| go.greenlinknow.com/t/clk?id=1wH2vBvuewUA1xIX&s1=662b56fceae3fd0001fee4ef&s2=f580c3b2&rl=5yXY&redirect-from=0MHezmzuL7cMALfZ&rcode=R02&rseq=R02 | 50.17.199.67 | 302 Found | 0 B |
URL User Request GET HTTP/2go.greenlinknow.com/t/clk?id=1wH2vBvuewUA1xIX&s1=662b56fceae3fd0001fee4ef&s2=f580c3b2&rl=5yXY&redirect-from=0MHezmzuL7cMALfZ&rcode=R02&rseq=R02 IP50.17.199.67:443
CertificateIssuerAmazon Subject*.greenlinknow.com Fingerprint50:1E:2E:70:CB:1C:84:ED:EB:C0:D2:DB:CA:87:BE:1E:66:31:57:19 ValidityMon, 18 Dec 2023 00:00:00 GMT - Tue, 14 Jan 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/clk?id=1wH2vBvuewUA1xIX&s1=662b56fceae3fd0001fee4ef&s2=f580c3b2&rl=5yXY&redirect-from=0MHezmzuL7cMALfZ&rcode=R02&rseq=R02 HTTP/1.1
Host: go.greenlinknow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 26 Apr 2024 07:26:10 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://go.greenlinknow.com/t/clk?id=rxHwLpLtBYh012iq&s1=662b56fceae3fd0001fee4ef&s2=f580c3b2&rl=wpvWTGK6&redirect-from=0MHezmzuL7cMALfZ&rcode=R02&rseq=R02,R02
server: nginx/1.14.2
cache-control: no-transform
x-frame-options: SAMEORIGIN
vary: Accept-Language, Cookie, Origin
content-language: en
set-cookie: ydt_a31a0322edef4efaa328c3e667d70925="[]:1s0FyE:zIHYoYyYAMF_NjirG1XnhlSLx_g"; expires=Sun, 26 May 2024 09:26:10 GMT; Max-Age=2599200; Path=/; SameSite=None; Secure
X-Firefox-Spdy: h2
|
|
| go.greenlinknow.com/t/clk?id=rxHwLpLtBYh012iq&s1=662b56fceae3fd0001fee4ef&s2=f580c3b2&rl=wpvWTGK6&redirect-from=0MHezmzuL7cMALfZ&rcode=R02&rseq=R02,R02 | 50.17.199.67 | 302 Found | 0 B |
URL User Request GET HTTP/2go.greenlinknow.com/t/clk?id=rxHwLpLtBYh012iq&s1=662b56fceae3fd0001fee4ef&s2=f580c3b2&rl=wpvWTGK6&redirect-from=0MHezmzuL7cMALfZ&rcode=R02&rseq=R02,R02 IP50.17.199.67:443
CertificateIssuerAmazon Subject*.greenlinknow.com Fingerprint50:1E:2E:70:CB:1C:84:ED:EB:C0:D2:DB:CA:87:BE:1E:66:31:57:19 ValidityMon, 18 Dec 2023 00:00:00 GMT - Tue, 14 Jan 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/clk?id=rxHwLpLtBYh012iq&s1=662b56fceae3fd0001fee4ef&s2=f580c3b2&rl=wpvWTGK6&redirect-from=0MHezmzuL7cMALfZ&rcode=R02&rseq=R02,R02 HTTP/1.1
Host: go.greenlinknow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ydt_a31a0322edef4efaa328c3e667d70925="[]:1s0FyE:zIHYoYyYAMF_NjirG1XnhlSLx_g"
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Fri, 26 Apr 2024 07:26:10 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://go.greenlinknow.com/t/clk?id=bLH31X1s9QIYZjSQ&s1=662b56fceae3fd0001fee4ef&s2=f580c3b2&rl=gJNzIA96foPL&redirect-from=0MHezmzuL7cMALfZ&rcode=R02&rseq=R02,R02,R02
server: nginx/1.14.2
cache-control: no-transform
x-frame-options: SAMEORIGIN
vary: Accept-Language, Cookie, Origin
content-language: en
set-cookie: ydt_a31a0322edef4efaa328c3e667d70925="[]:1s0FyE:zIHYoYyYAMF_NjirG1XnhlSLx_g"; expires=Sun, 26 May 2024 09:26:10 GMT; Max-Age=2599200; Path=/; SameSite=None; Secure
X-Firefox-Spdy: h2
|
|
| go.greenlinknow.com/t/clk?id=bLH31X1s9QIYZjSQ&s1=662b56fceae3fd0001fee4ef&s2=f580c3b2&rl=gJNzIA96foPL&redirect-from=0MHezmzuL7cMALfZ&rcode=R02&rseq=R02,R02,R02 | 50.17.199.67 | 302 Found | 0 B |
URL User Request GET HTTP/2go.greenlinknow.com/t/clk?id=bLH31X1s9QIYZjSQ&s1=662b56fceae3fd0001fee4ef&s2=f580c3b2&rl=gJNzIA96foPL&redirect-from=0MHezmzuL7cMALfZ&rcode=R02&rseq=R02,R02,R02 IP50.17.199.67:443
CertificateIssuerAmazon Subject*.greenlinknow.com Fingerprint50:1E:2E:70:CB:1C:84:ED:EB:C0:D2:DB:CA:87:BE:1E:66:31:57:19 ValidityMon, 18 Dec 2023 00:00:00 GMT - Tue, 14 Jan 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/clk?id=bLH31X1s9QIYZjSQ&s1=662b56fceae3fd0001fee4ef&s2=f580c3b2&rl=gJNzIA96foPL&redirect-from=0MHezmzuL7cMALfZ&rcode=R02&rseq=R02,R02,R02 HTTP/1.1
Host: go.greenlinknow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ydt_a31a0322edef4efaa328c3e667d70925="[]:1s0FyE:zIHYoYyYAMF_NjirG1XnhlSLx_g"
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Fri, 26 Apr 2024 07:26:10 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://go.greenlinknow.com/t/clk?id=dlHABxBhnetv1Js3&s1=662b56fceae3fd0001fee4ef&s2=f580c3b2&rl=8204I613s1gqtN4W&redirect-from=0MHezmzuL7cMALfZ&rcode=R02&rseq=R02,R02,R02,R02
server: nginx/1.14.2
cache-control: no-transform
x-frame-options: SAMEORIGIN
vary: Accept-Language, Cookie, Origin
content-language: en
set-cookie: ydt_a31a0322edef4efaa328c3e667d70925="[]:1s0FyE:zIHYoYyYAMF_NjirG1XnhlSLx_g"; expires=Sun, 26 May 2024 09:26:10 GMT; Max-Age=2599200; Path=/; SameSite=None; Secure
X-Firefox-Spdy: h2
|
|
| go.greenlinknow.com/t/clk?id=dlHABxBhnetv1Js3&s1=662b56fceae3fd0001fee4ef&s2=f580c3b2&rl=8204I613s1gqtN4W&redirect-from=0MHezmzuL7cMALfZ&rcode=R02&rseq=R02,R02,R02,R02 | 50.17.199.67 | 302 Found | 0 B |
URL User Request GET HTTP/2go.greenlinknow.com/t/clk?id=dlHABxBhnetv1Js3&s1=662b56fceae3fd0001fee4ef&s2=f580c3b2&rl=8204I613s1gqtN4W&redirect-from=0MHezmzuL7cMALfZ&rcode=R02&rseq=R02,R02,R02,R02 IP50.17.199.67:443
CertificateIssuerAmazon Subject*.greenlinknow.com Fingerprint50:1E:2E:70:CB:1C:84:ED:EB:C0:D2:DB:CA:87:BE:1E:66:31:57:19 ValidityMon, 18 Dec 2023 00:00:00 GMT - Tue, 14 Jan 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /t/clk?id=dlHABxBhnetv1Js3&s1=662b56fceae3fd0001fee4ef&s2=f580c3b2&rl=8204I613s1gqtN4W&redirect-from=0MHezmzuL7cMALfZ&rcode=R02&rseq=R02,R02,R02,R02 HTTP/1.1
Host: go.greenlinknow.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: ydt_a31a0322edef4efaa328c3e667d70925="[]:1s0FyE:zIHYoYyYAMF_NjirG1XnhlSLx_g"
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Fri, 26 Apr 2024 07:26:11 GMT
content-type: text/html; charset=utf-8
content-length: 0
location: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
server: nginx/1.14.2
cache-control: no-transform
x-frame-options: SAMEORIGIN
vary: Accept-Language, Cookie, Origin
content-language: en
set-cookie: uip="[\"vArcRkQ\"\054 {\"e5Xr\": \"Non8R3J\"}]:1s0FyF:vcAYA_gUjiqNfg4Le8nICSrk8Ko"; expires=Sun, 26 May 2024 07:26:11 GMT; Max-Age=2592000; Path=/
ydt_a31a0322edef4efaa328c3e667d70925="[\"2c2564b0-03e8-4df5-b095-cfce4cea2fbe\"]:1s0FyF:V3wY9ATVj8qWyi2ArHlmoUnzW3Y"; expires=Sun, 26 May 2024 09:26:11 GMT; Max-Age=2599200; Path=/; SameSite=None; Secure
X-Firefox-Spdy: h2
|
|
| flaredownload.com/assets/hl-b357b190.js | 172.67.186.1 | 200 OK | 97 kB |
URL GET HTTP/3flaredownload.com/assets/hl-b357b190.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hashcd6e0eff789221181a0b8471967bcb8d 71586e5b8ca6df344fd58e8a1772baa3734bb190 b7baa94b8d9f78408c104d46f5b9df36b49a27a09719b7a5b80be68d72d5651e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-b357b190.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI4OTU0NTUiLCJhcCI6IjUzNTkwNzUzNyIsImlkIjoiMDFhNjVmNWMzMTI1NzQzMyIsInRyIjoiMjk1YTAxNDA3YWI2NDk2Y2I4NWU0MTI4NTE2MzkyMzMiLCJ0aSI6MTcxNDExNjM3MjA4OH19
traceparent: 00-295a01407ab6496cb85e412851639233-01a65f5c31257433-01
tracestate: 2895455@nr=0-1-2895455-535907537-01a65f5c31257433----1714116372088
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=265728
access-control-allow-origin: *
etag: W/"6628bc74-40e00"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nEZBnHqK9CqVxpSeMaBF0lvV7vs1q9FALyMvt18wrB0pjkiI2ya6Yf9uD5MJe4%2FbpOSugNByw3Sds%2FFiVAUDZtSPrwO%2FXjgtyPjStqr0x1CWgGJIwK1QLa2lfhKx498NgPLTQRTbrg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 1
server: cloudflare
cf-ray: 87a4d7dd99b10b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/prod/images/1f98d63b3bd5b60546b0fe5159d1b7b8.png | 172.67.186.1 | 200 OK | 5.4 kB |
URL GET HTTP/3flaredownload.com/prod/images/1f98d63b3bd5b60546b0fe5159d1b7b8.png IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typePNG image data, 646 x 116, 8-bit colormap, non-interlaced Hashb169e30ad5cb8b0b613ae6c3006afbe0 b0f804da985ec024b15155f33084ee796d1abc0d 7f474dce0f1f49839379e2c6c1130a4a399ccfc5b173eb89dbbc28c83d75a803
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /prod/images/1f98d63b3bd5b60546b0fe5159d1b7b8.png HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: image/png
content-length: 5415
last-modified: Thu, 11 Apr 2024 15:05:45 GMT
etag: "6617fc49-1527"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yWFvCqftoryPuoXwC6ICRE4r4d%2F3gN8ppNa4O6t6vvcn9uKctr7GmtC5k0VU%2FWrR8C3H6ph5LqGwW1Yxeex5CQdbGCXZBHEFlPm7wJ4%2BD6tBzxYz6TVX%2FJjO6rYFElylMdnV5pfp7Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a4d7e15c500b4d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-7c523d10.js | 172.67.186.1 | 200 OK | 1.5 kB |
URL GET HTTP/3flaredownload.com/assets/hl-7c523d10.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (561), with no line terminators Hash3f90e2427940a06d4e9815c861bb91cb d7b4609aab1a69ecba7a1b03982c25658fe04fe5 9b93b2d84b27d2b351ef609d2d9c892a1355d5d7f9e20403dc043d51c8e8eae9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-7c523d10.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-f46804a9.js
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=562
access-control-allow-origin: *
etag: W/"6628bc74-232"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=m4%2BNV4lrziYE2hBXl64l8dEIKcqs6JNbJ8TxwYAmlmaNmPtM%2B644L5buSnJnbcdLYn5TN4WCfBajUOGTYj%2FwJjaMhWSVu4oQO5o5D4W2pLaoMCZzdW2QFyWKtLz2RujjZST5zBxvcw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87a4d7e10c1a0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/prod/images/58294b522e31bd664bc6d1dd76cec438.png | 172.67.186.1 | 200 OK | 4.8 kB |
URL GET HTTP/3flaredownload.com/prod/images/58294b522e31bd664bc6d1dd76cec438.png IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typePNG image data, 190 x 108, 8-bit/color RGBA, non-interlaced Hash12e2bcc7cae9c2211a695df886e28e9b 0e31a94632d7efa8ca00b3d84b90f3e61fcc7322 cdebbfd2ef3531023cb60b657445e188a0e76824338edc4ada292ac7ab1e164f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /prod/images/58294b522e31bd664bc6d1dd76cec438.png HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: image/png
content-length: 4792
last-modified: Thu, 11 Apr 2024 15:05:45 GMT
etag: "6617fc49-12b8"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VyEqIRGmiKWcA%2FgefzxWeR%2FPTdTgesTIBHiabBtGWHUziTV79urPusHzlbDg1kQ58mT%2FN5IRrpwyO1qYwxzoBrcQJz4jkgSImBFg4Q%2Fs7Lz1pEiYU8jPaikNOQUr1ve6ImJP%2Fxa8Sw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a4d7e15c580b4d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/prod/images/1f98d63b3bd5b60546b0fe5159d1b7b8.png | 172.67.186.1 | 200 OK | 5.4 kB |
URL GET HTTP/3flaredownload.com/prod/images/1f98d63b3bd5b60546b0fe5159d1b7b8.png IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typePNG image data, 646 x 116, 8-bit colormap, non-interlaced Hashb169e30ad5cb8b0b613ae6c3006afbe0 b0f804da985ec024b15155f33084ee796d1abc0d 7f474dce0f1f49839379e2c6c1130a4a399ccfc5b173eb89dbbc28c83d75a803
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /prod/images/1f98d63b3bd5b60546b0fe5159d1b7b8.png HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: image/png
content-length: 5415
last-modified: Thu, 11 Apr 2024 15:05:45 GMT
etag: "6617fc49-1527"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yWFvCqftoryPuoXwC6ICRE4r4d%2F3gN8ppNa4O6t6vvcn9uKctr7GmtC5k0VU%2FWrR8C3H6ph5LqGwW1Yxeex5CQdbGCXZBHEFlPm7wJ4%2BD6tBzxYz6TVX%2FJjO6rYFElylMdnV5pfp7Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
accept-ranges: bytes
server: cloudflare
cf-ray: 87a4d7e1cca90b4d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| event.secureanalytic.com/register/event_log/v9e179lqez | 172.67.204.164 | 200 OK | 0 B |
URL OPTIONS HTTP/2event.secureanalytic.com/register/event_log/v9e179lqez IP172.67.204.164:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerLet's Encrypt Subjectsecureanalytic.com FingerprintE8:56:22:9E:5D:B8:81:BD:9C:20:0E:24:64:BE:C4:CA:4E:D6:C9:63 ValidityFri, 29 Mar 2024 10:27:40 GMT - Thu, 27 Jun 2024 10:27:39 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /register/event_log/v9e179lqez HTTP/1.1
Host: event.secureanalytic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://flaredownload.com/
Origin: https://flaredownload.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-length: 0
expires: 0
cache-control: no-cache, no-store, max-age=0, must-revalidate
access-control-allow-headers: content-type
x-xss-protection: 1; mode=block
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src * 'self' https://* blob: data:; font-src 'self' data:
access-control-allow-methods: POST
x-frame-options: SAMEORIGIN
access-control-expose-headers: Authorization, Link, X-Total-Count, X-pushPlatformApp-alert, X-pushPlatformApp-error, X-pushPlatformApp-params
access-control-allow-origin: *
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-content-type-options: nosniff
permissions-policy: camera=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), sync-xhr=()
access-control-max-age: 1800
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iIDGHPj2WR6Vk2c0ME1UbwulTiYoPP5dhhAuxUQlPXXf9rm5QZWQIgYDNiVxzXeHljfRwUPRttD1JiEhz2eoJTMtuw5b34r31thiwsnoNUtzW2nB5DD0bhWBqq2exSt8F5Hm%2BMbeDOKGuJ0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a4d7e11a6f56ab-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| flaredownload.com/prod/images/58294b522e31bd664bc6d1dd76cec438.png | 172.67.186.1 | 200 OK | 4.8 kB |
URL GET HTTP/3flaredownload.com/prod/images/58294b522e31bd664bc6d1dd76cec438.png IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typePNG image data, 190 x 108, 8-bit/color RGBA, non-interlaced Hash12e2bcc7cae9c2211a695df886e28e9b 0e31a94632d7efa8ca00b3d84b90f3e61fcc7322 cdebbfd2ef3531023cb60b657445e188a0e76824338edc4ada292ac7ab1e164f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /prod/images/58294b522e31bd664bc6d1dd76cec438.png HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: image/png
content-length: 4792
last-modified: Thu, 11 Apr 2024 15:05:45 GMT
etag: "6617fc49-12b8"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=VyEqIRGmiKWcA%2FgefzxWeR%2FPTdTgesTIBHiabBtGWHUziTV79urPusHzlbDg1kQ58mT%2FN5IRrpwyO1qYwxzoBrcQJz4jkgSImBFg4Q%2Fs7Lz1pEiYU8jPaikNOQUr1ve6ImJP%2Fxa8Sw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
accept-ranges: bytes
server: cloudflare
cf-ray: 87a4d7e1ccaa0b4d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/prod/images/d6f1a49d2bef9aed973072b6061b3cbc.png | 172.67.186.1 | 200 OK | 1.1 kB |
URL GET HTTP/3flaredownload.com/prod/images/d6f1a49d2bef9aed973072b6061b3cbc.png IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typePNG image data, 142 x 116, 8-bit colormap, non-interlaced Hashcf1125dc9e8565471095b2315121607f 4587708c5f5abb1f9e5edfa01df0db5231dc6384 b6834940fa7f64a908522d2f88d6487b2da1580f6ae729e7cb8f7088c9b9204e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /prod/images/d6f1a49d2bef9aed973072b6061b3cbc.png HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: image/png
content-length: 1089
last-modified: Thu, 11 Apr 2024 15:05:45 GMT
etag: "6617fc49-441"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pXpEp3DS%2Bde20QtZ6D%2BUNYkMeETD4dK%2BiHv7vBkuTK5RVIHFWvWw3JtvCk24CfB%2BQj5ceA9u7bn1Nn5p%2F8dH5zAESxpponjskofa8QUyJFtCCHbGqhspTMDgLDWRFFO6gsP2Iw7oSQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
accept-ranges: bytes
server: cloudflare
cf-ray: 87a4d7e1ccab0b4d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/prod/images/a032b8243950801928214bc5092e9764.png | 172.67.186.1 | 200 OK | 110 B |
URL GET HTTP/3flaredownload.com/prod/images/a032b8243950801928214bc5092e9764.png IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typePNG image data, 48 x 48, 1-bit colormap, non-interlaced Hash09d6a9ebc45af5c5367f0a216e6234d7 357bb5d08644fbe599d34d165652dc19afe0df9c 5fda2ac54507259375f4107937b24a9c42302725c816cfd1620e84a526c734b1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /prod/images/a032b8243950801928214bc5092e9764.png HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: image/png
content-length: 110
last-modified: Thu, 11 Apr 2024 15:05:45 GMT
etag: "6617fc49-6e"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4rapFC95OUN1H6gCOhM1J2r1I5Gn7oskUIpMshMUfLb1%2Bo6gYkTMsd0k0a%2BchrRqElRnMV%2BCLluZXAlvygW%2BU%2FVYl1ctewU0XEaqASQEw0hYC3IDhDJgnJ4IFYYjQbmeIRM0WDQP9A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
accept-ranges: bytes
server: cloudflare
cf-ray: 87a4d7e1dcaf0b4d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/prod/images/db126da1b71e69a76e54d2f4139a347c.png | 172.67.186.1 | | 220 B |
URL GET flaredownload.com/prod/images/db126da1b71e69a76e54d2f4139a347c.png IP172.67.186.1:0
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typePNG image data, 72 x 48, 4-bit colormap, non-interlaced Hashf1063acb225b213d5fa9b231ee16cd25 e549decdc41f5ee29e75387f32470d90ee772787 4ee13f508c5a43754521cc34fd490bfb72daa996baaa558fa8638586371b1752
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /prod/images/db126da1b71e69a76e54d2f4139a347c.png HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: image/png
content-length: 220
last-modified: Thu, 11 Apr 2024 15:05:45 GMT
etag: "6617fc49-dc"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RZkCVstEuBjXqvWH%2BJbzFH9eAApluDJDhNAlPMtO48H9Y91kUGdHyDClaEDlDnTVOdG7Bfdcso9I46r7vwe95ZvFxgufiknpgXsD8SJ40eUsXsDVFWbpLXZryQvSKE2lslWANsOgrA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
accept-ranges: bytes
server: cloudflare
cf-ray: 87a4d7e1dcb00b4d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/prod/images/0a0c25c3671252ddad1a0a2c61b4aa3e.png | 172.67.186.1 | | 736 B |
URL GET flaredownload.com/prod/images/0a0c25c3671252ddad1a0a2c61b4aa3e.png IP172.67.186.1:0
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typePNG image data, 60 x 60, 8-bit colormap, non-interlaced Hash3e81792d1c3c845ca714ccb6d622a5cb 370d33f46430e85060c11f8d0d325b963743e738 039b1d9bc03573a402798799c1d0dbef6f03979e51ccf3576d2cfb07112b4145
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /prod/images/0a0c25c3671252ddad1a0a2c61b4aa3e.png HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: image/png
content-length: 736
last-modified: Thu, 11 Apr 2024 15:05:45 GMT
etag: "6617fc49-2e0"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nXt148rziMjWTfuk3a3OjnxMtwYTsGpdkS0RzfSWeu5onIPqHF4QuHYeM%2F%2FqWPL568plOSinyH%2B8Jg%2BhiCNYh4Pqq%2FpV0fScokrrqF3SU11vLzGcHaSmyt3pw4pF8s8DrpHOZn6KhA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
accept-ranges: bytes
server: cloudflare
cf-ray: 87a4d7e1dcb20b4d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/prod/images/8cc59accec24f33766b15adf267e9641.png | 172.67.186.1 | | 723 B |
URL GET flaredownload.com/prod/images/8cc59accec24f33766b15adf267e9641.png IP172.67.186.1:0
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typePNG image data, 60 x 60, 8-bit colormap, non-interlaced Hashba8f10079cf5a5f5cffd4312e047db3d 2864af04fbdb64a20c8e1c2615a0401fca4bc956 e157263323db5ea8e56113a9119f4733b0a8130563d87e20e1b3575f4f22620c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /prod/images/8cc59accec24f33766b15adf267e9641.png HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: image/png
content-length: 723
last-modified: Thu, 11 Apr 2024 15:05:45 GMT
etag: "6617fc49-2d3"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=T%2FNLRnP3kchLeMa0hYamj%2FPgqbqKSu%2FwXNn3DvFplGG4WbJQcg4YF0G%2FDZs9Su0lDjPQkWxdHi%2BXAOIhksMn7y9D05dyv5K8owMAkQK4cknPs7k2eMGzDzPnaBKkPZ9UpLcYtvhxTg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
accept-ranges: bytes
server: cloudflare
cf-ray: 87a4d7e1dcac0b4d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-edb2da2a.js | 172.67.186.1 | 200 OK | 137 kB |
URL GET HTTP/3flaredownload.com/assets/hl-edb2da2a.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeJavaScript source, ASCII text, with very long lines (1410), with no line terminators Size137 kB (137275 bytes) Hash0fb9d8a5fba7f6a569da52896f965ea3 6e57202028341c2674083acf9e428817c6725c6c 30137b4b0317a40d0c195fff2b2cd054bb39adf2fb94d357f269cb36e3c11581
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-edb2da2a.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI4OTU0NTUiLCJhcCI6IjUzNTkwNzUzNyIsImlkIjoiOGNmZDJjN2I3MDY1OGE4YyIsInRyIjoiNDY1YTE2Y2RhOTZjOTUxNDhlMDYyZDUxNTY3ZWVkMGEiLCJ0aSI6MTcxNDExNjM3MjAwNH19
traceparent: 00-465a16cda96c95148e062d51567eed0a-8cfd2c7b70658a8c-01
tracestate: 2895455@nr=0-1-2895455-535907537-8cfd2c7b70658a8c----1714116372004
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1413
access-control-allow-origin: *
etag: W/"6628bc74-585"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Y66gibVBeBI9OvcU75AxAfFgI3UPiX1m0f0aA7trFrYSTWHK29LX6bjDrnJRcT6NUZDo3M2H45x6Z6clUEo%2FanoWqDwzNpRSCuoXdH7Bh%2FJ123GXUgNAV%2FqDU0VMhOppXSlA9%2FPYWg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a4d7dd093f0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-c3c0d3f4.woff2 | 172.67.186.1 | 200 OK | 24 kB |
URL GET HTTP/3flaredownload.com/assets/hl-c3c0d3f4.woff2 IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23484, version 1.0 Hashb4d2c4c39853ee244272c04999b230ba c82e22dde9716c40ba20e6c7ed03a1b66556de15 c3c0d3f472358aac78455515c4800771426770c22698e2486d39fdb5505634e1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-c3c0d3f4.woff2 HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-04d68de7.css
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/octet-stream
content-length: 23484
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
etag: "6628bc74-5bbc"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XYVofme6P6skif6iqMjFmAtQejzAq51%2Be9ERx2VhGeYEEgFfFFgUcxfQCTgXqK%2Bl0IHi5WBZJH0T%2BaAVUiAqKYIRoXA7Vuyas9OX6oGBmtL%2BeVxTWOTf0CS2TGsJhyAn6%2B8HIvNImw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a4d7e22cde0b4d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-3638d339.woff2 | 172.67.186.1 | 200 OK | 17 kB |
URL GET HTTP/3flaredownload.com/assets/hl-3638d339.woff2 IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 16860, version 1.0 Hash13049c7a16af3e830b7668f15f8e668a f9eca560164be1be239e42c43cf8bb07aa7d8f14 3638d33930adfd35323251395221e7b9e1f2a641e6a1ead6e9d18d09588a2cfb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-3638d339.woff2 HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-04d68de7.css
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/octet-stream
content-length: 16860
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
etag: "6628bc74-41dc"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yqTQ6tLxbXZ4PmQ00OAGsLfO9EZL%2Fd5pj9QN8Kltt2dpCZZT4IUx6JMNMyqgGyqxz26YUud18JIX6il3rvWmjhnwTtFka2cBj0ONWZOAA3923zUhdV5liRzhnsJytVC9oKzhhOmjLw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a4d7e22cdd0b4d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/prod/images/fab0ca77292b4d30dbf253d27c664fb3.jpg | 172.67.186.1 | 200 OK | 607 kB |
URL GET HTTP/3flaredownload.com/prod/images/fab0ca77292b4d30dbf253d27c664fb3.jpg IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1920x1258, components 3 Size607 kB (606551 bytes) Hash2296953043efaeb814b4ac9aa91b1edd 9947df98a24084f16562735b335d14d574f84d82 25d11bd085d802574f8fc54f57abea5572f97b91b0d0c89429736e7d5ba6567c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /prod/images/fab0ca77292b4d30dbf253d27c664fb3.jpg HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: image/jpeg
content-length: 606551
cf-bgj: h2pri
access-control-allow-origin: *
etag: "6617fc49-94157"
last-modified: Thu, 11 Apr 2024 15:05:45 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=eyUwlgADnScKdlLz518I%2FKaaKjIMWcUr%2Fr6sIYArNpyEUxqMCofx1UtOIZz7vsK5KbZvFW%2FONBG6Y2KblFTgT1YV8ScuI9%2FTbduBopxxg1GaCTwTPQGNIM33Lg0VPQ%2F2le0fM2GaDQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a4d7e22cda0b4d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-28a0afe6.png | 172.67.186.1 | 200 OK | 132 kB |
URL GET HTTP/3flaredownload.com/assets/hl-28a0afe6.png IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typePNG image data, 490 x 310, 8-bit/color RGBA, non-interlaced Size132 kB (132079 bytes) Hash663a088b73ce519c38adbad79e82d659 39ef28b09af2fdcf7f683c58efc18a43bd9e121f 28a0afe680833c1a10601e37f8a86a59b13f0e10aa03b9f5a5c53848639f77ac
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-28a0afe6.png HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-04d68de7.css
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: image/png
content-length: 132079
last-modified: Wed, 24 Apr 2024 08:01:55 GMT
etag: "6628bc73-203ef"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kB7WD%2BNFc%2BJtWi8QcW%2FPqrHkVdkIh2%2BEYvb6BeVo0X5o3aJWjfleOmoNxUHh9fzUG6sY4eret6pHN60libV3zVpmRUDPPZu5biZutjIwiPSKg7Hrv9C1YsbfNjtry9FJbvPXc9RzdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a4d7e22cdc0b4d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-0b01f32c.js | 172.67.186.1 | 200 OK | 24 kB |
URL GET HTTP/3flaredownload.com/assets/hl-0b01f32c.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeJavaScript source, ASCII text, with very long lines (2841), with no line terminators Hash0e36cfaac1547260ab55e5c06aeaa646 a42bee30ddf571110286d895b11775c857e82601 78a32b7f255e67362fd31a02b4b10cb336c47dcc1ec1f633a1369ef27b861f99
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-0b01f32c.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI4OTU0NTUiLCJhcCI6IjUzNTkwNzUzNyIsImlkIjoiMzFiOGM4MGExMjAzMmRkNiIsInRyIjoiNWY4ZDFiMWIwMjE3YmY5ZWU2ODFlMWZjNGEyMTAwOGQiLCJ0aSI6MTcxNDExNjM3MjczOX19
traceparent: 00-5f8d1b1b0217bf9ee681e1fc4a21008d-31b8c80a12032dd6-01
tracestate: 2895455@nr=0-1-2895455-535907537-31b8c80a12032dd6----1714116372739
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=2842
access-control-allow-origin: *
etag: W/"6628bc74-b1a"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=6f4UIVNdGPRwjBGFOOKuB6E%2FSexaeRlgXybNB%2Fo%2Bs82AR7it8AkfTeVuuLelY2GD6N5oBxd4w%2BYLiym4cYdhFfid4dJga27aeJPNAA%2BbumDBwlDcQHes6akRGBwQqNK6XCOgckr%2BMw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a4d7e1bca20b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-70789bd7.woff2 | 172.67.186.1 | 200 OK | 17 kB |
URL GET HTTP/3flaredownload.com/assets/hl-70789bd7.woff2 IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 17372, version 1.0 Hashc02fb7419b8629666bf2ccc0a5177e3d b70b21a3e6e55fbcbae137a3cbb4e05371c2bab6 70789bd70be9b6d68acd51063e499d6fe5e7fe53a654dab4fb00a8cf5bfe3637
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-70789bd7.woff2 HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-04d68de7.css
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/octet-stream
content-length: 17372
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
etag: "6628bc74-43dc"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cii3oadoA8q6zJl5qbA4Moz2tF9hjyMyWK8PQlvOOxMbtkbA%2FCxP5Zn8yJUUvGItHsTgK%2BcsArAQS4P0u2ue1wObO9qIfxogfbHgTuSinrzyejOUUYWxAiJ6vYMBw9wUwRfNb1cStA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a4d7e23ce60b4d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| event.secureanalytic.com/register/event_log/v9e179lqez | 172.67.204.164 | 200 OK | 0 B |
URL OPTIONS HTTP/2event.secureanalytic.com/register/event_log/v9e179lqez IP172.67.204.164:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerLet's Encrypt Subjectsecureanalytic.com FingerprintE8:56:22:9E:5D:B8:81:BD:9C:20:0E:24:64:BE:C4:CA:4E:D6:C9:63 ValidityFri, 29 Mar 2024 10:27:40 GMT - Thu, 27 Jun 2024 10:27:39 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /register/event_log/v9e179lqez HTTP/1.1
Host: event.secureanalytic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/
Content-type: application/json
Content-Length: 103
Origin: https://flaredownload.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-length: 0
expires: 0
cache-control: no-cache, no-store, max-age=0, must-revalidate
x-xss-protection: 1; mode=block
pragma: no-cache
referrer-policy: strict-origin-when-cross-origin
x-pushplatformapp-params:
content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src * 'self' https://* blob: data:; font-src 'self' data:
x-pushplatformapp-alert: pushPlatformApp.pushSubscription.deleted
x-frame-options: SAMEORIGIN
access-control-expose-headers: Authorization, Link, X-Total-Count, X-pushPlatformApp-alert, X-pushPlatformApp-error, X-pushPlatformApp-params
access-control-allow-origin: *
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-content-type-options: nosniff
permissions-policy: camera=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), sync-xhr=()
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0%2Fr1zs1TUpucTp%2FpThSajlRVZRPedNGuPj%2BfNedYFfk01YF%2B%2BaXkgQRJR2vvkNVlUK8pZx4W%2BY%2Fdb54PdC5I%2B%2BenFqYmaXS4Fdit8JLRodgWMOWADnsdJHVEr11yS4bAKyId5IUBIx0TQrU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a4d7e21b4556ab-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| secureanalytic.com/scripts/push/script/02eyoyxdkz?url=flaredownload.com | 104.21.77.48 | 200 OK | 13 kB |
URL GET HTTP/2secureanalytic.com/scripts/push/script/02eyoyxdkz?url=flaredownload.com IP104.21.77.48:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerLet's Encrypt Subjectsecureanalytic.com FingerprintE8:56:22:9E:5D:B8:81:BD:9C:20:0E:24:64:BE:C4:CA:4E:D6:C9:63 ValidityFri, 29 Mar 2024 10:27:40 GMT - Thu, 27 Jun 2024 10:27:39 GMT
File typeJavaScript source, ASCII text, with very long lines (7327) Hash8b4e4336c8b723c40ea3f3b4b926cc6d 919e67aa2695090c9d501870cac8a036159ccd21 cd43c65c86fe837d8eb3fac16a61c0a6aa3d34a0533195925c0b71f62494d60c
GET /scripts/push/script/02eyoyxdkz?url=flaredownload.com HTTP/1.1
Host: secureanalytic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript;charset=UTF-8
expires: 0
cache-control: max-age=14400, must-revalidate
x-xss-protection: 1; mode=block
pragma: no-cache
x-frame-options: SAMEORIGIN
referrer-policy: strict-origin-when-cross-origin
content-security-policy: default-src 'self'; frame-src 'self' data:; connect-src 'self' https://cdn-media-2020.s3.amazonaws.com; script-src 'self' 'unsafe-inline' 'unsafe-eval' https://storage.googleapis.com; style-src 'self' 'unsafe-inline'; img-src * 'self' https://* blob: data:; font-src 'self' data:
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
x-content-type-options: nosniff
permissions-policy: camera=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), sync-xhr=()
cf-cache-status: EXPIRED
last-modified: Thu, 25 Apr 2024 16:45:25 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=k9RA%2Br9k2TZDpIYYbfIyfBk%2FEuGH97OLkk%2BRoPZpl4TJFpQF4CDwikQfgEKqixQpdFoxgrCQ9mf5RBhpkzoX9RDaGxkJCFRCvrPKXpnSTydF%2FlxHb3iakhJy48azeEnYPR90Ojc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a4d7dd991a0b3d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| flaredownload.com/visit/get-data?landingId=7867&subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource= | 172.67.186.1 | 200 OK | 12 kB |
URL GET HTTP/3flaredownload.com/visit/get-data?landingId=7867&subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource= IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
Hash4a056dc7c38d45c651baa1b5e2d3b9a5 647fc0eead4b53469c276e0c67cc2b9815e2ed97 4155c93b375ce50287af16352bf7e81e6e26a10b7cbd95c8af6ec2bcdc1078b9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /visit/get-data?landingId=7867&subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource= HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg4OVFJWDRAFVFRTAQEHUFc=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI4OTU0NTUiLCJhcCI6IjUzNTkwNzUzNyIsImlkIjoiNGVmZjFlMWRiN2UyM2M4MiIsInRyIjoiYWJkZjMzNmFjNDE3ODMwYzFjOTJmNTM3N2U2YTFiZjUiLCJ0aSI6MTcxNDExNjM3MTc5MX19
traceparent: 00-abdf336ac417830c1c92f5377e6a1bf5-4eff1e1db7e23c82-01
tracestate: 2895455@nr=0-1-2895455-535907537-4eff1e1db7e23c82----1714116371791
sentry-trace: 1c18319eaae349cd81610e06b67bf7a9-b6e2eaa63116be38-0
baggage: sentry-environment=production,sentry-public_key=9056b383582c444792eb65c1726488d9,sentry-trace_id=1c18319eaae349cd81610e06b67bf7a9,sentry-sample_rate=0.1,sentry-sampled=false
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:11 GMT
content-type: application/json; charset=UTF-8
set-cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D; path=/; HttpOnly; SameSite=Lax
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lv1Vi40B29TKYtPfU7%2BG4JaJ3WoBAwy0mM1z%2BSn%2BncbktpWbduR3UWoy1d9ezFV1ani9aWl5hl8B3OuVfcmGEBKU7fGtK%2BUqs7BK%2FmiQQxYs2Z8FT32SMR4r%2FS7h52WDR%2B4HHQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a4d7dbb8280b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-69cc381a.js | 172.67.186.1 | 200 OK | 418 B |
URL GET HTTP/3flaredownload.com/assets/hl-69cc381a.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (440), with no line terminators Hash027f4ce7ab8f79f3351900b02e709fc2 1916fbd0a01a1cedb02f7a2b4640b6160d941e7d 11179c843f7538e955b1b01e0b3e2b17b9b34d55205748efa5968e24d1d690ee
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-69cc381a.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI4OTU0NTUiLCJhcCI6IjUzNTkwNzUzNyIsImlkIjoiMDY0OTc2M2I3YWQwOWVlOSIsInRyIjoiYzM0YTA4NWQ0ZGJkYjFhZjdkNDVjYjBlN2FkNDc3MTgiLCJ0aSI6MTcxNDExNjM3MjAwMn19
traceparent: 00-c34a085d4dbdb1af7d45cb0e7ad47718-0649763b7ad09ee9-01
tracestate: 2895455@nr=0-1-2895455-535907537-0649763b7ad09ee9----1714116372002
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=419
access-control-allow-origin: *
etag: W/"6628bc74-1a3"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BNK5XvjRc8hiKzDcgiDosISV8Ul0cX2H6CNX18vA6goefCHphXYI23jMcEs1%2Bo1Yi1rHPjNOmdOTTWKR1IBQ0c%2BJUWkJigiHriLrwbMK5o%2BeOv1JdGGZheMOfmspliTCilbUrvMEsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a4d7dd093c0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-83316dfd.js | 172.67.186.1 | 200 OK | 6.1 kB |
URL GET HTTP/3flaredownload.com/assets/hl-83316dfd.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (6412), with no line terminators Hash27a35e0ced45379f41358a6beedea7fa e7f50dd1456fb36c9d10d469061701f6832996e7 e6fa07feb0815b3f09ed4ca05e6e145aedfe7e96cd7783d357f4332e33629048
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-83316dfd.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI4OTU0NTUiLCJhcCI6IjUzNTkwNzUzNyIsImlkIjoiODkyNmVmNmVhNmRhMTFkNyIsInRyIjoiZjgxZmE0ODQ1MGI5OTdiMDdmOTllOTE4YzkyZWJhOWMiLCJ0aSI6MTcxNDExNjM3MjE0OH19
traceparent: 00-f81fa48450b997b07f99e918c92eba9c-8926ef6ea6da11d7-01
tracestate: 2895455@nr=0-1-2895455-535907537-8926ef6ea6da11d7----1714116372148
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=6097
access-control-allow-origin: *
etag: W/"6628bc74-17d1"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PnO%2BITVVcT1SI7e7ZQZPZOer8TdFGWJJrlkVKhRk%2BDqKya3kzWeSTPRKV76r%2BZNAhnFiZNNjsVl%2FnSXcn33X5hYYIOCw8Pc2%2B7vRZup0brEbxBxthX4ddwQ7EHzxhIYkA1Ttu3rhYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a4d7ddf9fb0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-35a77ba0.js | 172.67.186.1 | 200 OK | 72 kB |
URL GET HTTP/3flaredownload.com/assets/hl-35a77ba0.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-35a77ba0.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI4OTU0NTUiLCJhcCI6IjUzNTkwNzUzNyIsImlkIjoiZjU1NDIwNzRjYjc3MmZhZiIsInRyIjoiOWQ1MWYwMDc3YmZkMDU5YWU5MDYxYTUxOTAwY2RjYzciLCJ0aSI6MTcxNDExNjM3MjE0OX19
traceparent: 00-9d51f0077bfd059ae9061a51900cdcc7-f5542074cb772faf-01
tracestate: 2895455@nr=0-1-2895455-535907537-f5542074cb772faf----1714116372149
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=72018
access-control-allow-origin: *
etag: W/"6628bc74-11952"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3OtODt69WG6K7ke3l982WOnDBJB3O8PWoJH3xTwd%2BalseWY2yWuTABZeF%2FvVX8ubgTkK%2BeWtUqCpELghRTcGz%2FpfrC9HMaM7o8iuX%2BhGFySLinRQcA5GncQ4u41Q3Jg8t0nc0QIOKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a4d7ddf9fe0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-792ddeea.js | 172.67.186.1 | 200 OK | 779 B |
URL GET HTTP/3flaredownload.com/assets/hl-792ddeea.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (821), with no line terminators Hash617b4698a03d9543fee54c24abb9a0f4 2e58430682d3e8372f4089864d3c64a135e32f80 544c7d3222666743bbe690f4a9fcad37ff7e08663222c571eb1c70886eee6186
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-792ddeea.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-83316dfd.js
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=780
access-control-allow-origin: *
etag: W/"6628bc74-30c"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l4L6hjIq8ZJs5LmorIA%2B77LMkmobiGXWwZ543WZgryRHJN3VpStyQo0VmxLOPA2q9RGqNrRc%2BPyfivi2dPNq0ERrmGhztvHQ6C6PPDfOT3z5DiE2DkL3mMIgfz9m0%2BuklQhGFpsu0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87a4d7e1ecbe0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-d3fbdfe4.js | 172.67.186.1 | 200 OK | 915 B |
URL GET HTTP/3flaredownload.com/assets/hl-d3fbdfe4.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (943), with no line terminators Hashc031800c96fa289ab0f286d46661bea2 0b56e63ed6e2cdedd318c9030a1f6056ea5eac72 3e5d95a8678551eacf124da824401720a824943199ae59ea9a2c49df75b06255
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-d3fbdfe4.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI4OTU0NTUiLCJhcCI6IjUzNTkwNzUzNyIsImlkIjoiYWFmNmYyYThmZmNhNWU3MCIsInRyIjoiYTc3ZTk2MGFjZjlkZTMxYjJlNzVmZWQwMzYyYzAyZWIiLCJ0aSI6MTcxNDExNjM3MjE0Nn19
traceparent: 00-a77e960acf9de31b2e75fed0362c02eb-aaf6f2a8ffca5e70-01
tracestate: 2895455@nr=0-1-2895455-535907537-aaf6f2a8ffca5e70----1714116372146
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=916
access-control-allow-origin: *
etag: W/"6628bc74-394"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hyn2jgyeD2%2Bj2P71TLMFrGxdWzMA%2BFAx6CW8h9wSpMP7qKhuOIklgIVLMbnn%2FocjMuT2WTpzpeX6l1EuX4anDuA9rhbCklanGygggrmGbEhtqj6RJ%2BrppuOhI6ENjh%2BG%2B%2BnlmD0PFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a4d7ddf9f40b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-4bc0c634.js | 172.67.186.1 | 200 OK | 4.8 kB |
URL GET HTTP/3flaredownload.com/assets/hl-4bc0c634.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (5067), with no line terminators Hash74d69c1dd512dfa44137d6bd4a308189 e9596eee77659f2801f0da48340b9b736aa128fe 8674e1f2c4f9b323f5eea44fc4da5cb21acbdefabd1327c85b6011ba29ddece2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-4bc0c634.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-b357b190.js
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=4794
access-control-allow-origin: *
etag: W/"6628bc74-12ba"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2pzIVShF0nT12PZMoENaxiDaoW6btYpWYIrM6btkuUcQ20EHxzW4ENQE5FtqN4xP56aulkVDftLGXZnAB2TlCJJu%2BC0xyqirmjgAFDe%2FyZ9AyZHrQF6LOzWEZwT7sUDLOn2rjvvVAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a4d7dd09400b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-ac68def5.js | 172.67.186.1 | 200 OK | 1.9 kB |
URL GET HTTP/3flaredownload.com/assets/hl-ac68def5.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeJavaScript source, ASCII text, with very long lines (1960), with no line terminators Hash0ff6ab8d653238e85c26fc3cfe55015a 18ec157045ee471ba8530e17f0ca0f5fb6bd9d1e 5d8585fce9ef9ba564f252ce8f290814d7b563d5b4d5b6b44b03f49b1e6c0668
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-ac68def5.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-30e661e5.js
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1923
access-control-allow-origin: *
etag: W/"6628bc74-783"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=trmrsyKDwRJu%2BE0%2Ba0lgS2oAC%2BApXenf5JXgNugcBvPdPHWfA9cKLbRV1fUcbDJJW4bjx6NJ4R3wIEhD%2F5VJJJcBsoivx8ZLuqtAV8Aqax87BnRRWmjcrm%2FWQnB0FCxhenfVIX8QIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87a4d7e26cfe0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-de833af9.js | 172.67.186.1 | 200 OK | 690 B |
URL GET HTTP/3flaredownload.com/assets/hl-de833af9.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeJavaScript source, ASCII text, with very long lines (704), with no line terminators Hash25a523c7c0658e2bf768f0e26f59fbd8 fdae37e60c01daf3551830ba3639873e313e6495 37c6c8ba37235a274a7739b7021a9ea8104d57dd951ede499d1691f28175fb59
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-de833af9.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI4OTU0NTUiLCJhcCI6IjUzNTkwNzUzNyIsImlkIjoiY2Y1OTliZWY3MTkzYTA0YSIsInRyIjoiZDhiZTlkZDU0NWZjM2RlNGE5MGU1MWYwZjAxNTE4MTEiLCJ0aSI6MTcxNDExNjM3MjE1MH19
traceparent: 00-d8be9dd545fc3de4a90e51f0f0151811-cf599bef7193a04a-01
tracestate: 2895455@nr=0-1-2895455-535907537-cf599bef7193a04a----1714116372150
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=691
access-control-allow-origin: *
etag: W/"6628bc74-2b3"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BQvwWs%2FXnmYxAlxQSrf4eSPmKpmLmNlpyUkGux9760aF%2BD86obNhJb3zG%2BfYcjVqiC22cdB%2BGBufS5VegGUfIG102NPTPn6srjULdkYSMIr8rQhi5cKCKZBRmBTl60EcVz2i2vFgHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a4d7ddfa010b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-f46804a9.js | 172.67.186.1 | 200 OK | 7.1 kB |
URL GET HTTP/3flaredownload.com/assets/hl-f46804a9.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (7771), with no line terminators Hash480b71de179b3c60057e0de84e7799c7 7e5be25da70f062e56e66fb317c7b3c0e44ae845 3e6f7cfecfe685f6de3c7e02c5281e177f9ce48eec1b5375e5fefd264d6b112d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-f46804a9.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-6456547b.js
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=7084
access-control-allow-origin: *
etag: W/"6628bc74-1bac"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P1Oz02aKIUotN89Jx379MD%2Bxlf4dQvv8x5NcEQZNcq6QAboMTfTWtSmEKFxWveTP9Et7xgm8U%2F2dlDNngyWtp6arCFeEAFrmOI5XF9f3s%2FK8VXTfVnv87Y53ykKLfAsAbXIT%2BeKekQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87a4d7e0cbe80b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-792ddeea.js | 172.67.186.1 | 200 OK | 779 B |
URL GET HTTP/3flaredownload.com/assets/hl-792ddeea.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (821), with no line terminators Hash617b4698a03d9543fee54c24abb9a0f4 2e58430682d3e8372f4089864d3c64a135e32f80 544c7d3222666743bbe690f4a9fcad37ff7e08663222c571eb1c70886eee6186
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-792ddeea.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI4OTU0NTUiLCJhcCI6IjUzNTkwNzUzNyIsImlkIjoiZWI2MzA0MGIzYWJmNzI1MSIsInRyIjoiOTVlMjdlMzA1Yjc3MzJlNzQyYzEwN2U5MjYyNWJjMTQiLCJ0aSI6MTcxNDExNjM3Mjc0MH19
traceparent: 00-95e27e305b7732e742c107e92625bc14-eb63040b3abf7251-01
tracestate: 2895455@nr=0-1-2895455-535907537-eb63040b3abf7251----1714116372740
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=780
access-control-allow-origin: *
etag: W/"6628bc74-30c"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=l4L6hjIq8ZJs5LmorIA%2B77LMkmobiGXWwZ543WZgryRHJN3VpStyQo0VmxLOPA2q9RGqNrRc%2BPyfivi2dPNq0ERrmGhztvHQ6C6PPDfOT3z5DiE2DkL3mMIgfz9m0%2BuklQhGFpsu0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a4d7e1bca30b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-5c945f3d.js | 172.67.186.1 | 200 OK | 3.2 kB |
URL GET HTTP/3flaredownload.com/assets/hl-5c945f3d.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeJavaScript source, ASCII text, with very long lines (3246), with no line terminators Hash219e485e2d1dfaadc5e91eec4faf82c6 400e7de51772ba591e025016ecec38c0bf77cf7d a3806ab273401f7bd3c37908cdaadbc2baea37c0e4846cd34cefdbb85299b5b2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-5c945f3d.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-b357b190.js
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=3167
access-control-allow-origin: *
etag: W/"6628bc74-c5f"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7onS8sslC9PP3oNLeQMlFYnzMVbgX6Obs%2B1BO47BP4NsqCnkvCVEW%2Fu5D%2BOv%2BVEM7KP%2FI4ozRYh0jzTodvD3MvAOsTspPU2wckTcHbMNFoFrT6F%2FXLOXcOXrtse%2FQif0iWPHP2dJFQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: REVALIDATED
server: cloudflare
cf-ray: 87a4d7dcf92e0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-04d68de7.css | 172.67.186.1 | 200 OK | 114 kB |
URL GET HTTP/3flaredownload.com/assets/hl-04d68de7.css IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (65329) Size114 kB (114023 bytes) Hash038b389697202a86001d7cb8b113803c c031ffb6795766b1babac743602c2d386b4e8d03 232cf36617bb2fd98321cbcd5fd0eb0cfbcf9b69c85a4d6e7d5134fc549436ea
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-04d68de7.css HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: text/css
cf-bgj: minify
cf-polished: origSize=114555
access-control-allow-origin: *
etag: W/"6628bc74-1bf7b"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BvuXdkRLJERplxD8exwJblb7c0FAmWGGcypBxFwzPHv4D3I1TLbAcpmXDD8u4epmYPOvqLD6%2FQ560dl%2FG%2BIpHytvXR303B2DR5bpLz%2BsXDIO8Sy8s6cySuiUbQjmLx6cDgywGGDAVQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a4d7ddd9e90b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-6456547b.js | 172.67.186.1 | 200 OK | 2.0 kB |
URL GET HTTP/3flaredownload.com/assets/hl-6456547b.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (2078), with no line terminators Hash0fa64a48f927b190784abdcfe8a6834a 3ad2dfca860e2c5e8926ad806ed5abe4b55a1213 aa097552285eb7ee8c3850421177e4bee882a08ff395c1eabdbd7705331859f7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-6456547b.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI4OTU0NTUiLCJhcCI6IjUzNTkwNzUzNyIsImlkIjoiZjk3ZDZlZjE0MzlmMDJiMiIsInRyIjoiMWQ0YTdmZmE5OGM2ZjNmODM0NDgyMmM0MWY2MzRkNDEiLCJ0aSI6MTcxNDExNjM3MjA4N319
traceparent: 00-1d4a7ffa98c6f3f8344822c41f634d41-f97d6ef1439f02b2-01
tracestate: 2895455@nr=0-1-2895455-535907537-f97d6ef1439f02b2----1714116372087
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1953
access-control-allow-origin: *
etag: W/"6628bc74-7a1"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wbdp%2FvMpBfXpSNXLuOavKAGFTA%2BuZ6eIGja8z4c0hLDC%2FZQKF2upKvuJXF7KVOExzlr3QJ36Fna5goFi7N6nKj83oLCL8it%2FDIgrZ%2BcnVWlPUIob8L81yQLousymGLsuBMqOY4dOIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a4d7dd89aa0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-d3fbdfe4.js | 172.67.186.1 | 200 OK | 915 B |
URL GET HTTP/3flaredownload.com/assets/hl-d3fbdfe4.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (943), with no line terminators Hashc031800c96fa289ab0f286d46661bea2 0b56e63ed6e2cdedd318c9030a1f6056ea5eac72 3e5d95a8678551eacf124da824401720a824943199ae59ea9a2c49df75b06255
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-d3fbdfe4.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-f46804a9.js
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=916
access-control-allow-origin: *
etag: W/"6628bc74-394"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Hyn2jgyeD2%2Bj2P71TLMFrGxdWzMA%2BFAx6CW8h9wSpMP7qKhuOIklgIVLMbnn%2FocjMuT2WTpzpeX6l1EuX4anDuA9rhbCklanGygggrmGbEhtqj6RJ%2BrppuOhI6ENjh%2BG%2B%2BnlmD0PFA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87a4d7e0fc160b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-ac68def5.js | 172.67.186.1 | 200 OK | 1.9 kB |
URL GET HTTP/3flaredownload.com/assets/hl-ac68def5.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeJavaScript source, ASCII text, with very long lines (1960), with no line terminators Hash0ff6ab8d653238e85c26fc3cfe55015a 18ec157045ee471ba8530e17f0ca0f5fb6bd9d1e 5d8585fce9ef9ba564f252ce8f290814d7b563d5b4d5b6b44b03f49b1e6c0668
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-ac68def5.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI4OTU0NTUiLCJhcCI6IjUzNTkwNzUzNyIsImlkIjoiNjczMDg1MTEyMmY4MGM2YSIsInRyIjoiYmE5NWQ3ZmNmMTFmNjMxZDM5ZWY0ZGM1YjI3MmVmNmIiLCJ0aSI6MTcxNDExNjM3Mjc0MX19
traceparent: 00-ba95d7fcf11f631d39ef4dc5b272ef6b-6730851122f80c6a-01
tracestate: 2895455@nr=0-1-2895455-535907537-6730851122f80c6a----1714116372741
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1923
access-control-allow-origin: *
etag: W/"6628bc74-783"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=trmrsyKDwRJu%2BE0%2Ba0lgS2oAC%2BApXenf5JXgNugcBvPdPHWfA9cKLbRV1fUcbDJJW4bjx6NJ4R3wIEhD%2F5VJJJcBsoivx8ZLuqtAV8Aqax87BnRRWmjcrm%2FWQnB0FCxhenfVIX8QIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a4d7e1cca50b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-bc98154d.js | 172.67.186.1 | 200 OK | 687 B |
URL GET HTTP/3flaredownload.com/assets/hl-bc98154d.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (707), with no line terminators Hash657a33de0a64648786dabb21a3618871 457ac15c80711e6ee8f7c4f458ce5da45831de0d eb42e28ead8453831f97b2cfecbc4998f803a113d2447c67a48aad489a10159e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-bc98154d.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-f46804a9.js
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=688
access-control-allow-origin: *
etag: W/"6628bc74-2b0"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X59pnvluesWkIPmqESL3nERa%2FhwDRTsyZ%2Fm73PIgz3x8ixN6jv%2F4TN5HU2t7IWIH7ZPBwNz3%2BQ47Nx%2BqmEtjSf00Lwey9mlEiqmlVWzbv5Hd41dWSBCgE%2BxJF86BFNbyZCJHhN3Obw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87a4d7e10c1b0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-35a77ba0.js | 172.67.186.1 | 200 OK | 72 kB |
URL GET HTTP/3flaredownload.com/assets/hl-35a77ba0.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-35a77ba0.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-f46804a9.js
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=72018
access-control-allow-origin: *
etag: W/"6628bc74-11952"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=3OtODt69WG6K7ke3l982WOnDBJB3O8PWoJH3xTwd%2BalseWY2yWuTABZeF%2FvVX8ubgTkK%2BeWtUqCpELghRTcGz%2FpfrC9HMaM7o8iuX%2BhGFySLinRQcA5GncQ4u41Q3Jg8t0nc0QIOKw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87a4d7e10c1d0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-30e661e5.js | 172.67.186.1 | 200 OK | 616 B |
URL GET HTTP/3flaredownload.com/assets/hl-30e661e5.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (636), with no line terminators Hashc8a1d9712fd0a2af805bdea6d50dd196 d49f9fd6c2c6f26dde1fadd1f26fff3b0e516202 13f8fbd804d1300ad8df1f02d9c5ceef85f72eeb9f48912c6e99f9cbef6b921c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-30e661e5.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-83316dfd.js
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=617
access-control-allow-origin: *
etag: W/"6628bc74-269"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FCgKsBhjvaUNN%2F3eUDIJgzASERXF5avD92IVKrfrfRuNlU69YXNLc9vKMjeK3wtPIl5RxcC9IfB39VUY%2B1ZFexctCsFsw7UgBBmTecTvstHXsJ%2F9fpo8CRn41PNGaddl90BK%2FI7QTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a4d7e1ecc00b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/prod/images/b8951ec12fcbc404228c41b98bf7dc05.png | 172.67.186.1 | 200 OK | 917 B |
URL GET HTTP/3flaredownload.com/prod/images/b8951ec12fcbc404228c41b98bf7dc05.png IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typePNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced Hashae126dcdf8581afd4f5287e47a865c4b 467a70ace4e8ba22c6d060de9a51041158c93d0f 584e53768bb90991e7b60eb7ecc2c5d9c26dd9a4f782a104030348c9b82cf473
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /prod/images/b8951ec12fcbc404228c41b98bf7dc05.png HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: image/png
content-length: 917
last-modified: Thu, 11 Apr 2024 15:05:45 GMT
etag: "6617fc49-395"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E38eJjavVmwf2CzQJOe7WIFfrIZggKt5vxlUWks3vqWnYh%2BAshWDy9zBYZaf0qJTvnXuCNFFZa7M5xXtCBrVr1tFWb7Evj6QSTBlmlrnv14uyjt2%2FT5O1qZspoP151Yz3Omq5RPFZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a4d7df9b1a0b4d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/lead/prefill | 172.67.186.1 | 200 OK | 64 B |
URL POST HTTP/3flaredownload.com/lead/prefill IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash0a00dc476383c35bcfbc0ea44c3a60ea 36ebdfa0bfa4aa0ec8f4d7417d2112bae7d406db 819bd596583bc3bc638b2fa8d87d80b16551a1d68abb86261795db848cc226d2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
POST /lead/prefill HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/plain, */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-NewRelic-ID: Vg4OVFJWDRAFVFRTAQEHUFc=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI4OTU0NTUiLCJhcCI6IjUzNTkwNzUzNyIsImlkIjoiYWY5NDdhY2M1Y2Q3NDIyNCIsInRyIjoiNGNkMDA0MzY2ZDUxMWFlYTIyMWNmNDI2MTZiMzc1ZWIiLCJ0aSI6MTcxNDExNjM3MjczNn19
traceparent: 00-4cd004366d511aea221cf42616b375eb-af947acc5cd74224-01
tracestate: 2895455@nr=0-1-2895455-535907537-af947acc5cd74224----1714116372736
Content-Type: application/json
sentry-trace: 1c18319eaae349cd81610e06b67bf7a9-89b9c15cfca28d3b-0
baggage: sentry-environment=production,sentry-public_key=9056b383582c444792eb65c1726488d9,sentry-trace_id=1c18319eaae349cd81610e06b67bf7a9,sentry-sample_rate=0.1,sentry-transaction=LandingHome,sentry-sampled=false
Content-Length: 56
Origin: https://flaredownload.com
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/json; charset=UTF-8
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lA192DrXBAoUGrv8fmP2KVu7r5zgMt9PY1eDMWhZ7uQUOvhBKuf7KWqqGSaMlBVQ9B4cYaETFP7U%2Bl%2FD%2B5ALU%2Fn3eeXpmTRVNXxlUn%2FUEPO9nJi%2BM76wt%2B0KyvU7APh8enTpxg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a4d7e1ac950b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-6456547b.js | 172.67.186.1 | 200 OK | 2.0 kB |
URL GET HTTP/3flaredownload.com/assets/hl-6456547b.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (2078), with no line terminators Hash0fa64a48f927b190784abdcfe8a6834a 3ad2dfca860e2c5e8926ad806ed5abe4b55a1213 aa097552285eb7ee8c3850421177e4bee882a08ff395c1eabdbd7705331859f7
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-6456547b.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-4bc0c634.js
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=1953
access-control-allow-origin: *
etag: W/"6628bc74-7a1"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=wbdp%2FvMpBfXpSNXLuOavKAGFTA%2BuZ6eIGja8z4c0hLDC%2FZQKF2upKvuJXF7KVOExzlr3QJ36Fna5goFi7N6nKj83oLCL8it%2FDIgrZ%2BcnVWlPUIob8L81yQLousymGLsuBMqOY4dOIg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a4d7dd99b40b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/prod/images/f1239f7cb9bbbfc719d60b288619d7de.png | 172.67.186.1 | 200 OK | 113 kB |
URL GET HTTP/3flaredownload.com/prod/images/f1239f7cb9bbbfc719d60b288619d7de.png IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typePNG image data, 993 x 546, 8-bit colormap, non-interlaced Size113 kB (113379 bytes) Hashd8d5a5e33a87b192a74126bbaf431726 febdcfef57d6d6d8a7b81c46f30d47a065d7e0df f09f3901c52fc5ec1650f763efcd1f2b41694db31a6d3e135a1c5cf020e1e490
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /prod/images/f1239f7cb9bbbfc719d60b288619d7de.png HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: image/png
content-length: 113379
last-modified: Thu, 11 Apr 2024 15:05:45 GMT
etag: "6617fc49-1bae3"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2F7HfJmK8M3yZ35I3qOhQPeahEkr6zrmfF4xEDdgZy2RODzl9Gji%2Bi30iKxJ%2FAR8BJxMnMCDkHVJ5x0an3jtQlLh8SS9ydK6ckRex%2B%2BVgUK5eTSAA3%2Bk58fHqBLQFko3Oj1GmyY%2FqpQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
accept-ranges: bytes
server: cloudflare
cf-ray: 87a4d7e1dcb80b4d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-69cc381a.js | 172.67.186.1 | 200 OK | 418 B |
URL GET HTTP/3flaredownload.com/assets/hl-69cc381a.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (440), with no line terminators Hash027f4ce7ab8f79f3351900b02e709fc2 1916fbd0a01a1cedb02f7a2b4640b6160d941e7d 11179c843f7538e955b1b01e0b3e2b17b9b34d55205748efa5968e24d1d690ee
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-69cc381a.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-4bc0c634.js
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=419
access-control-allow-origin: *
etag: W/"6628bc74-1a3"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BNK5XvjRc8hiKzDcgiDosISV8Ul0cX2H6CNX18vA6goefCHphXYI23jMcEs1%2Bo1Yi1rHPjNOmdOTTWKR1IBQ0c%2BJUWkJigiHriLrwbMK5o%2BeOv1JdGGZheMOfmspliTCilbUrvMEsg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87a4d7dd69920b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-83316dfd.js | 172.67.186.1 | 200 OK | 6.1 kB |
URL GET HTTP/3flaredownload.com/assets/hl-83316dfd.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (6412), with no line terminators Hash27a35e0ced45379f41358a6beedea7fa e7f50dd1456fb36c9d10d469061701f6832996e7 e6fa07feb0815b3f09ed4ca05e6e145aedfe7e96cd7783d357f4332e33629048
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-83316dfd.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-f46804a9.js
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=6097
access-control-allow-origin: *
etag: W/"6628bc74-17d1"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PnO%2BITVVcT1SI7e7ZQZPZOer8TdFGWJJrlkVKhRk%2BDqKya3kzWeSTPRKV76r%2BZNAhnFiZNNjsVl%2FnSXcn33X5hYYIOCw8Pc2%2B7vRZup0brEbxBxthX4ddwQ7EHzxhIYkA1Ttu3rhYg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87a4d7e10c1c0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-30e661e5.js | 172.67.186.1 | 200 OK | 616 B |
URL GET HTTP/3flaredownload.com/assets/hl-30e661e5.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (636), with no line terminators Hashc8a1d9712fd0a2af805bdea6d50dd196 d49f9fd6c2c6f26dde1fadd1f26fff3b0e516202 13f8fbd804d1300ad8df1f02d9c5ceef85f72eeb9f48912c6e99f9cbef6b921c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-30e661e5.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI4OTU0NTUiLCJhcCI6IjUzNTkwNzUzNyIsImlkIjoiNjNmZTc3Yzc2NTc0ZGUzYSIsInRyIjoiMTQ0ZTZlYWIwN2Q0MjAzMjM2NDY0ZGZiOTc3NWUwMGMiLCJ0aSI6MTcxNDExNjM3Mjc0MH19
traceparent: 00-144e6eab07d4203236464dfb9775e00c-63fe77c76574de3a-01
tracestate: 2895455@nr=0-1-2895455-535907537-63fe77c76574de3a----1714116372740
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=617
access-control-allow-origin: *
etag: W/"6628bc74-269"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FCgKsBhjvaUNN%2F3eUDIJgzASERXF5avD92IVKrfrfRuNlU69YXNLc9vKMjeK3wtPIl5RxcC9IfB39VUY%2B1ZFexctCsFsw7UgBBmTecTvstHXsJ%2F9fpo8CRn41PNGaddl90BK%2FI7QTw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a4d7e1bca40b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-8d3ca80f.woff2 | 172.67.186.1 | 200 OK | 23 kB |
URL GET HTTP/3flaredownload.com/assets/hl-8d3ca80f.woff2 IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 22992, version 1.0 Hash1efbd38aa76ddae2580fedf378276333 8a49976f2470ba2a1db6144245355d3b889312e4 8d3ca80fa271e94b0c36cf3053b0f806b7a42bb3395b424c99dc0bd218f0ac20
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-8d3ca80f.woff2 HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-04d68de7.css
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/octet-stream
content-length: 22992
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
etag: "6628bc74-59d0"
access-control-allow-origin: *
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8DLpkDsZdGGrU96%2FjF4aCGhhcuw4lAnCd5q2eu8Bew86GI6dsZ9hiSxlYPKvn9IrSSYQuykkQx5HmdjvqiCRgNuJgUU%2F5FlW9w%2F4JYSBn2Z45ybzPdxBHna%2FOo1P8b6rpjthKDG%2BOw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 87a4d7e23ce30b4d-OSL
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-fa300abb.js | 172.67.186.1 | 200 OK | 529 B |
URL GET HTTP/3flaredownload.com/assets/hl-fa300abb.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (555), with no line terminators Hash6179ecd091fcc7f9d8aca9649b1d3a9b 53eb8ef029331df4ace79098490c1f82fbb4e71b a4077d09054f0e3acba71cc5d0bf3398f79124a12a0f531350b2137f694e1c40
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-fa300abb.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI4OTU0NTUiLCJhcCI6IjUzNTkwNzUzNyIsImlkIjoiNTRlYTQ5ZjI5NDVkM2YwNyIsInRyIjoiOGVlYWZhMWM1NjUxYmFjNzk4OTA2YjdlNDcxOTE2OTAiLCJ0aSI6MTcxNDExNjM3MjE0NX19
traceparent: 00-8eeafa1c5651bac798906b7e47191690-54ea49f2945d3f07-01
tracestate: 2895455@nr=0-1-2895455-535907537-54ea49f2945d3f07----1714116372145
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=530
access-control-allow-origin: *
etag: W/"6628bc74-212"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pYhJC0CKWf8eNO6eDvzwoN7yQ7HoPXfJxzry7c2sE1Jev6Wa1w6wVKVp443mzv2%2F9GoiAsR42xw9rOs8gDbsyogT%2FbjflzOd4Fv27Y2mxupubEdH8d8nE9%2BMfHfb9os%2FiVRBnebR3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a4d7ddf9f30b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-fa300abb.js | 172.67.186.1 | 200 OK | 529 B |
URL GET HTTP/3flaredownload.com/assets/hl-fa300abb.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (555), with no line terminators Hash6179ecd091fcc7f9d8aca9649b1d3a9b 53eb8ef029331df4ace79098490c1f82fbb4e71b a4077d09054f0e3acba71cc5d0bf3398f79124a12a0f531350b2137f694e1c40
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-fa300abb.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-f46804a9.js
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=530
access-control-allow-origin: *
etag: W/"6628bc74-212"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pYhJC0CKWf8eNO6eDvzwoN7yQ7HoPXfJxzry7c2sE1Jev6Wa1w6wVKVp443mzv2%2F9GoiAsR42xw9rOs8gDbsyogT%2FbjflzOd4Fv27Y2mxupubEdH8d8nE9%2BMfHfb9os%2FiVRBnebR3w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87a4d7e0fc150b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/favicon.ico | 172.67.186.1 | 200 OK | 4.3 kB |
URL GET HTTP/3flaredownload.com/favicon.ico IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeMS Windows icon resource - 1 icon, 32x32, 32 bits/pixel Hash1ba2ae710d927f13d483fd5d1e548c9b c0605efed936ee2600284e6480521d06fa64f872 db74ab0b78338c1f778f8398c45f4103c99aea0e845a3118a7750b4eeafd3445
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /favicon.ico HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:11 GMT
content-type: image/x-icon
last-modified: Wed, 13 Sep 2023 08:04:59 GMT
etag: W/"65016d2b-10be"
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=39H3cUR5ItzIFqSXJlFMlD9Bc0ujp%2BMZZm%2By8327jZr3gHncppuIz9QHzJ9veLo8EWCD0%2ByByyF4w71U%2BqW%2FXTd8P11gjcuJJbZgql5LM8rNPdB0QFMbRxZTHoXH6zbvoNaWBw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a4d7dca9140b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-f46804a9.js | 172.67.186.1 | 200 OK | 7.1 kB |
URL GET HTTP/3flaredownload.com/assets/hl-f46804a9.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (7771), with no line terminators Hash480b71de179b3c60057e0de84e7799c7 7e5be25da70f062e56e66fb317c7b3c0e44ae845 3e6f7cfecfe685f6de3c7e02c5281e177f9ce48eec1b5375e5fefd264d6b112d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-f46804a9.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI4OTU0NTUiLCJhcCI6IjUzNTkwNzUzNyIsImlkIjoiNzllYmRlMjYzNTYxYWFkNiIsInRyIjoiYzQwM2U5ZWQ5NDY5MjFmZDU1MDE2MjA1N2QxN2EyYzUiLCJ0aSI6MTcxNDExNjM3MjE0NH19
traceparent: 00-c403e9ed946921fd550162057d17a2c5-79ebde263561aad6-01
tracestate: 2895455@nr=0-1-2895455-535907537-79ebde263561aad6----1714116372144
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=7084
access-control-allow-origin: *
etag: W/"6628bc74-1bac"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P1Oz02aKIUotN89Jx379MD%2Bxlf4dQvv8x5NcEQZNcq6QAboMTfTWtSmEKFxWveTP9Et7xgm8U%2F2dlDNngyWtp6arCFeEAFrmOI5XF9f3s%2FK8VXTfVnv87Y53ykKLfAsAbXIT%2BeKekQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a4d7dde9eb0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-de833af9.js | 172.67.186.1 | 200 OK | 690 B |
URL GET HTTP/3flaredownload.com/assets/hl-de833af9.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeJavaScript source, ASCII text, with very long lines (704), with no line terminators Hash25a523c7c0658e2bf768f0e26f59fbd8 fdae37e60c01daf3551830ba3639873e313e6495 37c6c8ba37235a274a7739b7021a9ea8104d57dd951ede499d1691f28175fb59
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-de833af9.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/assets/hl-f46804a9.js
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=691
access-control-allow-origin: *
etag: W/"6628bc74-2b3"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BQvwWs%2FXnmYxAlxQSrf4eSPmKpmLmNlpyUkGux9760aF%2BD86obNhJb3zG%2BfYcjVqiC22cdB%2BGBufS5VegGUfIG102NPTPn6srjULdkYSMIr8rQhi5cKCKZBRmBTl60EcVz2i2vFgHw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
age: 0
server: cloudflare
cf-ray: 87a4d7e10c210b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/prod/images/f1239f7cb9bbbfc719d60b288619d7de.png | 0.0.0.0 | | 0 B |
URL GET flaredownload.com/prod/images/f1239f7cb9bbbfc719d60b288619d7de.png IP0.0.0.0:0
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /prod/images/f1239f7cb9bbbfc719d60b288619d7de.png HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
Cookie: visitInfo::7867=7d4639899ed75a1436e89d9b243b8fbf312104fe53d84cf2c48d522283fc483ea%3A2%3A%7Bi%3A0%3Bs%3A15%3A%22visitInfo%3A%3A7867%22%3Bi%3A1%3Ba%3A5%3A%7Bs%3A8%3A%22cookieId%22%3Bs%3A32%3A%22523f32726f406cfab8fefd3ee3561a3a%22%3Bs%3A7%3A%22network%22%3Bs%3A6%3A%22200347%22%3Bs%3A9%3A%22publisher%22%3Bs%3A8%3A%22f580c3b2%22%3Bs%3A10%3A%22externalId%22%3Bs%3A36%3A%222c2564b0-03e8-4df5-b095-cfce4cea2fbe%22%3Bs%3A7%3A%22isNewTr%22%3Bb%3A1%3B%7D%7D
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
|
|
| flaredownload.com/assets/hl-4bc0c634.js | 172.67.186.1 | 200 OK | 4.8 kB |
URL GET HTTP/3flaredownload.com/assets/hl-4bc0c634.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (5067), with no line terminators Hash74d69c1dd512dfa44137d6bd4a308189 e9596eee77659f2801f0da48340b9b736aa128fe 8674e1f2c4f9b323f5eea44fc4da5cb21acbdefabd1327c85b6011ba29ddece2
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-4bc0c634.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI4OTU0NTUiLCJhcCI6IjUzNTkwNzUzNyIsImlkIjoiNTg4ODhjZGEzYjA3Y2U4MyIsInRyIjoiNTZlMzBhZDJiMmJlMjZiMTdiNWEwN2FmZGVjMjAxZWYiLCJ0aSI6MTcxNDExNjM3MjAwMX19
traceparent: 00-56e30ad2b2be26b17b5a07afdec201ef-58888cda3b07ce83-01
tracestate: 2895455@nr=0-1-2895455-535907537-58888cda3b07ce83----1714116372001
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=4794
access-control-allow-origin: *
etag: W/"6628bc74-12ba"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2pzIVShF0nT12PZMoENaxiDaoW6btYpWYIrM6btkuUcQ20EHxzW4ENQE5FtqN4xP56aulkVDftLGXZnAB2TlCJJu%2BC0xyqirmjgAFDe%2FyZ9AyZHrQF6LOzWEZwT7sUDLOn2rjvvVAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a4d7dd093a0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| flaredownload.com/assets/hl-bc98154d.js | 172.67.186.1 | 200 OK | 687 B |
URL GET HTTP/3flaredownload.com/assets/hl-bc98154d.js IP172.67.186.1:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeASCII text, with very long lines (707), with no line terminators Hash657a33de0a64648786dabb21a3618871 457ac15c80711e6ee8f7c4f458ce5da45831de0d eb42e28ead8453831f97b2cfecbc4998f803a113d2447c67a48aad489a10159e
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /assets/hl-bc98154d.js HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource=
newrelic: eyJ2IjpbMCwxXSwiZCI6eyJ0eSI6IkJyb3dzZXIiLCJhYyI6IjI4OTU0NTUiLCJhcCI6IjUzNTkwNzUzNyIsImlkIjoiNjAzM2I4NzM2MTU4YjJhYyIsInRyIjoiZDAzYzRiZjA2MDkxMTIzYzM1MTU4MDhjY2U2YzdmODQiLCJ0aSI6MTcxNDExNjM3MjE0N319
traceparent: 00-d03c4bf06091123c3515808cce6c7f84-6033b8736158b2ac-01
tracestate: 2895455@nr=0-1-2895455-535907537-6033b8736158b2ac----1714116372147
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Fri, 26 Apr 2024 07:26:12 GMT
content-type: application/javascript
cf-bgj: minify
cf-polished: origSize=688
access-control-allow-origin: *
etag: W/"6628bc74-2b0"
last-modified: Wed, 24 Apr 2024 08:01:56 GMT
cache-control: max-age=1800
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=X59pnvluesWkIPmqESL3nERa%2FhwDRTsyZ%2Fm73PIgz3x8ixN6jv%2F4TN5HU2t7IWIH7ZPBwNz3%2BQ47Nx%2BqmEtjSf00Lwey9mlEiqmlVWzbv5Hd41dWSBCgE%2BxJF86BFNbyZCJHhN3Obw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: HIT
server: cloudflare
cf-ray: 87a4d7ddf9fa0b4d-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,500,700 | 142.250.74.74 | 200 OK | 8.7 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Roboto:300,400,500,700 IP142.250.74.74:443
Requested byhttps://flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint15:CB:F7:AC:18:3F:DC:1E:F9:4E:94:D1:98:40:40:61:53:17:28:F2 ValidityMon, 18 Mar 2024 20:35:28 GMT - Mon, 10 Jun 2024 20:35:27 GMT
File typeASCII text, with very long lines (8956), with no line terminators Hash91804c0df51e58b0bf469561e1ac2732 cc5a9023e310b49ef8f8ae32bb89ea774fe116ec 8a8aed46bfb9cdec8e34e76343b7e66796cf09926aef42efdfe5fa8a1fdda8aa
GET /css?family=Roboto:300,400,500,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flaredownload.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 07:26:12 GMT
date: Fri, 26 Apr 2024 07:26:12 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= | 172.67.186.1 | 200 OK | 61 kB |
URL User Request GET HTTP/2flaredownload.com/en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= IP172.67.186.1:443
CertificateIssuerGoogle Trust Services LLC Subjectflaredownload.com FingerprintA7:68:A0:75:94:62:A1:45:DE:7D:F0:07:04:B4:D1:B8:96:E1:C2:50 ValidityMon, 18 Mar 2024 15:26:29 GMT - Sun, 16 Jun 2024 15:26:28 GMT
File typeHTML document, ASCII text, with very long lines (59546) Hash74b1bb2c8eede68851aee5d8c340da6d 683621e67b3e1f94d96fb1428db7ac67b2795f80 a7efec5d0774cbaf274bc42cc83f8254343e42cd0a59cad8993b7c474cc007e1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /en_us/streaming-club-1?subid=2c2564b0-03e8-4df5-b095-cfce4cea2fbe&networkid=200347&publisher=f580c3b2&isNewTr=1&stream=&subsource=&subsource= HTTP/1.1
Host: flaredownload.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 Apr 2024 07:26:11 GMT
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000; includeSubDomains; preload
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tOydLtmEa8BLxdx72cHWgPo406Ov0Y%2BNIvDI0mdCOx4QOTn2b2UeIFUH0dunUd1xhZXk4iw2NBlXnKzAVU5G4Xwg8d6sByLy8qhtGoi4N5N9j5BYzzRypDYrailnLm%2Bxeg6O%2FQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a4d7d7bdba7131-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|