| unicmfeedeal.info/cijdl0k.php?BROWSER=Chrome&BVERSION=124&COUNTRY=US&DEVICE=Unknown&LANG=EN&OS=Windows&OSVERSION=10&campaign_id=158931&cost=0.00319&creative_id=365230&key=vtum98wbv8uivtzb3ir3&source=3270 | 205.204.71.227 | | 0 B |
URL unicmfeedeal.info/cijdl0k.php?BROWSER=Chrome&BVERSION=124&COUNTRY=US&DEVICE=Unknown&LANG=EN&OS=Windows&OSVERSION=10&campaign_id=158931&cost=0.00319&creative_id=365230&key=vtum98wbv8uivtzb3ir3&source=3270 IP205.204.71.227:0 ASN#10929 ESTRUXTURE-QC-10929
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /cijdl0k.php?BROWSER=Chrome&BVERSION=124&COUNTRY=US&DEVICE=Unknown&LANG=EN&OS=Windows&OSVERSION=10&campaign_id=158931&cost=0.00319&creative_id=365230&key=vtum98wbv8uivtzb3ir3&source=3270 HTTP/1.1
Host: unicmfeedeal.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 302 Found
Server: nginx/1.22.0
Date: Tue, 07 May 2024 15:35:01 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: uclick=u3k2fvwj; expires=Wed, 08-May-2024 15:35:01 GMT; Max-Age=86400; path=/; secure; SameSite=none
uclickhash=u3k2fvwj-u3k2fvwj-k23y-bzci-ciqn-c8hq-c8zw-68fab6; expires=Wed, 08-May-2024 15:35:01 GMT; Max-Age=86400; path=/; secure; SameSite=none
Location: https://unicmfeedeal.info/nlp/index.php?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464&duplication=1&url_bnm_redirect=https://swsafesmartlink.com/s
Strict-Transport-Security: max-age=31536000
|
|
| unicmfeedeal.info/nlp/index.php?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464&duplication=1&url_bnm_redirect=https://swsafesmartlink.com/s | 205.204.71.227 | | 151 B |
URL unicmfeedeal.info/nlp/index.php?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464&duplication=1&url_bnm_redirect=https://swsafesmartlink.com/s IP205.204.71.227:0 ASN#10929 ESTRUXTURE-QC-10929
File typeASCII text, with no line terminators Hash64609b754243bc87c8a91c95b775113d 42aafa6a05ad6b92bdbf84b2f5c591be93b9e584 c4dba6dcb602d057a44d33f90f5879193e0c060cbe6b4675eca5d99ac0f97c51
GET /nlp/index.php?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464&duplication=1&url_bnm_redirect=https://swsafesmartlink.com/s HTTP/1.1
Host: unicmfeedeal.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: uclick=u3k2fvwj; uclickhash=u3k2fvwj-u3k2fvwj-k23y-bzci-ciqn-c8hq-c8zw-68fab6
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 07 May 2024 15:35:02 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
|
|
| unicmfeedeal.info/nlp/index.php?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464&url_bnm_redirect=https%3A%2F%2Fswsafesmartlink.com%2Fs | 205.204.71.227 | | 137 B |
URL unicmfeedeal.info/nlp/index.php?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464&url_bnm_redirect=https%3A%2F%2Fswsafesmartlink.com%2Fs IP205.204.71.227:0 ASN#10929 ESTRUXTURE-QC-10929
File typeASCII text, with no line terminators Hash4828ccf92e37b01e980f0e01a3b5e836 fe33f58cda44e9e74ffc38e941dd772a7ef992a6 a6bc85f23225e83f2600076d5448799dcdd265313317ac62161f72ea48503067
GET /nlp/index.php?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464&url_bnm_redirect=https%3A%2F%2Fswsafesmartlink.com%2Fs HTTP/1.1
Host: unicmfeedeal.info
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: uclick=u3k2fvwj; uclickhash=u3k2fvwj-u3k2fvwj-k23y-bzci-ciqn-c8hq-c8zw-68fab6
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 07 May 2024 15:35:02 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Strict-Transport-Security: max-age=31536000
Content-Encoding: gzip
|
|
| code.jquery.com/jquery-3.7.1.min.js | 151.101.130.137 | 200 OK | 30 kB |
URL GET HTTP/2code.jquery.com/jquery-3.7.1.min.js IP151.101.130.137:443
Requested byhttps://swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash2c872dbe60f4ba70fb85356113d8b35e ee48592d1fff952fcf06ce0b666ed4785493afdc fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a
GET /jquery-3.7.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://swsafesmartlink.com
DNT: 1
Connection: keep-alive
Referer: https://swsafesmartlink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-155ed"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 May 2024 15:35:03 GMT
age: 953898
x-served-by: cache-lga21978-LGA, cache-hel1410022-HEL
x-cache: HIT, HIT
x-cache-hits: 5, 113403
x-timer: S1715096103.007854,VS0,VE0
vary: Accept-Encoding
content-length: 30336
X-Firefox-Spdy: h2
|
|
| cdn.jmp-assets.com/prod/push-subscriber.js | 213.155.157.81 | 200 OK | 4.4 kB |
URL GET HTTP/1.1cdn.jmp-assets.com/prod/push-subscriber.js IP213.155.157.81:443 ASN#1299 Arelion Sweden AB
Requested byhttps://swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 CertificateIssuerLet's Encrypt Subjectcdn.smrt-content.com Fingerprint2B:7E:EA:63:CE:17:9B:FE:88:49:C0:9C:D8:70:CC:59:BE:F2:4F:00 ValidityFri, 22 Mar 2024 14:16:46 GMT - Thu, 20 Jun 2024 14:16:45 GMT
File typeJavaScript source, ASCII text Hash6b5bccad39f7057909ad0660f33cc2fa a7995e45d98a311f94c3f6f096a7e414b5a34407 765f676a53b5275cb0bf0835962b72accd340101ac2e32d8a215f8b1047b0941
GET /prod/push-subscriber.js HTTP/1.1
Host: cdn.jmp-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://swsafesmartlink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Tue, 29 Mar 2022 15:19:51 GMT
ETag: "6b5bccad39f7057909ad0660f33cc2fa"
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: EWR52-C3
X-Amz-Cf-Id: ZYeyEUjVfozwVHu4cvD2yRWXyoEpdjgR_UyNsFpXUKnSHG4ckehEag==
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 07 May 2024 15:35:03 GMT
Content-Length: 4395
Connection: keep-alive
|
|
| www.gstatic.com/firebasejs/5.0.2/firebase-app.js | 142.250.74.35 | 200 OK | 8.6 kB |
URL GET HTTP/2www.gstatic.com/firebasejs/5.0.2/firebase-app.js IP142.250.74.35:443
Requested byhttps://swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeJavaScript source, ASCII text, with very long lines (25088) Hash9164d0e8a317eceb870cca88c9683127 4617c910005f7100b4ff26a458a8b4463e33cdc6 15c9bd66992ef54979c981763cae280f28b6845520020ed38b5ab5f3f70f7931
GET /firebasejs/5.0.2/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://swsafesmartlink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 8604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:41:10 GMT
expires: Fri, 02 May 2025 02:41:10 GMT
cache-control: public, max-age=31536000
age: 478433
last-modified: Thu, 10 May 2018 20:35:51 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.jmp-assets.com/prod/push-lang-config.js | 213.155.157.81 | 200 OK | 2.4 kB |
URL GET HTTP/1.1cdn.jmp-assets.com/prod/push-lang-config.js IP213.155.157.81:443 ASN#1299 Arelion Sweden AB
Requested byhttps://swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 CertificateIssuerLet's Encrypt Subjectcdn.smrt-content.com Fingerprint2B:7E:EA:63:CE:17:9B:FE:88:49:C0:9C:D8:70:CC:59:BE:F2:4F:00 ValidityFri, 22 Mar 2024 14:16:46 GMT - Thu, 20 Jun 2024 14:16:45 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (7658), with no line terminators Hash7152525f63649929a736f6efb78b58a5 5bf8138b39eaeebdf4681ad31fac3a02075e36ad f1f5518e39341d6f4189be101a85c496add2a43b569a809bd3193d52f3e61de1
GET /prod/push-lang-config.js HTTP/1.1
Host: cdn.jmp-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://swsafesmartlink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Tue, 15 Feb 2022 10:45:43 GMT
ETag: "7152525f63649929a736f6efb78b58a5"
x-amz-meta-s3cmd-attrs: atime:1644921890/ctime:1644921887/gid:20/gname:staff/md5:7152525f63649929a736f6efb78b58a5/mode:33188/mtime:1644921887/uid:501/uname:nimspy
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: EWR53-P1
X-Amz-Cf-Id: hFjYom-oi3DiS1Ee8GR6zmmN6nZoWH0BiLOw0IG12UHAC7idCc_wTQ==
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 07 May 2024 15:35:03 GMT
Content-Length: 2366
Connection: keep-alive
|
|
| cdn.jmp-assets.com/assets/1387/js/backoffer.js | 213.155.157.81 | 200 OK | 660 B |
URL GET HTTP/1.1cdn.jmp-assets.com/assets/1387/js/backoffer.js IP213.155.157.81:443 ASN#1299 Arelion Sweden AB
Requested byhttps://swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 CertificateIssuerLet's Encrypt Subjectcdn.smrt-content.com Fingerprint2B:7E:EA:63:CE:17:9B:FE:88:49:C0:9C:D8:70:CC:59:BE:F2:4F:00 ValidityFri, 22 Mar 2024 14:16:46 GMT - Thu, 20 Jun 2024 14:16:45 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hashe7e1dc07852a36f89e4be03aa3787316 0dc3f8e7eb943af093cf8f4600fcf0e421891025 33b8a5c4f883a3a775162d3c5287fe94bc4b22a86fe8b52fcb5aa615d2ffe388
GET /assets/1387/js/backoffer.js HTTP/1.1
Host: cdn.jmp-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://swsafesmartlink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 660
Last-Modified: Thu, 06 May 2021 12:38:04 GMT
ETag: "e7e1dc07852a36f89e4be03aa3787316"
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: EWR52-C1
X-Amz-Cf-Id: GxdYHxH58n15LwxNJ3wkpLtzxIYsvjzbLWn4jut_ifmxmRZ1p92r8g==
Date: Tue, 07 May 2024 15:35:03 GMT
Connection: keep-alive
|
|
| www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js | 142.250.74.35 | 200 OK | 10 kB |
URL GET HTTP/2www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js IP142.250.74.35:443
Requested byhttps://swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeJavaScript source, ASCII text, with very long lines (35547) Hash0cb7a0eb328ea70ab360f861314c8820 e3e20eb50dae36f4cbcef1890b1cc7878acb537a 4569845f7c550a55311814032e88541bd3b4a055ec3894e9cf58c4fff1be91d9
GET /firebasejs/5.0.2/firebase-messaging.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://swsafesmartlink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:49:22 GMT
expires: Fri, 02 May 2025 02:49:22 GMT
cache-control: public, max-age=31536000
age: 477941
last-modified: Thu, 10 May 2018 20:35:52 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.jmp-assets.com/devassets/1826/js/multilang_mainstream.js | 213.155.157.81 | 200 OK | 7.1 kB |
URL GET HTTP/1.1cdn.jmp-assets.com/devassets/1826/js/multilang_mainstream.js IP213.155.157.81:443 ASN#1299 Arelion Sweden AB
Requested byhttps://swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 CertificateIssuerLet's Encrypt Subjectcdn.smrt-content.com Fingerprint2B:7E:EA:63:CE:17:9B:FE:88:49:C0:9C:D8:70:CC:59:BE:F2:4F:00 ValidityFri, 22 Mar 2024 14:16:46 GMT - Thu, 20 Jun 2024 14:16:45 GMT
File typeUnicode text, UTF-8 text, with CRLF line terminators Hashf1fb789c5c071c9966d3cb8bf1baac0d 8d54c4d45dc4c261a1e9d59f253852eabd708388 5f4a7a69426956ddb6d7d49e26801c95a8754d0f47b71622f0eca50cbf1022b8
GET /devassets/1826/js/multilang_mainstream.js HTTP/1.1
Host: cdn.jmp-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://swsafesmartlink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/javascript
Last-Modified: Mon, 08 Jan 2024 14:39:10 GMT
ETag: "f1fb789c5c071c9966d3cb8bf1baac0d"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: EWR53-C1
X-Amz-Cf-Id: TYabGjwFnA2ArWcCLLs6Sy8mhtBSAaZ4GLji9bt37R-YjWq9Zy60cg==
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 07 May 2024 15:35:03 GMT
Content-Length: 7123
Connection: keep-alive
|
|
| swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 | 54.76.248.31 | 200 OK | 9.6 kB |
URL User Request GET HTTP/2swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 IP54.76.248.31:443
CertificateIssuerAmazon Subjectswsafesmartlink.com Fingerprint7E:88:B7:3F:48:A3:FF:CF:1C:D2:A5:9D:EC:11:45:30:CE:F8:BD:86 ValiditySun, 13 Aug 2023 00:00:00 GMT - Tue, 10 Sep 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hash96bbe9ed00431a5752dc707155fa3d78 3e3c2de6fd09c66f904d26b9bd76312bd57729d7 6515cc60969dac6cf5f3bdfd7f08a32ea679cc655728ca9af26d575a81d5d3a5
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 HTTP/1.1
Host: swsafesmartlink.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 15:35:02 GMT
content-type: text/html;charset=utf-8
server: nginx
vary: Accept-Encoding, Accept-Encoding
set-cookie: v_rule_freq_v2_1_001=0momyqPzfHX97/PKKSo1NazLHOSPdalgcT0MFCYaPyA=; Domain=.swsafesmartlink.com; Expires=Mon, 05-Aug-2024 15:35:02 GMT; Path=/; Secure; SameSite=None
gdm_suid_v2_1_001=HPfHs3OFxkaNOwO68jCjbQ==; Domain=.swsafesmartlink.com; Expires=Mon, 05-Aug-2024 15:35:01 GMT; Path=/; Secure; SameSite=None
gdm_suid_v1_1_001=HPfHs3OFxkaNOwO68jCjbQ==; Domain=.swsafesmartlink.com; Expires=Mon, 05-Aug-2024 15:35:01 GMT; Path=/
gdm_uid_v1_1_001=Hk2fjHoMUlhb04bwCHHDuQHYtJzOECsikQ2AQeQjQ2MudktPFiWm++dpJfsVBfW6; Domain=.swsafesmartlink.com; Expires=Mon, 05-Aug-2024 15:35:01 GMT; Path=/
gdm_uid_v2_1_001=Hk2fjHoMUlhb04bwCHHDuQHYtJzOECsikQ2AQeQjQ2MudktPFiWm++dpJfsVBfW6; Domain=.swsafesmartlink.com; Expires=Mon, 05-Aug-2024 15:35:01 GMT; Path=/; Secure; SameSite=None
gdm_visit_freq_v1_1_001=6NBwc55nu29b1RmUSHrsRk3tG+Sad+oV335m3UGDmwhndU0k5pj6yokVLXz/LZPp; Domain=.swsafesmartlink.com; Expires=Mon, 05-Aug-2024 15:35:01 GMT; Path=/
v_rule_freq_v1_1_001=0momyqPzfHX97/PKKSo1NazLHOSPdalgcT0MFCYaPyA=; Domain=.swsafesmartlink.com; Expires=Mon, 05-Aug-2024 15:35:01 GMT; Path=/
v_seg_freq_v2_1_001=yVtRd63XvId1wk9xIzRh5bGNq1dkQJekqtofaS8XQ/g=; Domain=.swsafesmartlink.com; Expires=Mon, 05-Aug-2024 15:35:01 GMT; Path=/; Secure; SameSite=None
gdm_visit_freq_v2_1_001=6NBwc55nu29b1RmUSHrsRk3tG+Sad+oV335m3UGDmwhndU0k5pj6yokVLXz/LZPp; Domain=.swsafesmartlink.com; Expires=Mon, 05-Aug-2024 15:35:01 GMT; Path=/; Secure; SameSite=None
v_seg_freq_v1_1_001=yVtRd63XvId1wk9xIzRh5bGNq1dkQJekqtofaS8XQ/g=; Domain=.swsafesmartlink.com; Expires=Mon, 05-Aug-2024 15:35:01 GMT; Path=/
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Sat, 1 May 2020 12:00:00 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With,X-Auth,Pasha-Jlob
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn.jmp-assets.com/assets/1826/css/main2.css | 213.155.157.81 | 200 OK | 2.4 kB |
URL GET HTTP/1.1cdn.jmp-assets.com/assets/1826/css/main2.css IP213.155.157.81:443 ASN#1299 Arelion Sweden AB
Requested byhttps://swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 CertificateIssuerLet's Encrypt Subjectcdn.smrt-content.com Fingerprint2B:7E:EA:63:CE:17:9B:FE:88:49:C0:9C:D8:70:CC:59:BE:F2:4F:00 ValidityFri, 22 Mar 2024 14:16:46 GMT - Thu, 20 Jun 2024 14:16:45 GMT
File typeASCII text, with CRLF line terminators Hasha26aa1416011e2478b09f1dbca335786 649b1719a3c59bf9a7486534b93b3b350010c38c 7016f2b254409cd952c734de063476f568773b1a5ca671934ba8ed0fa5906123
GET /assets/1826/css/main2.css HTTP/1.1
Host: cdn.jmp-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://swsafesmartlink.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/css
Last-Modified: Thu, 26 May 2022 06:48:09 GMT
ETag: "a26aa1416011e2478b09f1dbca335786"
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: EWR53-C1
X-Amz-Cf-Id: 7V3sgCLjx5RYv_7LIYSWdMw9E0X7jB7m0T9a5MZiPGBwBMoCDB0g8w==
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Tue, 07 May 2024 15:35:03 GMT
Content-Length: 2357
Connection: keep-alive
|
|
| statisticresearch.com/user-segments/?pid=TH | 18.208.0.182 | 200 OK | 533 B |
URL GET HTTP/2statisticresearch.com/user-segments/?pid=TH IP18.208.0.182:443
Requested byhttps://swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 CertificateIssuerAmazon Subjectstatisticresearch.com Fingerprint2F:CC:98:EF:04:8B:A4:59:6A:E1:12:94:3E:BB:CC:0C:05:BA:C2:B7 ValidityMon, 05 Feb 2024 00:00:00 GMT - Tue, 04 Mar 2025 23:59:59 GMT
Hash228c72e634b5708abb8094ea59be5fee 09faa3b530df6ed96b8032b23885f9f52fa8a1af 63a70ec5ce810181d369a0973da198b8848b14d284352ce1556ad85cf3cb2f58
GET /user-segments/?pid=TH HTTP/1.1
Host: statisticresearch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://swsafesmartlink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 15:35:03 GMT
server: nginx
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-TR8VQRX | 142.250.74.72 | 200 OK | 77 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-TR8VQRX IP142.250.74.72:443
Requested byhttps://swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (2285) Hashdac170a5f980d92158fc70e2ed6be7d8 44f0696413bd83b3f07537ea7b123d82480d531d 1875e529c7bde67027109ae6c865dcbc3f8a41fa714c837cef3fb264afd37ef2
GET /gtm.js?id=GTM-TR8VQRX HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://swsafesmartlink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 15:35:04 GMT
expires: Tue, 07 May 2024 15:35:04 GMT
cache-control: private, max-age=900
last-modified: Tue, 07 May 2024 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77078
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 | 216.58.207.227 | 200 OK | 33 kB |
URL GET HTTP/2fonts.gstatic.com/s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 IP216.58.207.227:443
Requested byhttps://swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 33092, version 1.0 Hash057478083c1d55ea0c2182b24f6dd72f caf557cd276a76992084efc4c8857b66791a6b7f bb2f90081933c0f2475883ca2c5cfee94e96d7314a09433fffc42e37f4cffd3b
GET /s/montserrat/v26/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://swsafesmartlink.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33092
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 02:38:02 GMT
expires: Fri, 02 May 2025 02:38:02 GMT
cache-control: public, max-age=31536000
age: 478622
last-modified: Wed, 13 Sep 2023 22:51:58 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| ocsp.e2m02.amazontrust.com/ | 143.204.53.97 | | 278 B |
URL ocsp.e2m02.amazontrust.com/ IP143.204.53.97:0
Hashfcbdedcd0decc57a304f13e6252e6a7c 45f38b3bfd9c858893cfbfbf09e3ef9af401c74e 61adb2915b3351c11c2435ea18643652890efc686f1a4621a73d4ee05855c933
POST / HTTP/1.1
Host: ocsp.e2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 278
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Tue, 07 May 2024 15:35:04 GMT
Last-Modified: Tue, 07 May 2024 14:33:11 GMT
Server: ECAcc (amb/6AB0)
X-Cache: Miss from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: mOBcIseYnAVqGCoHnjWdf37-bfJq1PQOCi8tP0loS3xsoTqpJG4LcQ==
Age: 3713
|
|
| cdn.jmp-assets.com/assets/1826/images/3.jpg | 213.155.157.81 | 200 OK | 90 kB |
URL GET HTTP/1.1cdn.jmp-assets.com/assets/1826/images/3.jpg IP213.155.157.81:443 ASN#1299 Arelion Sweden AB
Requested byhttps://swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 CertificateIssuerLet's Encrypt Subjectcdn.smrt-content.com Fingerprint2B:7E:EA:63:CE:17:9B:FE:88:49:C0:9C:D8:70:CC:59:BE:F2:4F:00 ValidityFri, 22 Mar 2024 14:16:46 GMT - Thu, 20 Jun 2024 14:16:45 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 700x1000, components 3 Hashc3b69fe3f6f6e2f79864e9bf3483cd65 75dd34acf147317ab3bb7c53707f971b65782eea 18fcb7fb1edb0bc7b504ccb1c7f181025f2709e81446056bd4644069c2745d3f
GET /assets/1826/images/3.jpg HTTP/1.1
Host: cdn.jmp-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.jmp-assets.com/assets/1826/css/main2.css
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/jpeg
Content-Length: 90331
Last-Modified: Mon, 18 Oct 2021 09:17:50 GMT
ETag: "c3b69fe3f6f6e2f79864e9bf3483cd65"
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: JFK50-P7
X-Amz-Cf-Id: Hf78Id56koAOiZFUVrNr_oQFgM_hmTDsl3yP9K2JLgbFwaR15x107g==
Date: Tue, 07 May 2024 15:35:04 GMT
Connection: keep-alive
|
|
| www.googletagmanager.com/gtag/js?id=G-C3EPRPS8FB&l=dataLayer&cx=c | 142.250.74.72 | 200 OK | 94 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-C3EPRPS8FB&l=dataLayer&cx=c IP142.250.74.72:443
Requested byhttps://swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (3034) Hashdf3054425256ada70fb82d7a31b3cb0a e279bc7692a67babfea521fb32d4aa8abcde4717 60a62ea802f77075b0e2d1262fb6c0ca624cfd173cb0522a224405ae0d983cd6
GET /gtag/js?id=G-C3EPRPS8FB&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://swsafesmartlink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 15:35:04 GMT
expires: Tue, 07 May 2024 15:35:04 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93797
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cloudflrcdn.com/color?x=1&forScheme=aHR0cHM6Ly9zd3NhZmVzbWFydGxpbmsuY29tL3M/YT0xNzAxMTEmc209Mjk5NjImY289MjIwMTQ3Jm10PTE4JnMyPWMwODBldTNrMmZ2d2o0NjQ= | 54.173.245.160 | 204 No Content | 0 B |
URL GET HTTP/2cloudflrcdn.com/color?x=1&forScheme=aHR0cHM6Ly9zd3NhZmVzbWFydGxpbmsuY29tL3M/YT0xNzAxMTEmc209Mjk5NjImY289MjIwMTQ3Jm10PTE4JnMyPWMwODBldTNrMmZ2d2o0NjQ= IP54.173.245.160:443
Requested byhttps://swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 CertificateIssuerAmazon Subjectcloudflrcdn.com Fingerprint65:5A:56:CE:D2:21:48:13:54:07:CA:43:C4:19:72:3D:1C:C8:BE:E5 ValidityWed, 17 Apr 2024 00:00:00 GMT - Sat, 17 May 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /color?x=1&forScheme=aHR0cHM6Ly9zd3NhZmVzbWFydGxpbmsuY29tL3M/YT0xNzAxMTEmc209Mjk5NjImY289MjIwMTQ3Jm10PTE4JnMyPWMwODBldTNrMmZ2d2o0NjQ= HTTP/1.1
Host: cloudflrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://swsafesmartlink.com
DNT: 1
Connection: keep-alive
Referer: https://swsafesmartlink.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Tue, 07 May 2024 15:35:04 GMT
server: nginx
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-5R6C28C | 142.250.74.72 | 200 OK | 66 kB |
URL GET HTTP/3www.googletagmanager.com/gtm.js?id=GTM-5R6C28C IP142.250.74.72:443
Requested byhttps://swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (4046) Hash6eace74d7f8ea76384d84ed69c99e7ec c318a88fcf836a762ae36901f7e2a83d170d1d91 97ef6ed387cef478f85ec7cb5cb9e59df1b40dbe61812e9bb2a3cdc5fa4e3626
GET /gtm.js?id=GTM-5R6C28C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://swsafesmartlink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 15:35:04 GMT
expires: Tue, 07 May 2024 15:35:04 GMT
cache-control: private, max-age=900
last-modified: Tue, 07 May 2024 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 65887
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtm.js?id=GTM-5R6C28C | 142.250.74.72 | 200 OK | 66 kB |
URL GET HTTP/3www.googletagmanager.com/gtm.js?id=GTM-5R6C28C IP142.250.74.72:443
Requested byhttps://swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (4046) Hash89bf4e732904b99f22d3f28e58ed4dc8 9d0d80a0a85ad8606645723801af694d234c2376 099d9fb5b6795f3b584216ae7ae6b74188503838d80dd9f122487e311c76c952
GET /gtm.js?id=GTM-5R6C28C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://swsafesmartlink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 15:35:04 GMT
expires: Tue, 07 May 2024 15:35:04 GMT
cache-control: private, max-age=900
last-modified: Tue, 07 May 2024 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 65889
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| fonts.googleapis.com/css?family=Montserrat:400,500,600,700&display=swap | 142.250.74.170 | 200 OK | 664 B |
URL GET HTTP/2fonts.googleapis.com/css?family=Montserrat:400,500,600,700&display=swap IP142.250.74.170:443
Requested byhttps://swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hashe4ed0f97f75a4f101eab7a3e10d154b0 f8ca11cbd81023ff0739c9557667033260891cbd 9cae21c485bf7e751e6140ebd4400439efa99995b53546e49ea6b5fee6ddae40
GET /css?family=Montserrat:400,500,600,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://cdn.jmp-assets.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 15:35:03 GMT
date: Tue, 07 May 2024 15:35:03 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-5R6C28C | 142.250.74.72 | 200 OK | 66 kB |
URL GET HTTP/3www.googletagmanager.com/gtm.js?id=GTM-5R6C28C IP142.250.74.72:443
Requested byhttps://swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (4046) Hash36afd2cc28ccc1daa8d6f8abc9f4b3cd f63822a7295d7ec64f53602ca9d1d964d894d51a c43806b1ec39a294f1578cd8baac8517276520c5e98b3a77f5525382406a2242
GET /gtm.js?id=GTM-5R6C28C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://swsafesmartlink.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 07 May 2024 15:35:04 GMT
expires: Tue, 07 May 2024 15:35:04 GMT
cache-control: private, max-age=900
last-modified: Tue, 07 May 2024 15:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 65924
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn.jmpcdn.com/assets/3420/images/1.ico | 213.155.157.34 | 200 OK | 4.3 kB |
URL GET HTTP/1.1cdn.jmpcdn.com/assets/3420/images/1.ico IP213.155.157.34:443 ASN#1299 Arelion Sweden AB
Requested byhttps://swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 CertificateIssuerLet's Encrypt Subjectcdn.smrt-content.com Fingerprint2B:7E:EA:63:CE:17:9B:FE:88:49:C0:9C:D8:70:CC:59:BE:F2:4F:00 ValidityFri, 22 Mar 2024 14:16:46 GMT - Thu, 20 Jun 2024 14:16:45 GMT
File typeMS Windows icon resource - 1 icon, 32x32, 32 bits/pixel Hasha652ad7076384397978d7ba6d0e6f044 ec5dacf7f904e0361dddd06669be7c30e4bf327c 0cd63a0a30d569b7cfa5846a828b7bfadc28c88dd51477fdfaa641c659a55cd8
GET /assets/3420/images/1.ico HTTP/1.1
Host: cdn.jmpcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://swsafesmartlink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
Content-Length: 4286
Last-Modified: Fri, 16 Jun 2023 22:31:06 GMT
ETag: "a652ad7076384397978d7ba6d0e6f044"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: JFK50-P7
X-Amz-Cf-Id: kSmxrxJTc-RcrxflzXszzD1XvdUfHj75CkynSuyRl84QHYTLswBiNg==
Date: Tue, 07 May 2024 15:35:04 GMT
Connection: keep-alive
|
|
| tsyndicate.com/api/v1/retargeting/set/3f949dfe-3372-4caa-baf0-047f88323cfa?pageviewe={pageviewe}&lead={lead} | 136.243.69.157 | 200 OK | 43 B |
URL GET HTTP/2tsyndicate.com/api/v1/retargeting/set/3f949dfe-3372-4caa-baf0-047f88323cfa?pageviewe={pageviewe}&lead={lead} IP136.243.69.157:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://swsafesmartlink.com/s?a=170111&sm=29962&co=220147&mt=18&s2=c080eu3k2fvwj464 CertificateIssuerLet's Encrypt Subjecttsyndicate.com FingerprintF5:9F:1F:89:8F:08:CD:46:43:4B:55:0A:42:66:52:21:16:57:43:31 ValidityFri, 12 Apr 2024 09:06:37 GMT - Thu, 11 Jul 2024 09:06:36 GMT
File typeGIF image data, version 89a, 1 x 1 Hashba036c43037cfe89320d1ef7b64cd43f 88c72d3e26047eb1e45e5564a76427734f120efe 42cb846e07917f6731406e500f24aeb2e88c42cda124eaa59e08c5331cad8bcb
GET /api/v1/retargeting/set/3f949dfe-3372-4caa-baf0-047f88323cfa?pageviewe={pageviewe}&lead={lead} HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://swsafesmartlink.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Tue, 07 May 2024 15:35:04 GMT
content-type: image/gif
content-length: 43
pragma: no-cache
expires: 0
vary: *
x-api-version: 1
x-request-id: 06cb27b5b6bc50f5
set-cookie: ts_rt_3f949dfe-3372-4caa-baf0-047f88323cfa=ANmUCUOmR4kbQgQSPEjEBJwwZ8rYSVPmThmDCB9GnFixDMOA; expires=Wed, 07 May 2025 15:35:04 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2
|
|