Report - appslowdown.com/

Report Overview

Submitted URL
appslowdown.com/
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-18 13:49:11
Access
public
Website Title
SlowDown
Final URL
appslowdown.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
58

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
cdnjs.cloudflare.com	235	2009-02-17	2015-04-17	2024-04-18	866 B	44 kB	104.17.24.14
appslowdown.com	unknown	2024-03-07	2024-03-07	2024-03-08	13 kB	9.4 MB	188.114.97.1

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed
2024-04-18	medium	appslowdown.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (7)

	URL	Size	First Seen	Last Seen
	appslowdown.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js	1.2 kB	2023-03-07	2024-05-01
Pretty URL appslowdown.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:00 Last Seen2024-05-01 17:30:00 Times Seen55589 Hash 9e8f56e8e1806253ba01a95cfc3d392c a8af90d7482e1e99d03de6bf88fed2315c5dd728 2595496fe48df6fcf9b1bc57c29a744c121eb4dd11566466bc13d2e52e6bbcc8 Loading...

	appslowdown.com/	40 B	2023-03-07	2024-04-30
Pretty URL appslowdown.com/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:02:07 Last Seen2024-04-30 20:07:48 Times Seen4737 Hash 6bd43cf0ae158526c6ab93dc3be79f28 15c289e342bd3fdf5b1e95f7abf25a2bc78bf357 7a13d5ae0755d86c09084ec300c4a0f1a0a06921f74d9980eba9d966ff17ad38 Loading...

	cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js	88 kB	2023-08-31	2024-05-01
Pretty URL cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-08-31 16:03:19 Last Seen2024-05-01 16:48:28 Times Seen8430 Hash 2c872dbe60f4ba70fb85356113d8b35e ee48592d1fff952fcf06ce0b666ed4785493afdc fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a Loading...

	cdnjs.cloudflare.com/ajax/libs/bootstrap/5.3.3/js/bootstrap.min.js	61 kB	2024-04-09	2024-04-29
Pretty URL cdnjs.cloudflare.com/ajax/libs/bootstrap/5.3.3/js/bootstrap.min.js IP 104.17.24.14 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-09 12:24:13 Last Seen2024-04-29 09:44:23 Times Seen12 Hash 4800bcc26467d999f49b472f02906b8d 2c6c0a58345a09d3761230af823a4e4852b12643 de040986d9a3ed89d5d5f9ad6d5727015e9e238c2cd13af8f1b55909386d0864 Loading...

	appslowdown.com/js/app.js	4.6 kB	2024-04-18	2024-04-18
Pretty URL appslowdown.com/js/app.js IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-18 15:49:15 Last Seen2024-04-18 15:49:15 Times Seen2 Hash 613aff456482c2a77f93ebbfe700432d bca00454959d8246e2ced49da5fdd432db4d7287 77974c69ac3c28709f92d4944884420a72a2989163748fe2117b9ac9eb857e25 Loading...

	appslowdown.com/	471 B	2024-04-18	2024-04-18
Pretty URL appslowdown.com/ IP 188.114.97.1 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-18 15:49:15 Last Seen2024-04-18 15:49:15 Times Seen1 Hash 5160b92a7565eb91feb11118a31896c0 fdd24f08a436444af79a88f766a409639d1e50b3 1feacb8e385b7ba6f4c23332a107742f446558928878d3d7c9f69aac80d969d7 Loading...

		Size	First Seen	Last Seen
	#1 Write - 07811dc6c422334ce36a09ff5cd6fe71	4 B	2023-03-11	2024-05-01
Pretty Observations First Seen2023-03-11 11:15:57 Last Seen2024-05-01 09:17:26 Times Seen2091 Hash 07811dc6c422334ce36a09ff5cd6fe71 7e79a3af2634de6635e59c9404d251b3955d39f9 6557739a67283a8de383fc5c0997fbec7c5721a46f28f3235fc9607598d9016b Loading...

HTTP Transactions (31)

URL IP Response Size

cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js

104.17.24.14

200 OK

27 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/jquery/3.7.1/jquery.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
27 kB (27446 bytes)
Hash
2c872dbe60f4ba70fb85356113d8b35e
ee48592d1fff952fcf06ce0b666ed4785493afdc
fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a

HTTP Headers

GET /ajax/libs/jquery/3.7.1/jquery.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: application/javascript; charset=utf-8
content-length: 27446
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "64ed75bb-6b36"
last-modified: Tue, 29 Aug 2023 04:36:11 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 250263
expires: Tue, 08 Apr 2025 13:48:43 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=qujVMCW1FHvUOk9Os94qFFEuuMeSevaLF6T5f8D9qRGpnlmn4LVbZg%2FkLlry1kqSG4BVh%2FQc8%2BQBch46BuKShZHQ4k7UmpCQP4GrPgehh7I2I%2B4R2pblv7qy76Pv1ml66CtalT4K"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87651d33bbd85687-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdnjs.cloudflare.com/ajax/libs/bootstrap/5.3.3/js/bootstrap.min.js

104.17.24.14

200 OK

15 kB

URL GET HTTP/2
cdnjs.cloudflare.com/ajax/libs/bootstrap/5.3.3/js/bootstrap.min.js
IP
104.17.24.14:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint7A:EA:B9:09:71:70:6C:87:C9:D3:82:74:8A:7B:B4:60:E5:40:2D:8D
ValidityMon, 03 Jul 2023 00:00:00 GMT - Tue, 02 Jul 2024 23:59:59 GMT

File type
JavaScript source, ASCII text, with very long lines (60356)
Size
15 kB (14825 bytes)
Hash
4800bcc26467d999f49b472f02906b8d
2c6c0a58345a09d3761230af823a4e4852b12643
de040986d9a3ed89d5d5f9ad6d5727015e9e238c2cd13af8f1b55909386d0864

HTTP Headers

GET /ajax/libs/bootstrap/5.3.3/js/bootstrap.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://appslowdown.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: application/javascript; charset=utf-8
content-length: 14825
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "65d4c5f6-39e9"
last-modified: Tue, 20 Feb 2024 15:32:06 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 4310448
expires: Tue, 08 Apr 2025 13:48:43 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bztmNzbqlZiVVgaKqpVE0sl1PcxIs5BSp7ZUHy3Baxazdqh8yq2feFS4lECAio4jmIuEIFav0E8eskPr6YXWHIUPX%2Bri3WheCFuYgzTMNlcIe%2FH0DAQ%2FyXmsqekJ4RKXm%2FRI4zrN"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 87651d33cfbab500-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

appslowdown.com/

188.114.97.1

200 OK

24 kB

URL User Request GET HTTP/2
appslowdown.com/
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
HTML document, Unicode text, UTF-8 text, with very long lines (592)
Size
24 kB (23986 bytes)
Hash
99fd3ca0291e95150c4edb0b553655d6
3502a8715e3f54b60e60bc0f41a4c10f73b3b754
6d304049d6c04a2584f93de22e6a9620b4fc2efeac90f138e55e34b83c291d6d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET / HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: text/html; charset=UTF-8
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=XTyRJ24NfU2OpX%2F3dERRzfExBFTEc0BtT%2BIx1EIyUp3CUA%2Bz78mAchmSY9ZM2j57H84sZQG9Jz068WxAWgyNyGG3V0NH7M69FTYFCa%2BR5ii0sQqIGrSL7sDsgHu4EN6i4gA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87651d315a37b529-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

appslowdown.com/images/custom/13.png

188.114.97.1

200 OK

21 kB

URL GET HTTP/3
appslowdown.com/images/custom/13.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
21 kB (20586 bytes)
Hash
ffb5c0cdfc0cd583ceed2cd9faa76cca
b640ef096b4e5b69078eca402759d1daba84d101
71dcddafc1366c8b7c457f2ed1d1160dbfc8677780f73afb6a02941ffdaa7195

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/custom/13.png HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: image/png
content-length: 20586
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-506a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IQ6BALYDaKXekNrp0Fmg7hj%2FF2eUAZVGsvzsg3RN0IYE2MkB0%2BTVI1JibvprTzXpYqMKOlZKdWO6ByZFOvNcTKIY30Clp8keR1Vlc7o6J6yqaEV3XsHI5dgCRVUljroiBao%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d338958b518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/images/custom/12.png

188.114.97.1

200 OK

36 kB

URL GET HTTP/3
appslowdown.com/images/custom/12.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
PNG image data, 1119 x 362, 8-bit/color RGBA, non-interlaced
Size
36 kB (35826 bytes)
Hash
951591409b7aa44018a055351b3d0cb1
71f3f6dd450577d4a773a46701a010c028fd5319
1582f9ddf0dd1e7a7771363451035ed9e12babfc3ac00e69b523d41e9352bc02

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/custom/12.png HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: image/png
content-length: 35826
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-8bf2"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IH%2FIiURJ1wZ2aQTpRtaLchjfu4lb2xZHE0BtLi5htCKRnSl8LyUBTslMo9MVN1II2o%2F5%2FSPnni9Z2fKLslwpUserBqlSumPcN4958XN2LEmmKM%2BAkGXjToCSi2VvbBsmd1g%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d339973b518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/images/custom/11.png

188.114.97.1

200 OK

28 kB

URL GET HTTP/3
appslowdown.com/images/custom/11.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
PNG image data, 1125 x 369, 8-bit/color RGBA, non-interlaced
Size
28 kB (28197 bytes)
Hash
35ad6e9d10b9d80d5b106cf500d0ad11
2b8a50b91ac498d4aae1d4c904bf0caf28f086b3
f3d9a87bab09fd72d24a11b7307e2ba568ecce9576f8ff6d714941690f3c69a9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/custom/11.png HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: image/png
content-length: 28197
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-6e25"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=tUQ5CCpgZvm8RhR0rc1v8DGA7N%2FqH%2F5UOyCLY2KvZCky%2FkzZbsLYjmAWqZpy%2Bn1lT1Id7oLy%2FJrFpu7%2FwjAjCdaG%2Bk14l6o5S6bB7kxiav9401tgf3HGtiDcsGYI%2FZ%2BnuVE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d339970b518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/images/custom/18.png

188.114.97.1

200 OK

27 kB

URL GET HTTP/3
appslowdown.com/images/custom/18.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
27 kB (26695 bytes)
Hash
5b76dfaf65be0d2b968599848fb56bc7
f66536b47a90ee61362f9e8b4669a691dbc4348e
ea6824d6e49901a4ade2bfda3a6748fbe1a39daa3d92ccef050292fcd3463fa1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/custom/18.png HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: image/png
content-length: 26695
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-6847"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kg2m27MsdSwFdKL5w3%2BemPKrQ30IDYN0Ids8LveoyO7LrRDNVoV29F9RgxFb48JcbNQU7NIAmHQcUCtxxotDvBe1fyfFkcmQcVO%2FEyAPHh7ZTn9Erinjig4hDI09ZMCiIac%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d33895db518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/images/custom/17.png

188.114.97.1

200 OK

20 kB

URL GET HTTP/3
appslowdown.com/images/custom/17.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
20 kB (20453 bytes)
Hash
e41b87c038001fc8d242d8a139073d66
fe2f615242641b4f2272f54460d588b3ba4b713d
88b8f48b12f2ee2c49f901831d4f050735e1c959fe3b8ee0784e4e4b038b91e1

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/custom/17.png HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: image/png
content-length: 20453
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-4fe5"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=g9wvSiLDTUpcc2h%2BazUeFDFJv%2FmrvogSYokOL964bGyWhk1V3MRgTONMyHUpzkcIjnFZsftpcrQAnJpSzAG4bAfzU4VjVFxPUcOpPG5Ltes4jaCu6PNKwtEoG3w%2FWGVSujY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d338954b518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/images/custom/16.png

188.114.97.1

200 OK

19 kB

URL GET HTTP/3
appslowdown.com/images/custom/16.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
19 kB (18712 bytes)
Hash
15db68c63dba5e594ffd004a71481e49
b566de26fc9b7d92139e3ad2ab77544e942b6c52
2f01831c2babf6e152be023c840af510ac56b6ab41815a17c76ca716bc08be7a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/custom/16.png HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: image/png
content-length: 18712
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-4918"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=nDzStJjspnWWSTa46tmGpIk12OTiGTZzrUIhN%2Bck5LvZYz4BFRYgdvvKuZDPk7WMaXMrcKkipVZXVnv%2Bh7DCPQzqDX0nRWjCJRCXwXG8m7ZLucajLbW1XyX6cJhHJKJe47c%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d338963b518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/images/custom/15.png

188.114.97.1

200 OK

29 kB

URL GET HTTP/3
appslowdown.com/images/custom/15.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
29 kB (29057 bytes)
Hash
d2b8c2c62eeff8d08dea2db14db7dcde
d39d95ec96cb58c68761c8ad29c0648bee2b52f4
732dcbff2ed16f2df05ecfa6e7b330d91ae5984ea287b162a830c7620fb2497a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/custom/15.png HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: image/png
content-length: 29057
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-7181"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gkMj23ip5xZaz5pfFYT%2B9BVEvOaXQ2CW%2FiSJuefvSL%2F2GIl4w06kKYiGKzf8wb%2F2NKaXeHnEk5LD9mqYmmuTzzOtMIYoC9QolIdS8AZUJaiS0kJQ4v5jWdQy%2FHilGmeLkmg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d338952b518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/images/custom/10.png

188.114.97.1

200 OK

108 kB

URL GET HTTP/3
appslowdown.com/images/custom/10.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
PNG image data, 540 x 587, 8-bit/color RGBA, non-interlaced
Size
108 kB (107602 bytes)
Hash
ae07bc97386551d440c428cf106cd873
d5a9cb0effe998f0b9169780ed55647fc5c78f90
998c55b2f1ffec55fc095461b23867c0b2b464fa11ce5d6c2b6d66b529784447

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/custom/10.png HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: image/png
content-length: 107602
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-1a452"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=w4xe6WmCHKPXhZNeXDBgb%2BQXbP4hwC5Cx5aFDh46Z78TLkA2brbhmQCfEkkyODqd7TSqtQKWuYcUKdIACxEoq1DogKcTxo4Xgl0nlM2Y4%2B9maDe2DkIdDXC4D7YuUDr%2FPGE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d33793cb518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/images/custom/logo.png

188.114.97.1

200 OK

582 kB

URL GET HTTP/3
appslowdown.com/images/custom/logo.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
PNG image data, 2746 x 951, 8-bit/color RGBA, non-interlaced
Size
582 kB (582548 bytes)
Hash
1e6b1b80b88c70ea267b86d2ff72f748
edb90686ced75097d97f2fb005305a694c82199b
eebae6e1981a027b178920c09e2d93355d8b202c002ffec52b28e15a0f4aa541

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/custom/logo.png HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: image/png
content-length: 582548
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-8e394"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8SHqZVIweoNHPSH1Tr0MgVtnpdJBOT5GH57lKPlugBuGl6QFnF9%2FN0hwlSXAkcnMFgSkRosM6J6Wm%2FQlitW7xduUxE4cwBopNp%2FddoX%2FGI7PFPFmsZ%2Bb96wF09NflKN7lrk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d337938b518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/images/custom/3.png

188.114.97.1

200 OK

1.2 MB

URL GET HTTP/3
appslowdown.com/images/custom/3.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
PNG image data, 1226 x 817, 8-bit/color RGBA, non-interlaced
Size
1.2 MB (1246274 bytes)
Hash
9344faae4e4f080a30fcfddfe5ff62d7
33952437ad13ecb1e014d3ee8424c6869a83d755
e6cd0f39a31eea119f5a9f1acd178a15f2347805f5b4a88fcfbe43cd067c5fd8

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/custom/3.png HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: image/png
content-length: 1246274
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-130442"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Bl%2FzKPoigRoeLo3Xj2JhQrspu5sovwZ6PyOjOTJHV7yI8N9wzFJ%2FqDni7aY4zDpRbxLsY79LVrxYBf9xUAgzSgRK6oMqyjXjajjy0CDOtlVo%2BboLJQIpWKhyCcONLAL1hes%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d33893fb518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/images/custom/5.png

188.114.97.1

200 OK

1.4 MB

URL GET HTTP/3
appslowdown.com/images/custom/5.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
PNG image data, 1226 x 817, 8-bit/color RGBA, non-interlaced
Size
1.4 MB (1367442 bytes)
Hash
bf46937b9236b48b389e20a32a95e216
4da4fd393efb751034928d21565cbad41977d105
0547d5d347595b50413493e6ff8c063e211bc0f7c111336995785057c945ae71

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/custom/5.png HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: image/png
content-length: 1367442
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-14dd92"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=P4i73MG2otPXXhfzGBfRnkU1LXW5ueqp5nsdYEMDCaLmEcDOcJwxs0NBMtGFoJ87hdpiGoVgYflzvWq967OYj3qcZbsV3ymgZYE3HUXFYZZHHpDJwKDsP5fkKIYA%2Bl4XecY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d338949b518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/images/custom/4.png

188.114.97.1

200 OK

1.0 MB

URL GET HTTP/3
appslowdown.com/images/custom/4.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
PNG image data, 1226 x 817, 8-bit/color RGBA, non-interlaced
Size
1.0 MB (1031540 bytes)
Hash
7260204a2fea9daf99d84528a34aec99
2e22754baedc9e65dac8e4dc45b45afd9a1532aa
d819d589c66485424d9ff7028fcb6bdc69ce7bbc32ed001ab14aabd07cb24310

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/custom/4.png HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: image/png
content-length: 1031540
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-fbd74"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=lsEzttOiEAINl03CoTFRj3fpWRxAyf0jE2Es8vkjfO2osefuuQsbiBaGJl44w1aWLTotu2aHI2n7LY6s1D9%2BFfuE1qoKWx0LmuGg60JfjsTagEvbvEGM622cWm70TTZGcJo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d33894bb518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/images/custom/6.png

188.114.97.1

200 OK

828 kB

URL GET HTTP/3
appslowdown.com/images/custom/6.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
PNG image data, 1090 x 727, 8-bit/color RGBA, non-interlaced
Size
828 kB (827584 bytes)
Hash
2ea70ccc0e59190ebe14a999e74f1e02
75381853b3bc3bca31e080fc71358cf57f7e1f25
d9d3acf0a9dde3f714f8571987708a5ccd297a7a361b935277893fef193425bb

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/custom/6.png HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: image/png
content-length: 827584
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-ca0c0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=R8lCOaI2s9YMW8MmNDu%2BNbyDMJ3fsZNW7cbncm2ezpd7bky832I9hi9P4E4075onN0xIIObT2I8ZCFrtVir3FAALlfzHwvvGH7aBcjahPJG7YN5Z3z3IyrDDy2%2B%2Ffh%2FyAEA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d338967b518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/images/custom/7.png

188.114.97.1

200 OK

776 kB

URL GET HTTP/3
appslowdown.com/images/custom/7.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
PNG image data, 1090 x 726, 8-bit/color RGBA, non-interlaced
Size
776 kB (776127 bytes)
Hash
67527d229bd4a37417a7e9f933562247
23fbc508e543f1714bf6a7763b7b45e6393a538d
603e3c90d1108f2e081244bc78220acd68f806a9b7ff68286f30600b63c501ec

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/custom/7.png HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: image/png
content-length: 776127
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-bd7bf"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M8EVqeBi24iwE4gXrWNBG3c2s7zBpwklwhHytKjmbSXWX%2F8O86Fbwda%2FCbNJkDr0627wKfMm0Vmz5IqQ8x%2Bb0A1vupDyh2OT4G%2BHtxZ3Slcb50N%2BQWjeFAMNCDq%2FpcYpJ0s%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d33996ab518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/images/custom/8.png

188.114.97.1

200 OK

1.3 MB

URL GET HTTP/3
appslowdown.com/images/custom/8.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
PNG image data, 1090 x 725, 8-bit/color RGBA, non-interlaced
Size
1.3 MB (1314877 bytes)
Hash
d6578e7e675e07521f6be5d69328cb95
35c70f43e7dbaf3724e36108168748007ab56f0a
4ccf62d714f0b9e0fde36cb03d044c2547e4c28bcd3c4b53506d28ef3d244ce3

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/custom/8.png HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: image/png
content-length: 1314877
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-14103d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JPrpjgEodxFTiiq6fEI%2BVukOtVyefdUsC3Zexb3dp5ofdDdPaqsC9%2BzYIJQlScESS3juwDJ6nWhKyzf9Va9WCOnZq%2FLHB%2BNotL8L9R8rOCvDT8B8N1T3vE3E7VCjRzrZx%2F0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d33996cb518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/images/custom/9.png

188.114.97.1

200 OK

850 kB

URL GET HTTP/3
appslowdown.com/images/custom/9.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
PNG image data, 1090 x 725, 8-bit/color RGBA, non-interlaced
Size
850 kB (849641 bytes)
Hash
431235ea7f8c36814b6530d3145ee41b
e463af14b29c1806ecc5c9b2f0c069bf74119af0
de0817d904abd3d84e1f9ff0731269344627658013e4c2c0d685d446f2d96774

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/custom/9.png HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: image/png
content-length: 849641
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-cf6e9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oHjemViHlOjj3%2BEWHH%2B1dBoX9HYLPuNVFxaw39pvVsI7J6bRFlepoGOl%2FNWei2m7FWNGSPqvJl6DBicfW%2F5HXt3cP%2FclGosmjESaSXw5b0pYKVu%2B%2BehCz8Sz%2FrmiAordqtk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d33996db518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/images/custom/2.jpg

188.114.97.1

200 OK

348 kB

URL GET HTTP/3
appslowdown.com/images/custom/2.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 2000x1333, components 3
Size
348 kB (347549 bytes)
Hash
cdab8e93a1c232c498d5cb633ba245d2
fa7425486b4fdb19a472f1c6ad777d2b1d61a0a4
d20f2e81b19dc80172a541ad932e59d1d3a6f08f88abc32a84199181ebc0ff56

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/custom/2.jpg HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: image/jpeg
content-length: 347549
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-54d9d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8P%2FXG%2FlDjIvcy2%2FnM5wPEuJBFfSodnpLmSOTsQlJViwXvlKa5fQjTIoQtnvlnUhOVMAsms%2BwT0m8SB6riXbQoIO0Pw9ply8WMLcSQCCgItuKLEoUr4DjSjjENzLBOSLR47M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d359c9cb518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/images/custom/1.jpg

188.114.97.1

200 OK

184 kB

URL GET HTTP/3
appslowdown.com/images/custom/1.jpg
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 2000x1335, components 3
Size
184 kB (184270 bytes)
Hash
96ddeb6b6a04f6bdf162bfe554bfbc18
1c60defa4e502e277e6d217629f0e52dcfa7945f
7b2c980eefd835f6a35fc26d0a0eb7bd96b5923d79822eea490b4e957e6cd76c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/custom/1.jpg HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/css/style.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: image/jpeg
content-length: 184270
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-2cfce"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HL5AbL99T2JuGrGsatM3cztOrF1rX2GGIvtCQJ83x1HunHCsSlM9oTWhFQkO37i8DfPA33h6s0rh5gjcZuq%2ByqDzQZS7nYVKx%2F4jqjmwqA2KFWCdrv9O%2FmO4nXJUJwbakI0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d359ca0b518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/fonts/Gordita-Bold.woff

188.114.97.1

200 OK

86 kB

URL GET HTTP/3
appslowdown.com/fonts/Gordita-Bold.woff
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
Web Open Font Format, CFF, length 85520, version 0.0
Size
86 kB (85520 bytes)
Hash
2aa45382493faa7e3c97188f33df2645
497ba059761fa7182e0414bdb24605b85c8f0833
958a9bd031592738c3691770af434c516597629bcafed373d50d34f391d3c14b

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/Gordita-Bold.woff HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:44 GMT
content-type: font/woff
content-length: 85520
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-14e10"
cache-control: max-age=120
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=SF0mUOlSAO%2FC3SlIxw9SBHbvlScpQiWrFCNeYX9vSHgmnrmegd%2FHBHEaWnxnSw6ylJEe8xqDDrTMfo%2BmQwVlKLHw8TfaZM%2BJboqE3SZJEsyq1zxWx6v0qph%2FD1bbyKwzTJU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d35acbfb518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/fonts/Gordita-Medium.woff

188.114.97.1

200 OK

84 kB

URL GET HTTP/3
appslowdown.com/fonts/Gordita-Medium.woff
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
Web Open Font Format, CFF, length 84472, version 0.0
Size
84 kB (84472 bytes)
Hash
8a8d94afa884be87fba8ed807a911132
c4ef5b391ce2d9fe68c71e7476e4f987173cae56
17d68a6e09a54d22552cbb9c05a8df5935062047fc7d845db3eeb2c479554045

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/Gordita-Medium.woff HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: font/woff
content-length: 84472
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-149f8"
cache-control: max-age=120
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=AoXX8c0LCgdD%2FkvRJilhXeIx2EXgWretEFspZKDfwzOYyijxId59huDosyTn5ng0B1xSh0dfp20Prlkdw50y3re%2F2aX2x5T6CU84sjswtBQZAjCErwHtBpo5e2pL3CJ6lOw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d359ca3b518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/fonts/Gordita-Regular.woff

188.114.97.1

200 OK

84 kB

URL GET HTTP/3
appslowdown.com/fonts/Gordita-Regular.woff
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
Web Open Font Format, CFF, length 84412, version 0.0
Size
84 kB (84412 bytes)
Hash
1af86f05f46db70e0dc24e719472409a
c4912533a37f0eb400e44c2fb6e9db13469f7548
95e9992835f9a398c2336287e163bf4ca3714e865e8c248b3af2aed0eeef6ecd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /fonts/Gordita-Regular.woff HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/css/style.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: font/woff
content-length: 84412
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-149bc"
cache-control: max-age=120
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kn86mE%2BM3PeS6X6JDPGmomjOpsVRyAF2AofP145eUSUr2%2FIHnUjZRBLG9PG7Xzvmnx7p%2BmJFPiueXoqrB7UQgNBl7gJqbkxXSWnu0Zn75iX1kxpGH8Mp3VUdUs0XQIylP0k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d359ca4b518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/css/font-awesome.min.css

188.114.97.1

200 OK

15 kB

URL GET HTTP/3
appslowdown.com/css/font-awesome.min.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
ASCII text, with very long lines (30837)
Size
15 kB (14681 bytes)
Hash
269550530cc127b6aa5a35925a7de6ce
512c7d79033e3028a9be61b540cf1a6870c896f8
799aeb25cc0373fdee0e1b1db7ad6c2f6a0e058dfadaa3379689f583213190bd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/font-awesome.min.css HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: text/css
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: W/"65f40c0f-7918"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ktwyTkjMXHqp9rfG2t2BJJF4kkrYbI3Ty5Tf6mHaXLIgZdElKwXtwAQz7ZtgPTd8TLX%2B%2BK5QDWm8hyTeNcM8l%2Byv8JM0hJtW4Ge9ksmzidOrwSc59TmXWgeMkJPI5WYwfJE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d337933b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

appslowdown.com/js/app.js

188.114.97.1

200 OK

9.7 kB

URL GET HTTP/3
appslowdown.com/js/app.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
JavaScript source, ASCII text
Size
9.7 kB (9652 bytes)
Hash
613aff456482c2a77f93ebbfe700432d
bca00454959d8246e2ced49da5fdd432db4d7287
77974c69ac3c28709f92d4944884420a72a2989163748fe2117b9ac9eb857e25

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /js/app.js HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: application/javascript
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: W/"65f40c0f-11f9"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EikHfa4dYq2K7zNmwwCNJTR%2FB5cpAUBBAzjRGgDrvVxm%2B377zqmcmbTUedLgztR9zlNqxe61MTOYrLH4jKBNzM0wQ6kPJ4IrAUBYYNQLbJwhbVWy1FUid%2BPImbGW0LS1y4A%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d33a980b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

appslowdown.com/images/custom/fav.png

188.114.97.1

200 OK

86 kB

URL GET HTTP/3
appslowdown.com/images/custom/fav.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
PNG image data, 949 x 949, 8-bit/color RGBA, non-interlaced
Size
86 kB (86137 bytes)
Hash
e66c7283d8119d8dec048a8f305d8d7a
b11da04a654da65c8511f7cb4df89fc74527733d
d1dfa02b33f9b3edf73cdba8e54da906c81bad226c7de08c063b24bb29c70216

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/custom/fav.png HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:45 GMT
content-type: image/png
content-length: 86137
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-15079"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=L6yD61tttrdHPPica278SFUXJI7NhpuNZemOMSFs9HRjglHO7RhK75i7WbofPFnKDtQdY6Oy%2BNY%2BvpJRnH4jWmJgZPC5VBtFLWX%2FccXxzRCCgqeL7fZBVUM3GZWcEKwmzaI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d3eaa76b518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/css/style.css

188.114.97.1

200 OK

18 kB

URL GET HTTP/3
appslowdown.com/css/style.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
assembler source, ASCII text
Size
18 kB (18503 bytes)
Hash
d49971bc95d4b0f99ebd396c26082623
de811a451d13b7a1c40c425f9e7cd7491521b69f
717d294502577e21a640c28146b40d210d707fa4e54c47808c79a884ef07b741

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/style.css HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: text/css
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: W/"65f40c0f-4847"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fTXkNRMTysHgwF8103DTr0c4ra1Eem4q3JOTvoZS5UuSEUpVNPClYJ3JEiScZEo0HcMWGfmvazqJVV8Dduy3l76YipUgNlJnW78rwco1PxghUtjn5%2FZsz7mnxsT2SwaGwMo%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d337937b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

appslowdown.com/images/custom/14.png

188.114.97.1

200 OK

20 kB

URL GET HTTP/3
appslowdown.com/images/custom/14.png
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
PNG image data, 512 x 512, 8-bit/color RGBA, non-interlaced
Size
20 kB (20303 bytes)
Hash
fa3b02026ff774df38fc379e68036f5e
ef85eefc6d71f3637fdf7ce6aabb2cd92d5ec252
b0d3188ba8eb736d163f79c6d2bf7262d2dc0644dcf7c3d60b485a570b4f73c5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /images/custom/14.png HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: image/png
content-length: 20303
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: "65f40c0f-4f4f"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4WfD0Z6tSJgt0%2FkY%2BOSQyYKC4OKxmZFl%2Furqal1g9h2OLYD9BKMBqart%2FzNtNNRf9SqoAMU6Gd%2F8wSjcFojr%2B5C09YtyN9MVdwK2GvmXxAoDaGwtnlvrz3U3s35wBx540Xc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d338956b518-OSL
alt-svc: h3=":443"; ma=86400

appslowdown.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js

188.114.97.1

200 OK

1.2 kB

URL GET HTTP/3
appslowdown.com/cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
HTML document, ASCII text, with very long lines (1271), with no line terminators
Size
1.2 kB (1239 bytes)
Hash
40d981045a7516cdadd00e8dccc9c58d
8b8d9a48c6b9d2fba596034ef5db3dd0f2f781c3
71c7d5fc630ff38080f71945be1e8b0c43140d8c25338056b752495e18739c0c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /cdn-cgi/scripts/5c5dd728/cloudflare-static/email-decode.min.js HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: application/javascript
last-modified: Tue, 16 Apr 2024 15:45:04 GMT
etag: W/"661e9d00-4d7"
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8XWjSR4fTKylV5Gd1BLLlJOq3maBwCaU5Oe78LDs4hLGKhcbCiubBdZ%2FxuCQl%2B5aU4SjlUnhRe%2FufjJi3bZzea0j6KPgrV31PNN4CLAJA9nn8ck4SIu33KsFkaeGGs82rBg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d339974b518-OSL
x-frame-options: DENY
x-content-type-options: nosniff
expires: Sat, 20 Apr 2024 13:48:43 GMT
cache-control: max-age=172800, public
content-encoding: gzip

appslowdown.com/css/bootstrap.min.css

188.114.97.1

200 OK

160 kB

URL GET HTTP/3
appslowdown.com/css/bootstrap.min.css
IP
188.114.97.1:443
ASN
#13335 CLOUDFLARENET

Requested by
https://appslowdown.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectappslowdown.com
FingerprintFA:46:CA:CE:CB:46:D0:8B:64:F6:03:D4:AB:26:BC:A0:29:A8:60:33
ValidityThu, 07 Mar 2024 11:46:09 GMT - Wed, 05 Jun 2024 11:46:08 GMT

File type
ASCII text, with very long lines (65324)
Size
160 kB (159515 bytes)
Hash
7cc40c199d128af6b01e74a28c5900b0
d305110fb79113a961394b433d851a3410342b8c
2ff5b959fa9f6b4b1d04d20a37d706e90039176ab1e2a202994d9580baeebfd6

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /css/bootstrap.min.css HTTP/1.1
Host: appslowdown.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://appslowdown.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Thu, 18 Apr 2024 13:48:43 GMT
content-type: text/css
last-modified: Fri, 15 Mar 2024 08:51:27 GMT
etag: W/"65f40c0f-26f1b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IhMn4oxCnJyWWRj7GH2F3fPBp93nT2cCoOKqNGWpMo6oeN%2BnlB0bq4TnMnq8aDgbHf5T8x4%2FwU2QmpnlaNXbSEoZT0D%2FHLacwsfNtJBgg93ymA35uZ1C1jb8nKzhodTxTXI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87651d337931b518-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (7)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Observations

Hash

HTTP Transactions (31)

URL GET HTTP/2

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers