Report - flavasofjamaica.info/41KcgI54592LwY/

Report Overview

Submitted URL
flavasofjamaica.info/41KcgI54592LwY/
IP
172.67.210.252
ASN
#13335 CLOUDFLARENET
Submitted
2024-04-26 21:59:36
Access
public
Website Title
Two 19-year-old Premier League footballers have been arrested over rape charges suspended by their club - Flavasofjamaica
Final URL
flavasofjamaica.info/41KcgI54592LwY/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
20

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2024-04-25	441 B	427 B	18.194.72.95
images.lbc.co.uk	608355	1996-08-01	2015-03-20	2024-03-20	509 B	20 kB	81.20.53.8
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12	2024-04-26	896 B	153 kB	45.133.44.9
waterfallchequeomnipotent.com	unknown	2024-04-23	2024-04-23	2024-04-23	501 B	467 B	172.240.108.76
downstairsnegotiatebarren.com	unknown	2024-03-04	2024-03-04	2024-04-25	415 B	32 kB	172.67.180.87
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2024-04-25	1.1 kB	63 kB	142.250.74.106
unseenreport.com	unknown	2022-03-30	2022-03-30	2024-04-25	742 B	424 B	192.243.59.13
www.lbc.co.uk	404992	1996-08-01	2016-09-20	2024-03-23	899 B	3.4 kB	81.20.53.8
flavasofjamaica.info	unknown	unknown	No data	No data	17 kB	906 kB	172.67.210.252
heedlessplanallusion.com	unknown	2023-09-18	2023-09-18	2024-03-01	446 B	13 kB	172.240.127.234
archedmagnifylegislation.com	unknown	2024-04-24	2024-04-25	2024-04-26	3.5 kB	37 kB	172.240.253.132
pitcharduous.com	unknown	2024-04-24	2024-04-25	2024-04-25	488 B	467 B	172.240.108.68
secure.gravatar.com	1671	2004-07-15	2012-05-22	2024-04-26	473 B	2.1 kB	192.0.73.2
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2024-04-26	1.1 kB	33 kB	216.58.207.227
evaluateuncanny.com	unknown	2024-04-23	2024-04-23	2024-04-26	3.5 kB	37 kB	192.243.59.20
i0.wp.com	3021	1997-03-28	2013-09-17	2024-04-25	1.1 kB	351 B	192.0.77.2

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2024-04-26	medium	heedlessplanallusion.com	Sinkholed
2024-04-26	medium	archedmagnifylegislation.com	Sinkholed
2024-04-26	medium	archedmagnifylegislation.com	Sinkholed
2024-04-26	medium	evaluateuncanny.com	Sinkholed
2024-04-26	medium	archedmagnifylegislation.com	Sinkholed
2024-04-26	medium	evaluateuncanny.com	Sinkholed
2024-04-26	medium	evaluateuncanny.com	Sinkholed
2024-04-26	medium	pitcharduous.com	Sinkholed
2024-04-26	medium	waterfallchequeomnipotent.com	Sinkholed
2024-04-26	medium	unseenreport.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (29)

	URL	Size	First Seen	Last Seen
	flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/owl-carousel/dist/owl.carousel.js?ver=2.3.4	90 kB	2023-03-07	2024-05-06
Pretty URL flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/owl-carousel/dist/owl.carousel.js?ver=2.3.4 IP 172.67.210.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:43 Last Seen2024-05-06 21:51:36 Times Seen2777 Hash ccdf893e7d8b26933af0c336bcc3943e ac575ba3377f95ef22bad865ec35b0b3dcb0dfe0 db9d6cf3c1c4b047c62f646e7d9991c06a212931c362bf53f9a2406b30f09466 Loading...

	flavasofjamaica.info/wp-includes/js/comment-reply.min.js?ver=6.5.2	3.0 kB	2023-03-07	2024-05-07
Pretty URL flavasofjamaica.info/wp-includes/js/comment-reply.min.js?ver=6.5.2 IP 172.67.210.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:09 Last Seen2024-05-07 09:43:13 Times Seen29739 Hash 492f2c1a7ea7eb83fe42e0ff7cb51aa2 db36a77f6aaa2063bfbec02c2c0e967438c5a245 e174a58a503ab84b3d1b9de12fd3895788204485170f1289e445f7b5b98ec789 Loading...

	flavasofjamaica.info/wp-content/plugins/akismet/_inc/akismet-frontend.js?ver=1711041211	11 kB	2024-01-21	2024-05-07
Pretty URL flavasofjamaica.info/wp-content/plugins/akismet/_inc/akismet-frontend.js?ver=1711041211 IP 172.67.210.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-01-21 19:52:24 Last Seen2024-05-07 05:11:18 Times Seen328 Hash 91954b488a9bfcade528d6ff5c7ce83f edf589eb28247c73ccc04e5b34ad107b90bd1b2e 6bc5622bfab1a16855ad49b99a3f9ed8eb24f49da469a113f9000b866f109e2e Loading...

	downstairsnegotiatebarren.com/sfp.js	86 kB	2024-03-29	2024-05-07
Pretty URL downstairsnegotiatebarren.com/sfp.js IP 172.67.180.87 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-29 13:13:34 Last Seen2024-05-07 11:17:45 Times Seen2407 Hash f4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716 Loading...

	flavasofjamaica.info/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2	19 kB	2024-03-13	2024-05-07
Pretty URL flavasofjamaica.info/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 IP 172.67.210.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-13 16:02:37 Last Seen2024-05-07 11:23:46 Times Seen3063 Hash b976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3 Loading...

	flavasofjamaica.info/41KcgI54592LwY/	3.2 kB	2024-04-26	2024-04-26
Pretty URL flavasofjamaica.info/41KcgI54592LwY/ IP 172.67.210.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 23:59:43 Last Seen2024-04-26 23:59:43 Times Seen1 Hash 6c89a4b105a1e3f5f60f112e37cacd51 c9915447b5c22393654f81cdd94b21d15346bde5 a8296415e0c7402f4aeca1f7d103df9ad47460b60462d0c1ec52dee3c02efded Loading...

	flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/acmeticker/js/acmeticker.min.js?ver=6.5.2	3.3 kB	2023-03-08	2024-05-06
Pretty URL flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/acmeticker/js/acmeticker.min.js?ver=6.5.2 IP 172.67.210.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:45:48 Last Seen2024-05-06 21:51:36 Times Seen42 Hash 60aa85f0f25f449bb731bdcf0b0fbf6b 4ea467b35ff0e992f28e5e09fcd5076f63e041a3 9e5905b764de46fcc6f15efd490103fafc3c3e046f47ce3339117de3d6d6fd01 Loading...

	flavasofjamaica.info/wp-content/plugins/featured-image-from-url/includes/html/js/json-ld.js?ver=4.7.1	507 B	2024-03-22	2024-05-07
Pretty URL flavasofjamaica.info/wp-content/plugins/featured-image-from-url/includes/html/js/json-ld.js?ver=4.7.1 IP 172.67.210.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-03-22 15:26:50 Last Seen2024-05-07 01:22:25 Times Seen32 Hash 7400be6825870bab4c9b079e24e0132d 394e6d8296d3cee3628a106d7e091f066c606af8 8b9e686457dcdbe229329076432ea1239d05c3d4411f89bcebf0951bbf00ff6d Loading...

	flavasofjamaica.info/wp-includes/js/jquery/jquery.min.js?ver=3.7.1	88 kB	2023-11-03	2024-05-07
Pretty URL flavasofjamaica.info/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP 172.67.210.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26:43 Last Seen2024-05-07 11:17:58 Times Seen44478 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	flavasofjamaica.info/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	14 kB	2023-05-09	2024-05-07
Pretty URL flavasofjamaica.info/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 172.67.210.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21:05 Last Seen2024-05-07 11:23:46 Times Seen82891 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	flavasofjamaica.info/41KcgI54592LwY/	372 B	2024-04-26	2024-05-07
Pretty URL flavasofjamaica.info/41KcgI54592LwY/ IP 172.67.210.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 23:59:43 Last Seen2024-05-07 01:22:25 Times Seen9 Hash c8c3e0ac92321ac255220144febf7214 3d0836fda61dff9850273563d0bccb0c4c60f885 a5a1763d6bde3c83d3396c11cc6d3541147fad4ef4abaf46f2be03e9a555094c Loading...

	flavasofjamaica.info/wp-content/themes/ph-news-daily/js/theme.js?ver=1.0.2	3.0 kB	2024-04-26	2024-05-06
Pretty URL flavasofjamaica.info/wp-content/themes/ph-news-daily/js/theme.js?ver=1.0.2 IP 172.67.210.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 23:59:43 Last Seen2024-05-06 21:51:36 Times Seen6 Hash fbce9279297dfa8288d0aca83457f512 c350c92e9d0c6978895d58663fb06b54cf9f0153 c390797f049b8b17a8d9e3487ce2591ad4c319273d66adea08226a3f47fc3155 Loading...

	evaluateuncanny.com/4b/bc/23/4bbc23a92db768bab73820890bd8fa3d.js	82 kB	2024-04-26	2024-04-26
Pretty URL evaluateuncanny.com/4b/bc/23/4bbc23a92db768bab73820890bd8fa3d.js IP 192.243.59.20 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 23:59:43 Last Seen2024-04-26 23:59:44 Times Seen2 Hash 63595102b0b7ad91dd45d5ff84787c21 bc70c9b3a84f426d8dd98e7dcb6c3427eaa51576 6e0dc8ee0d1a97acd48d7767d7d44f87023369523114eb8058a24db9cae0ceda Loading...

	heedlessplanallusion.com/9d3b448e547be241c68efc985e24dcc2/invoke.js	31 kB	2024-04-26	2024-04-26
Pretty URL heedlessplanallusion.com/9d3b448e547be241c68efc985e24dcc2/invoke.js IP 172.240.127.234 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 23:59:43 Last Seen2024-04-26 23:59:43 Times Seen1 Hash 9a1db3f46eb7d2daa66c560cff251ff8 4c4aafaf4875cb66fc0d253c1be63ddd7134e368 fadee8ba9f6a83ff1497db322bbba160ae58e01b0b32803cc400730b316e50a1 Loading...

	unknown	145 B	2024-04-26	2024-05-07
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 23:59:43 Last Seen2024-05-07 01:22:25 Times Seen9 Hash ddf7646fb83712fc2a5917b331362732 72023e439ff21a3e12309e3cdb31e4e1eb46c54a 1714c05c3fae3df1aa46a9548768aaf477efdecd15bcc94dcc52e53baa0c08bc Loading...

	unknown	3.4 kB	2024-04-26	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 23:59:43 Last Seen2024-04-26 23:59:43 Times Seen1 Hash 332b45b7067153d10444f6130b4847be c1b390788eee91e17d292ccbd9631ab39e9907f8 a501ba6e6680c8d5366969aed067805003b641141ed31ad7dddb024c60d898d9 Loading...

	flavasofjamaica.info/41KcgI54592LwY/	98 B	2024-04-10	2024-05-07
Pretty URL flavasofjamaica.info/41KcgI54592LwY/ IP 172.67.210.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-10 17:35:03 Last Seen2024-05-07 01:22:25 Times Seen22 Hash 943d0828305b7fffcee63720ab297353 0af67ef5eeb188730502b4885f171e4c343fb22e ac5930440fe8be9005bae09ce1c2e9458c90f7428bcd7c7eb0191df1e90c71d6 Loading...

	heedlessplanallusion.com/9d3b448e547be241c68efc985e24dcc2/invoke.js	31 kB	2024-04-26	2024-04-26
Pretty URL heedlessplanallusion.com/9d3b448e547be241c68efc985e24dcc2/invoke.js IP 172.240.127.234 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 23:59:43 Last Seen2024-04-26 23:59:44 Times Seen2 Hash 32d0f1bf46e658adb4a6ee39621dc0aa 18267b2d7728c1e236cbb94d6ed8219562129fd1 dccad2a105b71161352ebe9062b1ade5e1d7e143231fd016b0a4f355c6385a52 Loading...

	flavasofjamaica.info/41KcgI54592LwY/	424 B	2024-04-26	2024-04-26
Pretty URL flavasofjamaica.info/41KcgI54592LwY/ IP 172.67.210.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 23:59:43 Last Seen2024-04-26 23:59:43 Times Seen1 Hash b9fda25a4bba750a73cdfe7d78c87533 665412cd13322c0f5b20125da24c78f41ec2ca35 e8a7db693636f71c43799fd13aa80f42681db6427354f2dab8a1bb04459cc1af Loading...

	flavasofjamaica.info/wp-content/themes/ph-news-daily/js/navigation.js?ver=1.0.2	1.9 kB	2023-03-08	2024-05-06
Pretty URL flavasofjamaica.info/wp-content/themes/ph-news-daily/js/navigation.js?ver=1.0.2 IP 172.67.210.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:45:48 Last Seen2024-05-06 21:51:35 Times Seen24 Hash 752b7a6e206305127df91fe5fffd7bf8 7b2acc916071bd936243fd861ee92a8dd68e0b8a ea5de29f3741f31e5a10cc618e08cc3eb4873ea7a8b21df9d69e60e5c72e03be Loading...

	flavasofjamaica.info/41KcgI54592LwY/	87 B	2023-03-07	2024-05-07
Pretty URL flavasofjamaica.info/41KcgI54592LwY/ IP 172.67.210.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 01:06:26 Last Seen2024-05-07 08:40:35 Times Seen6086 Hash bd5f648f4fa75f28b17faffe66049687 c9c2791b295684a919a2bfd7b7e2ef5aab3c178a 1a4ba4a340b3f30596d32c1b272ddcfdbf3ccb8e89c2fa917ea60469017aeee4 Loading...

	archedmagnifylegislation.com/4b/bc/23/4bbc23a92db768bab73820890bd8fa3d.js	82 kB	2024-04-26	2024-04-26
Pretty URL archedmagnifylegislation.com/4b/bc/23/4bbc23a92db768bab73820890bd8fa3d.js IP 172.240.253.132 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 23:59:43 Last Seen2024-04-26 23:59:44 Times Seen2 Hash c8c63ed5649120da4a5c29c1f3bd2298 704c2d3ebe563b18844648b502e94ae6cf1ce74e dab09ab7f8ca0b6de0b6f071c4266154d7a31a901699c2221e46403f4be03aef Loading...

	flavasofjamaica.info/41KcgI54592LwY/	151 B	2024-04-26	2024-04-26
Pretty URL flavasofjamaica.info/41KcgI54592LwY/ IP 172.67.210.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-04-26 23:59:43 Last Seen2024-04-26 23:59:43 Times Seen1 Hash 9de89affb58850d783acc84803caabd4 813d7984cceb8a1aaa199a927c668fc4eb3c472f d2373ab41dadb9ad64cca2442df503f2e356a0f41558c344408d3fb4896eef0b Loading...

	flavasofjamaica.info/wp-content/plugins/wp-automatic/js/main-front.js?ver=6.5.2	1.0 kB	2023-03-07	2024-05-07
Pretty URL flavasofjamaica.info/wp-content/plugins/wp-automatic/js/main-front.js?ver=6.5.2 IP 172.67.210.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19:21 Last Seen2024-05-07 01:22:25 Times Seen794 Hash 110e06930c2043d5439adeb9999f07f5 1294fd7195b1c2652c3627fe7a57f71d447313b3 d503937452e40c21fce10346b29287ad23b221a372547f248da87ca5efb55767 Loading...

	flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/sidr/jquery.sidr.min.js?ver=2.2.1	7.0 kB	2023-03-07	2024-05-07
Pretty URL flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/sidr/jquery.sidr.min.js?ver=2.2.1 IP 172.67.210.252 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:26:05 Last Seen2024-05-07 09:39:15 Times Seen795 Hash 37ac88aac020d48f424ec4c64119f107 57c359f422507358cd667f4119bd54086a1e842d fd57ae7228574a83527cb8917ec5a0ff944aa787934ee5b85a7976f259b7ae31 Loading...

	unknown	3.3 kB	2024-04-26	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-04-26 23:59:43 Last Seen2024-04-26 23:59:43 Times Seen1 Hash cbe7d2c16bfdac66416f155566348f7f a13fa9ce386ad71168fa742050fa95010f2b2445 e18626a75d9081970ed960c77d597eec026079b36305fdff5468dcb5525d6073 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 17c5869bd8a71ae922a8627599b0a803	2.2 kB	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 23:59:43 Last Seen2024-04-26 23:59:43 Times Seen1 Hash 17c5869bd8a71ae922a8627599b0a803 f11d506c7c9281833ae7dfb73d1c52f07e044e52 1bdcefe4d519cee264088b42daa0f55e08b920d376e84980b3a05d5f3721189e Loading...

	#2 Eval - 7a590cf3f09b0756a74d258752bb59e0	2.1 kB	2024-04-26	2024-04-26
Pretty Observations First Seen2024-04-26 23:59:44 Last Seen2024-04-26 23:59:44 Times Seen1 Hash 7a590cf3f09b0756a74d258752bb59e0 bfa42bbcf150ad7bf5dd0ca6f402e70ebb090c76 9d75d1cda4f87aaebec18ae1f790694adf25f648176e2147c9fe6c5b76dcbb30 Loading...

		Size	First Seen	Last Seen
	#1 Write - 818b6b129690c0e47bb408865b7f30de	116 B	2024-04-26	2024-05-07
Pretty Observations First Seen2024-04-26 23:59:44 Last Seen2024-05-07 01:22:25 Times Seen9 Hash 818b6b129690c0e47bb408865b7f30de 8723f5326ad6350069a8d6cdc6a32f0969937581 4c732d6c2f5f6950e3768f6c873d21b38427ce2eb6e4c967a9478e1e7238e45e Loading...

HTTP Transactions (57)

URL IP Response Size

www.lbc.co.uk/assets_v4r/gusto/img/x-share.png

81.20.53.8

200 OK

1.3 kB

URL GET HTTP/1.1
www.lbc.co.uk/assets_v4r/gusto/img/x-share.png
IP
81.20.53.8:443
ASN
#39202 Global Radio Limited

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerDigiCert Inc
Subject*.lbc.co.uk
FingerprintB6:FC:A3:C4:2C:D4:FF:E3:A3:C8:48:78:99:C9:17:13:95:4C:DC:AD
ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT

File type
PNG image data, 70 x 70, 8-bit colormap, non-interlaced
Size
1.3 kB (1342 bytes)
Hash
1551d70246d2b8f04d932baf322f5ca5
4b4e1f046314fea079f57c78190e5f7d3fe8e575
169f4b60adb7a9b9336a75e751397e77b2dafca3e2b85b6cb2b2b20bf7254bcf

HTTP Headers

GET /assets_v4r/gusto/img/x-share.png HTTP/1.1
Host: www.lbc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: image/png
content-length: 1342
expires: Fri, 26 Apr 2024 22:40:54 GMT
cache-control: max-age=10800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: geolocation 'none'; microphone 'none'; camera 'none'; magnetometer 'none'; gyroscope 'none'
vary: X-GUSTO-MODE
last-modified: Thu, 25 Apr 2024 13:55:44 GMT
age: 8294
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains;

www.lbc.co.uk/assets_v4r/gusto/img/facebook-share.png

81.20.53.8

200 OK

945 B

URL GET HTTP/1.1
www.lbc.co.uk/assets_v4r/gusto/img/facebook-share.png
IP
81.20.53.8:443
ASN
#39202 Global Radio Limited

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerDigiCert Inc
Subject*.lbc.co.uk
FingerprintB6:FC:A3:C4:2C:D4:FF:E3:A3:C8:48:78:99:C9:17:13:95:4C:DC:AD
ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT

File type
PNG image data, 70 x 70, 8-bit/color RGBA, non-interlaced
Size
945 B (945 bytes)
Hash
1201614baa3bc504a0905cdaa15776b6
6ea007855b6a196ef2dcec87d6c1e1ebc2832b08
64b7dc97cded1e3783fef720b46c9fb71cc8f0b62156f67be3daf214f6dfaf8b

HTTP Headers

GET /assets_v4r/gusto/img/facebook-share.png HTTP/1.1
Host: www.lbc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: image/png
content-length: 945
expires: Sat, 27 Apr 2024 00:27:27 GMT
cache-control: max-age=10800
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
referrer-policy: strict-origin-when-cross-origin
feature-policy: geolocation 'none'; microphone 'none'; camera 'none'; magnetometer 'none'; gyroscope 'none'
vary: X-GUSTO-MODE
last-modified: Thu, 25 Apr 2024 13:55:43 GMT
age: 1901
accept-ranges: bytes
strict-transport-security: max-age=31536000; includeSubDomains;

flavasofjamaica.info/wp-content/themes/ph-news-daily/design-files/images/arrow-up.png

172.67.210.252

200 OK

17 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/design-files/images/arrow-up.png
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
PNG image data, 1000 x 1000, 8-bit/color RGBA, non-interlaced
Size
17 kB (16621 bytes)
Hash
b85625a4f4449535ba63c22b3bc22d2b
3191b47d7a9e081d7012b1b3d53160fbe129cabb
97508bcfa5b847bd6bd4cd9b926117211a2c005b6546194a03fce41c8e235db2

HTTP Headers

GET /wp-content/themes/ph-news-daily/design-files/images/arrow-up.png HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: image/png
content-length: 16621
cache-control: public, max-age=43200
expires: Tue, 23 Apr 2024 17:02:51 GMT
etag: "40ed-6623794e-1f8271;;;"
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8ZfwuZ5xGkqvJoWCqVufmIUaKXoEmSzz1lE7UbmVMhogYLiL1uFcn3eczaRwX3W2eIr%2FI2IFDEGsFPtsUaXH98rCIcz%2F7jXx61i3IGdeh%2BDIbVtGmvMTdUBYIVSY5AS7k3OQ1mNIpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a9d69acb465685-OSL

flavasofjamaica.info/wp-content/themes/ph-news-daily/js/navigation.js?ver=1.0.2

172.67.210.252

200 OK

13 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/js/navigation.js?ver=1.0.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
ASCII text
Size
13 kB (12598 bytes)
Hash
752b7a6e206305127df91fe5fffd7bf8
7b2acc916071bd936243fd861ee92a8dd68e0b8a
ea5de29f3741f31e5a10cc618e08cc3eb4873ea7a8b21df9d69e60e5c72e03be

HTTP Headers

GET /wp-content/themes/ph-news-daily/js/navigation.js?ver=1.0.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/javascript
etag: W/"77d-6623794e-1f82bc;br"
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FAaGcAH8x%2Fr%2F22SYiOz9f9O9DrXHylp42uvNGOdIn7Ju22BPLXufF8cKhT0FOIOP%2FierInKDDNE4w6pC5h%2FV%2Fjj%2FgRPE2h8GCSxs4EDgZP2qFsVSCj%2BWaEUr%2FFUusUG1oWXwce7RkQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69acb475685-OSL
content-encoding: br

proftrafficcounter.com/stats

18.194.72.95

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.194.72.95:443
ASN
#16509 AMAZON-02

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
9b95c6fda5c89df24111476016a1e8a9
470ae12a9cc1c7ca02c641f3ca29ad943e83f5eb
795be8942169d88464dc28108d654fe4442a84879f6a433ba4296b40c78b6dc8

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flavasofjamaica.info
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:59:10 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://flavasofjamaica.info
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef:1:1; expires=Mon, 24 Apr 2034 21:59:10 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

heedlessplanallusion.com/9d3b448e547be241c68efc985e24dcc2/invoke.js

172.240.127.234

200 OK

12 kB

URL GET HTTP/1.1
heedlessplanallusion.com/9d3b448e547be241c68efc985e24dcc2/invoke.js
IP
172.240.127.234:443
ASN
#7979 SERVERS-COM

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerLet's Encrypt
Subjectheedlessplanallusion.com
Fingerprint22:FE:62:81:B7:05:16:32:08:5A:33:B1:A4:DE:C2:EC:39:69:1B:DB
ValiditySun, 17 Mar 2024 07:41:47 GMT - Sat, 15 Jun 2024 07:41:46 GMT

File type
JavaScript source, ASCII text, with very long lines (31348), with no line terminators
Size
12 kB (11864 bytes)
Hash
32d0f1bf46e658adb4a6ee39621dc0aa
18267b2d7728c1e236cbb94d6ed8219562129fd1
dccad2a105b71161352ebe9062b1ade5e1d7e143231fd016b0a4f355c6385a52

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /9d3b448e547be241c68efc985e24dcc2/invoke.js HTTP/1.1
Host: heedlessplanallusion.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 21:59:10 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 07b345bd676d99f11ac510a9e560c2c6
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flavasofjamaica.info
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 06:02:10 GMT
expires: Sat, 26 Apr 2025 06:02:10 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 57420
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
Fingerprint93:EC:35:60:8A:5B:23:EA:C0:36:D7:AE:03:0C:C3:77:17:5A:20:33
ValidityMon, 08 Apr 2024 07:31:57 GMT - Mon, 01 Jul 2024 07:31:56 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://flavasofjamaica.info
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 26 Apr 2024 05:55:49 GMT
expires: Sat, 26 Apr 2025 05:55:49 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
age: 57801
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

images.lbc.co.uk/images/647350?crop=16_9&width=660&relax=1&format=webp&signature=gnJqJJKnvCAGVTDye5j_bmAbcBU=

81.20.53.8

200 OK

19 kB

URL GET HTTP/1.1
images.lbc.co.uk/images/647350?crop=16_9&width=660&relax=1&format=webp&signature=gnJqJJKnvCAGVTDye5j_bmAbcBU=
IP
81.20.53.8:443
ASN
#39202 Global Radio Limited

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerDigiCert Inc
Subject*.lbc.co.uk
FingerprintB6:FC:A3:C4:2C:D4:FF:E3:A3:C8:48:78:99:C9:17:13:95:4C:DC:AD
ValidityTue, 31 Oct 2023 00:00:00 GMT - Sat, 30 Nov 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image, VP8 encoding, 660x753, Scaling: [none]x[none], YUV color, decoders should clamp
Size
19 kB (19076 bytes)
Hash
24af4d9078f6e77db256b21be866a9d3
1b77b030948f96bc02a0e613529d53775c2017bb
24ae7d7679560777ab49f1cf2c7beb40ae827b042660a0ed85a8dae706130198

HTTP Headers

GET /images/647350?crop=16_9&width=660&relax=1&format=webp&signature=gnJqJJKnvCAGVTDye5j_bmAbcBU= HTTP/1.1
Host: images.lbc.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
date: Fri, 26 Apr 2024 21:59:10 GMT
content-type: image/webp
content-length: 19076
etag: "1b77b030948f96bc02a0e613529d53775c2017bb"
last-modified: Wed, 24 Apr 2024 09:59:45 GMT
x-image-width: 660
x-image-height: 753
access-control-allow-origin: *
expires: Fri, 24 May 2024 09:59:45 GMT
cache-control: max-age=2592000, s-maxage=604800
age: 215965
accept-ranges: bytes
feature-policy: geolocation none; microphone none; camera none; magnetometer none; gyroscope none
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000; includeSubDomains;
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN

flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/font-awesome/webfonts/fa-solid-900.woff2

172.67.210.252

200 OK

78 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
Web Open Font Format (Version 2), TrueType, length 78268, version 331.-31196
Size
78 kB (78268 bytes)
Hash
d824df7eb2e268626a2dd9a6a741ac4e
0ccb2c814a7e4ca12c4778821633809cb0361eaa
9834b82ad26e2a37583d22676a12dd2eb0fe7c80356a2114d0db1aa8b3899537

HTTP Headers

GET /wp-content/themes/ph-news-daily/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/font-awesome/css/all.min.css?ver=6.5.2
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef%3A1%3A1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:10 GMT
content-type: font/woff2
content-length: 78268
cache-control: public, max-age=43200
expires: Tue, 23 Apr 2024 17:13:47 GMT
etag: "131bc-6623794e-1f82e7;;;"
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=f00S5fse4SCwYwJbP14Kn50ZfYqZjlRtWd%2FwpjOIxcvj5YUu8rGMe%2B0n1g0OTJ2RdL8fX%2BPI6qSN5PEgcgeyluJwkHfHZOI9TjMixpubyxRYZUdqMamR3Hwo0WrJfUkLErbto500PA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a9d6a4db105685-OSL

archedmagnifylegislation.com/watch.551235427418.js?key=9d3b448e547be241c68efc985e24dcc2&kw=%5B%22two%22%2C%2219-year-old%22%2C%22premier%22%2C%22league%22%2C%22footballers%22%2C%22have%22%2C%22been%22%2C%22arrested%22%2C%22over%22%2C%22rape%22%2C%22charges%22%2C%22suspended%22%2C%22by%22%2C%22their%22%2C%22club%22%2C%22-%22%2C%22flavasofjamaica%22%5D&refer=https%3A%2F%2Fflavasofjamaica.info%2F41KcgI54592LwY%2F&tz=0&dev=e&res=14.2071&uuid=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef%3A1%3A1

172.240.253.132

307 Temporary Redirect

0 B

URL GET HTTP/1.1
archedmagnifylegislation.com/watch.551235427418.js?key=9d3b448e547be241c68efc985e24dcc2&kw=%5B%22two%22%2C%2219-year-old%22%2C%22premier%22%2C%22league%22%2C%22footballers%22%2C%22have%22%2C%22been%22%2C%22arrested%22%2C%22over%22%2C%22rape%22%2C%22charges%22%2C%22suspended%22%2C%22by%22%2C%22their%22%2C%22club%22%2C%22-%22%2C%22flavasofjamaica%22%5D&refer=https%3A%2F%2Fflavasofjamaica.info%2F41KcgI54592LwY%2F&tz=0&dev=e&res=14.2071&uuid=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef%3A1%3A1
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerLet's Encrypt
Subjectarchedmagnifylegislation.com
Fingerprint68:00:6F:9F:1A:F7:1F:61:5E:30:B2:94:BB:29:71:9D:FB:29:B8:FB
ValidityWed, 24 Apr 2024 15:06:09 GMT - Tue, 23 Jul 2024 15:06:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.551235427418.js?key=9d3b448e547be241c68efc985e24dcc2&kw=%5B%22two%22%2C%2219-year-old%22%2C%22premier%22%2C%22league%22%2C%22footballers%22%2C%22have%22%2C%22been%22%2C%22arrested%22%2C%22over%22%2C%22rape%22%2C%22charges%22%2C%22suspended%22%2C%22by%22%2C%22their%22%2C%22club%22%2C%22-%22%2C%22flavasofjamaica%22%5D&refer=https%3A%2F%2Fflavasofjamaica.info%2F41KcgI54592LwY%2F&tz=0&dev=e&res=14.2071&uuid=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef%3A1%3A1 HTTP/1.1
Host: archedmagnifylegislation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flavasofjamaica.info
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 21:59:11 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://flavasofjamaica.info
Access-Control-Allow-Origin: https://flavasofjamaica.info
Access-Control-Allow-Credentials: true
Location: https://archedmagnifylegislation.com/watch.551235427418.js?dev=e&key=9d3b448e547be241c68efc985e24dcc2&kw=%5B%22two%22%2C%2219-year-old%22%2C%22premier%22%2C%22league%22%2C%22footballers%22%2C%22have%22%2C%22been%22%2C%22arrested%22%2C%22over%22%2C%22rape%22%2C%22charges%22%2C%22suspended%22%2C%22by%22%2C%22their%22%2C%22club%22%2C%22-%22%2C%22flavasofjamaica%22%5D&pst=1714168811&refer=https%3A%2F%2Fflavasofjamaica.info%2F41KcgI54592LwY%2F&res=14.2071&rmtc=t&shu=8583dbda648174f8d12e29ab7553b5101d0bf7fe372c7706456a90f087eaa99c11e45c3fdc2d0edba07601c7528dea02eb92ca57d511462fe4b8504b7893e6101d2d14a900fddba1ad2b8cd761527b7a18a84fe678b5845f04505feb4044ac133759ce&tz=0&uuid=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef%3A1%3A1
Set-Cookie: u_pl=16664818; expires=Sat, 27 Apr 2024 21:59:11 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.arsqt5i00iYlM99PLscNgbFfhbnwVPk207GltvcXzv8; expires=Fri, 26 Apr 2024 22:00:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 4a8b617bf894321cc9a4a06ddc719378
Strict-Transport-Security: max-age=0; includeSubdomains

archedmagnifylegislation.com/4b/bc/23/4bbc23a92db768bab73820890bd8fa3d.js

172.240.253.132

200 OK

30 kB

URL GET HTTP/1.1
archedmagnifylegislation.com/4b/bc/23/4bbc23a92db768bab73820890bd8fa3d.js
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerLet's Encrypt
Subjectarchedmagnifylegislation.com
Fingerprint68:00:6F:9F:1A:F7:1F:61:5E:30:B2:94:BB:29:71:9D:FB:29:B8:FB
ValidityWed, 24 Apr 2024 15:06:09 GMT - Tue, 23 Jul 2024 15:06:08 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
30 kB (30245 bytes)
Hash
c8c63ed5649120da4a5c29c1f3bd2298
704c2d3ebe563b18844648b502e94ae6cf1ce74e
dab09ab7f8ca0b6de0b6f071c4266154d7a31a901699c2221e46403f4be03aef

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /4b/bc/23/4bbc23a92db768bab73820890bd8fa3d.js HTTP/1.1
Host: archedmagnifylegislation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 21:59:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-2931_new=1; expires=Sun, 28 Apr 2024 21:59:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: d0d201055dbbaecc53ccc1286ddff8c3
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

evaluateuncanny.com/watch.1052668340676.js?key=9d3b448e547be241c68efc985e24dcc2&kw=%5B%22two%22%2C%2219-year-old%22%2C%22premier%22%2C%22league%22%2C%22footballers%22%2C%22have%22%2C%22been%22%2C%22arrested%22%2C%22over%22%2C%22rape%22%2C%22charges%22%2C%22suspended%22%2C%22by%22%2C%22their%22%2C%22club%22%2C%22-%22%2C%22flavasofjamaica%22%5D&refer=https%3A%2F%2Fflavasofjamaica.info%2F41KcgI54592LwY%2F&tz=0&dev=e&res=14.2071&uuid=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef%3A1%3A1

192.243.59.20

307 Temporary Redirect

0 B

URL GET HTTP/1.1
evaluateuncanny.com/watch.1052668340676.js?key=9d3b448e547be241c68efc985e24dcc2&kw=%5B%22two%22%2C%2219-year-old%22%2C%22premier%22%2C%22league%22%2C%22footballers%22%2C%22have%22%2C%22been%22%2C%22arrested%22%2C%22over%22%2C%22rape%22%2C%22charges%22%2C%22suspended%22%2C%22by%22%2C%22their%22%2C%22club%22%2C%22-%22%2C%22flavasofjamaica%22%5D&refer=https%3A%2F%2Fflavasofjamaica.info%2F41KcgI54592LwY%2F&tz=0&dev=e&res=14.2071&uuid=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef%3A1%3A1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerLet's Encrypt
Subjectevaluateuncanny.com
FingerprintFA:C8:EC:09:73:C4:B6:E0:EA:76:F1:B4:A3:6D:0D:97:11:91:64:CC
ValidityTue, 23 Apr 2024 10:54:45 GMT - Mon, 22 Jul 2024 10:54:44 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1052668340676.js?key=9d3b448e547be241c68efc985e24dcc2&kw=%5B%22two%22%2C%2219-year-old%22%2C%22premier%22%2C%22league%22%2C%22footballers%22%2C%22have%22%2C%22been%22%2C%22arrested%22%2C%22over%22%2C%22rape%22%2C%22charges%22%2C%22suspended%22%2C%22by%22%2C%22their%22%2C%22club%22%2C%22-%22%2C%22flavasofjamaica%22%5D&refer=https%3A%2F%2Fflavasofjamaica.info%2F41KcgI54592LwY%2F&tz=0&dev=e&res=14.2071&uuid=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef%3A1%3A1 HTTP/1.1
Host: evaluateuncanny.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flavasofjamaica.info
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Fri, 26 Apr 2024 21:59:11 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://flavasofjamaica.info
Access-Control-Allow-Origin: https://flavasofjamaica.info
Access-Control-Allow-Credentials: true
Location: https://evaluateuncanny.com/watch.1052668340676.js?dev=e&key=9d3b448e547be241c68efc985e24dcc2&kw=%5B%22two%22%2C%2219-year-old%22%2C%22premier%22%2C%22league%22%2C%22footballers%22%2C%22have%22%2C%22been%22%2C%22arrested%22%2C%22over%22%2C%22rape%22%2C%22charges%22%2C%22suspended%22%2C%22by%22%2C%22their%22%2C%22club%22%2C%22-%22%2C%22flavasofjamaica%22%5D&pst=1714168811&refer=https%3A%2F%2Fflavasofjamaica.info%2F41KcgI54592LwY%2F&res=14.2071&rmtc=t&shu=7c95ecb02d7e70ffeab1a41256b279cf90143c0a6f21ff6090a131d73f21d68ab788d3472897d6b9c963142c7bf9b40f984d8d3ba7c62dfd3bd0605c1399d9ce9338b042c2db0cca74535b5265d4952ca11884ace7afd845dea76ebe58&tz=0&uuid=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef%3A1%3A1
Set-Cookie: u_pl=16664818; expires=Sat, 27 Apr 2024 21:59:11 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.arsqt5i00iYlM99PLscNgbFfhbnwVPk207GltvcXzv8; expires=Fri, 26 Apr 2024 22:00:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 69474ca1a384014170294dc801da9622
Strict-Transport-Security: max-age=0; includeSubdomains

archedmagnifylegislation.com/watch.551235427418.js?dev=e&key=9d3b448e547be241c68efc985e24dcc2&kw=%5B%22two%22%2C%2219-year-old%22%2C%22premier%22%2C%22league%22%2C%22footballers%22%2C%22have%22%2C%22been%22%2C%22arrested%22%2C%22over%22%2C%22rape%22%2C%22charges%22%2C%22suspended%22%2C%22by%22%2C%22their%22%2C%22club%22%2C%22-%22%2C%22flavasofjamaica%22%5D&pst=1714168811&refer=https%3A%2F%2Fflavasofjamaica.info%2F41KcgI54592LwY%2F&res=14.2071&rmtc=t&shu=8583dbda648174f8d12e29ab7553b5101d0bf7fe372c7706456a90f087eaa99c11e45c3fdc2d0edba07601c7528dea02eb92ca57d511462fe4b8504b7893e6101d2d14a900fddba1ad2b8cd761527b7a18a84fe678b5845f04505feb4044ac133759ce&tz=0&uuid=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef%3A1%3A1

172.240.253.132

200 OK

2.0 kB

URL GET HTTP/1.1
archedmagnifylegislation.com/watch.551235427418.js?dev=e&key=9d3b448e547be241c68efc985e24dcc2&kw=%5B%22two%22%2C%2219-year-old%22%2C%22premier%22%2C%22league%22%2C%22footballers%22%2C%22have%22%2C%22been%22%2C%22arrested%22%2C%22over%22%2C%22rape%22%2C%22charges%22%2C%22suspended%22%2C%22by%22%2C%22their%22%2C%22club%22%2C%22-%22%2C%22flavasofjamaica%22%5D&pst=1714168811&refer=https%3A%2F%2Fflavasofjamaica.info%2F41KcgI54592LwY%2F&res=14.2071&rmtc=t&shu=8583dbda648174f8d12e29ab7553b5101d0bf7fe372c7706456a90f087eaa99c11e45c3fdc2d0edba07601c7528dea02eb92ca57d511462fe4b8504b7893e6101d2d14a900fddba1ad2b8cd761527b7a18a84fe678b5845f04505feb4044ac133759ce&tz=0&uuid=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef%3A1%3A1
IP
172.240.253.132:443
ASN
#7979 SERVERS-COM

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerLet's Encrypt
Subjectarchedmagnifylegislation.com
Fingerprint68:00:6F:9F:1A:F7:1F:61:5E:30:B2:94:BB:29:71:9D:FB:29:B8:FB
ValidityWed, 24 Apr 2024 15:06:09 GMT - Tue, 23 Jul 2024 15:06:08 GMT

File type
JavaScript source, ASCII text, with very long lines (2494)
Size
2.0 kB (2020 bytes)
Hash
cbaae5cf1b49489e28edc719095effcc
833ae5e3c84ba0157f5679e3a33066b30748ea2e
ff546014ad3894a2f2853c15bb555a0dbb7aec868586a0f9c185a7767017affd

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.551235427418.js?dev=e&key=9d3b448e547be241c68efc985e24dcc2&kw=%5B%22two%22%2C%2219-year-old%22%2C%22premier%22%2C%22league%22%2C%22footballers%22%2C%22have%22%2C%22been%22%2C%22arrested%22%2C%22over%22%2C%22rape%22%2C%22charges%22%2C%22suspended%22%2C%22by%22%2C%22their%22%2C%22club%22%2C%22-%22%2C%22flavasofjamaica%22%5D&pst=1714168811&refer=https%3A%2F%2Fflavasofjamaica.info%2F41KcgI54592LwY%2F&res=14.2071&rmtc=t&shu=8583dbda648174f8d12e29ab7553b5101d0bf7fe372c7706456a90f087eaa99c11e45c3fdc2d0edba07601c7528dea02eb92ca57d511462fe4b8504b7893e6101d2d14a900fddba1ad2b8cd761527b7a18a84fe678b5845f04505feb4044ac133759ce&tz=0&uuid=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef%3A1%3A1 HTTP/1.1
Host: archedmagnifylegislation.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flavasofjamaica.info
Referer: https://flavasofjamaica.info/
DNT: 1
Connection: keep-alive
Cookie: u_pl=16664818; ain=eyJhbGciOiJIUzI1NiJ9.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.arsqt5i00iYlM99PLscNgbFfhbnwVPk207GltvcXzv8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 21:59:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://flavasofjamaica.info
Access-Control-Allow-Origin: https://flavasofjamaica.info
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef:1:1; expires=Fri, 03 May 2024 21:59:11 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 27 Apr 2024 21:59:11 GMT; secure; SameSite=None
uncs=1; expires=Sat, 27 Apr 2024 21:59:11 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sat, 27 Apr 2024 21:59:11 GMT; secure; SameSite=None
uncs5=1; expires=Sat, 27 Apr 2024 21:59:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1b4239ee67ea701772d7387d46a7dd47
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

evaluateuncanny.com/4b/bc/23/4bbc23a92db768bab73820890bd8fa3d.js

192.243.59.20

200 OK

30 kB

URL GET HTTP/1.1
evaluateuncanny.com/4b/bc/23/4bbc23a92db768bab73820890bd8fa3d.js
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerLet's Encrypt
Subjectevaluateuncanny.com
FingerprintFA:C8:EC:09:73:C4:B6:E0:EA:76:F1:B4:A3:6D:0D:97:11:91:64:CC
ValidityTue, 23 Apr 2024 10:54:45 GMT - Mon, 22 Jul 2024 10:54:44 GMT

File type
JavaScript source, ASCII text, with very long lines (65536), with no line terminators
Size
30 kB (30258 bytes)
Hash
63595102b0b7ad91dd45d5ff84787c21
bc70c9b3a84f426d8dd98e7dcb6c3427eaa51576
6e0dc8ee0d1a97acd48d7767d7d44f87023369523114eb8058a24db9cae0ceda

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /4b/bc/23/4bbc23a92db768bab73820890bd8fa3d.js HTTP/1.1
Host: evaluateuncanny.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 26 Apr 2024 21:59:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Set-Cookie: 4b4e7ab587d59b22ad7bcd2439afc363_CF-2931_new=1; expires=Sun, 28 Apr 2024 21:59:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 52d83b0aa51346e220c8a724c5098481
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

flavasofjamaica.info/wp-content/themes/ph-news-daily/design-files/core/core.css?ver=6.5.2

172.67.210.252

200 OK

15 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/design-files/core/core.css?ver=6.5.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
ASCII text, with very long lines (3762), with no line terminators
Size
15 kB (15083 bytes)
Hash
76ff0580e70610dd04264aa2391688b0
e8984d578d181e3681d08b0918c2ee5da2409241
faef36fb6ef419e84e252a26dfb23d630e8ba071e5279d6b7c77d4efa0516cbd

HTTP Headers

GET /wp-content/themes/ph-news-daily/design-files/core/core.css?ver=6.5.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/css
cache-control: public, max-age=43200
cf-bgj: minify
cf-polished: origSize=4581
alt-svc: h3=":443"; ma=86400
etag: W/"11e5-6623794e-1f8238;br"
expires: Tue, 23 Apr 2024 17:02:51 GMT
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
vary: Accept-Encoding
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=A%2FBaCDFE16TdlKb0vuMZe8Y1et%2FG9ztGIJBFBl7cQEwgyYKrZaIlKo%2BB%2FuuhTWpGJXhjxvTM%2B%2FQDVgPPMALYztKmSrn5hBC31fh1mE04kgzsLBxQIep4FnrX1Q6Ox0ZDC3T%2FJGvBhg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69aab2b5685-OSL
content-encoding: br

flavasofjamaica.info/wp-content/themes/ph-news-daily/js/theme.js?ver=1.0.2

172.67.210.252

200 OK

7.4 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/js/theme.js?ver=1.0.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
JavaScript source, ASCII text
Size
7.4 kB (7371 bytes)
Hash
fbce9279297dfa8288d0aca83457f512
c350c92e9d0c6978895d58663fb06b54cf9f0153
c390797f049b8b17a8d9e3487ce2591ad4c319273d66adea08226a3f47fc3155

HTTP Headers

GET /wp-content/themes/ph-news-daily/js/theme.js?ver=1.0.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/javascript
etag: W/"bb1-6623794e-1f82be;br"
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 4941
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=H%2FVDiDAMgdVuK2shRxVwI6XaPD%2FpZL2Nhwi8RgxtUJPOf%2Ffl880A6TK408kNWPICSjEJkvo63Z4Yc0YP8MLCgNhI7RV%2F7uvnnvsfV6%2FYJiBNQfabOSadaOUWJ3g44KFjiENjhr768Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69adb545685-OSL
content-encoding: br

flavasofjamaica.info/wp-content/themes/ph-news-daily/design-files/sidebar/sidebar.css?ver=6.5.2

172.67.210.252

200 OK

8.1 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/design-files/sidebar/sidebar.css?ver=6.5.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
ASCII text, with very long lines (3246), with no line terminators
Size
8.1 kB (8133 bytes)
Hash
6d6dd12d6b16508a16d53aeb0c63c357
c1115d4789e693ae151765144d7be050fcfb5af2
d347d30c31576e9958f2674e2a0bfeb62b0b03396dd72e0cdd212125e767ad88

HTTP Headers

GET /wp-content/themes/ph-news-daily/design-files/sidebar/sidebar.css?ver=6.5.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/css
cache-control: public, max-age=43200
cf-bgj: minify
cf-polished: origSize=4176
alt-svc: h3=":443"; ma=86400
etag: W/"1050-6623794e-1f8276;br"
expires: Tue, 23 Apr 2024 17:02:51 GMT
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
vary: Accept-Encoding
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=jta32o3OuzhdbdZNZjWX0zyqYopjs77%2B0Inhpi0so8wepf6qs9x7cyN168o2CJBcbbpM8mgeO4vbAjsXs779KwLsZSYdBxqtRTyJFvj9pILDP7AS4zxZ3fwtfz9lnXUL87VKdp0axA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69abb305685-OSL
content-encoding: br

flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/owl-carousel/dist/assets/owl.theme.default.min.css?ver=6.5.2

172.67.210.252

200 OK

926 B

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/owl-carousel/dist/assets/owl.theme.default.min.css?ver=6.5.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
ASCII text, with very long lines (846)
Size
926 B (926 bytes)
Hash
594b81805a98b267e47c70a8fad30d9f
684d84ec40b305ca14efc88c91f12972cb6342b4
924b0dc630d1c5dff9fa31aead9509775b1d476bfe0a5ac2977b2f11205a26ac

HTTP Headers

GET /wp-content/themes/ph-news-daily/lib/owl-carousel/dist/assets/owl.theme.default.min.css?ver=6.5.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/css
cache-control: public, max-age=43200
expires: Tue, 23 Apr 2024 17:02:51 GMT
etag: W/"3f5-6623794e-1f82f0;br"
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=V2ISAl9PKwCfhirmrm9JeI%2FNLIlTI4bPgK8Iuw4vA0I69jEqfBnv1MUi6snU8V9DkAO2JySOSHfjMc8M5OCYcSE5koPWI3F0DCeJryhWAOWDDKIrZ2uyJrI7XoAlbpKvo0i4xhhuIA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69aab245685-OSL
content-encoding: br

cdn.cloudimagesb.com/cti/a6/98/59/a69859f4eba916402d687172cccc4814/1708072295.png

45.133.44.9

200 OK

73 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/a6/98/59/a69859f4eba916402d687172cccc4814/1708072295.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
PNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced
Size
73 kB (73016 bytes)
Hash
967ccbf525790b3d6e9ca46b436acef7
0351b0b4fab8bc70e1bce3872bc538fc976a7b44
1698a3cc4a295999590b0dd32fb7d21426a94d2578d3d9ebffa4b1b788aca43a

HTTP Headers

GET /cti/a6/98/59/a69859f4eba916402d687172cccc4814/1708072295.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:59:11 GMT
content-type: image/png
content-length: 73016
server: nginx/1.21.6
last-modified: Fri, 16 Feb 2024 08:31:43 GMT
etag: "65cf1d6f-11d38"
expires: Sun, 28 Apr 2024 21:59:11 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

evaluateuncanny.com/watch.1052668340676.js?dev=e&key=9d3b448e547be241c68efc985e24dcc2&kw=%5B%22two%22%2C%2219-year-old%22%2C%22premier%22%2C%22league%22%2C%22footballers%22%2C%22have%22%2C%22been%22%2C%22arrested%22%2C%22over%22%2C%22rape%22%2C%22charges%22%2C%22suspended%22%2C%22by%22%2C%22their%22%2C%22club%22%2C%22-%22%2C%22flavasofjamaica%22%5D&pst=1714168811&refer=https%3A%2F%2Fflavasofjamaica.info%2F41KcgI54592LwY%2F&res=14.2071&rmtc=t&shu=7c95ecb02d7e70ffeab1a41256b279cf90143c0a6f21ff6090a131d73f21d68ab788d3472897d6b9c963142c7bf9b40f984d8d3ba7c62dfd3bd0605c1399d9ce9338b042c2db0cca74535b5265d4952ca11884ace7afd845dea76ebe58&tz=0&uuid=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef%3A1%3A1

192.243.59.20

200 OK

2.0 kB

URL GET HTTP/1.1
evaluateuncanny.com/watch.1052668340676.js?dev=e&key=9d3b448e547be241c68efc985e24dcc2&kw=%5B%22two%22%2C%2219-year-old%22%2C%22premier%22%2C%22league%22%2C%22footballers%22%2C%22have%22%2C%22been%22%2C%22arrested%22%2C%22over%22%2C%22rape%22%2C%22charges%22%2C%22suspended%22%2C%22by%22%2C%22their%22%2C%22club%22%2C%22-%22%2C%22flavasofjamaica%22%5D&pst=1714168811&refer=https%3A%2F%2Fflavasofjamaica.info%2F41KcgI54592LwY%2F&res=14.2071&rmtc=t&shu=7c95ecb02d7e70ffeab1a41256b279cf90143c0a6f21ff6090a131d73f21d68ab788d3472897d6b9c963142c7bf9b40f984d8d3ba7c62dfd3bd0605c1399d9ce9338b042c2db0cca74535b5265d4952ca11884ace7afd845dea76ebe58&tz=0&uuid=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef%3A1%3A1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerLet's Encrypt
Subjectevaluateuncanny.com
FingerprintFA:C8:EC:09:73:C4:B6:E0:EA:76:F1:B4:A3:6D:0D:97:11:91:64:CC
ValidityTue, 23 Apr 2024 10:54:45 GMT - Mon, 22 Jul 2024 10:54:44 GMT

File type
JavaScript source, ASCII text, with very long lines (2507)
Size
2.0 kB (2040 bytes)
Hash
d0d8f9de04bb71d04629667124dbbb85
04ca948584c6666807c5ead256639f8103e3bb23
ae13d95419a5ca5b4412d2f3583d25cf22f70d137bb41cefb47ce201bbfd7fda

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1052668340676.js?dev=e&key=9d3b448e547be241c68efc985e24dcc2&kw=%5B%22two%22%2C%2219-year-old%22%2C%22premier%22%2C%22league%22%2C%22footballers%22%2C%22have%22%2C%22been%22%2C%22arrested%22%2C%22over%22%2C%22rape%22%2C%22charges%22%2C%22suspended%22%2C%22by%22%2C%22their%22%2C%22club%22%2C%22-%22%2C%22flavasofjamaica%22%5D&pst=1714168811&refer=https%3A%2F%2Fflavasofjamaica.info%2F41KcgI54592LwY%2F&res=14.2071&rmtc=t&shu=7c95ecb02d7e70ffeab1a41256b279cf90143c0a6f21ff6090a131d73f21d68ab788d3472897d6b9c963142c7bf9b40f984d8d3ba7c62dfd3bd0605c1399d9ce9338b042c2db0cca74535b5265d4952ca11884ace7afd845dea76ebe58&tz=0&uuid=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef%3A1%3A1 HTTP/1.1
Host: evaluateuncanny.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://flavasofjamaica.info
Referer: https://flavasofjamaica.info/
DNT: 1
Connection: keep-alive
Cookie: u_pl=16664818; ain=eyJhbGciOiJIUzI1NiJ9.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.arsqt5i00iYlM99PLscNgbFfhbnwVPk207GltvcXzv8
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 26 Apr 2024 21:59:11 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://flavasofjamaica.info
Access-Control-Allow-Origin: https://flavasofjamaica.info
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef:1:1; expires=Fri, 03 May 2024 21:59:11 GMT; secure; SameSite=None
pdhtkv=true; expires=Sat, 27 Apr 2024 21:59:11 GMT; secure; SameSite=None
uncs=1; expires=Sat, 27 Apr 2024 21:59:11 GMT; secure; SameSite=None
pdhtkv5=true; expires=Sat, 27 Apr 2024 21:59:11 GMT; secure; SameSite=None
uncs5=1; expires=Sat, 27 Apr 2024 21:59:11 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 40f71ee20ac292ae5a070553c9523346
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

cdn.cloudimagesb.com/cti/0c/64/c9/0c64c955cb1d51da0e58e57419b66631/1708270232.jpg

45.133.44.9

200 OK

79 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/0c/64/c9/0c64c955cb1d51da0e58e57419b66631/1708270232.jpg
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0
ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop 24.5 (Windows), datetime=2024:02:16 15:04:57], progressive, precision 8, 300x250, components 3
Size
79 kB (79010 bytes)
Hash
325d5a8fd98bd4abebe19e1ea0bfa6b5
724b06f3b7fd7b0e958b59c4c4afb2813a5f5c17
710e54e782c441ef1ce60c52642dae8084dbbaa413343ff13f86c1e53c981318

HTTP Headers

GET /cti/0c/64/c9/0c64c955cb1d51da0e58e57419b66631/1708270232.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:59:11 GMT
content-type: image/jpeg
content-length: 79010
server: nginx/1.21.6
last-modified: Sun, 18 Feb 2024 15:30:40 GMT
etag: "65d222a0-134a2"
expires: Sun, 28 Apr 2024 21:59:11 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

pitcharduous.com/pixel/purst?dl=0&th=0&sc=0&rs=2504&rd=2504&fd=524&bv=24.4.7925&tmpl=136

172.240.108.68

200 OK

0 B

URL GET HTTP/1.1
pitcharduous.com/pixel/purst?dl=0&th=0&sc=0&rs=2504&rd=2504&fd=524&bv=24.4.7925&tmpl=136
IP
172.240.108.68:443
ASN
#7979 SERVERS-COM

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerLet's Encrypt
Subjectpitcharduous.com
FingerprintB7:A9:03:D9:BE:DA:FD:83:BE:22:88:EA:97:99:53:DF:79:CE:AB:84
ValidityWed, 24 Apr 2024 14:52:37 GMT - Tue, 23 Jul 2024 14:52:36 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=2504&rd=2504&fd=524&bv=24.4.7925&tmpl=136 HTTP/1.1
Host: pitcharduous.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 21:59:11 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

waterfallchequeomnipotent.com/pixel/purst?dl=0&th=0&sc=0&rs=2568&rd=2568&fd=737&bv=24.4.7925&tmpl=136

172.240.108.76

200 OK

0 B

URL GET HTTP/1.1
waterfallchequeomnipotent.com/pixel/purst?dl=0&th=0&sc=0&rs=2568&rd=2568&fd=737&bv=24.4.7925&tmpl=136
IP
172.240.108.76:443
ASN
#7979 SERVERS-COM

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerLet's Encrypt
Subjectwaterfallchequeomnipotent.com
Fingerprint10:02:FD:E1:42:43:0C:C7:37:B0:94:C6:F9:9A:80:1F:38:80:C0:6E
ValidityTue, 23 Apr 2024 10:44:53 GMT - Mon, 22 Jul 2024 10:44:52 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/purst?dl=0&th=0&sc=0&rs=2568&rd=2568&fd=737&bv=24.4.7925&tmpl=136 HTTP/1.1
Host: waterfallchequeomnipotent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Fri, 26 Apr 2024 21:59:11 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

secure.gravatar.com/avatar/8de23714f6330d48377941441b3ed38f?s=96&d=mm&r=g

192.0.73.2

200 OK

1.5 kB

URL GET HTTP/2
secure.gravatar.com/avatar/8de23714f6330d48377941441b3ed38f?s=96&d=mm&r=g
IP
192.0.73.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerSectigo Limited
Subject*.gravatar.com
Fingerprint28:34:17:4E:69:95:4B:B9:70:DF:D4:0F:AA:2C:8D:60:F2:45:E7:D0
ValidityTue, 05 Dec 2023 00:00:00 GMT - Sat, 04 Jan 2025 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 90", baseline, precision 8, 96x96, components 3
Size
1.5 kB (1528 bytes)
Hash
c7d444a35d350f37cf996778686f9fce
41d80eb83a0e887107ab47d84002a24aef786447
67f565f25c1bb8ae629cfca60c71766232073a0c905e0387e45895657b4ae3e7

HTTP Headers

GET /avatar/8de23714f6330d48377941441b3ed38f?s=96&d=mm&r=g HTTP/1.1
Host: secure.gravatar.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Fri, 26 Apr 2024 21:59:12 GMT
content-type: image/jpeg
content-length: 1528
last-modified: Wed, 11 Jan 1984 08:00:00 GMT
link: <https://gravatar.com/avatar/8de23714f6330d48377941441b3ed38f?s=96&d=mm&r=g>; rel="canonical"
access-control-allow-origin: *
content-disposition: inline; filename="8de23714f6330d48377941441b3ed38f.png"
expires: Fri, 26 Apr 2024 22:04:12 GMT
cache-control: max-age=300
x-nc: HIT arn 3
alt-svc: h3=":443"; ma=86400
accept-ranges: bytes
X-Firefox-Spdy: h2

downstairsnegotiatebarren.com/sfp.js

172.67.180.87

200 OK

32 kB

URL GET HTTP/2
downstairsnegotiatebarren.com/sfp.js
IP
172.67.180.87:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerLet's Encrypt
Subjectdownstairsnegotiatebarren.com
Fingerprint2C:6A:E1:8E:26:5B:1D:8B:86:CB:C1:72:4E:52:4B:8B:67:3A:D2:44
ValidityMon, 04 Mar 2024 21:53:07 GMT - Sun, 02 Jun 2024 21:53:06 GMT

File type
JavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
32 kB (31580 bytes)
Hash
f4a2f8f9f99541c6f105bbd0a025bd40
1f8e3eff12168fdd9e719adfc098d24a45b6916a
b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716

HTTP Headers

GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:59:11 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: c4822dfe3d1e01bd04daa11b61064a55
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Fri, 26 Apr 2024 21:59:11 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Rg1bMw6rH6RdSNpOWI9HdzwnTUjGxE%2BKBjzIIBH8aUnVc4HHHLYPWTgmD7GhbggJbjisRSQoaXtmxLZuHDwajZw1Ajoh0BEd4l6ewSe65JSm2PRwF4co7ZX5vGmemwOYDtW0dZ93u2vzp8QdMqhk6g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a9d6a7b8abb509-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

flavasofjamaica.info/wp-content/plugins/featured-image-from-url/includes/html/js/json-ld.js?ver=4.7.1

172.67.210.252

200 OK

252 B

URL GET HTTP/3
flavasofjamaica.info/wp-content/plugins/featured-image-from-url/includes/html/js/json-ld.js?ver=4.7.1
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
JavaScript source, ASCII text
Size
252 B (252 bytes)
Hash
7400be6825870bab4c9b079e24e0132d
394e6d8296d3cee3628a106d7e091f066c606af8
8b9e686457dcdbe229329076432ea1239d05c3d4411f89bcebf0951bbf00ff6d

HTTP Headers

GET /wp-content/plugins/featured-image-from-url/includes/html/js/json-ld.js?ver=4.7.1 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/javascript
etag: W/"1fb-662478fb-2b565e;br"
last-modified: Sun, 21 Apr 2024 02:24:59 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RgPv9GzRIN8c68SwT%2B3EC7TeSme7Mza%2BdjDWEJCLdL7SHJK%2FHCJyUWaqAY3UJ0kdhgl8Jq1wh7N%2Bs4cuol6Qjtn1spLk72c9DmSRgHj93%2Bk5Lch%2FRobDAo1LewlNNNawo76pCqgLBg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69adb565685-OSL
content-encoding: br

flavasofjamaica.info/wp-content/themes/ph-news-daily/design-files/footer/footer.css?ver=6.5.2

172.67.210.252

200 OK

4.7 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/design-files/footer/footer.css?ver=6.5.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
ASCII text, with very long lines (2621), with no line terminators
Size
4.7 kB (4728 bytes)
Hash
996d699c70f68087f209cb2e89956ac0
e8ceed586e64c0b1e80a7f204215bbc2094210fd
f31fc840945726ef0b0d3c5b375b860fe587a040c8d93941bf97dcafb6850381

HTTP Headers

GET /wp-content/themes/ph-news-daily/design-files/footer/footer.css?ver=6.5.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/css
cache-control: public, max-age=43200
cf-bgj: minify
cf-polished: origSize=3004
alt-svc: h3=":443"; ma=86400
etag: W/"bbc-6623794e-1f8242;br"
expires: Tue, 23 Apr 2024 17:02:51 GMT
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
vary: Accept-Encoding
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=bbdv5n3C4ppPGMQRPlc6ALWG1d6I0MwInEjeYJ3hoZqui8wr0%2B%2BcuqqfSyMSf5V1Yqgqt6LI5iSWAwkEz4PXHlE9illdA0ixOY035WVjb%2BOsP35WzLapeE2IXsolNo8w9njHw%2BCBpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69abb355685-OSL
content-encoding: br

flavasofjamaica.info/wp-content/plugins/akismet/_inc/akismet-frontend.js?ver=1711041211

172.67.210.252

200 OK

11 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/plugins/akismet/_inc/akismet-frontend.js?ver=1711041211
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
ASCII text
Size
11 kB (11388 bytes)
Hash
91954b488a9bfcade528d6ff5c7ce83f
edf589eb28247c73ccc04e5b34ad107b90bd1b2e
6bc5622bfab1a16855ad49b99a3f9ed8eb24f49da469a113f9000b866f109e2e

HTTP Headers

GET /wp-content/plugins/akismet/_inc/akismet-frontend.js?ver=1711041211 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/javascript
etag: W/"2c7c-65fc6abb-1b934c;br"
last-modified: Thu, 21 Mar 2024 17:13:31 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 4941
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=aFY3QOgBGqFL%2F8fFU7XjE64DSccJC2DJx8Vug%2B2TzIFfj9EKe8acsPDtvxx5EsQMB3xBUQ8pmxsSlmtNTtZEFbtamexFSDIM0h5%2BPWT9dle1gUqXLDbLkyWqDQLMoydqUqAnkAf7hQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69aeb585685-OSL
content-encoding: br

flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/font-awesome/css/all.min.css?ver=6.5.2

172.67.210.252

200 OK

59 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/font-awesome/css/all.min.css?ver=6.5.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
ASCII text, with very long lines (59119)
Size
59 kB (59305 bytes)
Hash
ecd507b3125edc4d2a03aa6ae5d07da9
a57ee68d11601b0fd8e5037fc241ff65a754473c
99464ceb71bc9bbdcc72275faefe44f98eb5cbb6b5d8ee665b87b35376f1a96e

HTTP Headers

GET /wp-content/themes/ph-news-daily/lib/font-awesome/css/all.min.css?ver=6.5.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/css
cache-control: public, max-age=43200
expires: Tue, 23 Apr 2024 17:02:51 GMT
etag: W/"e7a9-6623794e-1f82cc;br"
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rwRphuocADe0XGeCPl4yK6OwygJr6sEp%2FifcWAisNBPy9jh09WvQNMlay4gx4pl6sNEpyQulfzz6gIby%2BbQOr4p4R7jWJ1zmiKm%2F3LfGwPbJZ%2BJRrYQQaLaK2xXPJZ2qqj2tnjRi%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69aab1f5685-OSL
content-encoding: br

flavasofjamaica.info/wp-content/plugins/wp-automatic/js/main-front.js?ver=6.5.2

172.67.210.252

200 OK

1.0 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/plugins/wp-automatic/js/main-front.js?ver=6.5.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
JavaScript source, ASCII text, with very long lines (1092), with no line terminators
Size
1.0 kB (1017 bytes)
Hash
cb9255d8f9b56663038c8fb95c3ccd21
465ae30e920f88dc421d065a348c5f0d75a0af5f
1e1c484d9c4ccc48ff66e0d2e1504fd9e22cb3efdb567b0dd1deeaac5ee0ff21

HTTP Headers

GET /wp-content/plugins/wp-automatic/js/main-front.js?ver=6.5.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/javascript
etag: W/"3f9-660d9cf9-1ba232;br"
last-modified: Wed, 03 Apr 2024 18:16:25 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=66BLsPz61LjdKtr9HMkcty4MfbnIuEpP2lnu49ZlBLGJfSEgaFmKlUSeLLbNDI4NSyL4UJUFBtDP5yxUf2vPx00KeM2XU%2B%2Fwpjq98MGRpEZzP9XsHx7F%2F3tF2qVE82apwdlzrPTnlg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69acb415685-OSL
content-encoding: br

flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/acmeticker/css/style.min.css?ver=6.5.2

172.67.210.252

200 OK

2.4 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/acmeticker/css/style.min.css?ver=6.5.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
ASCII text, with very long lines (2406), with no line terminators
Size
2.4 kB (2404 bytes)
Hash
5e1df8c7623751f6e731830aac928ca3
cde902fe60a7cfee7857621676ef9941025d68b4
76b860ddacf0acaccc6541a76d40812455e61ac142c496c131852d62a75d881a

HTTP Headers

GET /wp-content/themes/ph-news-daily/lib/acmeticker/css/style.min.css?ver=6.5.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/css
cache-control: public, max-age=43200
expires: Tue, 23 Apr 2024 17:02:51 GMT
etag: W/"964-6623794e-1f82c2;br"
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ORHzsoV6ydeq99r1cX7gyJot3Zm%2B%2B7aI4iROXh6tfupg3NVXBBdNdVsgxk27JeZaWsyuV3N2f3t6a311mWGK3VgPpLmppTsOn9svgJhquhnJwtmFSI56zdsbXqQEp4OF0g11sLPcXw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69aab205685-OSL
content-encoding: br

i0.wp.com/images.lbc.co.uk/images/647350?width=1200&crop=16_9&signature=7paxdamyWILxKLwyhQo6L31Ca6o=&w=1200&resize=1200,0&ssl=1

192.0.77.2

400 Bad Request

0 B

URL GET HTTP/3
i0.wp.com/images.lbc.co.uk/images/647350?width=1200&crop=16_9&signature=7paxdamyWILxKLwyhQo6L31Ca6o=&w=1200&resize=1200,0&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /images.lbc.co.uk/images/647350?width=1200&crop=16_9&signature=7paxdamyWILxKLwyhQo6L31Ca6o=&w=1200&resize=1200,0&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 400 Bad Request
server: nginx
date: Fri, 26 Apr 2024 21:59:10 GMT
content-type: text/html; charset=utf-8
x-nc: HIT arn 8
alt-svc: h3=":443"; ma=86400

flavasofjamaica.info/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2

172.67.210.252

200 OK

19 kB

URL GET HTTP/3
flavasofjamaica.info/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
JavaScript source, ASCII text, with very long lines (15752)
Size
19 kB (18726 bytes)
Hash
b976b651932bfd25b9ddb5b7693d88a7
7fcb7cb5c11227f9213b1e08a07d0212209e1432
4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef%3A1%3A1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:10 GMT
content-type: text/javascript
etag: W/"4926-660cbe04-1bab68;br"
last-modified: Wed, 03 Apr 2024 02:25:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=b7WPyTl0g0OwbiW5sxKp8ZKcXaw9n%2FFgD5s0Q%2B4Aov4NIs5bzxhShsefsGIk1CZ0mzH4LvSmdvu7kaD%2FEtSsXs8FS2uLToAIrDMALuA27svZ%2BDN2L%2BX4n88ITUgWYS0jlQTZO%2BsEnQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d6a46ac25685-OSL
content-encoding: br

flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/bootstrap/bootstrap.min.css?ver=6.5.2

172.67.210.252

200 OK

164 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/bootstrap/bootstrap.min.css?ver=6.5.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type

Size
164 kB (163873 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/themes/ph-news-daily/lib/bootstrap/bootstrap.min.css?ver=6.5.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/css
cache-control: public, max-age=43200
expires: Tue, 23 Apr 2024 17:02:51 GMT
etag: W/"28021-6623794e-1f82c8;br"
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=vb0PvhZy%2FajznnRNhp%2B%2FACTGiXQLWflOfkwEBTKAEe8jlkJJWib%2FTg34jhjtGD20Ii0HozfbpCZc9a30hwJG8WuEEtimRP7hpvZC3C9ZX7HHqKttxvl%2F39WTSnheqJFjDB9W3pstGw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69aab1d5685-OSL
content-encoding: br

flavasofjamaica.info/wp-content/themes/ph-news-daily/design-files/single/single.css?ver=6.5.2

172.67.210.252

200 OK

11 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/design-files/single/single.css?ver=6.5.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
ASCII text, with very long lines (11419), with no line terminators
Size
11 kB (11419 bytes)
Hash
f4c581587bddf4eb595d710c8541fea6
5742b7ecc0611f5670577fba7d7c338268b983e0
34dc012847778213e75a02cfde27ca4d374212c50d0c463056cf404d30e366f9

HTTP Headers

GET /wp-content/themes/ph-news-daily/design-files/single/single.css?ver=6.5.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/css
cache-control: public, max-age=43200
cf-bgj: minify
cf-polished: origSize=13389
alt-svc: h3=":443"; ma=86400
etag: W/"344d-6623794e-1f827f;br"
expires: Tue, 23 Apr 2024 17:02:51 GMT
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
vary: Accept-Encoding
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=guz9ka7Iv0IvouKfXv7UxIAX53ysveo8cQgaKjO%2FO7%2ByW7ljfwt5fsjEKGcEmiqma0CxTAiO%2Fg8ULiX0b8AvCcwYrWt89k%2F6h10KyGt1zE7vB3rqC6LK%2Bx9McKIQNFxf%2Famlvx5k2A%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69abb2f5685-OSL
content-encoding: br

flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/acmeticker/js/acmeticker.min.js?ver=6.5.2

172.67.210.252

200 OK

3.3 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/acmeticker/js/acmeticker.min.js?ver=6.5.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
JavaScript source, ASCII text, with very long lines (3448), with no line terminators
Size
3.3 kB (3285 bytes)
Hash
4dc6bb0d81b1ad86e5cb36e9af0bf181
0d452880d39fa3b4c4b531988c23a4433d5c5ed5
19808c3609d810e89c130c1a6fb2c7f0feddf700da0a070a0dba865d136dcfeb

HTTP Headers

GET /wp-content/themes/ph-news-daily/lib/acmeticker/js/acmeticker.min.js?ver=6.5.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/javascript
etag: W/"cd5-6623794e-1f82c4;br"
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 4941
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EJ62PhO8pQJQDQXweqRwfEOCKm3UWJp2PKUaKp9YAuDmuL%2Bv%2B03Ub5WUU9yU6X172Q9eWTVkG%2F9tQI5kvL62JcHZTZYjF7LGbqabRhWDqpxT288Hy%2FVqb%2F8SUkVvm%2Fk6PVj46EdIjg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69acb485685-OSL
content-encoding: br

flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/owl-carousel/dist/assets/owl.carousel.min.css?ver=6.5.2

172.67.210.252

200 OK

3.4 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/owl-carousel/dist/assets/owl.carousel.min.css?ver=6.5.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
ASCII text, with very long lines (3360), with no line terminators
Size
3.4 kB (3351 bytes)
Hash
06f43716d0212754cb1515bbbdf64363
279aeb287509128c33862dd0036c9e5e4aeeef64
2d73eb5bd445ed88512875da316dfaedb52fd7fb2b30e94e9b6cb139f05d0c36

HTTP Headers

GET /wp-content/themes/ph-news-daily/lib/owl-carousel/dist/assets/owl.carousel.min.css?ver=6.5.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/css
cache-control: public, max-age=43200
expires: Tue, 23 Apr 2024 17:02:51 GMT
etag: W/"d17-6623794e-1f82ee;br"
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0FK8JRokI0EMCIZsTjZppS7lrFwblHoNuI9tAUM5jwqQwFCh9j%2Ba%2F23ll5o6Eq9WSaDg7o4WkBZG8XVvxiezeErOk%2BPSJdx7XYJnNmilrKds4XpZFROMW0BP49Ezf3qPQVwL4%2B7FbQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69aab215685-OSL
content-encoding: br

flavasofjamaica.info/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2

172.67.210.252

200 OK

113 kB

URL GET HTTP/3
flavasofjamaica.info/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type

Size
113 kB (113381 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/css
cache-control: public, max-age=43200
expires: Tue, 23 Apr 2024 17:02:51 GMT
etag: W/"1bae5-660cbe04-1baa4d;br"
last-modified: Wed, 03 Apr 2024 02:25:08 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Br2CtfaJkkL6J%2BZz506GUysvqRKPkGAkcRDN7lq3lI%2BTYsuT0QUvBCHYOUpGjjm2C%2FnK84LlyleUcr6MIYcSQ7b2lq7UYoMzSre10aCHZ15n1miGHEdu84LTwLsl2XFW71i7%2BFLsXg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69a9b155685-OSL
content-encoding: br

flavasofjamaica.info/41KcgI54592LwY/

172.67.210.252

200 OK

45 kB

URL User Request GET HTTP/2
flavasofjamaica.info/41KcgI54592LwY/
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type

Size
45 kB (45161 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /41KcgI54592LwY/ HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Fri, 26 Apr 2024 21:59:08 GMT
content-type: text/html; charset=UTF-8
x-pingback: https://flavasofjamaica.info/xmlrpc.php
link: <https://flavasofjamaica.info/wp-json/>; rel="https://api.w.org/", <https://flavasofjamaica.info/wp-json/wp/v2/posts/54592>; rel="alternate"; type="application/json", <https://flavasofjamaica.info/?p=54592>; rel=shortlink
vary: Accept-Encoding
x-litespeed-cache: hit
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DB%2FyhKvpkR%2Bhf0%2F1ZmWMQczIh3SsUElbF7NqMJfzsO38xxVIlFJuGHhbehrcy8oP9TrJYaxlmXOkHneBz1uMxjHxHirBjZ49K6YS%2Bw529I3Fb5imVjQPUlcPkrHpf6pgkY1vgLBdmg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d6983cd00b55-OSL
content-encoding: br
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=roboto&ver=6.5.2

142.250.74.106

400 Bad Request

0 B

URL GET HTTP/2
fonts.googleapis.com/css?family=roboto&ver=6.5.2
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /css?family=roboto&ver=6.5.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 400 Bad Request
content-type: text/html; charset=utf-8
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Fri, 26 Apr 2024 21:59:09 GMT
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

flavasofjamaica.info/wp-includes/js/jquery/jquery.min.js?ver=3.7.1

172.67.210.252

200 OK

88 kB

URL GET HTTP/3
flavasofjamaica.info/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
JavaScript source, ASCII text, with very long lines (65447)
Size
88 kB (87553 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/javascript
etag: W/"15601-65f308ae-1bac39;br"
last-modified: Thu, 14 Mar 2024 14:24:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=8MWwv7JccYnYxAWav1EY6Td6RsceKrld%2BLviLxeu0SAey4axbFlI7T869ivQ9BA3nn2U5GTXn0jWqnmBM7TsTrjmHK9QOtuFLvuJhy5o2Zy0XMD9NwlHVhBSG9EWtsb4OUNd33RZeg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69acb3f5685-OSL
content-encoding: br

flavasofjamaica.info/wp-content/plugins/wp-automatic/css/wp-automatic.css?ver=1.0.0

172.67.210.252

200 OK

2.4 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/plugins/wp-automatic/css/wp-automatic.css?ver=1.0.0
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
ASCII text, with very long lines (2367), with no line terminators
Size
2.4 kB (2367 bytes)
Hash
79dc2fc9e9be25c4e4b65af78a1cf86a
36b819e4e1c0761f95c86743a307cff518e4c7ef
da26f75773d686f672adddeabc4378a593a11845f01c01dbd2c941744d2ff96a

HTTP Headers

GET /wp-content/plugins/wp-automatic/css/wp-automatic.css?ver=1.0.0 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/css
cache-control: public, max-age=43200
cf-bgj: minify
cf-polished: origSize=2713
alt-svc: h3=":443"; ma=86400
etag: W/"a99-660d9cf9-1ba1c3;br"
expires: Tue, 23 Apr 2024 17:09:08 GMT
last-modified: Wed, 03 Apr 2024 18:16:25 GMT
vary: Accept-Encoding
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=v4vDhqH1POcgq0xU7Ee2JJTLW4gssSRQLdq%2BRT8pO3YEyF4eaLnqU7JqG%2FUnN7Mb9b%2F4YhtYmJAeAuxWgpB7HY3geWZ%2B6WTUWyMJTUjGp9mBXibvFOjtlvI%2FwzoKSaZb1aNqUi1IxA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69aab185685-OSL
content-encoding: br

flavasofjamaica.info/favicon.ico

172.67.210.252

302 Found

4.1 kB

URL GET HTTP/3
flavasofjamaica.info/favicon.ico
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type

Size
4.1 kB (4119 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef%3A1%3A1; pp_main_4bbc23a92db768bab73820890bd8fa3d=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Fri, 26 Apr 2024 21:59:12 GMT
content-type: text/html; charset=UTF-8
location: https://flavasofjamaica.info/wp-includes/images/w-logo-blue-white-bg.png
link: <https://flavasofjamaica.info/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
x-litespeed-cache-control: public,max-age=604800
x-litespeed-tag: fb2_HTTP.200,fb2_HTTP.302,fb2_default,fb2_URL.b54ff2eddcb0060bcd786ce388d8d4d7,fb2_
x-litespeed-cache: miss
alt-svc: h3=":443"; ma=86400
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5uirdnc1p0s7ParXVkQ4gfVDRh8yvGfm9gk7jnZ1jCei9%2BC4ieHMARZzQc3PKWbmIZ9K%2Fy5bbt3wPzoPH0pVMsbvSXCOSlEfZQDYZ1Sn6HZxDt9PAq0wSqSOFP%2B251A34dmHQUqeAA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a9d6ac08605685-OSL

flavasofjamaica.info/wp-content/themes/ph-news-daily/style.css?ver=1.0.2

172.67.210.252

200 OK

9.7 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/style.css?ver=1.0.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
ASCII text, with very long lines (9728), with no line terminators
Size
9.7 kB (9707 bytes)
Hash
07ed297315b7cf0f893a1185c1c72eff
2d3a805cfe8716bd83b77f1e4b2558d484bbdda9
e2e480ccc041f97cddc9360b1fc29a9c20c7717cbaaaaca56c4eee92df7cbe1f

HTTP Headers

GET /wp-content/themes/ph-news-daily/style.css?ver=1.0.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/css
cache-control: public, max-age=43200
cf-bgj: minify
cf-polished: origSize=17867
alt-svc: h3=":443"; ma=86400
etag: W/"45cb-6623794e-1f832b;br"
expires: Tue, 23 Apr 2024 17:02:51 GMT
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
vary: Accept-Encoding
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=gGL%2FQtPMt4F8rxuXRU5h5nZgecaEmx34J5xPloipuM9%2FReLb5rZ9tvi0UykgZbRxH2q8318amlyC%2FY4UjLGw%2B2wgQGi0P5z7Kd7nP8klMdbMT0BQ%2Fs0hd2cJyfDFk0XJkzA0ROPiaw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69aab1b5685-OSL
content-encoding: br

flavasofjamaica.info/wp-content/themes/ph-news-daily/design-files/featured-modules/featured-modules.css?ver=6.5.2

172.67.210.252

200 OK

48 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/design-files/featured-modules/featured-modules.css?ver=6.5.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
ASCII text, with very long lines (48129), with no line terminators
Size
48 kB (48129 bytes)
Hash
4c8c53fbc06ab67420df9022748128fc
e31cec97d1693989d5e9cc9ab5262e3b705cf185
0a027edf880acb0d26323f4923e2ce389de78ff1184e1cb71f65b308707a7b67

HTTP Headers

GET /wp-content/themes/ph-news-daily/design-files/featured-modules/featured-modules.css?ver=6.5.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/css
cache-control: public, max-age=43200
cf-bgj: minify
cf-polished: origSize=57154
alt-svc: h3=":443"; ma=86400
etag: W/"df42-6623794e-1f823c;br"
expires: Tue, 23 Apr 2024 17:02:51 GMT
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
vary: Accept-Encoding
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=4PxezOYMg6rvrYGpHgH4025f2ciJHRMUngfg%2BXPwCSIlzURTaZ5zyB9FT5GvYAhf3eMW6LrARsgYBeRFlLQMeXQH7D%2FzNAo4n6wViKkoOJ7r6PW39YVlquRV%2BKSXOEoizc2Ofg6Aew%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69abb385685-OSL
content-encoding: br

i0.wp.com/images.lbc.co.uk/images/647350?width=1200&crop=16_9&signature=7paxdamyWILxKLwyhQo6L31Ca6o=&w=1200&resize=1200,0&ssl=1

192.0.77.2

400 Bad Request

0 B

URL GET HTTP/2
i0.wp.com/images.lbc.co.uk/images/647350?width=1200&crop=16_9&signature=7paxdamyWILxKLwyhQo6L31Ca6o=&w=1200&resize=1200,0&ssl=1
IP
192.0.77.2:443
ASN
#2635 AUTOMATTIC

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerSectigo Limited
Subject*.wp.com
Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2
ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /images.lbc.co.uk/images/647350?width=1200&crop=16_9&signature=7paxdamyWILxKLwyhQo6L31Ca6o=&w=1200&resize=1200,0&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 400 Bad Request
server: nginx
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/html; charset=utf-8
x-nc: MISS arn 8
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

flavasofjamaica.info/wp-includes/images/w-logo-blue-white-bg.png

172.67.210.252

200 OK

4.1 kB

URL GET HTTP/3
flavasofjamaica.info/wp-includes/images/w-logo-blue-white-bg.png
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
PNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced
Size
4.1 kB (4119 bytes)
Hash
000bf649cc8f6bf27cfb04d1bcdcd3c7
d73d2f6d74ec6cdcbae07955592962e77d8ae814
6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0

HTTP Headers

GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
DNT: 1
Connection: keep-alive
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef%3A1%3A1; pp_main_4bbc23a92db768bab73820890bd8fa3d=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:12 GMT
content-type: image/png
content-length: 4119
cache-control: public, max-age=43200
expires: Tue, 23 Apr 2024 17:02:54 GMT
etag: "1017-65f308ae-1baad7;;;"
last-modified: Thu, 14 Mar 2024 14:24:46 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=9vN7SDCieTkdMmFntp7jG4jjRtDBd1uzaxHooic7ZlgwpSVOqzSslU9a%2FBT2CPtzZ%2BzOtjMW29YDvtnbDy2utM1RAY%2Fb4kePDdxcX1C59R9kF%2FPbhCwms1D7ErsEwKcmIn6BMsQ7dQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 87a9d6ae09ee5685-OSL

flavasofjamaica.info/wp-content/themes/ph-news-daily/design-files/blog-style/blog-style1.css?ver=6.5.2

172.67.210.252

200 OK

21 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/design-files/blog-style/blog-style1.css?ver=6.5.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
ASCII text, with very long lines (21125), with no line terminators
Size
21 kB (21125 bytes)
Hash
ad2650245fb4e4df2fb2dd015bf2b9a8
e5bb2e76cda42484c1fd7036122d17e927a5f3b0
ffded7b07a486913dd1f6d1b7b4ea6e2c6d7b2fba8eef103531cfca4047a6946

HTTP Headers

GET /wp-content/themes/ph-news-daily/design-files/blog-style/blog-style1.css?ver=6.5.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/css
cache-control: public, max-age=43200
cf-bgj: minify
cf-polished: origSize=25081
alt-svc: h3=":443"; ma=86400
etag: W/"61f9-6623794e-1f8234;br"
expires: Tue, 23 Apr 2024 17:02:51 GMT
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
vary: Accept-Encoding
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OZhyE6g5HDZ2%2FMC5ZbTwBR13zADdzFd3bCRk2dPb2Lbavi8O6PzjlHxhqYdJ4Y1g89YFsjc2jRhxqhMniWdWZw5bvN1hVABLl6CLHoBEwB%2FSbw9DQlKnG0nZLpOzNLz6NvxdjPqOOg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69abb2e5685-OSL
content-encoding: br

142.250.74.106

200 OK

62 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Open+Sans:400,400i,700|Roboto:400,400i,700|Montserrat:400,400i,700|Lato:400,400i,700|Oswald:400,400i,700|Source+Sans+Pro:400,400i,700|Raleway:400,400i,700|PT+Sans:400,400i,700|Merriweather:400,400i,700|Ubuntu:400,400i,700
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
Fingerprint5F:6D:48:87:16:89:1E:A5:57:29:92:8B:34:BD:F2:92:0C:7F:F2:50
ValidityMon, 08 Apr 2024 07:32:03 GMT - Mon, 01 Jul 2024 07:32:02 GMT

File type
ASCII text, with very long lines (1572)
Size
62 kB (61474 bytes)
Hash
7a6f3bd30707446d8dccfbbf7f78e81f
d77fc4623d4eca01c731661d5f6f995f23b45003
225a9b26e85ca4b6aef4e07c890b15bf5f71f7ba71d14ab8a75d7d8ddb8dfff5

HTTP Headers

GET /css?family=Open+Sans:400,400i,700|Roboto:400,400i,700|Montserrat:400,400i,700|Lato:400,400i,700|Oswald:400,400i,700|Source+Sans+Pro:400,400i,700|Raleway:400,400i,700|PT+Sans:400,400i,700|Merriweather:400,400i,700|Ubuntu:400,400i,700 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 26 Apr 2024 21:59:09 GMT
date: Fri, 26 Apr 2024 21:59:09 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/sidr/stylesheets/jquery.sidr.light.min.css?ver=6.5.2

172.67.210.252

200 OK

3.5 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/sidr/stylesheets/jquery.sidr.light.min.css?ver=6.5.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
ASCII text, with very long lines (3567), with no line terminators
Size
3.5 kB (3544 bytes)
Hash
8f609997b226dbc25807778fd96413dc
710ccbd5ffdde9d7493c39566f8b3c2a4620c377
bcba38952d3c41f61973b8acfcff2c80728842b9ae5aaa0744cec335f7486859

HTTP Headers

GET /wp-content/themes/ph-news-daily/lib/sidr/stylesheets/jquery.sidr.light.min.css?ver=6.5.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/css
cache-control: public, max-age=43200
expires: Tue, 23 Apr 2024 17:02:51 GMT
etag: W/"dd8-6623794e-1f8323;br"
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=EJBMTN1ZG9kT%2F1uJAi49PgnVpTsGAY5VNnf3UuI7DvpMX0CwMOVlsLtPLDjn7d31WB4%2F3mt0HlyHLN8ZXOalXru%2FXTcdKGH63JhCmZIML2DxzPbNRe6SaBmFzkeZUdUbBDUtViUb%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69aab265685-OSL
content-encoding: br

flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/sidr/jquery.sidr.min.js?ver=2.2.1

172.67.210.252

200 OK

7.0 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/sidr/jquery.sidr.min.js?ver=2.2.1
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
JavaScript source, ASCII text, with very long lines (7340), with no line terminators
Size
7.0 kB (7034 bytes)
Hash
34d21f16bfa18091399c2540738214a2
c6bbda4be5c906e1f6ed17473b8d999706a87aaf
b013835f7b48d55431f59dcdcbf6f2e613a974be5d96b36e14acba12a2fd6b27

HTTP Headers

GET /wp-content/themes/ph-news-daily/lib/sidr/jquery.sidr.min.js?ver=2.2.1 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/javascript
etag: W/"1b7a-6623794e-1f831e;br"
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=TywQpCdFxeW%2BQuP4kcd9%2B7oMEvZO0mCK1ALiSx2WM5xyffaBtjg26SmRltckfvgbEVXpN%2FdxHfUzfM%2FX%2FIfgxBg8mF0jpM06nEuhQYaY2%2B0uiZrX51vHoEZ6XIAGDxNtoF%2BrqTB97g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69adb505685-OSL
content-encoding: br

flavasofjamaica.info/wp-includes/js/comment-reply.min.js?ver=6.5.2

172.67.210.252

200 OK

3.0 kB

URL GET HTTP/3
flavasofjamaica.info/wp-includes/js/comment-reply.min.js?ver=6.5.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
ASCII text, with very long lines (3056), with no line terminators
Size
3.0 kB (2981 bytes)
Hash
dc7f90d513295c29acc441fe114a2cab
ca9e5069d9afc4aa13ab2e152313dfb476e842ef
f87915c58d8c25473c726646b58d2fe0ba9a136987571e6c810aba3c67b4f74c

HTTP Headers

GET /wp-includes/js/comment-reply.min.js?ver=6.5.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/javascript
etag: W/"ba5-65f308ae-1bab25;br"
last-modified: Thu, 14 Mar 2024 14:24:46 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zzaP9iElfCsH%2BblS2e17PPz66YtXIRgQ4iGVC9q5oO4cCiGWH%2BLnvnLhAKNvNwOvFtozyLMohNIinKUqjzTv46Cjc4fZbmGu1ot%2FnJV%2Fbg66CJelnB6PptgS%2Bg%2Bvw9zgVhyuG8CMYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69adb555685-OSL
content-encoding: br

flavasofjamaica.info/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

172.67.210.252

200 OK

14 kB

URL GET HTTP/3
flavasofjamaica.info/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type
JavaScript source, ASCII text, with very long lines (13479)
Size
14 kB (13577 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/javascript
etag: W/"3509-65f308ad-1bac31;br"
last-modified: Thu, 14 Mar 2024 14:24:45 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zbZT9%2BwL%2FJcleDvOnBY%2BVOC%2BJAouNMROB5oRP%2FVXm0dWOtaEv0s647f%2BZWNny5f%2Bm0o%2F80%2F0V6LDRwcBQO8JpspNxHGU8kPqLB4knIYYJxs4evTmb0y7UREmFPV2BgMXXnO79j2QdA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69acb405685-OSL
content-encoding: br

unseenreport.com/pxf.gif?uuid=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=4bbc23a92db768bab73820890bd8fa3d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=21

192.243.59.13

200 OK

0 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=4bbc23a92db768bab73820890bd8fa3d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=21
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13
ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=4cedb9d7-9fce-42aa-8302-8ed6e05a83ef&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=4bbc23a92db768bab73820890bd8fa3d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=21 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Fri, 26 Apr 2024 21:59:12 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ce4865a126a2dbdd0c79e2615caed64b
Strict-Transport-Security: max-age=0; includeSubdomains

flavasofjamaica.info/wp-content/themes/ph-news-daily/design-files/header/style1/header.css?ver=6.5.2

172.67.210.252

200 OK

10 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/design-files/header/style1/header.css?ver=6.5.2
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type

Size
10 kB (10241 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/themes/ph-news-daily/design-files/header/style1/header.css?ver=6.5.2 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/css
cache-control: public, max-age=43200
cf-bgj: minify
cf-polished: origSize=11968
alt-svc: h3=":443"; ma=86400
etag: W/"2ec0-6623794e-1f824d;br"
expires: Tue, 23 Apr 2024 17:02:51 GMT
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
vary: Accept-Encoding
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=5tRZe90mn9lr8l%2BERcHhqXJbCobf3rLynefbHYUyXQjEPri%2BB2H2C2iWMeO4KinD36UdK4S3oMpYbARzt3%2BUuvfxGbVIltdV4JVWmGCESBl2iVRRM9zr5HYi7BXGvQEnZwPJSBqGqQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69aab2c5685-OSL
content-encoding: br

flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/owl-carousel/dist/owl.carousel.js?ver=2.3.4

172.67.210.252

200 OK

90 kB

URL GET HTTP/3
flavasofjamaica.info/wp-content/themes/ph-news-daily/lib/owl-carousel/dist/owl.carousel.js?ver=2.3.4
IP
172.67.210.252:443
ASN
#13335 CLOUDFLARENET

Requested by
https://flavasofjamaica.info/41KcgI54592LwY/
Certificate
IssuerGoogle Trust Services LLC
Subjectflavasofjamaica.info
FingerprintAC:C2:5D:AB:CB:FF:A1:FF:51:7F:69:5C:D5:AE:66:2D:BC:99:43:B0
ValidityTue, 23 Apr 2024 03:55:38 GMT - Mon, 22 Jul 2024 03:55:37 GMT

File type

Size
90 kB (89992 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /wp-content/themes/ph-news-daily/lib/owl-carousel/dist/owl.carousel.js?ver=2.3.4 HTTP/1.1
Host: flavasofjamaica.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://flavasofjamaica.info/41KcgI54592LwY/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Fri, 26 Apr 2024 21:59:09 GMT
content-type: text/javascript
etag: W/"15f88-6623794e-1f82f4;br"
last-modified: Sat, 20 Apr 2024 08:14:06 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=E55nxRzQ7flNVLdy0iugzo7Fq5x9fXvD8iSUHJ0c16tn3xPqlIAT0VIyTn2VYqFkJhIRq6txVMcPK77piDrrBiVuH%2Blu88qPwHDox%2Fz8gUECCRVohCPrAPrBMN4rZKBvOYNB3%2BZMYw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 87a9d69acb495685-OSL
content-encoding: br

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (29)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML