set_resources_27/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.js | 104.21.10.110 | 200 OK | 135 kB |
URL GET HTTP/3launcherleaks.net/uploads/set_resources_27/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.js IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typeJavaScript source, ASCII text, with very long lines (65281) Size135 kB (134779 bytes) Hashd76dc704cfe2bb6f6a5fb1528c395c67 b58e50e0c92c404c26673305a2e4a259937c6a16 776e433644a3f8258ae65109332b33eaf7f9d98de6d9dff61624a84db0ca0988
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/set_resources_27/d3c5465b682b402f2e7fe6b8c4409085_swiper-bundle.min.js HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: application/javascript
last-modified: Sun, 05 May 2024 06:15:16 GMT
etag: W/"663723f4-20e7b"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ht%2BCL1%2BeXSrtVI20l2w2Ddgg9jiO1WG%2BUHJtVFggV1zpfJbUqaSkPnLQidNGSgLFjvd7JriWy2uy2BCr%2B9IbVsm1oXre2EikkYsrj4r2jr5gmJyeg8NsJR6RH7JwY25z5xZvmw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a55519aa0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| i.gyazo.com/cf48240e1a5908853bf7c7444351a6de.png | 104.18.24.163 | 200 OK | 157 kB |
URL GET HTTP/2i.gyazo.com/cf48240e1a5908853bf7c7444351a6de.png IP104.18.24.163:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerLet's Encrypt Subjectgyazo.com FingerprintB1:88:95:2F:E3:8B:92:D7:5A:FA:0F:4B:8C:CB:22:9F:DF:EA:DB:F8 ValidityWed, 03 Apr 2024 02:09:12 GMT - Tue, 02 Jul 2024 02:09:11 GMT
File typePNG image data, 1046 x 646, 8-bit/color RGBA, non-interlaced Size157 kB (157231 bytes) Hashcf48240e1a5908853bf7c7444351a6de 8ac4058e3f5c321e9201c344081a68a59cb79e32 7941c1300641e6d3729686a430e0c4248168d69fb4243214d128fbe6a936d8dd
GET /cf48240e1a5908853bf7c7444351a6de.png HTTP/1.1
Host: i.gyazo.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: image/png
content-length: 157231
cf-ray: 8803a561a85256c7-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: https://gyazo.com
age: 400505
cache-control: public, max-age=31536000
etag: "cf48"
expires: Wed, 07 May 2025 19:34:11 GMT
set-cookie: Gyazo_cfwoker=i; Secure; HttpOnly; SameSite=None; Expires=Tue, 01 Jan 2030 00:00:00 GMT
vary: Accept-Encoding
via: 1.1 google
access-control-allow-credentials: true
content-dpr: 1.000000
x-cache-level: ZS
server: cloudflare
X-Firefox-Spdy: h2
|
|
| launcherleaks.net/uploads/javascript_core/front_front_widgets.js?v=f71abd72281715110437&csrfKey=&antiCache=f71abd72281715110437 | 104.21.10.110 | 200 OK | 17 kB |
URL GET HTTP/3launcherleaks.net/uploads/javascript_core/front_front_widgets.js?v=f71abd72281715110437&csrfKey=&antiCache=f71abd72281715110437 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typeJavaScript source, ASCII text, with very long lines (1733) Hash9e272c457e8ec0e369564c580ef9f882 007f62cf572d4c263b245ce6174989675fb5a9fc a4156775c0f3a08ac4489f72566dd73853c7566c3e75e083d2d0acbf72acdbae
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/javascript_core/front_front_widgets.js?v=f71abd72281715110437&csrfKey=&antiCache=f71abd72281715110437 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/javascript, application/javascript, application/ecmascript, application/x-ecmascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
X-Requested-With: XMLHttpRequest
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug; ips4_ipsTimezone=UTC; ips4_hasJS=true
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:13 GMT
content-type: application/javascript
last-modified: Sun, 05 May 2024 06:15:17 GMT
etag: W/"663723f5-40b1"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Lc%2B4XeKZdpL9QcGCC5O%2F%2F4bTxmND7djj8kpbrODlU69oVlOiVcots9JMageJX%2B%2FPKpGNlJE1eJjOF13QxX1qbEHcKAfDN15QbQOnwfgGzCmoxKLqFgNh2668gZZ1iZjVr%2F%2Fs9g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a56aabb30b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| yt3.ggpht.com/a1lb2wltUZHiWZKIyrFwon_VBAhI07uFhjjZsjBG_IR-xL4tc4a8D0Elf4GmFLhPItEJGejR3g=s68-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 1.5 kB |
URL GET HTTP/2yt3.ggpht.com/a1lb2wltUZHiWZKIyrFwon_VBAhI07uFhjjZsjBG_IR-xL4tc4a8D0Elf4GmFLhPItEJGejR3g=s68-c-k-c0x00ffffff-no-rj IP142.250.74.161:443
Requested byhttps://www.youtube-nocookie.com/embed/9Ylp0HIu4uM?feature=oembed CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com Fingerprint7B:64:D0:4F:29:87:0A:A8:90:15:F1:9F:B6:8F:FB:D6:AC:D2:76:56 ValidityTue, 16 Apr 2024 04:13:47 GMT - Tue, 09 Jul 2024 04:13:46 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 68x68, components 3 Hash920e58ecb10d5834085d9d7266e1f56b 397aab0c32d2d25c093f6e4f75bd88f6564c71e9 5767766e28d2d911f9c42f8a6ef3220b255029968ed700a3024aff60d7248f09
GET /a1lb2wltUZHiWZKIyrFwon_VBAhI07uFhjjZsjBG_IR-xL4tc4a8D0Elf4GmFLhPItEJGejR3g=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube-nocookie.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="channels4_profile.jpg"
x-content-type-options: nosniff
server: fife
content-length: 1476
x-xss-protection: 0
date: Tue, 07 May 2024 17:00:43 GMT
expires: Wed, 08 May 2024 17:00:43 GMT
cache-control: public, max-age=86400, no-transform
age: 9211
etag: "v1"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| launcherleaks.net/uploads/css_built_27/90eb5adf50a8c640f633d47fd7eb1778_core.css?v=f71abd72281714889716 | 104.21.10.110 | 200 OK | 24 kB |
URL GET HTTP/3launcherleaks.net/uploads/css_built_27/90eb5adf50a8c640f633d47fd7eb1778_core.css?v=f71abd72281714889716 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typeASCII text, with very long lines (24436), with no line terminators Hashb4a8b5b1d6079fd5b2bdb2a11e2ef329 1f4c5ad63df6a7b3dadfd6801e87d43356055e9e 52847b98c3ef06e9ea71a5f4e713bc5ca92ec1d59233c37663d00d9f16b21194
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/css_built_27/90eb5adf50a8c640f633d47fd7eb1778_core.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:16 GMT
etag: W/"663723f4-5f74"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 5894
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XszTcJ%2FpJRLs87N2C4w39m1UDrtztE6GB3YwNf13HfF3YSnB5VJ6lmnjVQoMqd6CHjpwE2JiNn8cWxUzAzo%2B334Zj6f8Yjej4m4H3IZgmw%2FhwJUPjRXMiM0uKdCkhbn3uhvV3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554d9410b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/css_built_27/ecf8cbf597c675f333fa61d7fe877660_widgets.css?v=f71abd72281714889716 | 104.21.10.110 | 200 OK | 277 B |
URL GET HTTP/3launcherleaks.net/uploads/css_built_27/ecf8cbf597c675f333fa61d7fe877660_widgets.css?v=f71abd72281714889716 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typeASCII text, with no line terminators Hasha375b3f0fae08440f22bcf1bfc025cba a18d88403675ec7a8dd71a48eee37f4e245dbdff cf35a9b2bbe2737ba157dd24de9e11e7a4e2216ed2c2f4542f2d3f83d0bee7d0
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/css_built_27/ecf8cbf597c675f333fa61d7fe877660_widgets.css?v=f71abd72281714889716 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: text/css
last-modified: Sun, 05 May 2024 06:15:18 GMT
etag: W/"663723f6-115"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: HIT
age: 3674
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EY0KGavDnGhrJXggBxMpF6f5NUTbDiSR1I5rjqZR6EqCEaupfYR5t3b3s9iC%2Fz1AIya4wPsGEbwzRc9iB9YVgHTxQqd86P8l1ezypjewi%2BvLtJRvEnohgLSE16n%2FV9Z2BtKM9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a554e94f0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ | 104.21.10.110 | 200 OK | 0 B |
URL GET HTTP/3launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /file/7615-white-custom-clothing-pack-rare-leak/ HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:11 GMT
content-type: text/html;charset=UTF-8
x-ips-loggedin: 0
vary: Cookie, Accept-Encoding
x-xss-protection: 0, 1; mode=block
x-frame-options: sameorigin, SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-content-security-policy: frame-ancestors 'self'
referrer-policy: strict-origin-when-cross-origin
last-modified: Tue, 07 May 2024 19:34:10 GMT
expires: Tue, 07 May 2024 19:49:10 GMT
cache-control: no-cache="Set-Cookie", max-age=900, public, s-maxage=900, stale-while-revalidate, stale-if-error
strict-transport-security: max-age=15768000; includeSubDomains;
x-content-type-options: nosniff
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DF7aNhw6g0TUxJcsBXKl3ubkEaWQtLQxwSUg5uh%2BqifQ3LJwwpFtp%2BX67jjgIU4AkgDUY9%2BVTEVIjHLBoz%2BGEaOgxyZtHMIIxLfZ8%2F4IK1cRCWxdhULy9HwUTbOXRFj5QkuViA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803a55a8ffa0b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|
| launcherleaks.net/uploads/javascript_global/root_map.js?v=f71abd72281715110437 | 104.21.10.110 | 200 OK | 2.6 kB |
URL GET HTTP/3launcherleaks.net/uploads/javascript_global/root_map.js?v=f71abd72281715110437 IP104.21.10.110:443
Requested byhttps://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/ CertificateIssuerGoogle Trust Services LLC Subjectlauncherleaks.net FingerprintC8:F4:AA:45:F3:C7:2D:87:DA:73:E8:DD:0F:EF:6E:D9:A4:31:C3:5E ValidityMon, 06 May 2024 19:16:17 GMT - Sun, 04 Aug 2024 19:16:16 GMT
File typeASCII text, with very long lines (2756), with no line terminators Hash5afc2c4c433cb478d788bd58bee1c8ca 0393b3d12c52af2d60a913ac7529cfaf6a247869 93c3ed6d9e28b2d5f21aa99cddefa3685c329344870ff962018d6e6923cf6c5b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /uploads/javascript_global/root_map.js?v=f71abd72281715110437 HTTP/1.1
Host: launcherleaks.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://launcherleaks.net/file/7615-white-custom-clothing-pack-rare-leak/
DNT: 1
Connection: keep-alive
Cookie: ips4_IPSSessionFront=agc22704vgvefa7klv4c9afmug
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 19:34:09 GMT
content-type: application/javascript
last-modified: Tue, 07 May 2024 19:34:08 GMT
etag: W/"663a8230-a4a"
strict-transport-security: max-age=15768000; includeSubDomains;
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BJBauBnPwy1JJoXneFKR0Y%2FNFCd3ntwadPB2Ja1%2FHvCaHxWLbiIw1IaA2HLIKSMmrfg26R51NfoAveNV9hD6mxZ44FZfdaV5DJd%2BoO7rpC8K%2Bc063QuoP7HwHILpRUa5oY%2FOdg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803a55519a70b65-OSL
content-encoding: gzip
alt-svc: h3=":443"; ma=86400
|
|