| hadarcloud.pro/original/lonelyscreen-windows.zip |  104.21.24.136 | 307 Temporary Redirect | 551 kB |
URL User Request GET hadarcloud.pro/original/lonelyscreen-windows.zip IP104.21.24.136:443
CertificateIssuerGoogle Trust Services Subjecthadarcloud.pro Fingerprint47:15:29:77:87:F3:AE:A2:58:FE:7A:DB:87:2D:F0:A4:FE:53:13:34 ValidityMon, 17 Mar 2025 13:44:25 GMT - Sun, 15 Jun 2025 14:42:50 GMT
Size551 kB (551312 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /original/lonelyscreen-windows.zip HTTP/1.1
Host: hadarcloud.pro
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 307 Temporary Redirect
date: Mon, 07 Apr 2025 23:30:23 GMT
content-type: text/html; charset=UTF-8
location: https://www.lonelyscreen.com/files/lonelyscreen-win-installer.exe
x-powered-by: PHP/7.4.33
set-cookie: prli_click_23=original%2Flonelyscreen-windows.zip; expires=Wed, 07-May-2025 23:30:22 GMT; Max-Age=2592000; path=/; secure
prli_visitor=67f4600e1a4ce; expires=Tue, 07-Apr-2026 23:30:22 GMT; Max-Age=31536000; path=/; secure
x-robots-tag: noindex, nofollow
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0,pre-check=0
pragma: no-cache
expires: Mon, 07 Jul 1777 07:07:07 GMT
x-redirect-powered-by: Pretty Link Beginner 3.6.15 http://prettylink.com
x-redirect-by: WordPress
x-turbo-charged-by: LiteSpeed
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KjjZ1wmV3%2BfJL4LUPUH%2Fv7P3YKu8qLpxUAiGvblhlZGqpgGVQOesTh16KxTRi49c3TKPHQyeSQUTiybk0Pgq9m9jUaYoxZKUK6sM6MtHpWFdFjhKRAj%2BSqSFFmzDClzAKA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 92cd4ff8c920b4eb-OSL
alt-svc: h3=":443"; ma=86400
server-timing: cfL4;desc="?proto=TCP&rtt=6104&min_rtt=381&rtt_var=11137&sent=10&recv=12&lost=0&retrans=1&sent_bytes=3296&recv_bytes=1198&delivery_rate=7451114&cwnd=256&unsent_bytes=0&cid=07de8452b975562f&ts=955&x=0"
X-Firefox-Spdy: h2
|
| www.lonelyscreen.com/files/lonelyscreen-win-installer.exe |  50.116.44.52 | 200 OK | 551 kB |
URL User Request GET www.lonelyscreen.com/files/lonelyscreen-win-installer.exe IP50.116.44.52:443 ASN#63949 Akamai Connected Cloud
CertificateIssuerLet's Encrypt Subjectlonelyscreen.com FingerprintF7:DE:04:36:54:4A:A9:AC:1D:F3:33:17:2E:27:10:24:B4:AD:59:02 ValidityTue, 11 Feb 2025 12:24:04 GMT - Mon, 12 May 2025 12:24:03 GMT
File typePE32 executable (GUI) Intel 80386, for MS Windows, 8 sections Size551 kB (551312 bytes) Hash64da00119c76c6e1d75f059ffc4a772d ebaebff7db60430cad107d4efc45654d43f98075 039004b76a1bc5ac020958256bdcf97f1464398c13b0be2e0d0078f1aee8b3a7
| Analyzer | Verdict | Alert |
|---|
| VirusTotal | suspicious | |
GET /files/lonelyscreen-win-installer.exe HTTP/1.1
Host: www.lonelyscreen.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:134.0) Gecko/20100101 Firefox/134.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.10.3 (Ubuntu)
Date: Mon, 07 Apr 2025 23:30:23 GMT
Content-Type: application/octet-stream
Content-Length: 551312
Last-Modified: Sun, 09 Oct 2022 23:43:51 GMT
Connection: keep-alive
ETag: "63435cb7-86990"
Accept-Ranges: bytes
|