Report - flow.page/amerilit.com/

Report Overview

Submitted URL
flow.page/amerilit.com/
IP
104.18.41.197
ASN
#13335 CLOUDFLARENET
Submitted
2024-03-30 00:47:33
Access
public
Website Title
AmeriLit's Flowpage
Final URL
flow.page/amerilit.com
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
96

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdn.cookielaw.org	502	unknown	2013-12-28	2024-03-28	5.1 kB	546 kB	104.19.178.52
cdn.flowcode.com	382700	2010-06-16	2021-01-29	2024-03-22	503 B	42 kB	104.18.42.158
flow.page	213165	2020-02-25	2020-03-09	2024-03-28	22 kB	6.5 MB	172.64.146.59
geolocation.onetrust.com	802	2004-01-12	2018-02-07	2024-03-29	898 B	824 B	172.64.155.119
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24	2024-03-28	484 B	20 kB	104.16.79.73

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed
2024-03-29	medium	flow.page	Sinkholed

ThreatFox

No alerts detected

JavaScript (42)

	URL	Size	First Seen	Last Seen
	geolocation.onetrust.com/cookieconsentpub/v1/geo/location/geofeed	81 B	2023-03-11	2024-04-25
Pretty URL geolocation.onetrust.com/cookieconsentpub/v1/geo/location/geofeed IP 172.64.155.119 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:52:06 Last Seen2024-04-25 18:46:13 Times Seen221 Hash d642df612e1d1c0e7bbb645cd8f0bb81 f83ffb0c06322e6b4d880755c577c1f4fcdad159 2d8ded85ac90827d57e8350523ca0dc773aaed3ffdb5e820eaa839904e9fd1f1 Loading...

	flow.page/_next/static/chunks/pages/_app-31af52e2c1032b87.js	2.9 MB	2024-03-29	2024-03-30
Pretty URL flow.page/_next/static/chunks/pages/_app-31af52e2c1032b87.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 17:49:20 Last Seen2024-03-30 01:47:35 Times Seen3 Hash 8fc3abe76adbc856f8618fc154900c09 01ac8792f9a649edc63b26664ad4e02d93c30ef7 d0743fcbecfad929407fdea6d42107cd499b69d33e836518922db7a1ab100d61 Loading...

	flow.page/_next/static/chunks/178-a99191091a50dc6d.js	7.4 kB	2023-12-03	2024-04-25
Pretty URL flow.page/_next/static/chunks/178-a99191091a50dc6d.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-03 08:42:03 Last Seen2024-04-25 18:46:13 Times Seen99 Hash 14c51c081b16cdcf64967c37bb258fdc d2b51997a942b3fd5aaf230fa4778fabcb14972e 02a3a8e4d50bdb7e57400987fb3c61470358d26e91e6ac1e7751b487612ac4fa Loading...

	flow.page/_next/static/chunks/20850-93644b30ce6667f8.js	47 kB	2024-03-22	2024-03-30
Pretty URL flow.page/_next/static/chunks/20850-93644b30ce6667f8.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-22 17:32:51 Last Seen2024-03-30 01:47:35 Times Seen12 Hash 77395768041c156235fe74f6a4b6c563 9a823078ac26b4d18376abace071ce7cc30e35ce 5bae2a653e978767bbe86f23dd9f8ba293d343cfa93f63b0755b19066249af95 Loading...

	flow.page/_next/static/1c8a181f455b42760895e6aa5fcd4f9fa3aba76b/_ssgManifest.js	80 B	2023-04-05	2024-04-26
Pretty URL flow.page/_next/static/1c8a181f455b42760895e6aa5fcd4f9fa3aba76b/_ssgManifest.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 01:40:13 Last Seen2024-04-26 12:37:26 Times Seen571 Hash b404e23d62d95bafd03ad7747cc0e88b 011268d6627898dc2caac8b9678086cd9b9a7dfe 678f6ce2cb80b1fe72fc67e7412be6e2ab6ada083111b64f7c40d35e3cba5e00 Loading...

	cdn.cookielaw.org/scripttemplates/otSDKStub.js	21 kB	2024-03-26	2024-04-24
Pretty URL cdn.cookielaw.org/scripttemplates/otSDKStub.js IP 104.19.178.52 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-26 08:51:06 Last Seen2024-04-24 12:12:45 Times Seen1833 Hash 371fe1fde25dc853add509f5d9fe57ac b6219c34246fa4a3f1f35c64bbd708dc04c463ca 92e4588c227a58321a728574129e52ec244df30b90fc9a64a30ee65410104c41 Loading...

	flow.page/_next/static/chunks/main-d459f983bba9ecde.js	135 kB	2023-12-03	2024-04-25
Pretty URL flow.page/_next/static/chunks/main-d459f983bba9ecde.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-03 08:42:04 Last Seen2024-04-25 18:46:13 Times Seen160 Hash 04b90e9f5ae0c24d1cc6b3be58ccb4e1 b15d93711a0b86352cf6f890afb45f932ad39d3e 8a049834fda94e5ba4d7161f02264cceb041df8ee76acb5da496d73d6489de9b Loading...

	flow.page/_next/static/chunks/6510-76acdad48e575a33.js	32 kB	2023-12-13	2024-04-25
Pretty URL flow.page/_next/static/chunks/6510-76acdad48e575a33.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-13 00:04:53 Last Seen2024-04-25 18:46:13 Times Seen149 Hash eb0886b4cec025ef7dde1f0c8369cacf b16cd3e6567ef5a54c59c13e32544805141927b8 4c1ae563002c9e48b04e4250b6d4f5d533da94f5a90f050ba8456f9a07f05635 Loading...

	flow.page/_next/static/chunks/44666-62766aadb22bc4f0.js	19 kB	2024-01-11	2024-04-25
Pretty URL flow.page/_next/static/chunks/44666-62766aadb22bc4f0.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-11 10:37:29 Last Seen2024-04-25 18:46:13 Times Seen141 Hash 5159f9a3da660f5c015b5decde2225af b79d035e1f5e79a4f463913a798bca6d051ff4d6 c1a2ecfeb037687dd5c2d50a8b75a9a525d667df1118f3a2e8050e085abbe0ae Loading...

	flow.page/_next/static/chunks/56043-cc726f9d57d4cf18.js	14 kB	2024-03-20	2024-03-30
Pretty URL flow.page/_next/static/chunks/56043-cc726f9d57d4cf18.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-20 22:51:04 Last Seen2024-03-30 01:47:35 Times Seen16 Hash ca84c1b8fb341706330907ceff1c4032 cac78d27ac15acacd40922de85f41da3351ee7af 17a8c43b409acf489d42a54874a1d48bf2c27282f4b56da457a0666dc003cd3f Loading...

	flow.page/_next/static/chunks/34510-4882df08442b95a7.js	20 kB	2024-03-19	2024-04-08
Pretty URL flow.page/_next/static/chunks/34510-4882df08442b95a7.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-19 04:26:48 Last Seen2024-04-08 17:47:31 Times Seen28 Hash caf3ad59da831390b993cd2aba2b33b7 91995c5f28748abd2c0dcaac29288888bd9704eb b71890310571be22dacd2470f05c96c9aa2cc794adf2e251acdf85b82e7bf499 Loading...

	flow.page/_next/static/chunks/44781-db2bf152f99155df.js	7.8 kB	2023-12-03	2024-04-25
Pretty URL flow.page/_next/static/chunks/44781-db2bf152f99155df.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-03 08:42:03 Last Seen2024-04-25 18:46:13 Times Seen97 Hash 18b706bfbf32e7162ddd26d1ef1d258d d0cd609659af56c470903d188228447f20955c01 f4f0a5d5a172b3d0262395d7c5c5c88ad45b14049d29390abc6047fa9da3362f Loading...

	flow.page/_next/static/chunks/2031-7ff230300ba90837.js	25 kB	2023-12-25	2024-04-08
Pretty URL flow.page/_next/static/chunks/2031-7ff230300ba90837.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-25 10:52:25 Last Seen2024-04-08 17:47:31 Times Seen127 Hash 77ad666d85260987ac60609fea564747 84c8b8c791e9fe89a87ee19f9c41439911a5a645 fcff039dfad042cef2941f556c82d4c6247343c50b2c89d59118080669d77a34 Loading...

	flow.page/_next/static/chunks/94783-dda4c37b26f24f59.js	11 kB	2024-03-19	2024-04-25
Pretty URL flow.page/_next/static/chunks/94783-dda4c37b26f24f59.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-19 04:26:48 Last Seen2024-04-25 18:46:13 Times Seen46 Hash 8460e3e75303b0c6d6ac220ad9d83a2d e7d4a25e1488be9ff2f1010085bbca07d26600b8 92de91a51d8d7cd513c86a43eb6ea99e862411ceb0e9b1afa83fd5249ee89084 Loading...

	flow.page/_next/static/chunks/81272-aa17b1bc89b4a0b6.js	41 kB	2024-03-17	2024-03-30
Pretty URL flow.page/_next/static/chunks/81272-aa17b1bc89b4a0b6.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-17 07:48:12 Last Seen2024-03-30 01:47:35 Times Seen24 Hash a59a0cfb1cc1c24e34b6b026341b9654 f2c3b704f405eca9ee678e428b4e2778159708d3 e700ee575ff2cc2aa7c86b116f30c67942500c9d651460b8b07fdd1c3000d810 Loading...

	static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317	20 kB	2023-10-13	2024-04-25
Pretty URL static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 IP 104.16.79.73 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-13 06:51:00 Last Seen2024-04-25 04:27:15 Times Seen28474 Hash dd1d068fdb5fe90b6c05a5b3940e088c 0d96f9df8772633a9df4c81cf323a4ef8998ba59 6153d13804862b0fc1c016cf1129f34cb7c6185f2cf4bf1a3a862eecdab50101 Loading...

	flow.page/amerilit.com	67 B	2023-03-07	2024-04-25
Pretty URL flow.page/amerilit.com IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:07:05 Last Seen2024-04-25 18:46:13 Times Seen125 Hash 36e16482cdf09931b8f5d5d5869879ef f71749bfd2ad60440bf404cb24a39ed3e50a8b37 57003838f58181db727d2fbc34e1827835f941495555c92316800a95d099a76c Loading...

	flow.page/_next/static/chunks/99179-66b131284e3960d2.js	60 kB	2023-12-03	2024-04-25
Pretty URL flow.page/_next/static/chunks/99179-66b131284e3960d2.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-03 08:42:03 Last Seen2024-04-25 18:46:13 Times Seen159 Hash 384d609c492bec07e13e35b31387385c b4703470e8253893e099908217160d924b14410f b884becb66d600c52b0fa9efc41d55eca0763e2e7edcc572c742c4e529d45027 Loading...

	flow.page/_next/static/chunks/75520-6c7db7a3afaeef1c.js	19 kB	2024-03-20	2024-03-30
Pretty URL flow.page/_next/static/chunks/75520-6c7db7a3afaeef1c.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-20 22:51:04 Last Seen2024-03-30 01:47:35 Times Seen13 Hash 2d3d4c8853836c31f3b0d07b919067bd 50b15e24f590ef01d84a7efaafb2645fc1e04e42 c234508c262891cc212aa0e0099bf39a9ef08d6fd4fdcbfda0284b1d905a34af Loading...

	flow.page/_next/static/chunks/69294.90f0524e12de5215.js	38 kB	2024-03-12	2024-04-25
Pretty URL flow.page/_next/static/chunks/69294.90f0524e12de5215.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-12 04:37:39 Last Seen2024-04-25 18:46:13 Times Seen49 Hash ec3b49e1803276d06abf8cb52f45d1da 8b9f3320ff95d69fcc5a625414f77d4a59dd3194 66867acbe0ecd265e57b726e7036193f0c782f038c65b21f7521ef19ddeee749 Loading...

	flow.page/_next/static/chunks/1d90eb00.eb248845497ffa25.js	127 kB	2024-03-12	2024-04-25
Pretty URL flow.page/_next/static/chunks/1d90eb00.eb248845497ffa25.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-12 04:37:40 Last Seen2024-04-25 18:46:13 Times Seen50 Hash 073442c187da57d9af282fda20638c27 fb41bf1eadda9f3891cde84b50fbedc603df3beb 65db8bc4034c27ff557a7495be843573b78be4e3e7b174690cd03b152461b257 Loading...

	flow.page/_next/static/chunks/webpack-efcc3d86e43a4aa5.js	23 kB	2024-03-29	2024-03-30
Pretty URL flow.page/_next/static/chunks/webpack-efcc3d86e43a4aa5.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 17:49:19 Last Seen2024-03-30 01:47:35 Times Seen6 Hash 0e0bd0a022a4619f2cec16c8fb57c73c 295d40c45d23eab5b107a13d89e70dd56a5b4b4e a016bdc9a8f54f47f0f699956fda5558967efe2aa677f3ea3dd7843872e990a0 Loading...

	cdn.cookielaw.org/scripttemplates/202302.1.0/otBannerSdk.js	414 kB	2023-04-05	2024-04-23
Pretty URL cdn.cookielaw.org/scripttemplates/202302.1.0/otBannerSdk.js IP 104.19.178.52 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-05 03:59:12 Last Seen2024-04-23 07:37:23 Times Seen1497 Hash 9045efc42b2abbf31781d57f8830fa3d 1c06be604586fe79a4e438f1cc455f9f6bfc430d e70be2849f7e7f7f27dc4eb168538ef25474e4799e1a4a4d9aee01f57f4c5a3f Loading...

	flow.page/_next/static/chunks/1cc2734a-8dfd9412a1ccb9a2.js	100 kB	2023-12-03	2024-04-25
Pretty URL flow.page/_next/static/chunks/1cc2734a-8dfd9412a1ccb9a2.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-03 08:42:04 Last Seen2024-04-25 18:46:13 Times Seen158 Hash 739259f3431328613584607afcbbaeab ca04caa8d48adee786c8c93f1d0f65a6034c6f22 b7737938b1b2c661c5dcaa4712dfca802b028f78c6ec307ad92557f311700848 Loading...

	flow.page/_next/static/chunks/83648-760bf37057e8c312.js	10 kB	2024-03-17	2024-03-30
Pretty URL flow.page/_next/static/chunks/83648-760bf37057e8c312.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-17 07:48:12 Last Seen2024-03-30 01:47:35 Times Seen24 Hash 125627a7a052a1458198774764ff2864 c7b44652499065b3baa7314c9a82659354454c08 290818f87672be3e1461085b5807c0dd45371726fd1e776e88beec259950fae9 Loading...

	flow.page/_next/static/chunks/60055-5dcc5499ce68cf22.js	26 kB	2024-03-19	2024-04-25
Pretty URL flow.page/_next/static/chunks/60055-5dcc5499ce68cf22.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-19 04:26:48 Last Seen2024-04-25 18:46:13 Times Seen46 Hash 628e41919f8f23d1000ed195927ad1af 93cf742e96c0229e71b8798396aa244b7f6afff4 05e811083ea89790bb2cc30724cf5cf38bca0229d2350aee1375240ddda3f322 Loading...

	flow.page/_next/static/chunks/52296-693d638d883063ca.js	19 kB	2024-03-08	2024-03-30
Pretty URL flow.page/_next/static/chunks/52296-693d638d883063ca.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-08 10:11:04 Last Seen2024-03-30 01:47:35 Times Seen30 Hash b31070106158b965689c44571787e7a6 4a526620af01e78ac5f9ea7ba80bd37004906d26 36dc4ee0572001fcfad84717c7d05fe03f26eb6f170d5740dd50e0e97b4f37ab Loading...

	flow.page/_next/static/1c8a181f455b42760895e6aa5fcd4f9fa3aba76b/_buildManifest.js	25 kB	2024-03-29	2024-03-30
Pretty URL flow.page/_next/static/1c8a181f455b42760895e6aa5fcd4f9fa3aba76b/_buildManifest.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 17:49:19 Last Seen2024-03-30 01:47:35 Times Seen6 Hash 25ebbc4c66c82760146982b02e9c5af5 4d42beea789224e2ae5486b75268c24962ea53b0 4936c8d9c232ab51a78a2593fd71e55554c42623b9de9c16588f446fb2f8ecb4 Loading...

	flow.page/_next/static/chunks/firebase.98862f5a22e6ec1f.js	1.9 kB	2024-03-12	2024-04-25
Pretty URL flow.page/_next/static/chunks/firebase.98862f5a22e6ec1f.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-12 04:37:40 Last Seen2024-04-25 18:46:13 Times Seen30 Hash d63297ab1bec803e8737b6a9ca6a9ef1 49d1d04871fd3fa51d01d242c3a3c5e3c4ab5795 dab5e5754de254d7f86d7bbcfb95c5e1b1d77d73511286a52fc7600cf6fc558f Loading...

	flow.page/_next/static/chunks/35170-c5b61bcec1cdf757.js	96 kB	2023-12-03	2024-04-25
Pretty URL flow.page/_next/static/chunks/35170-c5b61bcec1cdf757.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-03 08:42:03 Last Seen2024-04-25 18:46:13 Times Seen158 Hash 0693c4544d32b327863fa147b539bcd1 9f10eeaaa3bcb524eb82c8ed56a8797a44e829cf 91d6499a33be9927f6487014405aef545a42e5c1798417314d5437f61d42e8e3 Loading...

	flow.page/_next/static/chunks/framework-9bf262a507aaca62.js	142 kB	2023-12-03	2024-04-25
Pretty URL flow.page/_next/static/chunks/framework-9bf262a507aaca62.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-03 08:42:04 Last Seen2024-04-25 18:46:13 Times Seen157 Hash dc1b6b17d81148d0dfd676b5ec82d515 5eb81d67d3d8bbd48f60eed99c37903fecb13a05 0e752972b430eedefcd79548fdbc13b7f6045b22fd7507ede52bef17c725db30 Loading...

	flow.page/_next/static/chunks/52768-64be3e123e7b18de.js	23 kB	2023-12-03	2024-04-25
Pretty URL flow.page/_next/static/chunks/52768-64be3e123e7b18de.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-03 08:42:04 Last Seen2024-04-25 18:46:13 Times Seen159 Hash 1cd8a8d0612fb3fe2c4f4617e25b4c38 22e2c5a46b3a319b30fb81b4f2859e843ba923a7 19a3f94f9aca6899625b0e5e301345ffaf97f19b6f50389b1590d9d5b3b4074c Loading...

	flow.page/_next/static/chunks/72270-5f228131482e9481.js	8.1 kB	2024-03-29	2024-04-02
Pretty URL flow.page/_next/static/chunks/72270-5f228131482e9481.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 17:49:20 Last Seen2024-04-02 06:02:45 Times Seen4 Hash ae43ca35c483d9b7181101e4e6d9093b a63e0d57df3faac30e878669b453463c3b5275da 1d54cbe530948b7dd1fe0b41c265d9302349f24fac3ebd1e9b6e886a9a582ca1 Loading...

	flow.page/_next/static/chunks/74570-14b89fa9b14391f9.js	24 kB	2024-03-20	2024-04-25
Pretty URL flow.page/_next/static/chunks/74570-14b89fa9b14391f9.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-20 22:51:04 Last Seen2024-04-25 18:46:13 Times Seen40 Hash b61e4d6c5f2bda4f557ad4840358fb96 935ad5357156c0e8c3a74e8e62966696ec099708 d7b68a2feb17d83e23f77bcc44e4767b25e33f99620ae2d6e6896cb5bb01b7fc Loading...

	flow.page/_next/static/chunks/69314-b614db3df9b0c1b3.js	25 kB	2024-01-17	2024-04-25
Pretty URL flow.page/_next/static/chunks/69314-b614db3df9b0c1b3.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-17 04:19:10 Last Seen2024-04-25 18:46:13 Times Seen139 Hash fa6fa7675231fac9b05594f4e9a8c454 97be49fcc43418c5db5c97bbe769222142698979 88092e147ca8cd9e73281c13b9b4edb2da7a147f6215b45e91e52982d22ad874 Loading...

	flow.page/_next/static/chunks/pages/page/%5Bslug%5D-6c943983b06d42cd.js	127 kB	2024-03-29	2024-03-30
Pretty URL flow.page/_next/static/chunks/pages/page/%5Bslug%5D-6c943983b06d42cd.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 17:49:19 Last Seen2024-03-30 01:47:35 Times Seen6 Hash e5c7a55f5ae1e9fa75968afee4e884fb f2eca403b60f613d2eb16b87c27860d8e6d544c0 67e9e9ee1171f7b33d916bac2523705aa380ebdd53e6f1ad1c1b4c2cff150e21 Loading...

	flow.page/_next/static/chunks/63346.4b89e74a8b77b055.js	5.5 kB	2023-12-03	2024-04-25
Pretty URL flow.page/_next/static/chunks/63346.4b89e74a8b77b055.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-03 08:42:03 Last Seen2024-04-25 18:46:13 Times Seen98 Hash 99e5207cea7602716d6f8ab5ff6e2c3f d5c11dd65a69bb2732aefeaf97b9cc0a4fa33a58 dba2132752bf108134057126fd965e6581c05df032f4474bda0186ecc4be8cf1 Loading...

	flow.page/_next/static/chunks/39318-d7846cf91633567b.js	16 kB	2023-12-03	2024-04-25
Pretty URL flow.page/_next/static/chunks/39318-d7846cf91633567b.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-03 08:42:03 Last Seen2024-04-25 18:46:13 Times Seen146 Hash cec88bb3ac07dc2cda29f9417b321665 56eeb4ad7c23e0933b2de59c8aa0ad1a781fe5e1 3d06cfdc813f79422f48557dd5a08697364b4d9236473741a59b5f9412903a73 Loading...

	flow.page/_next/static/chunks/78366-47c78a8949f5f5f4.js	12 kB	2023-12-03	2024-04-25
Pretty URL flow.page/_next/static/chunks/78366-47c78a8949f5f5f4.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-03 08:42:04 Last Seen2024-04-25 18:46:13 Times Seen102 Hash ac41cc1ffca7542b3c0834316c6c6f30 32b1f19a2b39290b748fd7b2d5ad065021c4fee5 4c5654f7f2d5a95b53b1b302bde47d9e4586541a5c9b93fcb3a403bf892e75db Loading...

	flow.page/_next/static/chunks/155-dd9c8cbdc9e739f6.js	8.7 kB	2023-12-03	2024-04-25
Pretty URL flow.page/_next/static/chunks/155-dd9c8cbdc9e739f6.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-03 08:42:04 Last Seen2024-04-25 18:46:13 Times Seen97 Hash d4146e58c029315c512f193c51c75889 4a1a21cc4ac1d5ecdd5c8cbec6f1bcd2cedc1d41 fe55e89c7dfabf63cbf43831ff031e7342bdfd3ed0097816542ff213c167a190 Loading...

	flow.page/_next/static/chunks/46105-f6d864bee6797a0e.js	18 kB	2024-03-08	2024-03-30
Pretty URL flow.page/_next/static/chunks/46105-f6d864bee6797a0e.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-08 10:11:05 Last Seen2024-03-30 01:47:35 Times Seen30 Hash 8d32f115db378c1386bb582ed0e9b7ba b9689a4eccd565ec63e246f13f632bae31038fdb c89de7107bf0dbff3e5770eb923ae70310d6a9f705a0ba20926e3748eb897913 Loading...

	flow.page/_next/static/chunks/1267-2bd842130894a496.js	342 kB	2024-03-29	2024-03-30
Pretty URL flow.page/_next/static/chunks/1267-2bd842130894a496.js IP 172.64.146.59 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 17:49:19 Last Seen2024-03-30 01:47:35 Times Seen5 Hash 09362618b14757fac5dccd52a8dfb90c 13de35979cee63e1a83a4c20602c952ad861d8e7 018226ef623d1f4f5af02f128e21c6a9c119743d769ef504038854d95eebf635 Loading...

HTTP Transactions (63)

URL IP Response Size

cdn.cookielaw.org/scripttemplates/otSDKStub.js

104.19.178.52

200 OK

6.8 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/otSDKStub.js
IP
104.19.178.52:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31
ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (21099)
Size
6.8 kB (6839 bytes)
Hash
371fe1fde25dc853add509f5d9fe57ac
b6219c34246fa4a3f1f35c64bbd708dc04c463ca
92e4588c227a58321a728574129e52ec244df30b90fc9a64a30ee65410104c41

HTTP Headers

GET /scripttemplates/otSDKStub.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript
content-length: 6839
content-encoding: gzip
content-md5: Pg1MHDpg+UGdovxhidM4Kg==
last-modified: Thu, 28 Mar 2024 12:31:00 GMT
etag: 0x8DC4F22ED3FADA7
x-ms-request-id: 160a017d-601e-0064-5d2a-81c81b000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 63157
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 86c4161b1861569d-OSL
X-Firefox-Spdy: h2

cdn.flowcode.com/cdn/RFDewiExtended-Semibold.woff2

104.18.42.158

200 OK

41 kB

URL GET HTTP/2
cdn.flowcode.com/cdn/RFDewiExtended-Semibold.woff2
IP
104.18.42.158:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectflowcode.com
Fingerprint38:55:F4:53:54:85:2A:E5:6A:07:B3:68:51:82:C6:59:A3:03:93:70
ValidityFri, 26 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), CFF, length 41112, version 0.0
Size
41 kB (41112 bytes)
Hash
e4edaded41a3e10f13b64cd67052e985
ecb4f67c4d72f01f87ebcc1bd10a7155e91791b4
6ec660b1d276d884c988cc0a228f3dd2cb4528c067e9cf3a3840696152548ba8

HTTP Headers

GET /cdn/RFDewiExtended-Semibold.woff2 HTTP/1.1
Host: cdn.flowcode.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flow.page/
Origin: https://flow.page
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/octet-stream
content-length: 41112
content-md5: 5O2t7UGj4Q8TtkzWcFLphQ==
last-modified: Thu, 20 Oct 2022 18:02:14 GMT
etag: 0x8DAB2C537C945AD
x-ms-request-id: d8af7502-d01e-0051-10e3-7a8db8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-allow-origin: *
cf-cache-status: HIT
age: 807433
expires: Sun, 30 Mar 2025 00:47:05 GMT
cache-control: public, max-age=31536000
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=15552000; includeSubDomains; preload
x-robots-tag: noindex
set-cookie: __cf_bm=2Cfcpk8GyIijnc8RTS2eiLgQgmt9_XFcOYroxMsQuaI-1711759625-1.0.1.1-D2ta48u.gNm2ZN_1dizWMEFoV2dNtqnqDtksoA93HwD9zmJeR2x6ITordgyexrkqEMkKHzAr73cMi4xGpB7Qgw; path=/; expires=Sat, 30-Mar-24 01:17:05 GMT; domain=.flowcode.com; HttpOnly; Secure; SameSite=None
_cfuvid=OwlRh320tFs81WVTtck4_RVkDc8_nXu2dI_0aXJk0eo-1711759625470-0.0.1.1-604800000; path=/; domain=.flowcode.com; HttpOnly; Secure; SameSite=None
server: cloudflare
cf-ray: 86c4161b19cd5696-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

flow.page/_next/image?url=https%3A%2F%2Fcdn.flow.page%2Fimages%2Fbbd3448d-7836-4c4e-8172-fb3967e20181-profile-picture%3Fm%3D1711743639&w=256&q=75

172.64.146.59

200 OK

3.4 kB

URL GET HTTP/2
flow.page/_next/image?url=https%3A%2F%2Fcdn.flow.page%2Fimages%2Fbbd3448d-7836-4c4e-8172-fb3967e20181-profile-picture%3Fm%3D1711743639&w=256&q=75
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
3.4 kB (3394 bytes)
Hash
a4bf85cd407857c2712ffc4afbfd7fd2
470ee09232c63cf80fa08719961994f2507edd14
317480f19dbff71b8dc8ef0aa171c9218c18ef0ed73097d5f4e87f74d43fb2e7

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/image?url=https%3A%2F%2Fcdn.flow.page%2Fimages%2Fbbd3448d-7836-4c4e-8172-fb3967e20181-profile-picture%3Fm%3D1711743639&w=256&q=75 HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: image/webp
content-length: 3394
vary: Accept, Accept-Encoding
cache-control: public, max-age=31536000
etag: MXSA8Z2-9xuNyO8KoXHJIYwY7w7XMJfV9Oh-dNQ-suc=
content-disposition: inline; filename="bbd3448d-7836-4c4e-8172-fb3967e20181-profile-picture.webp"
content-security-policy: script-src 'none'; frame-src 'none'; sandbox;
x-nextjs-cache: HIT
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
expires: Sun, 30 Mar 2025 00:47:05 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 86c4161b0b03b4ed-OSL
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/20850-93644b30ce6667f8.js

172.64.146.59

200 OK

52 kB

URL GET HTTP/2
flow.page/_next/static/chunks/20850-93644b30ce6667f8.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (47263)
Size
52 kB (52035 bytes)
Hash
77395768041c156235fe74f6a4b6c563
9a823078ac26b4d18376abace071ce7cc30e35ce
5bae2a653e978767bbe86f23dd9f8ba293d343cfa93f63b0755b19066249af95

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/20850-93644b30ce6667f8.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Thu, 28 Mar 2024 19:45:58 GMT
etag: W/"b8d2-18e869900f0"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161b0af4b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/60055-5dcc5499ce68cf22.js

172.64.146.59

200 OK

46 kB

URL GET HTTP/2
flow.page/_next/static/chunks/60055-5dcc5499ce68cf22.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (25611)
Size
46 kB (46162 bytes)
Hash
628e41919f8f23d1000ed195927ad1af
93cf742e96c0229e71b8798396aa244b7f6afff4
05e811083ea89790bb2cc30724cf5cf38bca0229d2350aee1375240ddda3f322

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/60055-5dcc5499ce68cf22.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Thu, 28 Mar 2024 19:45:58 GMT
etag: W/"643e-18e869900f0"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161aead9b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/178-a99191091a50dc6d.js

172.64.146.59

200 OK

5.1 kB

URL GET HTTP/2
flow.page/_next/static/chunks/178-a99191091a50dc6d.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7357)
Size
5.1 kB (5122 bytes)
Hash
14c51c081b16cdcf64967c37bb258fdc
d2b51997a942b3fd5aaf230fa4778fabcb14972e
02a3a8e4d50bdb7e57400987fb3c61470358d26e91e6ac1e7751b487612ac4fa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/178-a99191091a50dc6d.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Wed, 17 Jan 2024 20:03:39 GMT
etag: W/"1cee-18d1905ad78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 6155103
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161aeacdb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/94783-dda4c37b26f24f59.js

172.64.146.59

200 OK

5.4 kB

URL GET HTTP/2
flow.page/_next/static/chunks/94783-dda4c37b26f24f59.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (11098)
Size
5.4 kB (5394 bytes)
Hash
8460e3e75303b0c6d6ac220ad9d83a2d
e7d4a25e1488be9ff2f1010085bbca07d26600b8
92de91a51d8d7cd513c86a43eb6ea99e862411ceb0e9b1afa83fd5249ee89084

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/94783-dda4c37b26f24f59.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Tue, 12 Mar 2024 18:07:57 GMT
etag: W/"2b8d-18e33d98448"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1491167
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161afaeab4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/css/00e954e346cc97a0.css

172.64.146.59

200 OK

102 kB

URL GET HTTP/2
flow.page/_next/static/css/00e954e346cc97a0.css
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (12070)
Size
102 kB (101938 bytes)
Hash
e48bf9262531ce4cf6aa24ca08ccafed
f9f9d25ced2e5790d0fdf93ed18e3dbd28c815b0
1c41d6094cb8d858534390d302149ebd9876a7d9922d80bcc2a1df2a3a633368

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/css/00e954e346cc97a0.css HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: text/css; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Wed, 17 Jan 2024 20:03:40 GMT
etag: W/"2f56-18d1905b160"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 6155103
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161adac4b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

cdn.cookielaw.org/consent/eed4f849-6744-46e9-8b81-04d191129887/0fa1c054-c9f1-4c43-b59f-ba8963e34160/en.json

104.19.178.52

200 OK

15 kB

URL GET HTTP/2
cdn.cookielaw.org/consent/eed4f849-6744-46e9-8b81-04d191129887/0fa1c054-c9f1-4c43-b59f-ba8963e34160/en.json
IP
104.19.178.52:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31
ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JSON text data
Size
15 kB (14799 bytes)
Hash
9353f67ef8f6e9d61e0213dfd9d01bad
39b4a596ac068b45171984fe7804725e9669c790
1685b62047a1c5cde5ace3b0ba9f647783e6d6c7605b2e3a43cf6831978303ad

HTTP Headers

GET /consent/eed4f849-6744-46e9-8b81-04d191129887/0fa1c054-c9f1-4c43-b59f-ba8963e34160/en.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flow.page/
Origin: https://flow.page
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/x-javascript
content-length: 14799
cf-ray: 86c4161e08a456a5-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 57136
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DB2A2136881CBB
expires: Sun, 31 Mar 2024 00:47:05 GMT
last-modified: Tue, 21 Mar 2023 15:30:34 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: 6zhcm+X7YPY1CnyCqeKfsA==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 82d07f4e-201e-005a-1ad1-315f64000000
x-ms-version: 2009-09-19
server: cloudflare
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202302.1.0/assets/otFlat.json

104.19.178.52

200 OK

3.0 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202302.1.0/assets/otFlat.json
IP
104.19.178.52:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31
ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JSON text data
Size
3.0 kB (3020 bytes)
Hash
e58c1d01601f109335f5c6307b6d9cd4
51643ecced6d8a4d672f9ba3f36d40d43f4a33ea
1df323c03e742ff217794c8ace2c647f3f0cf868c91d4396c166262ca1075acc

HTTP Headers

GET /scripttemplates/202302.1.0/assets/otFlat.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flow.page/
Origin: https://flow.page
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/json
content-length: 3020
content-encoding: gzip
content-md5: JiPvkoWr8q46ry2my9HtEQ==
last-modified: Fri, 10 Mar 2023 03:55:05 GMT
etag: 0x8DB211B3B953477
x-ms-request-id: d5b47d86-001e-0010-27d1-31fceb000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 57136
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 86c4161e48c856a5-OSL
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/39318-d7846cf91633567b.js

172.64.146.59

200 OK

18 kB

URL GET HTTP/2
flow.page/_next/static/chunks/39318-d7846cf91633567b.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (15499)
Size
18 kB (18097 bytes)
Hash
cec88bb3ac07dc2cda29f9417b321665
56eeb4ad7c23e0933b2de59c8aa0ad1a781fe5e1
3d06cfdc813f79422f48557dd5a08697364b4d9236473741a59b5f9412903a73

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/39318-d7846cf91633567b.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Thu, 28 Mar 2024 19:45:58 GMT
etag: W/"3cbe-18e869900f0"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161adacbb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/media/inter-latin-700-normal.c6bc620d.woff2

172.64.146.59

200 OK

37 kB

URL GET HTTP/2
flow.page/_next/static/media/inter-latin-700-normal.c6bc620d.woff2
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 37056, version 1.0
Size
37 kB (37056 bytes)
Hash
b212a798db3b717b02ca67e3ca5c0bef
8f664bbee4804fedcc4293b697aa191b1f9a166e
f6789b1579e3915acc50ce2f56d956c05dc3186238eb4d1a0d4ad1e403a625ac

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/inter-latin-700-normal.c6bc620d.woff2 HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://flow.page/_next/static/css/00e954e346cc97a0.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:06 GMT
content-type: font/woff2
content-length: 37056
cache-control: public, max-age=31536000
last-modified: Wed, 17 Jan 2024 20:03:39 GMT
etag: W/"90c0-18d1905ad78"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 6155104
expires: Sun, 30 Mar 2025 00:47:06 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86c4161e8c9ab4ed-OSL
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/78366-47c78a8949f5f5f4.js

172.64.146.59

200 OK

6.4 kB

URL GET HTTP/2
flow.page/_next/static/chunks/78366-47c78a8949f5f5f4.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (12212)
Size
6.4 kB (6376 bytes)
Hash
ac41cc1ffca7542b3c0834316c6c6f30
32b1f19a2b39290b748fd7b2d5ad065021c4fee5
4c5654f7f2d5a95b53b1b302bde47d9e4586541a5c9b93fcb3a403bf892e75db

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/78366-47c78a8949f5f5f4.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Wed, 17 Jan 2024 20:03:39 GMT
etag: W/"2feb-18d1905ad78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1405517
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161aeacfb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/webpack-efcc3d86e43a4aa5.js

172.64.146.59

200 OK

34 kB

URL GET HTTP/2
flow.page/_next/static/chunks/webpack-efcc3d86e43a4aa5.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (23301)
Size
34 kB (34033 bytes)
Hash
0e0bd0a022a4619f2cec16c8fb57c73c
295d40c45d23eab5b107a13d89e70dd56a5b4b4e
a016bdc9a8f54f47f0f699956fda5558967efe2aa677f3ea3dd7843872e990a0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/webpack-efcc3d86e43a4aa5.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Thu, 28 Mar 2024 19:45:58 GMT
etag: W/"5b3a-18e869900f0"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161adac5b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/81272-aa17b1bc89b4a0b6.js

172.64.146.59

200 OK

6.4 kB

URL GET HTTP/2
flow.page/_next/static/chunks/81272-aa17b1bc89b4a0b6.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (40755)
Size
6.4 kB (6385 bytes)
Hash
a59a0cfb1cc1c24e34b6b026341b9654
f2c3b704f405eca9ee678e428b4e2778159708d3
e700ee575ff2cc2aa7c86b116f30c67942500c9d651460b8b07fdd1c3000d810

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/81272-aa17b1bc89b4a0b6.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Wed, 13 Mar 2024 18:12:50 GMT
etag: W/"9f66-18e390458d0"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1403758
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161b0af0b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/1267-2bd842130894a496.js

172.64.146.59

200 OK

94 kB

URL GET HTTP/2
flow.page/_next/static/chunks/1267-2bd842130894a496.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
94 kB (93895 bytes)
Hash
09362618b14757fac5dccd52a8dfb90c
13de35979cee63e1a83a4c20602c952ad861d8e7
018226ef623d1f4f5af02f128e21c6a9c119743d769ef504038854d95eebf635

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/1267-2bd842130894a496.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Thu, 28 Mar 2024 19:45:58 GMT
etag: W/"53713-18e869900f0"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161b0af8b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/69314-b614db3df9b0c1b3.js

172.64.146.59

200 OK

12 kB

URL GET HTTP/2
flow.page/_next/static/chunks/69314-b614db3df9b0c1b3.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (25187)
Size
12 kB (11836 bytes)
Hash
fa6fa7675231fac9b05594f4e9a8c454
97be49fcc43418c5db5c97bbe769222142698979
88092e147ca8cd9e73281c13b9b4edb2da7a147f6215b45e91e52982d22ad874

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/69314-b614db3df9b0c1b3.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Wed, 17 Jan 2024 20:03:39 GMT
etag: W/"6296-18d1905ad78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1938883
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161b0affb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/44781-db2bf152f99155df.js

172.64.146.59

200 OK

40 kB

URL GET HTTP/2
flow.page/_next/static/chunks/44781-db2bf152f99155df.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (7750)
Size
40 kB (39944 bytes)
Hash
18b706bfbf32e7162ddd26d1ef1d258d
d0cd609659af56c470903d188228447f20955c01
f4f0a5d5a172b3d0262395d7c5c5c88ad45b14049d29390abc6047fa9da3362f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/44781-db2bf152f99155df.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Wed, 17 Jan 2024 20:03:39 GMT
etag: W/"1e79-18d1905ad78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 6155103
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161aead3b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/44666-62766aadb22bc4f0.js

172.64.146.59

200 OK

12 kB

URL GET HTTP/2
flow.page/_next/static/chunks/44666-62766aadb22bc4f0.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (18941)
Size
12 kB (12206 bytes)
Hash
5159f9a3da660f5c015b5decde2225af
b79d035e1f5e79a4f463913a798bca6d051ff4d6
c1a2ecfeb037687dd5c2d50a8b75a9a525d667df1118f3a2e8050e085abbe0ae

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/44666-62766aadb22bc4f0.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Wed, 17 Jan 2024 20:03:39 GMT
etag: W/"4a30-18d1905ad78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 6155103
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161aead5b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/99179-66b131284e3960d2.js

172.64.146.59

200 OK

26 kB

URL GET HTTP/2
flow.page/_next/static/chunks/99179-66b131284e3960d2.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (60107)
Size
26 kB (26261 bytes)
Hash
384d609c492bec07e13e35b31387385c
b4703470e8253893e099908217160d924b14410f
b884becb66d600c52b0fa9efc41d55eca0763e2e7edcc572c742c4e529d45027

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/99179-66b131284e3960d2.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Wed, 17 Jan 2024 20:03:39 GMT
etag: W/"eafe-18d1905ad78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 6155103
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161aead6b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/75520-6c7db7a3afaeef1c.js

172.64.146.59

200 OK

14 kB

URL GET HTTP/2
flow.page/_next/static/chunks/75520-6c7db7a3afaeef1c.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (16618)
Size
14 kB (13572 bytes)
Hash
2d3d4c8853836c31f3b0d07b919067bd
50b15e24f590ef01d84a7efaafb2645fc1e04e42
c234508c262891cc212aa0e0099bf39a9ef08d6fd4fdcbfda0284b1d905a34af

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/75520-6c7db7a3afaeef1c.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Thu, 28 Mar 2024 19:45:58 GMT
etag: W/"4930-18e869900f0"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161aeadcb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/56043-cc726f9d57d4cf18.js

172.64.146.59

200 OK

18 kB

URL GET HTTP/2
flow.page/_next/static/chunks/56043-cc726f9d57d4cf18.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (14188)
Size
18 kB (18422 bytes)
Hash
ca84c1b8fb341706330907ceff1c4032
cac78d27ac15acacd40922de85f41da3351ee7af
17a8c43b409acf489d42a54874a1d48bf2c27282f4b56da457a0666dc003cd3f

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/56043-cc726f9d57d4cf18.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Thu, 28 Mar 2024 19:45:58 GMT
etag: W/"379f-18e869900f0"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161afae0b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/favicon/favicon-black.svg

172.64.146.59

200 OK

3.5 kB

URL GET HTTP/2
flow.page/favicon/favicon-black.svg
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
3.5 kB (3533 bytes)
Hash
34da71e0b35a606f0d9f14d355d624b2
0d00ccdf414410b0622875c619baea5eebde2e19
835ef3f5c44258301a105e89727abd207e52e5f6f77eb1bfc3976d37a55ee8a9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon/favicon-black.svg HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:06 GMT
content-type: image/svg+xml
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: public, max-age=60
last-modified: Thu, 28 Mar 2024 19:49:39 GMT
etag: W/"da1-18e869c6038"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
expires: Sat, 30 Mar 2024 00:48:06 GMT
server: cloudflare
cf-ray: 86c416210d7eb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/2031-7ff230300ba90837.js

172.64.146.59

200 OK

25 kB

URL GET HTTP/2
flow.page/_next/static/chunks/2031-7ff230300ba90837.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (24673)
Size
25 kB (24723 bytes)
Hash
77ad666d85260987ac60609fea564747
84c8b8c791e9fe89a87ee19f9c41439911a5a645
fcff039dfad042cef2941f556c82d4c6247343c50b2c89d59118080669d77a34

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/2031-7ff230300ba90837.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Wed, 17 Jan 2024 20:03:39 GMT
etag: W/"6093-18d1905ad78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 6155103
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161afae5b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

geolocation.onetrust.com/cookieconsentpub/v1/geo/location/geofeed

172.64.155.119

200 OK

81 B

URL GET HTTP/2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location/geofeed
IP
172.64.155.119:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectonetrust.com
Fingerprint9B:BC:B4:A8:C7:6C:6C:02:0F:FD:9F:06:F2:67:FB:DD:A1:E0:3F:47
ValidityMon, 13 Nov 2023 00:00:00 GMT - Tue, 12 Nov 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
81 B (81 bytes)
Hash
aeac38260893a273eb6303c765c95059
1e35f05b5e04b1bffb6b1ea0892440a29e9139e4
1a0de81c8a79a713ba0ebd4fa6c19915b8b84b87e33a5a9a44fc4ea29b26d0ac

HTTP Headers

GET /cookieconsentpub/v1/geo/location/geofeed HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:06 GMT
content-type: text/javascript
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 86c41620dadb1c0e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

flow.page/amerilit.com

172.64.146.59

200 OK

959 kB

URL User Request GET HTTP/2
flow.page/amerilit.com
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type

Size
959 kB (959210 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /amerilit.com HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-powered-by: Next.js
cache-control: public, max-age=60
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
expires: Sat, 30 Mar 2024 00:48:05 GMT
server: cloudflare
cf-ray: 86c416187995b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/main-d459f983bba9ecde.js

172.64.146.59

200 OK

135 kB

URL GET HTTP/2
flow.page/_next/static/chunks/main-d459f983bba9ecde.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (63850)
Size
135 kB (135219 bytes)
Hash
04b90e9f5ae0c24d1cc6b3be58ccb4e1
b15d93711a0b86352cf6f890afb45f932ad39d3e
8a049834fda94e5ba4d7161f02264cceb041df8ee76acb5da496d73d6489de9b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/main-d459f983bba9ecde.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Wed, 17 Jan 2024 20:03:39 GMT
etag: W/"21033-18d1905ad78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 6155103
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161adac7b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/83648-760bf37057e8c312.js

172.64.146.59

200 OK

10 kB

URL GET HTTP/2
flow.page/_next/static/chunks/83648-760bf37057e8c312.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (10354)
Size
10 kB (10405 bytes)
Hash
125627a7a052a1458198774764ff2864
c7b44652499065b3baa7314c9a82659354454c08
290818f87672be3e1461085b5807c0dd45371726fd1e776e88beec259950fae9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/83648-760bf37057e8c312.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Wed, 13 Mar 2024 18:12:50 GMT
etag: W/"28a5-18e390458d0"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1403758
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161aead8b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/34510-4882df08442b95a7.js

172.64.146.59

200 OK

20 kB

URL GET HTTP/2
flow.page/_next/static/chunks/34510-4882df08442b95a7.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (20281)
Size
20 kB (20332 bytes)
Hash
caf3ad59da831390b993cd2aba2b33b7
91995c5f28748abd2c0dcaac29288888bd9704eb
b71890310571be22dacd2470f05c96c9aa2cc794adf2e251acdf85b82e7bf499

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/34510-4882df08442b95a7.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Thu, 28 Mar 2024 19:45:58 GMT
etag: W/"4f6c-18e869900f0"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161b0af6b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/1c8a181f455b42760895e6aa5fcd4f9fa3aba76b/_ssgManifest.js

172.64.146.59

200 OK

80 B

URL GET HTTP/2
flow.page/_next/static/1c8a181f455b42760895e6aa5fcd4f9fa3aba76b/_ssgManifest.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
80 B (80 bytes)
Hash
b404e23d62d95bafd03ad7747cc0e88b
011268d6627898dc2caac8b9678086cd9b9a7dfe
678f6ce2cb80b1fe72fc67e7412be6e2ab6ada083111b64f7c40d35e3cba5e00

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/1c8a181f455b42760895e6aa5fcd4f9fa3aba76b/_ssgManifest.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Thu, 28 Mar 2024 19:47:01 GMT
etag: W/"50-18e8699f708"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161b0b02b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/6510-76acdad48e575a33.js

172.64.146.59

200 OK

32 kB

URL GET HTTP/2
flow.page/_next/static/chunks/6510-76acdad48e575a33.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (31685)
Size
32 kB (31735 bytes)
Hash
eb0886b4cec025ef7dde1f0c8369cacf
b16cd3e6567ef5a54c59c13e32544805141927b8
4c1ae563002c9e48b04e4250b6d4f5d533da94f5a90f050ba8456f9a07f05635

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/6510-76acdad48e575a33.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Wed, 17 Jan 2024 20:03:39 GMT
etag: W/"7bf7-18d1905ad78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 6155103
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161adaccb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/1d90eb00.eb248845497ffa25.js

172.64.146.59

200 OK

127 kB

URL GET HTTP/2
flow.page/_next/static/chunks/1d90eb00.eb248845497ffa25.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (9468), with CRLF line terminators
Size
127 kB (126638 bytes)
Hash
073442c187da57d9af282fda20638c27
fb41bf1eadda9f3891cde84b50fbedc603df3beb
65db8bc4034c27ff557a7495be843573b78be4e3e7b174690cd03b152461b257

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/1d90eb00.eb248845497ffa25.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:06 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Mon, 11 Mar 2024 18:13:18 GMT
etag: W/"1eeae-18e2eb80e30"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1577006
expires: Sun, 30 Mar 2025 00:47:06 GMT
server: cloudflare
cf-ray: 86c41620bd5bb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/framework-9bf262a507aaca62.js

172.64.146.59

200 OK

142 kB

URL GET HTTP/2
flow.page/_next/static/chunks/framework-9bf262a507aaca62.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65199)
Size
142 kB (141524 bytes)
Hash
dc1b6b17d81148d0dfd676b5ec82d515
5eb81d67d3d8bbd48f60eed99c37903fecb13a05
0e752972b430eedefcd79548fdbc13b7f6045b22fd7507ede52bef17c725db30

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/framework-9bf262a507aaca62.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Wed, 17 Jan 2024 20:03:39 GMT
etag: W/"228d4-18d1905ad78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 6155103
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161adac6b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/pages/_app-31af52e2c1032b87.js

172.64.146.59

200 OK

2.9 MB

URL GET HTTP/2
flow.page/_next/static/chunks/pages/_app-31af52e2c1032b87.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type

Size
2.9 MB (2917852 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/pages/_app-31af52e2c1032b87.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Thu, 28 Mar 2024 19:45:58 GMT
etag: W/"2c85dc-18e869900f0"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161adac8b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/media/inter-latin-400-normal.c6bc620d.woff2

172.64.146.59

200 OK

37 kB

URL GET HTTP/2
flow.page/_next/static/media/inter-latin-400-normal.c6bc620d.woff2
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 37056, version 1.0
Size
37 kB (37056 bytes)
Hash
b212a798db3b717b02ca67e3ca5c0bef
8f664bbee4804fedcc4293b697aa191b1f9a166e
f6789b1579e3915acc50ce2f56d956c05dc3186238eb4d1a0d4ad1e403a625ac

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/inter-latin-400-normal.c6bc620d.woff2 HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://flow.page/_next/static/css/00e954e346cc97a0.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: font/woff2
content-length: 37056
cache-control: public, max-age=31536000
last-modified: Wed, 17 Jan 2024 20:03:39 GMT
etag: W/"90c0-18d1905ad78"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 6155103
expires: Sun, 30 Mar 2025 00:47:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86c4161c9b9eb4ed-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202302.1.0/otBannerSdk.js

104.19.178.52

200 OK

414 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202302.1.0/otBannerSdk.js
IP
104.19.178.52:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31
ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type

Size
414 kB (414540 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /scripttemplates/202302.1.0/otBannerSdk.js HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript
content-length: 99858
content-encoding: gzip
content-md5: +3NcDg7IRUqn5oCiPaN6Hg==
last-modified: Fri, 10 Mar 2023 03:55:12 GMT
etag: 0x8DB211B3FF3862E
x-ms-request-id: 276d37c8-b01e-0058-5632-0de1dc000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 66150
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 86c4161d9981569d-OSL
X-Firefox-Spdy: h2

flow.page/cdn-cgi/rum?

172.64.146.59

204 No Content

0 B

URL POST HTTP/2
flow.page/cdn-cgi/rum?
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 15251
Origin: https://flow.page
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Cookie: countryCode=NO
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 204 No Content
date: Sat, 30 Mar 2024 00:47:06 GMT
access-control-allow-origin: https://flow.page
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 86c416215da5b4ed-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

flow.page/amerilit.com/

172.64.146.59

308 Permanent Redirect

959 kB

URL User Request GET HTTP/2
flow.page/amerilit.com/
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type

Size
959 kB (959210 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /amerilit.com/ HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 308 Permanent Redirect
date: Sat, 30 Mar 2024 00:47:05 GMT
location: /amerilit.com
refresh: 0;url=/amerilit.com
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: MISS
vary: Accept-Encoding
server: cloudflare
cf-ray: 86c416176916b4ed-OSL
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202302.1.0/assets/v2/otPcCenter.json

104.19.178.52

200 OK

62 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202302.1.0/assets/v2/otPcCenter.json
IP
104.19.178.52:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31
ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
JSON text data
Size
62 kB (62323 bytes)
Hash
41e74cbe9aef15a5ce1a704d0d4be82e
019edb948b551fe3458bce3c78d1bfde388ff02d
70fd7f6ced21739e10103744c72acdfc8e8422502d74d4fad2ddfab3aed0bbc5

HTTP Headers

GET /scripttemplates/202302.1.0/assets/v2/otPcCenter.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flow.page/
Origin: https://flow.page
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/json
content-length: 12548
content-encoding: gzip
content-md5: hC2e8A4znyRxkhSTafoeUQ==
last-modified: Fri, 10 Mar 2023 03:55:07 GMT
etag: 0x8DB211B3CE1D180
x-ms-request-id: ed49fed2-601e-0006-3ed1-310a3c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 57135
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 86c4161e48cb56a5-OSL
X-Firefox-Spdy: h2

flow.page/favicon/apple-touch-icon.png

172.64.146.59

200 OK

5.5 kB

URL GET HTTP/2
flow.page/favicon/apple-touch-icon.png
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image
Size
5.5 kB (5528 bytes)
Hash
8dfc51bfea60aaa21e16321a73fb92f2
33a87365fdd3b42e9a7e4321790e77a415f7f4e3
a9a6232ae35fb6773825f5f09d67b5d28c513a7cae73596d55b6bf5429e0e312

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /favicon/apple-touch-icon.png HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:06 GMT
content-type: image/webp
content-length: 5528
cache-control: public, max-age=60
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=11369
content-disposition: inline; filename="apple-touch-icon.webp"
vary: Accept
etag: W/"2c69-18e869c6038"
last-modified: Thu, 28 Mar 2024 19:49:39 GMT
strict-transport-security: max-age=15724800; includeSubDomains
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cf-cache-status: HIT
expires: Sat, 30 Mar 2024 00:48:06 GMT
accept-ranges: bytes
server: cloudflare
cf-ray: 86c416210d7cb4ed-OSL
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/72270-5f228131482e9481.js

172.64.146.59

200 OK

8.1 kB

URL GET HTTP/2
flow.page/_next/static/chunks/72270-5f228131482e9481.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (8162), with no line terminators
Size
8.1 kB (8064 bytes)
Hash
4219f190ce326c9934edf4665c00224c
b9b7046cfbf15e0fb7c6cea987c0a4ce4954a322
fd3c79b38b02f5a8e81b8f37cd3c82a885a0067ee91178fa15bbd866873b829b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/72270-5f228131482e9481.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Thu, 28 Mar 2024 19:45:58 GMT
etag: W/"1f80-18e869900f0"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161aeaddb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/46105-f6d864bee6797a0e.js

172.64.146.59

200 OK

18 kB

URL GET HTTP/2
flow.page/_next/static/chunks/46105-f6d864bee6797a0e.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (17680)
Size
18 kB (17731 bytes)
Hash
8d32f115db378c1386bb582ed0e9b7ba
b9689a4eccd565ec63e246f13f632bae31038fdb
c89de7107bf0dbff3e5770eb923ae70310d6a9f705a0ba20926e3748eb897913

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/46105-f6d864bee6797a0e.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Thu, 07 Mar 2024 19:15:02 GMT
etag: W/"4543-18e1a5722f0"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1286528
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161afaeeb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/icons/verified-checkmark.svg

172.64.146.59

200 OK

1.0 kB

URL GET HTTP/2
flow.page/icons/verified-checkmark.svg
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
1.0 kB (1046 bytes)
Hash
16a904d3c65cdd4a0d98baf94cb2f741
9d13a0c7d70251540b17f8cbf1be8c8013cd9e13
e03d0f012a00716a1eeecd8c285488e86da8e8a275d65f0a76f4d70a2b1d15fa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /icons/verified-checkmark.svg HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: image/svg+xml
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
cache-control: public, max-age=60
last-modified: Thu, 28 Mar 2024 19:49:40 GMT
etag: W/"416-18e869c6420"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
expires: Sat, 30 Mar 2024 00:48:05 GMT
server: cloudflare
cf-ray: 86c4161b0b04b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317

104.16.79.73

200 OK

20 kB

URL GET HTTP/2
static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317
IP
104.16.79.73:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerGoogle Trust Services LLC
Subjectcloudflareinsights.com
Fingerprint73:92:5A:16:97:55:FC:A5:32:7C:F3:9D:0C:84:EF:F3:2F:AA:B5:00
ValiditySun, 10 Mar 2024 02:33:42 GMT - Sat, 08 Jun 2024 02:33:41 GMT

File type
JavaScript source, ASCII text, with very long lines (19986), with no line terminators
Size
20 kB (19986 bytes)
Hash
dd1d068fdb5fe90b6c05a5b3940e088c
0d96f9df8772633a9df4c81cf323a4ef8998ba59
6153d13804862b0fc1c016cf1129f34cb7c6185f2cf4bf1a3a862eecdab50101

HTTP Headers

GET /beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flow.page
DNT: 1
Connection: keep-alive
Referer: https://flow.page/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2023.10.0"
last-modified: Tue, 10 Oct 2023 21:38:13 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 86c4161b2faab524-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.cookielaw.org/consent/eed4f849-6744-46e9-8b81-04d191129887/eed4f849-6744-46e9-8b81-04d191129887.json

104.19.178.52

200 OK

4.7 kB

URL GET HTTP/2
cdn.cookielaw.org/consent/eed4f849-6744-46e9-8b81-04d191129887/eed4f849-6744-46e9-8b81-04d191129887.json
IP
104.19.178.52:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31
ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (5553), with no line terminators
Size
4.7 kB (4677 bytes)
Hash
dd2f2002a4159c265a40aea42d133826
75a7cd24cf7e2e227dfeaeff148025d752e7fb9b
6f20b078ef5e585949619ca6b213bcb137eae8d98a93a1b7ab2d4767754974d9

HTTP Headers

GET /consent/eed4f849-6744-46e9-8b81-04d191129887/eed4f849-6744-46e9-8b81-04d191129887.json HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flow.page
DNT: 1
Connection: keep-alive
Referer: https://flow.page/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/x-javascript
content-length: 1683
cf-ray: 86c4161cbfef56a5-OSL
cf-cache-status: HIT
accept-ranges: bytes
access-control-allow-origin: *
age: 57138
cache-control: public, max-age=86400
content-encoding: gzip
etag: 0x8DB2A21351D033A
expires: Sun, 31 Mar 2024 00:47:05 GMT
last-modified: Tue, 21 Mar 2023 15:30:31 GMT
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Content-Encoding,Cache-Control,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
content-md5: PjvzKxDpVu1k2Et+5Sub5Q==
x-content-type-options: nosniff
x-ms-blob-type: BlockBlob
x-ms-lease-status: unlocked
x-ms-request-id: 4aac90d8-e01e-0037-80d1-31eb2f000000
x-ms-version: 2009-09-19
server: cloudflare
X-Firefox-Spdy: h2

cdn.cookielaw.org/scripttemplates/202302.1.0/assets/otCommonStyles.css

104.19.178.52

200 OK

22 kB

URL GET HTTP/2
cdn.cookielaw.org/scripttemplates/202302.1.0/assets/otCommonStyles.css
IP
104.19.178.52:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31
ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
ASCII text, with very long lines (11231)
Size
22 kB (21721 bytes)
Hash
5dcc6595e01c3c63b69f991366b1c7d9
5ccdd7e36f0f99fdb215ca9fae7ef1a41ced8a90
930239150e702d9d4bf43c3881aa70f8ad5fd9068dcbecb7c8bcca654784f7f1

HTTP Headers

GET /scripttemplates/202302.1.0/assets/otCommonStyles.css HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flow.page/
Origin: https://flow.page
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: text/css
content-md5: XcxlleAcPGO2n5kTZrHH2Q==
last-modified: Fri, 10 Mar 2023 03:55:17 GMT
x-ms-request-id: 38faaacb-c01e-006d-70d1-318dc8000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 51945
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 86c4161e48cc56a5-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.cookielaw.org/logos/static/powered_by_logo.svg

104.19.178.52

200 OK

5.2 kB

URL GET HTTP/2
cdn.cookielaw.org/logos/static/powered_by_logo.svg
IP
104.19.178.52:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31
ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
5.2 kB (5194 bytes)
Hash
38b5388f36f8f885deb26afdac0e3116
112eccab1891a3a7cab1c5602ba72c9e127136e0
a8562f11c5a80a5c1c4ab388cfa2a69598203a57a5c67d1f80512bddd80d09ef

HTTP Headers

GET /logos/static/powered_by_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:06 GMT
content-type: image/svg+xml
content-md5: Y+c301RBZNK39PvKQWrIBw==
last-modified: Thu, 28 Mar 2024 12:31:07 GMT
x-ms-request-id: 9d0d9d55-501e-0032-7842-8139f4000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 71262
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 86c4161eaa1c569d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/35170-c5b61bcec1cdf757.js

172.64.146.59

200 OK

96 kB

URL GET HTTP/2
flow.page/_next/static/chunks/35170-c5b61bcec1cdf757.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
96 kB (96201 bytes)
Hash
0693c4544d32b327863fa147b539bcd1
9f10eeaaa3bcb524eb82c8ed56a8797a44e829cf
91d6499a33be9927f6487014405aef545a42e5c1798417314d5437f61d42e8e3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/35170-c5b61bcec1cdf757.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:06 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Wed, 17 Jan 2024 20:03:39 GMT
etag: W/"177c9-18d1905ad78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1369099
expires: Sun, 30 Mar 2025 00:47:06 GMT
server: cloudflare
cf-ray: 86c41620dd6db4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/63346.4b89e74a8b77b055.js

172.64.146.59

200 OK

5.5 kB

URL GET HTTP/2
flow.page/_next/static/chunks/63346.4b89e74a8b77b055.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (5530), with no line terminators
Size
5.5 kB (5511 bytes)
Hash
359a1bc514279fed79d6289947f618f3
99e27fb72bf0fb2b7c933195165935712e7e51cf
d855a897a0f41201b02dadd5e8b39ece509871094eea6de3632c117f55d0a721

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/63346.4b89e74a8b77b055.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:06 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Wed, 17 Jan 2024 20:03:40 GMT
etag: W/"1587-18d1905b160"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1369099
expires: Sun, 30 Mar 2025 00:47:06 GMT
server: cloudflare
cf-ray: 86c41620dd6fb4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/media/inter-latin-600-normal.c6bc620d.woff2

172.64.146.59

200 OK

37 kB

URL GET HTTP/2
flow.page/_next/static/media/inter-latin-600-normal.c6bc620d.woff2
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 37056, version 1.0
Size
37 kB (37056 bytes)
Hash
b212a798db3b717b02ca67e3ca5c0bef
8f664bbee4804fedcc4293b697aa191b1f9a166e
f6789b1579e3915acc50ce2f56d956c05dc3186238eb4d1a0d4ad1e403a625ac

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/media/inter-latin-600-normal.c6bc620d.woff2 HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://flow.page/_next/static/css/00e954e346cc97a0.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: font/woff2
content-length: 37056
cache-control: public, max-age=31536000
last-modified: Wed, 17 Jan 2024 20:03:39 GMT
etag: W/"90c0-18d1905ad78"
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 6155103
expires: Sun, 30 Mar 2025 00:47:05 GMT
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 86c4161c9b9db4ed-OSL
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/1cc2734a-8dfd9412a1ccb9a2.js

172.64.146.59

200 OK

100 kB

URL GET HTTP/2
flow.page/_next/static/chunks/1cc2734a-8dfd9412a1ccb9a2.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
100 kB (100166 bytes)
Hash
739259f3431328613584607afcbbaeab
ca04caa8d48adee786c8c93f1d0f65a6034c6f22
b7737938b1b2c661c5dcaa4712dfca802b028f78c6ec307ad92557f311700848

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/1cc2734a-8dfd9412a1ccb9a2.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Wed, 17 Jan 2024 20:03:39 GMT
etag: W/"18746-18d1905ad78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 6155103
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161adacab4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/74570-14b89fa9b14391f9.js

172.64.146.59

200 OK

24 kB

URL GET HTTP/2
flow.page/_next/static/chunks/74570-14b89fa9b14391f9.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (24223)
Size
24 kB (24274 bytes)
Hash
b61e4d6c5f2bda4f557ad4840358fb96
935ad5357156c0e8c3a74e8e62966696ec099708
d7b68a2feb17d83e23f77bcc44e4767b25e33f99620ae2d6e6896cb5bb01b7fc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/74570-14b89fa9b14391f9.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Thu, 28 Mar 2024 19:45:58 GMT
etag: W/"5ed2-18e869900f0"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161afae1b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/52296-693d638d883063ca.js

172.64.146.59

200 OK

19 kB

URL GET HTTP/2
flow.page/_next/static/chunks/52296-693d638d883063ca.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (18935)
Size
19 kB (18986 bytes)
Hash
b31070106158b965689c44571787e7a6
4a526620af01e78ac5f9ea7ba80bd37004906d26
36dc4ee0572001fcfad84717c7d05fe03f26eb6f170d5740dd50e0e97b4f37ab

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/52296-693d638d883063ca.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Thu, 07 Mar 2024 19:15:02 GMT
etag: W/"4a2a-18e1a5722f0"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1920059
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161b0af3b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/155-dd9c8cbdc9e739f6.js

172.64.146.59

200 OK

8.7 kB

URL GET HTTP/2
flow.page/_next/static/chunks/155-dd9c8cbdc9e739f6.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (9016), with no line terminators
Size
8.7 kB (8709 bytes)
Hash
a2c2c291392e6dc2bea4b11fff4d0493
11c381e04635767d62d519d090343b5d40f997dd
6e43b1a961aec540a615c4385823ffaece4c1e327af1ff4a5b5f3592e20c8003

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/155-dd9c8cbdc9e739f6.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Wed, 17 Jan 2024 20:03:39 GMT
etag: W/"2205-18d1905ad78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 6155103
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161aead0b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

cdn.cookielaw.org/logos/static/ot_guard_logo.svg

104.19.178.52

200 OK

497 B

URL GET HTTP/2
cdn.cookielaw.org/logos/static/ot_guard_logo.svg
IP
104.19.178.52:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31
ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
497 B (497 bytes)
Hash
4cefeea2da1f500b581d4842d6454a50
9939dd4c1394641f53655e558bfdca7499480c52
220f235f0188ff469b92b56eb86adf4e828b8a90c587ebfa073383b8583aaeb2

HTTP Headers

GET /logos/static/ot_guard_logo.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flow.page/
Origin: https://flow.page
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:06 GMT
content-type: image/svg+xml
content-md5: tXyZydHjxQshFMbbBT1/8A==
last-modified: Thu, 28 Mar 2024 19:49:54 GMT
x-ms-request-id: 2dff855e-701e-00a3-2d89-815c46000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 51946
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 86c4161eb90156a5-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

geolocation.onetrust.com/cookieconsentpub/v1/geo/location

172.64.155.119

200 OK

72 B

URL GET HTTP/2
geolocation.onetrust.com/cookieconsentpub/v1/geo/location
IP
172.64.155.119:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectonetrust.com
Fingerprint9B:BC:B4:A8:C7:6C:6C:02:0F:FD:9F:06:F2:67:FB:DD:A1:E0:3F:47
ValidityMon, 13 Nov 2023 00:00:00 GMT - Tue, 12 Nov 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with no line terminators
Size
72 B (72 bytes)
Hash
adf75b99dbbf416c627dfc5de30f9ad1
699f3845f7dfb3fa9968c2117b44c3f3eb728fff
a0e4a8f457272bd17d07ae2e1e09731df6cc6fdc3ea9e32e713ef4a8a012fc27

HTTP Headers

GET /cookieconsentpub/v1/geo/location HTTP/1.1
Host: geolocation.onetrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flow.page
DNT: 1
Connection: keep-alive
Referer: https://flow.page/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/json
access-control-allow-origin: *
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, OPTIONS
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 86c4161d383256bf-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.cookielaw.org/logos/0e527a1c-8152-4627-9e19-bc1acc6db10b/e1ce8411-0cdd-4d7e-a3b0-b3cf47de3f05/bea699a3-9e48-485f-9b4b-459ca3586099/flowcode-black-nav-logo.png

104.19.178.52

200 OK

2.3 kB

URL GET HTTP/2
cdn.cookielaw.org/logos/0e527a1c-8152-4627-9e19-bc1acc6db10b/e1ce8411-0cdd-4d7e-a3b0-b3cf47de3f05/bea699a3-9e48-485f-9b4b-459ca3586099/flowcode-black-nav-logo.png
IP
104.19.178.52:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31
ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
PNG image data, 144 x 22, 8-bit colormap, non-interlaced
Size
2.3 kB (2255 bytes)
Hash
1233238db38a1e866b0c6c6e285088e6
79fca3d0ac5ced9bda149612d13446bdb7e7dccd
cfd584ba275d2bb93b49ac6e3e256fabcccabbc54a0ef0d04403e251321830d5

HTTP Headers

GET /logos/0e527a1c-8152-4627-9e19-bc1acc6db10b/e1ce8411-0cdd-4d7e-a3b0-b3cf47de3f05/bea699a3-9e48-485f-9b4b-459ca3586099/flowcode-black-nav-logo.png HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:06 GMT
content-type: image/png
content-length: 2255
content-md5: EjMjjbOKHoZrDGxuKFCI5g==
last-modified: Tue, 23 Nov 2021 15:16:45 GMT
etag: 0x8D9AE944312748A
x-ms-request-id: 6b40c300-601e-0074-74db-120d73000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 20267
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 86c4161eaa1b569d-OSL
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/69294.90f0524e12de5215.js

172.64.146.59

200 OK

38 kB

URL GET HTTP/2
flow.page/_next/static/chunks/69294.90f0524e12de5215.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (5806), with CRLF, LF line terminators
Size
38 kB (38543 bytes)
Hash
ec3b49e1803276d06abf8cb52f45d1da
8b9f3320ff95d69fcc5a625414f77d4a59dd3194
66867acbe0ecd265e57b726e7036193f0c782f038c65b21f7521ef19ddeee749

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/69294.90f0524e12de5215.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:06 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Mon, 11 Mar 2024 18:13:19 GMT
etag: W/"968f-18e2eb81218"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1577006
expires: Sun, 30 Mar 2025 00:47:06 GMT
server: cloudflare
cf-ray: 86c41620cd66b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/firebase.98862f5a22e6ec1f.js

172.64.146.59

200 OK

1.9 kB

URL GET HTTP/2
flow.page/_next/static/chunks/firebase.98862f5a22e6ec1f.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
troff or preprocessor input, ASCII text, with very long lines (1863), with no line terminators
Size
1.9 kB (1852 bytes)
Hash
3d7ca68c5552d1dbe288a0b6a2b46ee4
48b52fec239a5324042eb09e8630d37dcc19bf9f
347361e06961993bd1808f6f80a1cef5cd4df83a8998a807d814797cdd98d7b0

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/firebase.98862f5a22e6ec1f.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:06 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Mon, 11 Mar 2024 18:13:18 GMT
etag: W/"73c-18e2eb80e30"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 1577006
expires: Sun, 30 Mar 2025 00:47:06 GMT
server: cloudflare
cf-ray: 86c41620cd69b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/pages/page/%5Bslug%5D-6c943983b06d42cd.js

172.64.146.59

200 OK

127 kB

URL GET HTTP/2
flow.page/_next/static/chunks/pages/page/%5Bslug%5D-6c943983b06d42cd.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
127 kB (126571 bytes)
Hash
e5c7a55f5ae1e9fa75968afee4e884fb
f2eca403b60f613d2eb16b87c27860d8e6d544c0
67e9e9ee1171f7b33d916bac2523705aa380ebdd53e6f1ad1c1b4c2cff150e21

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/pages/page/%5Bslug%5D-6c943983b06d42cd.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Thu, 28 Mar 2024 19:45:58 GMT
etag: W/"1ee6b-18e869900f0"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161b0b00b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

flow.page/_next/static/1c8a181f455b42760895e6aa5fcd4f9fa3aba76b/_buildManifest.js

172.64.146.59

200 OK

25 kB

URL GET HTTP/2
flow.page/_next/static/1c8a181f455b42760895e6aa5fcd4f9fa3aba76b/_buildManifest.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
ASCII text, with very long lines (24712), with no line terminators
Size
25 kB (24712 bytes)
Hash
25ebbc4c66c82760146982b02e9c5af5
4d42beea789224e2ae5486b75268c24962ea53b0
4936c8d9c232ab51a78a2593fd71e55554c42623b9de9c16588f446fb2f8ecb4

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/1c8a181f455b42760895e6aa5fcd4f9fa3aba76b/_buildManifest.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Thu, 28 Mar 2024 19:45:58 GMT
etag: W/"6088-18e869900f0"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161b0b01b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

cdn.cookielaw.org/logos/static/ot_close.svg

104.19.178.52

200 OK

651 B

URL GET HTTP/2
cdn.cookielaw.org/logos/static/ot_close.svg
IP
104.19.178.52:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectcookielaw.org
FingerprintC9:7F:A3:0A:53:6E:A6:6C:2F:D0:E2:2C:F5:35:B4:BC:81:90:40:31
ValidityFri, 01 Mar 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT

File type
SVG Scalable Vector Graphics image
Size
651 B (651 bytes)
Hash
775913dc8267eb216d54c1e1dfe467b1
c6c68dea713afbe52666360532140507347a5d10
7f95ae3119579940ba6840a95abc442065d3a8412a8f6aff872ffdf86bcc8240

HTTP Headers

GET /logos/static/ot_close.svg HTTP/1.1
Host: cdn.cookielaw.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:06 GMT
content-type: image/svg+xml
content-md5: pcXWFGpuVeSg/jVnYCseRg==
last-modified: Thu, 28 Mar 2024 19:49:54 GMT
x-ms-request-id: b0c3cb5c-601e-0006-1188-810a3c000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
access-control-expose-headers: x-ms-request-id,Server,x-ms-version,Content-Type,Last-Modified,ETag,Content-MD5,x-ms-lease-status,x-ms-blob-type,Content-Length,Date,Transfer-Encoding
access-control-allow-origin: *
cache-control: max-age=86400
cf-cache-status: HIT
age: 66877
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-content-type-options: nosniff
server: cloudflare
cf-ray: 86c4161e8a09569d-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

flow.page/_next/static/chunks/52768-64be3e123e7b18de.js

172.64.146.59

200 OK

23 kB

URL GET HTTP/2
flow.page/_next/static/chunks/52768-64be3e123e7b18de.js
IP
172.64.146.59:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flow.page/amerilit.com
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint8F:DF:66:28:5F:CE:71:A4:74:CE:84:1C:44:5A:6B:18:74:F8:9D:7E
ValiditySat, 06 May 2023 00:00:00 GMT - Sat, 04 May 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (22508)
Size
23 kB (22559 bytes)
Hash
1cd8a8d0612fb3fe2c4f4617e25b4c38
22e2c5a46b3a319b30fb81b4f2859e843ba923a7
19a3f94f9aca6899625b0e5e301345ffaf97f19b6f50389b1590d9d5b3b4074c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /_next/static/chunks/52768-64be3e123e7b18de.js HTTP/1.1
Host: flow.page
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flow.page/amerilit.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Sat, 30 Mar 2024 00:47:05 GMT
content-type: application/javascript; charset=UTF-8
cache-control: public, max-age=31536000
last-modified: Wed, 17 Jan 2024 20:03:39 GMT
etag: W/"581f-18d1905ad78"
vary: Accept-Encoding
strict-transport-security: max-age=15724800; includeSubDomains
cf-cache-status: HIT
age: 6155103
expires: Sun, 30 Mar 2025 00:47:05 GMT
server: cloudflare
cf-ray: 86c4161aead7b4ed-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (42)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML