| code.jquery.com/jquery-3.2.1.slim.min.js | 151.101.194.137 | 200 OK | 24 kB |
URL GET HTTP/2code.jquery.com/jquery-3.2.1.slim.min.js IP151.101.194.137:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (32012) Hash5f48fc77cac90c4778fa24ec9c57f37d 9e89d1515bc4c371b86f4cb1002fd8e377c1829f 9365920887b11b33a3dc4ba28a0f93951f200341263e3b9cefd384798e4be398
GET /jquery-3.2.1.slim.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-10fdd"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Tue, 07 May 2024 19:09:34 GMT
age: 391596
x-served-by: cache-lga21963-LGA, cache-hel1410025-HEL
x-cache: HIT, HIT
x-cache-hits: 43, 5608
x-timer: S1715108974.415299,VS0,VE0
vary: Accept-Encoding
content-length: 23856
X-Firefox-Spdy: h2
|
|
| www.zurich.com/-/media/59AA62DF7A8440F494C5B01041697A22.ashx | 45.60.13.5 | 200 OK | 212 B |
URL GET HTTP/2www.zurich.com/-/media/59AA62DF7A8440F494C5B01041697A22.ashx IP45.60.13.5:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerGlobalSign nv-sa Subjectimperva.com Fingerprint57:8A:01:D7:E1:B0:D8:03:39:2B:E4:F6:C6:49:24:8B:74:F2:31:FF ValidityWed, 24 Jan 2024 22:29:08 GMT - Mon, 22 Jul 2024 22:29:08 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash185dd5ec503c683da355a50e70f25c68 cf79e1a0b6f763060a526886494db0b1b2e053b7 d02032286070b4dd9d8fbd985a7bdca8af8edf52b89ff177db3bfcb2c8a9c43d
GET /-/media/59AA62DF7A8440F494C5B01041697A22.ashx HTTP/1.1
Host: www.zurich.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html
cache-control: no-cache, no-store
content-length: 212
x-iinfo: 7-6930364-0 0NNN RT(1715108973551 31) q(0 -1 -1 0) r(0 -1) B10(4,314,0) U18
x-incap-sess-cookie-hdr: DszvXyrZWkETAzpkt4EBCm18OmYAAAAA97SUesp7GTckv3PG/k/txA==
set-cookie: visid_incap_260440=RQLgNW/7Q/+2/5wQmUfxGG18OmYAAAAAQUIPAAAAAADHzNJ7PYuFoJA9tLuZUsOl; expires=Wed, 07 May 2025 00:43:33 GMT; HttpOnly; path=/; Domain=.zurich.com
incap_ses_721_260440=C2cyG5k7mSwTAzpkt4EBCm18OmYAAAAAKOjDMwGBTinhzQi7sPJlcA==; path=/; Domain=.zurich.com
X-Firefox-Spdy: h2
|
|
| i.guim.co.uk/img/media/83551167c865d98d8f8a76c84794f8e26f2d6d2f/0_259_3500_2100/master/3500..jpg?width=1200&height=1200&quality=85&auto=format&fit=crop&s=db6328562e59c04f9a94364ed6d7b45e | 151.101.129.111 | 200 OK | 213 kB |
URL GET HTTP/2i.guim.co.uk/img/media/83551167c865d98d8f8a76c84794f8e26f2d6d2f/0_259_3500_2100/master/3500..jpg?width=1200&height=1200&quality=85&auto=format&fit=crop&s=db6328562e59c04f9a94364ed6d7b45e IP151.101.129.111:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerGlobalSign nv-sa Subjecttheguardian.com FingerprintB7:33:5B:BE:95:30:97:40:D3:81:C4:3A:D2:39:DD:71:3A:2C:7D:5C ValidityTue, 14 Nov 2023 10:45:28 GMT - Sun, 15 Dec 2024 10:45:27 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1200x1200, Scaling: [none]x[none], YUV color, decoders should clamp Size213 kB (213298 bytes) Hash4a447cc7c7b727c5549010a7e3003f2a 276f276d436813400b9843fd6da43ba47fc57550 3ddc88cfdade7b0f1e42fc252412d6ec528da616f20d5687fb758b2570271ef3
GET /img/media/83551167c865d98d8f8a76c84794f8e26f2d6d2f/0_259_3500_2100/master/3500..jpg?width=1200&height=1200&quality=85&auto=format&fit=crop&s=db6328562e59c04f9a94364ed6d7b45e HTTP/1.1
Host: i.guim.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
cache-control: max-age=31536000
content-type: image/webp
etag: "WhS7jnUCYOCqokNy1WWwK4bZsmp0Xyft5owedSJfA7I"
fastly-io-info: ifsz=3129447 idim=3500x2100 ifmt=jpeg ofsz=213298 odim=1200x1200 ofmt=webp
fastly-io-served-by: img08-europe-west2
fastly-stats: io=1
server: AmazonS3
via: 1.1 varnish, 1.1 varnish
timing-allow-origin: https://www.theguardian.com
accept-ranges: bytes
age: 1755286
date: Tue, 07 May 2024 19:09:34 GMT
x-served-by: cache-lcy-eglc8600098-LCY, cache-hel1410032-HEL
x-cache: HIT, MISS
x-cache-hits: 11, 0
x-timer: S1715108974.425109,VS0,VE31
access-control-allow-origin: *
vary: Accept, Accept-Encoding
content-length: 213298
X-Firefox-Spdy: h2
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hashafb7466e6824c7c537c07bd91d06e8b0 2d19b40dbbb606eeb57d10d7b0095172df3c957b db2950a72ffb89cd670c15ab6e24c2eb673d4a90d035b45cb5471585880a32aa
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: max-age=7200
Date: Tue, 07 May 2024 19:09:34 GMT
Server: ECAcc (amb/6AF5)
X-Cache: Miss from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: bp9RudA89UlkRxvOTz4yFC-4ClQWjN7y12qsMAMeG0RWrllS7-FLeA==
|
|
| p.calameoassets.com/140522082757-bf8ddbe24a1c95f949571c9310c072e6/p1.jpg | 23.36.76.216 | 200 OK | 193 kB |
URL GET HTTP/2p.calameoassets.com/140522082757-bf8ddbe24a1c95f949571c9310c072e6/p1.jpg IP23.36.76.216:443 ASN#20940 Akamai International B.V.
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectp.calameoassets.com Fingerprint45:86:07:0A:51:F7:86:5B:B5:74:CE:BF:27:E7:92:0A:86:46:AB:4E ValidityThu, 02 May 2024 15:07:18 GMT - Wed, 31 Jul 2024 15:07:17 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, progressive, precision 8, 1190x1684, components 1 Size193 kB (192591 bytes) Hash5b0e288c1752386f7d8dbeb5ed3f934d aeb38e3374b113bf0e5832e3476e9546d1cf27af 1998e6fdf5d8fb98057af83c936a6ffe3513d37e1717649763409e6efdb7e0d6
GET /140522082757-bf8ddbe24a1c95f949571c9310c072e6/p1.jpg HTTP/1.1
Host: p.calameoassets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
x-amz-id-2: 0eTEBO3lM3FWHDdU6EpmzsGmPAHZNtgMv38pmZ9n01G9uDptKHZdSDGDfTRHhXw0jE/lJC9TLgs=
x-amz-request-id: 2X9MAVQQNR5F3RV0
last-modified: Thu, 22 May 2014 06:28:08 GMT
etag: "5b0e288c1752386f7d8dbeb5ed3f934d"
accept-ranges: bytes
content-type: image/jpeg
server: AmazonS3
content-length: 192591
cache-control: max-age=31535961
date: Tue, 07 May 2024 19:09:34 GMT
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| s3.studylib.net/store/data/008268989_1-fe728e835d2f9364c7ed12297ab5eac6.png | 104.21.73.241 | 200 OK | 189 kB |
URL GET HTTP/2s3.studylib.net/store/data/008268989_1-fe728e835d2f9364c7ed12297ab5eac6.png IP104.21.73.241:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectstudylib.net Fingerprint5D:C1:70:5F:EB:85:1E:03:11:D3:1D:F4:3F:33:94:54:9E:15:BF:61 ValiditySun, 31 Mar 2024 16:34:21 GMT - Sat, 29 Jun 2024 16:34:20 GMT
File typePNG image data, 791 x 1024, 8-bit colormap, non-interlaced Size189 kB (189116 bytes) Hashb27631faeafdee4d56d63cfc46ca341a 5c479e52bce007884cf17dd701c278546d304053 1efc94e9333cfc19ab8c7c6beda8bf9c5b6ea92dc760ea1bb56c583fad0f78f5
GET /store/data/008268989_1-fe728e835d2f9364c7ed12297ab5eac6.png HTTP/1.1
Host: s3.studylib.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:34 GMT
content-type: image/png
content-length: 189116
access-control-allow-origin: *
access-control-expose-headers: Accept-Ranges,Access-Control-Allow-Origin,Content-Range,Access-Control-Allow-Credentials,Content-Encoding,Content-Length
cache-control: max-age=5184000
expires: Sat, 06 Jul 2024 19:09:34 GMT
cf-cache-status: MISS
last-modified: Tue, 07 May 2024 19:09:34 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=x%2F0W6nVg5nnOf8o52ca%2FNquKI4qssYJiq3Is6m2c9ljTcoXIWldQMZykfL2Scq83DvFf3rN8c8A2yj2dOThGq%2F8c9Xc9XXvSt%2Fp0i%2FpBFCjIwGvZDVHTld7zulyIT5mtRxU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88038153df7f7128-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.good2go.com/wp-content/uploads/2015/05/NewGo-shad.png | 52.45.151.93 | 404 Not Found | 36 B |
URL GET HTTP/1.1www.good2go.com/wp-content/uploads/2015/05/NewGo-shad.png IP52.45.151.93:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerAmazon Subject*.good2go.com Fingerprint46:ED:DA:67:ED:64:C3:F9:86:A1:81:D8:DF:01:07:62:3A:2D:3F:65 ValiditySun, 03 Sep 2023 00:00:00 GMT - Tue, 01 Oct 2024 23:59:59 GMT
Hash4845f01eaa8068384625e302e9a4eb05 fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41
GET /wp-content/uploads/2015/05/NewGo-shad.png HTTP/1.1
Host: www.good2go.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Tue, 07 May 2024 19:09:34 GMT
Server: nginx
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
Content-Length: 36
Connection: keep-alive
|
|
| quotewizard.com/media/3838/man-searching-through-papers.jpg | 52.170.174.221 | 403 Forbidden | 179 B |
URL GET HTTP/2quotewizard.com/media/3838/man-searching-through-papers.jpg IP52.170.174.221:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerDigiCert Inc Subject*.quotewizard.com FingerprintDD:EB:13:B0:20:66:7A:4E:72:4B:B6:60:DC:DA:76:7C:B1:9D:B1:20 ValidityMon, 15 Apr 2024 00:00:00 GMT - Fri, 16 May 2025 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash8861fb6bd5d52fb453658e7d39231cf0 2b5ece9c4c96983b08db751bd1f30ad6d81200c2 1f2e1251b1d5fab2f47bbfe3e09b149064e61571f98a5e02c6ace5f86bacb1d5
GET /media/3838/man-searching-through-papers.jpg HTTP/1.1
Host: quotewizard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 403 Forbidden
server: Microsoft-Azure-Application-Gateway/v2
date: Tue, 07 May 2024 19:09:34 GMT
content-type: text/html
content-length: 179
X-Firefox-Spdy: h2
|
|
| www.insurance.com/imagesvr_ce/3977/switch-car-insurance.jpg | 23.54.10.151 | 200 OK | 2.9 kB |
URL GET HTTP/2www.insurance.com/imagesvr_ce/3977/switch-car-insurance.jpg IP23.54.10.151:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerDigiCert Inc Subjectwww.quinstreet.com Fingerprint14:F3:E3:64:D7:D4:73:24:97:23:7C:C6:D6:33:5D:D5:DA:2E:6F:DF ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT
Hash35f0fa8760f9601006711fc63360051e 6c44e50276753d3a9dcd87ad8452e4c12ae2c942 86b4cfd6ae9f1868b0959eac634a262aaeb38aec242a791d75b0db56695751f6
GET /imagesvr_ce/3977/switch-car-insurance.jpg HTTP/1.1
Host: www.insurance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
last-modified: Wed, 03 Apr 2024 19:04:21 GMT
server: Akamai Image Manager
content-length: 2946
content-type: image/avif
cache-control: private, no-transform, max-age=2123621
expires: Sat, 01 Jun 2024 09:03:16 GMT
date: Tue, 07 May 2024 19:09:35 GMT
X-Firefox-Spdy: h2
|
|
| www.bestdisplaycontent.com/9ac0bcf8df9428632ddf77b8d1545d90/invoke.js | 172.240.127.234 | 200 OK | 12 kB |
URL GET HTTP/1.1www.bestdisplaycontent.com/9ac0bcf8df9428632ddf77b8d1545d90/invoke.js IP172.240.127.234:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subject*.bestdisplaycontent.com Fingerprint15:07:CE:D1:9C:E8:5F:49:F7:AF:A5:E6:A0:2D:E3:96:50:5D:5E:DA ValiditySat, 06 Apr 2024 06:09:01 GMT - Fri, 05 Jul 2024 06:09:00 GMT
File typeJavaScript source, ASCII text, with very long lines (31265), with no line terminators Hashe37da1ff02f99123a4573034ab27c9c5 b66f66d3c2f1e57585ac1e1a16ac7f29c19eef91 978477ec9c65f6e4845d7fd860e4879e5dc112200198cf759ec8ed01e55738bf
GET /9ac0bcf8df9428632ddf77b8d1545d90/invoke.js HTTP/1.1
Host: www.bestdisplaycontent.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:09:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7213feaaa757ccbaab2c84be66c86b29
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| di-uploads-pod15.dealerinspire.com/porscheomaha/uploads/2018/06/Capture.jpg | 143.204.55.114 | 200 OK | 60 kB |
URL GET HTTP/2di-uploads-pod15.dealerinspire.com/porscheomaha/uploads/2018/06/Capture.jpg IP143.204.55.114:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerAmazon Subject*.dealerinspire.com Fingerprint4A:6F:B3:AC:7E:BB:B8:66:21:C5:E5:17:9C:D1:A1:3B:55:B9:38:F4 ValidityMon, 22 Apr 2024 00:00:00 GMT - Wed, 21 May 2025 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 677x720, components 3 Hashc9b072978e1bd0b2bc3a44049343bacf e04a7f2b1051fe747a65c632a122ff45af158673 c2e27160f1aaf7bf3d4455b57867777a3bf7e0ae19e3f1396c23813bfa4fe01a
GET /porscheomaha/uploads/2018/06/Capture.jpg HTTP/1.1
Host: di-uploads-pod15.dealerinspire.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 59904
date: Tue, 07 May 2024 19:09:36 GMT
cache-control: max-age=2592000
x-amz-meta-lastoptimized: 20200615
last-modified: Mon, 15 Jun 2020 21:41:42 GMT
etag: "c9b072978e1bd0b2bc3a44049343bacf"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 d4fd24ae65d4d2b97cfdea8d2f0c21a6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: pi5zPsUhgrJjLYJZmk-QxP72f9RI35YZ0cki5P8dup_eu6FI2w1bJA==
X-Firefox-Spdy: h2
|
|
| pl17766891.highperformancecpmgate.com/c8/df/4d/c8df4db5ea2940d8c65eba8e505ee98d.js | 192.243.59.12 | 200 OK | 16 kB |
URL GET HTTP/1.1pl17766891.highperformancecpmgate.com/c8/df/4d/c8df4db5ea2940d8c65eba8e505ee98d.js IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjecthighperformancecpmgate.com Fingerprint65:00:27:57:A8:78:0C:DF:B0:55:AF:79:34:08:26:85:BC:84:37:EC ValidityThu, 25 Apr 2024 10:28:44 GMT - Wed, 24 Jul 2024 10:28:43 GMT
File typeJavaScript source, ASCII text, with very long lines (44010), with no line terminators Hasha5015ba8f7280e036587566300751c60 88a867683c13f73dd453f87b9c77c1958e4d16fa 3ebdc553671781df0ea265f46f866156addc9843005a2396d38d55851985e237
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /c8/df/4d/c8df4db5ea2940d8c65eba8e505ee98d.js HTTP/1.1
Host: pl17766891.highperformancecpmgate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 07 May 2024 19:09:35 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c2f0f2e76117d009036d8567caac601d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| static.nationwide.com/media/LC-QuickCarInsurance-10516_3858_tcm826-249413.jpg?r=5 | 2.22.31.35 | 200 OK | 113 kB |
URL GET HTTP/2static.nationwide.com/media/LC-QuickCarInsurance-10516_3858_tcm826-249413.jpg?r=5 IP2.22.31.35:443 ASN#20940 Akamai International B.V.
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerDigiCert Inc Subjectmedia.nationwide.com FingerprintCD:AC:2B:7E:72:B0:A8:3F:BE:24:0D:32:33:60:C5:19:DD:71:F9:D1 ValidityWed, 10 May 2023 00:00:00 GMT - Sun, 09 Jun 2024 23:59:59 GMT
File typeJPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 431x243, components 3 Size113 kB (113287 bytes) Hash5e03f27e0f9d869555ff8f37f1be16dc edfade78e78ebb2e8c49f6e989023a32660076d0 dadf7a27eb0dd804fdcb6a17f7044286ed10c9eaeda4527be650d58896c5ae30
GET /media/LC-QuickCarInsurance-10516_3858_tcm826-249413.jpg?r=5 HTTP/1.1
Host: static.nationwide.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/jpeg
content-length: 113287
server: Apache
x-frame-options: SAMEORIGIN
last-modified: Wed, 03 Mar 2021 14:18:41 GMT
etag: "1ba87-5bca287259d17"
accept-ranges: bytes
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cache-control: max-age=279
date: Tue, 07 May 2024 19:09:35 GMT
server-timing: cdn-cache; desc=MISS, edge; dur=413, origin; dur=81, ak_p; desc="1715108974680_35004191_170401435_49403_8072_30_109_11";dur=1
X-Firefox-Spdy: h2
|
|
| insurancefacts.co.uk/wp-content/uploads/2018/10/Admiral-Car-Insurance-1.jpg | 185.151.30.195 | 200 OK | 125 kB |
URL GET HTTP/2insurancefacts.co.uk/wp-content/uploads/2018/10/Admiral-Car-Insurance-1.jpg IP185.151.30.195:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subject*.insurancefacts.co.uk FingerprintBB:BF:76:20:64:BE:9B:58:47:36:4E:2A:5F:11:7F:4D:C3:40:28:6D ValiditySun, 24 Mar 2024 07:28:03 GMT - Sat, 22 Jun 2024 07:28:02 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, baseline, precision 8, 750x550, components 3 Size125 kB (125197 bytes) Hash20155cbf7ff3390c5dd6fd729fd29757 4898b222d19c41678f110ab25a005cdcae1e14d7 2088a25d18e6420914f57f95c56ab6d7d8fc8b8f79bc2f4ad65f542363890123
GET /wp-content/uploads/2018/10/Admiral-Car-Insurance-1.jpg HTTP/1.1
Host: insurancefacts.co.uk
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:31 GMT
content-type: image/jpeg
content-length: 125197
server: Apache
x-provided-by: StackCDN
last-modified: Mon, 29 Oct 2018 15:27:04 GMT
etag: "1e90d-5795fb3814200"
cache-control: max-age=86400
expires: Wed, 08 May 2024 16:57:17 GMT
x-origin-cache-status: HIT
x-cdn-cache-status: MISS
accept-ranges: bytes
x-via: FRA1
X-Firefox-Spdy: h2
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hash3a1e61864f6877260287982fa7e36085 6d426b2327915af4f120ff6b18ebd20ed03c2a2b 9ee2ee3f0b60937becb4aa057c348332dd277e32b268f5c0ea260c0d2a2af498
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Tue, 07 May 2024 19:09:35 GMT
Last-Modified: Tue, 07 May 2024 18:40:42 GMT
Server: ECAcc (ska/F749)
X-Cache: Miss from cloudfront
Via: 1.1 f66e3db0f0449307dba3fbf72bbf3bac.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Lw8hHVi9mVzgXHehnXoqKp9QxP7TS-lnpi-VwQKM03718Gyy3WmMTg==
Age: 1734
|
|
| www.insuranceladiesfl.com/uploads/2/2/6/3/22635746/header_images/1377631997.jpg | 199.34.229.100 | 200 OK | 74 kB |
URL GET HTTP/1.1www.insuranceladiesfl.com/uploads/2/2/6/3/22635746/header_images/1377631997.jpg IP199.34.229.100:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectwww.insuranceladiesfl.com Fingerprint66:92:66:19:5E:94:83:54:F0:C0:C9:5E:96:CF:71:8F:8E:84:28:3A ValiditySat, 06 Apr 2024 09:40:56 GMT - Fri, 05 Jul 2024 09:40:55 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 540x330, components 3 Hashccfc60d6b5025fc635faa7d192f22ce4 84238e948a1707043358c365d05b70cb3a4b0732 77f15b15fef79d605264f32323860c2892af77fcac7812c9b95031ef49616588
GET /uploads/2/2/6/3/22635746/header_images/1377631997.jpg HTTP/1.1
Host: www.insuranceladiesfl.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Date: Tue, 07 May 2024 19:09:35 GMT
Content-Type: image/jpeg
Content-Length: 74030
Connection: keep-alive
Last-Modified: Sun, 07 Oct 2018 01:50:44 GMT
x-rgw-object-type: Normal
ETag: "ccfc60d6b5025fc635faa7d192f22ce4"
x-amz-request-id: tx00000199c56ebe7ac4023-006638c9fe-e8f44ee-sfo1
X-Storage-Bucket: z77f1
X-Storage-Object: 77f15b15fef79d605264f32323860c2892af77fcac7812c9b95031ef49616588
Expires: Thu, 31 Dec 2037 23:55:55 GMT
Cache-Control: max-age=315360000
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, DELETE, OPTIONS
Access-Control-Allow-Headers: Origin, Authorization, Content-Type
Accept-Ranges: bytes
|
|
| img.memegenerator.net/instances/42361716.jpg | 188.114.97.1 | 404 Not Found | 40 B |
URL GET HTTP/2img.memegenerator.net/instances/42361716.jpg IP188.114.97.1:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectmemegenerator.net Fingerprint23:30:DC:95:2A:6E:E9:68:01:4E:C7:E8:9B:3B:A2:F8:38:F4:DE:4A ValiditySun, 05 May 2024 18:49:17 GMT - Sat, 03 Aug 2024 18:49:16 GMT
File typeASCII text, with no line terminators Hash98ba584a921fd57a41cc7d0e13924b54 62a46444ab79b7e99e536b5eb29b6b87ed645b12 cd412fb8f6cf52175bc36c52023894c1c05eeec857f6178a698fa311bc121763
GET /instances/42361716.jpg HTTP/1.1
Host: img.memegenerator.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://happy-best-insurance.netlify.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Tue, 07 May 2024 19:09:35 GMT
content-type: image/jpeg; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Ds%2BYMcrUjgQmAH8MraETDqQ7budYM4ehdFV5HEEWTLHzWFmvpQuh%2F6lg7OkDkdnPNhrKFamTBX28BJtuOnVS%2BFLbdcbq4%2FSTM6Pq3TBl3%2Feur95rk4GYBOtjTBEoI5enSdrJOO3UMcE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88038155bb2cb52d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| moneytips.com/logo/26116.jpeg | 104.26.5.108 | 404 Not Found | 590 B |
URL GET HTTP/2moneytips.com/logo/26116.jpeg IP104.26.5.108:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerCloudflare, Inc. Subjectmoneytips.com FingerprintEB:ED:59:51:42:8C:9F:A6:41:27:B6:7F:5E:84:AF:E2:05:9C:8F:59 ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
File typeHTML document, ASCII text Hash5a5e8efb2b060a20e1e745e3f0115664 72f17dfd86e34d991d94ebfd967635b849b56bd0 5d1d75b702f13e1bb14ff8d52cac1690acacec3a15821af7fe482a79afda5b99
GET /logo/26116.jpeg HTTP/1.1
Host: moneytips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://happy-best-insurance.netlify.app/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
date: Tue, 07 May 2024 19:09:35 GMT
content-type: text/html
vary: Accept-Encoding
cache-control: max-age=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fFQnGuhB3DCLq%2BMn8LOQnamLtWmIez0uvGHaXbtHimyYMaYSQc9fyvJsa0ukUArkhzAn2J4tTfcEoyrey9opl6W%2BMMxVLzRQ9Kj5wNSsOHqKFBtf%2BMn1PQE5VOyJUJw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8803815779095684-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| pastjauntychinese.com/watch.1055012615068.js?key=9ac0bcf8df9428632ddf77b8d1545d90&kw=%5B%5D&refer=https%3A%2F%2Fhappy-best-insurance.netlify.app%2F&tz=0&dev=e&res=14.2071&uuid=6b796f6e-b9e2-4fee-95e2-90a0fb203294%3A1%3A1 | 192.243.59.20 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1pastjauntychinese.com/watch.1055012615068.js?key=9ac0bcf8df9428632ddf77b8d1545d90&kw=%5B%5D&refer=https%3A%2F%2Fhappy-best-insurance.netlify.app%2F&tz=0&dev=e&res=14.2071&uuid=6b796f6e-b9e2-4fee-95e2-90a0fb203294%3A1%3A1 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectpastjauntychinese.com Fingerprint78:42:42:0F:B5:7B:D4:94:90:77:2A:59:06:A9:C2:4F:24:1A:D5:93 ValidityMon, 06 May 2024 12:48:46 GMT - Sun, 04 Aug 2024 12:48:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.1055012615068.js?key=9ac0bcf8df9428632ddf77b8d1545d90&kw=%5B%5D&refer=https%3A%2F%2Fhappy-best-insurance.netlify.app%2F&tz=0&dev=e&res=14.2071&uuid=6b796f6e-b9e2-4fee-95e2-90a0fb203294%3A1%3A1 HTTP/1.1
Host: pastjauntychinese.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Tue, 07 May 2024 19:09:36 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://happy-best-insurance.netlify.app
Access-Control-Allow-Origin: https://happy-best-insurance.netlify.app
Access-Control-Allow-Credentials: true
Location: https://pastjauntychinese.com/watch.1055012615068.js?dev=e&key=9ac0bcf8df9428632ddf77b8d1545d90&kw=%5B%5D&pst=1715109036&refer=https%3A%2F%2Fhappy-best-insurance.netlify.app%2F&res=14.2071&rmtc=t&shu=59769836584e183162b264b501bd50c9e7aea0d009a1a1b6c16ade877d48c43e9fe8e495930e2cba3032f5fd71b699882a7a599cd2e5bf65209ab61ed5e316bab695945a4c6fecc335a145609bca7624a482ad6b3f9e8f0c09f4ea4879&tz=0&uuid=6b796f6e-b9e2-4fee-95e2-90a0fb203294%3A1%3A1
Set-Cookie: u_pl=15476427; expires=Wed, 08 May 2024 19:09:36 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.ppgM8s5Tv7wiJFASikh0Mj1j8wMz655wWsC0ul1d0uI; expires=Tue, 07 May 2024 19:10:36 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: dea5780d7a4768cff458c73849b05830
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| www.newdisplayformats.com/f33d94b169802c6cdd9f7276b2736119/invoke.js | 192.243.59.12 | 200 OK | 12 kB |
URL GET HTTP/1.1www.newdisplayformats.com/f33d94b169802c6cdd9f7276b2736119/invoke.js IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectnewdisplayformats.com Fingerprint12:83:DB:17:04:6A:DE:8B:4D:66:69:DC:24:C6:1C:05:12:45:72:66 ValiditySun, 28 Apr 2024 07:18:28 GMT - Sat, 27 Jul 2024 07:18:27 GMT
File typeJavaScript source, ASCII text, with very long lines (31247), with no line terminators Hashea4a0243d1eb989f6c8cc79c8f9cfd3d 6641b6a66731dcdb1cb9cffc74f4919b0c0ab0d3 e56a22036bdb3de450db7d373e18626d84deb5faf3ca666a133c641c6c53432a
GET /f33d94b169802c6cdd9f7276b2736119/invoke.js HTTP/1.1
Host: www.newdisplayformats.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 07 May 2024 19:09:36 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 8aed1178c430051b94768f2a62c1d33d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| www.zurich.com/-/media/59AA62DF7A8440F494C5B01041697A22.ashx | 45.60.13.5 | 200 OK | 212 B |
URL GET HTTP/2www.zurich.com/-/media/59AA62DF7A8440F494C5B01041697A22.ashx IP45.60.13.5:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerGlobalSign nv-sa Subjectimperva.com Fingerprint57:8A:01:D7:E1:B0:D8:03:39:2B:E4:F6:C6:49:24:8B:74:F2:31:FF ValidityWed, 24 Jan 2024 22:29:08 GMT - Mon, 22 Jul 2024 22:29:08 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash185dd5ec503c683da355a50e70f25c68 cf79e1a0b6f763060a526886494db0b1b2e053b7 d02032286070b4dd9d8fbd985a7bdca8af8edf52b89ff177db3bfcb2c8a9c43d
GET /-/media/59AA62DF7A8440F494C5B01041697A22.ashx HTTP/1.1
Host: www.zurich.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: text/html
cache-control: no-cache, no-store
content-length: 212
x-iinfo: 7-6930364-0 0NNN RT(1715108973551 2097) q(0 -1 -1 0) r(0 -1) B10(4,314,0) U18
x-incap-sess-cookie-hdr: Kw3PXyEQDGATAzpkt4EBCm98OmYAAAAAhZ+Nqp0sgGALUINDo7KskA==
set-cookie: visid_incap_260440=RQLgNW/7Q/+2/5wQmUfxGG18OmYAAAAAQUIPAAAAAADHzNJ7PYuFoJA9tLuZUsOl; expires=Wed, 07 May 2025 00:43:33 GMT; HttpOnly; path=/; Domain=.zurich.com
incap_ses_721_260440=NCZMAQy4LSgTAzpkt4EBCm98OmYAAAAAXkaL6X5HVl0Gh2NQNKWFCQ==; path=/; Domain=.zurich.com
X-Firefox-Spdy: h2
|
|
| pastjauntychinese.com/watch.1055012615068.js?dev=e&key=9ac0bcf8df9428632ddf77b8d1545d90&kw=%5B%5D&pst=1715109036&refer=https%3A%2F%2Fhappy-best-insurance.netlify.app%2F&res=14.2071&rmtc=t&shu=59769836584e183162b264b501bd50c9e7aea0d009a1a1b6c16ade877d48c43e9fe8e495930e2cba3032f5fd71b699882a7a599cd2e5bf65209ab61ed5e316bab695945a4c6fecc335a145609bca7624a482ad6b3f9e8f0c09f4ea4879&tz=0&uuid=6b796f6e-b9e2-4fee-95e2-90a0fb203294%3A1%3A1 | 192.243.59.20 | 200 OK | 2.0 kB |
URL GET HTTP/1.1pastjauntychinese.com/watch.1055012615068.js?dev=e&key=9ac0bcf8df9428632ddf77b8d1545d90&kw=%5B%5D&pst=1715109036&refer=https%3A%2F%2Fhappy-best-insurance.netlify.app%2F&res=14.2071&rmtc=t&shu=59769836584e183162b264b501bd50c9e7aea0d009a1a1b6c16ade877d48c43e9fe8e495930e2cba3032f5fd71b699882a7a599cd2e5bf65209ab61ed5e316bab695945a4c6fecc335a145609bca7624a482ad6b3f9e8f0c09f4ea4879&tz=0&uuid=6b796f6e-b9e2-4fee-95e2-90a0fb203294%3A1%3A1 IP192.243.59.20:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectpastjauntychinese.com Fingerprint78:42:42:0F:B5:7B:D4:94:90:77:2A:59:06:A9:C2:4F:24:1A:D5:93 ValidityMon, 06 May 2024 12:48:46 GMT - Sun, 04 Aug 2024 12:48:45 GMT
File typeJavaScript source, ASCII text, with very long lines (2512) Hash454de418d872379c4f353b27967ed875 ac4ed84dfa6061555ef71dacf719125789ff4d67 129acc9f8cc93967cc48959ea0aaaa9351c4013a1cf631f737bbe967168c0c83
GET /watch.1055012615068.js?dev=e&key=9ac0bcf8df9428632ddf77b8d1545d90&kw=%5B%5D&pst=1715109036&refer=https%3A%2F%2Fhappy-best-insurance.netlify.app%2F&res=14.2071&rmtc=t&shu=59769836584e183162b264b501bd50c9e7aea0d009a1a1b6c16ade877d48c43e9fe8e495930e2cba3032f5fd71b699882a7a599cd2e5bf65209ab61ed5e316bab695945a4c6fecc335a145609bca7624a482ad6b3f9e8f0c09f4ea4879&tz=0&uuid=6b796f6e-b9e2-4fee-95e2-90a0fb203294%3A1%3A1 HTTP/1.1
Host: pastjauntychinese.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://happy-best-insurance.netlify.app
Referer: https://happy-best-insurance.netlify.app/
DNT: 1
Connection: keep-alive
Cookie: u_pl=15476427; ain=eyJhbGciOiJIUzI1NiJ9.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.ppgM8s5Tv7wiJFASikh0Mj1j8wMz655wWsC0ul1d0uI
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 07 May 2024 19:09:36 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://happy-best-insurance.netlify.app
Access-Control-Allow-Origin: https://happy-best-insurance.netlify.app
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=6b796f6e-b9e2-4fee-95e2-90a0fb203294:1:1; expires=Tue, 14 May 2024 19:09:36 GMT; secure; SameSite=None
iprc50304a2d973aa715cc58de320237b2ab=5191638; expires=Wed, 08 May 2024 19:09:36 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 08 May 2024 19:09:36 GMT; secure; SameSite=None
uncs=1; expires=Wed, 08 May 2024 19:09:36 GMT; secure; SameSite=None
pdhtkv23=true; expires=Wed, 08 May 2024 19:09:36 GMT; secure; SameSite=None
uncs23=1; expires=Wed, 08 May 2024 19:09:36 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 28dbad6e565b9040ebada7e2143b98f5
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| www.good2go.com/wp-content/uploads/2015/05/NewGo-shad.png | 52.45.151.93 | 404 Not Found | 36 B |
URL GET HTTP/1.1www.good2go.com/wp-content/uploads/2015/05/NewGo-shad.png IP52.45.151.93:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerAmazon Subject*.good2go.com Fingerprint46:ED:DA:67:ED:64:C3:F9:86:A1:81:D8:DF:01:07:62:3A:2D:3F:65 ValiditySun, 03 Sep 2023 00:00:00 GMT - Tue, 01 Oct 2024 23:59:59 GMT
Hash4845f01eaa8068384625e302e9a4eb05 fb6ff8293fa45e17ba97f84954e7d1d5b0d38f87 8a482f2271a42c5f54c96e816a84340a6f2357a5b81f927d07d00788f5140a41
GET /wp-content/uploads/2015/05/NewGo-shad.png HTTP/1.1
Host: www.good2go.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 404 Not Found
Content-Encoding: gzip
Content-Type: text/html; charset=UTF-8
Date: Tue, 07 May 2024 19:09:36 GMT
Server: nginx
Vary: Accept-Encoding
X-Frame-Options: SAMEORIGIN
Content-Length: 36
Connection: keep-alive
|
|
| quotewizard.com/media/3838/man-searching-through-papers.jpg | 52.170.174.221 | 403 Forbidden | 179 B |
URL GET HTTP/2quotewizard.com/media/3838/man-searching-through-papers.jpg IP52.170.174.221:443 ASN#8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerDigiCert Inc Subject*.quotewizard.com FingerprintDD:EB:13:B0:20:66:7A:4E:72:4B:B6:60:DC:DA:76:7C:B1:9D:B1:20 ValidityMon, 15 Apr 2024 00:00:00 GMT - Fri, 16 May 2025 23:59:59 GMT
File typeHTML document, ASCII text, with CRLF line terminators Hash8861fb6bd5d52fb453658e7d39231cf0 2b5ece9c4c96983b08db751bd1f30ad6d81200c2 1f2e1251b1d5fab2f47bbfe3e09b149064e61571f98a5e02c6ace5f86bacb1d5
GET /media/3838/man-searching-through-papers.jpg HTTP/1.1
Host: quotewizard.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 403 Forbidden
server: Microsoft-Azure-Application-Gateway/v2
date: Tue, 07 May 2024 19:09:36 GMT
content-type: text/html
content-length: 179
X-Firefox-Spdy: h2
|
|
| farmersinsurance.scene7.com/is/image/farmers/auto-insurance-landing-2000x1504-v2-1 | 23.38.200.69 | 200 OK | 423 kB |
URL GET HTTP/2farmersinsurance.scene7.com/is/image/farmers/auto-insurance-landing-2000x1504-v2-1 IP23.38.200.69:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerDigiCert Inc Subject*.scene7.com Fingerprint81:79:04:0C:EB:9D:D8:2C:75:AC:CD:61:30:D1:ED:33:99:2F:AB:16 ValiditySat, 11 Nov 2023 00:00:00 GMT - Wed, 13 Nov 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 2000x1504, Scaling: [none]x[none], YUV color, decoders should clamp Size423 kB (422864 bytes) Hash1c2939288a35c8d6cfe6e72a069417ba a30dbfdc39451a41d84a06186f85615dfa893b11 067a1db5aafb52abe0fbdf0e6caf7ee09a296e248ba0d4286b60244d8cc4052d
GET /is/image/farmers/auto-insurance-landing-2000x1504-v2-1 HTTP/1.1
Host: farmersinsurance.scene7.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: image/webp
content-length: 422864
access-control-allow-origin: *
last-modified: Thu, 08 Jul 2021 22:47:50 GMT
etag: "1c2939288a35c8d6cfe6e72a069417ba"
x-adobe-smart-imaging: 178438
x-adobe-assetlist: QlpoOTFBWSZTWd25uOkAAAgbgAAC9gAACi+nn0AgADFAAAGTIIp6npqPSZPUD0yalF+VMGnAzWRK6jGG7gGhie4VcIDMlBpRzT38XckU4UJDdubjpA==
x-adobe-modifierlist: QlpoOTFBWSZTWR+mXYgAAAACAAAKIAAwgEFYu5IpwoSA/TLsQA==
server: Unknown
strict-transport-security: max-age=31536000; includeSubDomains
expires: Fri, 07 Jun 2024 19:09:35 GMT
date: Tue, 07 May 2024 19:09:35 GMT
x-akamai-cache: Miss
akamai-grn: 0.164f2417.1715108974.66006779
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2 | 216.58.207.227 | 200 OK | 22 kB |
URL GET HTTP/2fonts.gstatic.com/s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2 IP216.58.207.227:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 22432, version 1.0 Hashcfd6d958f6802c9f4f64c05575b70801 7f0644e43c42902b466b66723aad8a95ba094b0c 3e44fb721d3be9376c6e5e946109067a04da84ae10b3f27a03ada7a3731e515c
GET /s/raleway/v34/1Ptxg8zYS_SKggPN4iEgvnHyvveLxVvaorCIPrE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 14:36:52 GMT
expires: Fri, 02 May 2025 14:36:52 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 01 May 2024 20:31:54 GMT
content-type: font/woff2
age: 448364
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.premiumvertising.com/json3.min.js | 185.76.9.14 | 200 OK | 12 kB |
URL GET HTTP/2www.premiumvertising.com/json3.min.js IP185.76.9.14:443 ASN#60068 Datacamp Limited
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subject1258267123.rsc.cdn77.org FingerprintB6:10:5C:DD:E0:F1:DB:2A:2F:27:00:11:08:9F:82:00:01:7F:31:F3 ValidityTue, 30 Apr 2024 08:35:05 GMT - Mon, 29 Jul 2024 08:35:04 GMT
File typegzip compressed data, from Unix Hash8a5cce12012bbe5152564fb9190ad781 bb12b5cdffb0b16bf37f899e0d50fe4010d8fbc3 9b32826d6f3b275bc9b4bd70e758ce6f9508e4fe52984015f80ea5f0033b3f5e
GET /json3.min.js HTTP/1.1
Host: www.premiumvertising.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:36 GMT
content-type: application/x-javascript
vary: Accept-Encoding, Origin
popads-node: wb8
expires: Sun, 12 May 2024 20:43:06 GMT
access-control-allow-origin: https://happy-best-insurance.netlify.app
link: <https://premiumvertising.com/>;rel=preconnect,<https://c.adsco.re/>;rel=preconnect,<https://adsco.re/>;rel=preconnect
cache-control: public, max-age=604800
x-77-nzt: EwgBuUwJDQFBCAG5TAoJAYEMAZySIR8B9xaNAgA
x-77-nzt-ray: c0a4cc28991198ea707c3a6638b64a24
x-accel-expires: @1715546586
x-accel-date: 1714941786
x-77-cache: HIT
x-77-age: 167190
content-encoding: gzip
server: CDN77-Turbo
x-cache: MISS
x-77-pop: stockholmSE
X-Firefox-Spdy: h2
|
|
| plumbsplash.com/watch.933169560277.js?key=f33d94b169802c6cdd9f7276b2736119&kw=%5B%5D&refer=https%3A%2F%2Fhappy-best-insurance.netlify.app%2F&tz=0&dev=e&res=14.2071&uuid=6b796f6e-b9e2-4fee-95e2-90a0fb203294%3A1%3A1 | 192.243.61.227 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1plumbsplash.com/watch.933169560277.js?key=f33d94b169802c6cdd9f7276b2736119&kw=%5B%5D&refer=https%3A%2F%2Fhappy-best-insurance.netlify.app%2F&tz=0&dev=e&res=14.2071&uuid=6b796f6e-b9e2-4fee-95e2-90a0fb203294%3A1%3A1 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectplumbsplash.com Fingerprint31:57:FD:75:0E:38:BD:2B:6D:D0:09:A1:00:6E:3C:68:D7:74:43:AF ValidityMon, 06 May 2024 12:46:30 GMT - Sun, 04 Aug 2024 12:46:29 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch.933169560277.js?key=f33d94b169802c6cdd9f7276b2736119&kw=%5B%5D&refer=https%3A%2F%2Fhappy-best-insurance.netlify.app%2F&tz=0&dev=e&res=14.2071&uuid=6b796f6e-b9e2-4fee-95e2-90a0fb203294%3A1%3A1 HTTP/1.1
Host: plumbsplash.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:09:37 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://happy-best-insurance.netlify.app
Access-Control-Allow-Origin: https://happy-best-insurance.netlify.app
Access-Control-Allow-Credentials: true
Location: https://plumbsplash.com/watch.933169560277.js?dev=e&key=f33d94b169802c6cdd9f7276b2736119&kw=%5B%5D&pst=1715109037&refer=https%3A%2F%2Fhappy-best-insurance.netlify.app%2F&res=14.2071&rmtc=t&shu=c12d52da807e44b591e75ab8887c0634e8705e48dcc2ec1b26679cdd912230b7d1eea0c43e6c60dcbd1397464d63edd74555ce543e26f35f8601247b289d461a40155969029d8b1789179eb999ea9418acf30bb3c30be238187b73a17fd998&tz=0&uuid=6b796f6e-b9e2-4fee-95e2-90a0fb203294%3A1%3A1
Set-Cookie: u_pl=15658969; expires=Wed, 08 May 2024 19:09:37 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.xhhtB2Mv0k4VdFMPiCPNDCwjaX7QgsOBFuu6u93t1zE; expires=Tue, 07 May 2024 19:10:37 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 937690a1db3a5e41fbb519d4a62b7f67
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| www.insurance.com/imagesvr_ce/7958/senior%20death%20rates.jpg | 23.54.10.151 | 404 Not Found | 0 B |
URL GET HTTP/2www.insurance.com/imagesvr_ce/7958/senior%20death%20rates.jpg IP23.54.10.151:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerDigiCert Inc Subjectwww.quinstreet.com Fingerprint14:F3:E3:64:D7:D4:73:24:97:23:7C:C6:D6:33:5D:D5:DA:2E:6F:DF ValidityFri, 03 Nov 2023 00:00:00 GMT - Fri, 12 Jul 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /imagesvr_ce/7958/senior%20death%20rates.jpg HTTP/1.1
Host: www.insurance.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 404 Not Found
server: Apache
x-frame-options: SAMEORIGIN
qs-cache: MISS
content-security-policy: frame-ancestors 'self'
x-content-type-options: nosniff
x-xss-protection: 1; mode=block
content-length: 0
content-type: text/html; charset=UTF-8
strict-transport-security: max-age=31536000; includeSubDomains
cache-control: public, max-age=2592000
expires: Thu, 06 Jun 2024 19:09:37 GMT
date: Tue, 07 May 2024 19:09:37 GMT
X-Firefox-Spdy: h2
|
|
| cdn.cloudimagesb.com/cti/4d/36/80/4d3680910e7c3028805bb690c0d46bf5/1711621515.mp4 | 45.133.44.9 | 200 OK | 503 kB |
URL GET HTTP/2cdn.cloudimagesb.com/cti/4d/36/80/4d3680910e7c3028805bb690c0d46bf5/1711621515.mp4 IP45.133.44.9:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typeISO Media, MP4 v2 [ISO 14496-14] Size503 kB (503186 bytes) Hash21423c84eba91fb0ec40667d7244a77a 45320719584374a79d7b78af3467a3333f8b7228 93b806176c87d2087a3354b0fc5b004ff243943aec063c5f93956a7a9eb2121c
GET /cti/4d/36/80/4d3680910e7c3028805bb690c0d46bf5/1711621515.mp4 HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:37 GMT
content-type: video/mp4
content-length: 503186
server: nginx/1.21.6
last-modified: Thu, 28 Mar 2024 10:25:23 GMT
etag: "66054593-7ad92"
expires: Thu, 09 May 2024 19:09:37 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQh_l3eQ5xwiPy07kGEXjmjgmBKBRB7H2mRxCGhv1tFWg5c_mWT | 142.250.74.174 | 200 OK | 2.3 kB |
URL GET HTTP/2encrypted-tbn0.gstatic.com/images?q=tbn:ANd9GcQh_l3eQ5xwiPy07kGEXjmjgmBKBRB7H2mRxCGhv1tFWg5c_mWT IP142.250.74.174:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 276x183, components 3 Hash9bef96c7479adb40f793c7b0f4f2c33d aff2b02e9af3e14faa9d22677eda1e2e6bd481cc fcf9fdd5ab81da78cbca3ca589d8ff4c608a00f3d90665f2dc1aa8b9636998d9
GET /images?q=tbn:ANd9GcQh_l3eQ5xwiPy07kGEXjmjgmBKBRB7H2mRxCGhv1tFWg5c_mWT HTTP/1.1
Host: encrypted-tbn0.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/images-tbn
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="images-tbn"
report-to: {"group":"images-tbn","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/images-tbn"}]}
content-length: 2347
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 07 May 2024 11:34:06 GMT
expires: Wed, 07 May 2025 11:34:06 GMT
cache-control: public, max-age=31536000
age: 27331
last-modified: Tue, 22 Dec 2015 19:19:47 GMT
content-type: image/jpeg
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| plumbsplash.com/watch.933169560277.js?dev=e&key=f33d94b169802c6cdd9f7276b2736119&kw=%5B%5D&pst=1715109037&refer=https%3A%2F%2Fhappy-best-insurance.netlify.app%2F&res=14.2071&rmtc=t&shu=c12d52da807e44b591e75ab8887c0634e8705e48dcc2ec1b26679cdd912230b7d1eea0c43e6c60dcbd1397464d63edd74555ce543e26f35f8601247b289d461a40155969029d8b1789179eb999ea9418acf30bb3c30be238187b73a17fd998&tz=0&uuid=6b796f6e-b9e2-4fee-95e2-90a0fb203294%3A1%3A1 | 192.243.61.227 | 200 OK | 2.0 kB |
URL GET HTTP/1.1plumbsplash.com/watch.933169560277.js?dev=e&key=f33d94b169802c6cdd9f7276b2736119&kw=%5B%5D&pst=1715109037&refer=https%3A%2F%2Fhappy-best-insurance.netlify.app%2F&res=14.2071&rmtc=t&shu=c12d52da807e44b591e75ab8887c0634e8705e48dcc2ec1b26679cdd912230b7d1eea0c43e6c60dcbd1397464d63edd74555ce543e26f35f8601247b289d461a40155969029d8b1789179eb999ea9418acf30bb3c30be238187b73a17fd998&tz=0&uuid=6b796f6e-b9e2-4fee-95e2-90a0fb203294%3A1%3A1 IP192.243.61.227:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectplumbsplash.com Fingerprint31:57:FD:75:0E:38:BD:2B:6D:D0:09:A1:00:6E:3C:68:D7:74:43:AF ValidityMon, 06 May 2024 12:46:30 GMT - Sun, 04 Aug 2024 12:46:29 GMT
File typeJavaScript source, ASCII text, with very long lines (2510) Hash9f2339d724d8798f14a4889f52f8a15f ec0e45dc41444374f2897a8469d503ecc57a43f6 a96ecbca7a2566d3e2be37a422f5004954e27df212ba86763b7889574da04a2b
GET /watch.933169560277.js?dev=e&key=f33d94b169802c6cdd9f7276b2736119&kw=%5B%5D&pst=1715109037&refer=https%3A%2F%2Fhappy-best-insurance.netlify.app%2F&res=14.2071&rmtc=t&shu=c12d52da807e44b591e75ab8887c0634e8705e48dcc2ec1b26679cdd912230b7d1eea0c43e6c60dcbd1397464d63edd74555ce543e26f35f8601247b289d461a40155969029d8b1789179eb999ea9418acf30bb3c30be238187b73a17fd998&tz=0&uuid=6b796f6e-b9e2-4fee-95e2-90a0fb203294%3A1%3A1 HTTP/1.1
Host: plumbsplash.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://happy-best-insurance.netlify.app
Referer: https://happy-best-insurance.netlify.app/
DNT: 1
Connection: keep-alive
Cookie: u_pl=15658969; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoxNTY1ODk2OSwiayI6ImYzM2Q5NGIxNjk4MDJjNmNkZDlmNzI3NmIyNzM2MTE5Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoxMzAxMjYzLCJwaWQiOjEwOTMyMywiYW4iOnRydWUsImxhbiI6dHJ1ZSwiY2lkIjoyOCwiYWlkIjo1LCJwdCI6NCwicGsiOiJhbjMxMzV1NCIsInQiOjF9LCJ1Ijp7InUiOjEsImF1IjoxLCJkIjp7ImlkIjo3OTk1NDE5NiwiaWRzIjoiIiwiaWMiOmZhbHNlLCJuIjoiRGVza3RvcCxFbXVsYXRvciIsInYiOiJVbmtub3duIiwibSI6IlVua25vd24iLCJmIjoxLCJmbiI6IkRlc2t0b3AiLCJvaWQiOjE4MTEwLCJvbiI6IkxpbnV4Iiwib3YiOiJVbmtub3duIiwiYmlkIjoxMTY2NzAsImJuIjoiRmlyZWZveCIsImJ2IjoiOTYuMCIsInd2IjpmYWxzZSwiZSI6dHJ1ZSwiYWIiOmZhbHNlfSwiYyI6eyJpZCI6MTYyLCJjIjoiTk8iLCJuIjoiTm9yd2F5In0sImEiOmZhbHNlLCJjciI6eyJuIjoiQmxpeCBTb2x1dGlvbnMifSwieGYiOiIiLCJpeGYiOmZhbHNlLCJpZ3hmIjpmYWxzZSwidXAiOnRydWUsInIiOiJodHRwczovL2hhcHB5LWJlc3QtaW5zdXJhbmNlLm5ldGxpZnkuYXBwLyIsImFyIjpbXX19.xhhtB2Mv0k4VdFMPiCPNDCwjaX7QgsOBFuu6u93t1zE
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:09:37 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://happy-best-insurance.netlify.app
Access-Control-Allow-Origin: https://happy-best-insurance.netlify.app
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=6b796f6e-b9e2-4fee-95e2-90a0fb203294:1:1; expires=Tue, 14 May 2024 19:09:37 GMT; secure; SameSite=None
iprc02a19de52bcf13c105c72674e9965265=5191359; expires=Wed, 08 May 2024 19:09:37 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 08 May 2024 19:09:37 GMT; secure; SameSite=None
uncs=1; expires=Wed, 08 May 2024 19:09:37 GMT; secure; SameSite=None
pdhtkv5=true; expires=Wed, 08 May 2024 19:09:37 GMT; secure; SameSite=None
uncs5=1; expires=Wed, 08 May 2024 19:09:37 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 857e5703e409e0d73f3f8af1ccaca6f1
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| 6.adsco.re/ | 104.17.167.186 | | 0 B |
IP104.17.167.186:0
Requested byhttps://happy-best-insurance.netlify.app/
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:37 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://happy-best-insurance.netlify.app
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 880381666d905691-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| 4.adsco.re:2087/ | 162.252.214.5 | | 62 B |
IP162.252.214.5:0
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash5b41cb22f84f645a103acc7bfbf084ff bac3967b26d5ec4a0d09a580714e8219796816bd 709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc
GET / HTTP/1.1
Host: 4.adsco.re:2087
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 19:09:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://happy-best-insurance.netlify.app
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
|
|
| 4.adsco.re/ | 162.252.214.5 | | 62 B |
IP162.252.214.5:0
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash5b41cb22f84f645a103acc7bfbf084ff bac3967b26d5ec4a0d09a580714e8219796816bd 709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 19:09:37 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: https://happy-best-insurance.netlify.app
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
|
|
| 6.adsco.re:2087/ | 104.17.167.186 | 200 OK | 0 B |
IP104.17.167.186:2087
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re:2087
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:38 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://happy-best-insurance.netlify.app
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 88038169a85656ab-OSL
alt-svc: h3=":2087"; ma=86400
X-Firefox-Spdy: h2
|
|
| 6.adsco.re/ | 104.17.167.186 | | 0 B |
IP104.17.167.186:0
Requested byhttps://happy-best-insurance.netlify.app/
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:09:38 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: *
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 88038169bb2756af-OSL
alt-svc: h3=":443"; ma=86400
|
|
| d3n817fwly711g.cloudfront.net/blog/wp-content/uploads/2016/08/New-Car-rental-database.png | 143.204.55.76 | 404 Not Found | 8.0 kB |
URL GET HTTP/2d3n817fwly711g.cloudfront.net/blog/wp-content/uploads/2016/08/New-Car-rental-database.png IP143.204.55.76:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerAmazon Subject*.cloudfront.net FingerprintFA:21:45:DC:4D:94:03:A3:09:77:51:78:4A:21:F2:C5:6D:94:BE:52 ValidityTue, 10 Oct 2023 00:00:00 GMT - Thu, 19 Sep 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hash9875b5a1b8702f985f27e94df8a39755 b42c00fe17fad0da98ea0ef3c2b09f011d0a1e6b b3ef68477fe0c99f0feb58e51301931f9cd109e872026da61a56295a16054511
GET /blog/wp-content/uploads/2016/08/New-Car-rental-database.png HTTP/1.1
Host: d3n817fwly711g.cloudfront.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
content-type: text/html
date: Tue, 07 May 2024 11:19:40 GMT
last-modified: Tue, 07 May 2024 11:11:55 GMT
etag: W/"431f038b75185ccf5b5f0b19e2d38bb7"
server: AmazonS3
content-encoding: gzip
via: 1.1 67697a0060e2336f6ffa8579d528820e.cloudfront.net (CloudFront), 1.1 41dc61beb3fe8e8c2c299a2522d8330c.cloudfront.net (CloudFront)
content-security-policy: frame-ancestors 'self' accounts2.creately.com msteams.creately.com app.creately.com app2.creately.com app-eu.creately.com api-eu.creately.com app-au.creately.com api-au.creately.com app-uae.creately.com api-uae.creately.com api.creately.com accounts.google.com docs.google.com teams.microsoft.com *.ngrok.io *.atlassian.net *.fic.cloud *.fullyincontrol.cloud *.sharepoint.com;
strict-transport-security: max-age=63072000; includeSubDomains; preload
vary: Accept-Encoding,Origin
x-cache: Error from cloudfront
x-amz-cf-pop: FRA60-P8, OSL50-C1
x-amz-cf-id: vXRKEA226NRMSqSYmmaq544Lg1xc3IB1WflRmC6o4LnJ2GZAM7avdw==
age: 28199
x-robots-tag: noindex
X-Firefox-Spdy: h2
|
|
| lbarlr1rhdzl.l4.adsco.re/ | 185.200.118.51 | 200 OK | 0 B |
URL POST HTTP/2lbarlr1rhdzl.l4.adsco.re/ IP185.200.118.51:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subject*.l4.adsco.re FingerprintB2:51:02:63:F4:E6:E7:3A:98:79:B7:C5:F8:81:EC:E8:79:B9:BC:22 ValidityFri, 19 Apr 2024 09:12:52 GMT - Thu, 18 Jul 2024 09:12:51 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: lbarlr1rhdzl.l4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:38 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 02 Jun 2023 14:03:32 GMT
etag: "6479f6b4-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| 6.adsco.re:2087/ | 104.17.167.186 | 200 OK | 0 B |
IP104.17.167.186:2087
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re:2087
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:38 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: https://happy-best-insurance.netlify.app
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803816b0ad356ab-OSL
alt-svc: h3=":2087"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.cloudimagesb.com/cti/59/e2/73/59e273b873f0f7092b74f2766d60aebd/1711620525.jpg | 45.133.44.9 | 200 OK | 72 kB |
URL GET HTTP/2cdn.cloudimagesb.com/cti/59/e2/73/59e273b873f0f7092b74f2766d60aebd/1711620525.jpg IP45.133.44.9:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typeJPEG image data, baseline, precision 8, 300x250, components 3 Hash2d281de4129fb09c0e095c5b9beeb115 bf238757cb5055f99aeb9911d422850a56fe2c39 c8d22cd8ebf01584785595b2ef4f82c1b677742241f562a0aca5c775a4229980
GET /cti/59/e2/73/59e273b873f0f7092b74f2766d60aebd/1711620525.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:38 GMT
content-type: image/jpeg
content-length: 71789
server: nginx/1.21.6
last-modified: Thu, 28 Mar 2024 10:08:53 GMT
etag: "660541b5-1186d"
expires: Thu, 09 May 2024 19:09:38 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| lbarlr1rhdzl.n4.adsco.re/ | 38.132.109.115 | 200 OK | 0 B |
URL POST HTTP/2lbarlr1rhdzl.n4.adsco.re/ IP38.132.109.115:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subject*.n4.adsco.re Fingerprint45:6E:69:F7:75:1D:65:9E:20:3D:CF:CE:8B:F5:36:72:85:BD:76:EC ValidityFri, 19 Apr 2024 09:12:46 GMT - Thu, 18 Jul 2024 09:12:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: lbarlr1rhdzl.n4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:38 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 16 Jun 2023 08:37:42 GMT
etag: "648c1f56-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| adsco.re/p | 162.252.214.5 | 200 OK | 812 B |
IP162.252.214.5:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File typeASCII text, with very long lines (1020), with no line terminators Hashc0c281c3b32bd01f5af17ee0b2a37687 f1f8e6a34e6cd3b6aa9c9ee04b8b3e6bb10cd6c8 0de7e52ac87fd2e2ca69117143ff6e0aa20f5a857cb62a2e19c262799f3946db
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 2101
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 19:09:38 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Access-Control-Allow-Origin: https://happy-best-insurance.netlify.app
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
|
|
| 6.adsco.re/ | 104.17.167.186 | | 0 B |
IP104.17.167.186:0
Requested byhttps://happy-best-insurance.netlify.app/
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: 6.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Tue, 07 May 2024 19:09:38 GMT
content-type: text/plain;charset=UTF-8
content-length: 0
access-control-allow-origin: *
cache-control: private, max-age=10
access-control-allow-headers: Content-Type
access-control-allow-methods: GET, HEAD, OPTIONS
access-control-max-age: 2592000
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803816c19d7b50b-OSL
alt-svc: h3=":443"; ma=86400
|
|
| adsco.re/p | 162.252.214.5 | 200 OK | 813 B |
IP162.252.214.5:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File typeASCII text, with very long lines (1020), with no line terminators Hash5f7ddd21764121b4ec99860c7b01af15 977a0a8c48208dd91c50900fbf945fc3dcca7b16 78f507eab70f20d0c3c9d6f45bc08d6fe6d8e4ddd9146d889261b9b54d73a457
POST /p HTTP/1.1
Host: adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Length: 1518
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 19:09:38 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
AS-P-1: OK lon123
AS-P-2: OK
AS-P-3: OK
Access-Control-Max-Age: 2592000
Cache-Control: no-transform
Accept-CH: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
Access-Control-Allow-Origin: https://happy-best-insurance.netlify.app
Access-Control-Allow-Credentials: true
Content-Encoding: gzip
|
|
| 4.adsco.re/ | 162.252.214.5 | | 62 B |
IP162.252.214.5:0
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash5b41cb22f84f645a103acc7bfbf084ff bac3967b26d5ec4a0d09a580714e8219796816bd 709f0a0dfab9f9e074f4a4a348dcb09150838284d21e75cfb9e5ceaeeb2054bc
GET / HTTP/1.1
Host: 4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
DNT: 1
Connection: keep-alive
Referer: https://c.adsco.re/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Tue, 07 May 2024 19:09:38 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Access-Control-Allow-Methods: GET, HEAD, OPTIONS
Access-Control-Allow-Headers: Content-Type
Access-Control-Allow-Origin: *
Access-Control-Max-Age: 2592000
Cache-Control: private, max-age=5
Content-Encoding: gzip
|
|
| meetingrailroad.com/sbar.json?key=c8df4db5ea2940d8c65eba8e505ee98d&uuid=6b796f6e-b9e2-4fee-95e2-90a0fb203294%3A1%3A1 | 172.240.108.76 | 200 OK | 8.2 kB |
URL GET HTTP/1.1meetingrailroad.com/sbar.json?key=c8df4db5ea2940d8c65eba8e505ee98d&uuid=6b796f6e-b9e2-4fee-95e2-90a0fb203294%3A1%3A1 IP172.240.108.76:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectmeetingrailroad.com Fingerprint66:48:5A:DA:2B:E7:D3:AA:79:74:AF:54:74:2F:DE:61:4A:54:1C:E1 ValidityMon, 06 May 2024 08:08:51 GMT - Sun, 04 Aug 2024 08:08:50 GMT
Hash69718271f42924455b922980a238d37c db87132b874c03ddbbd0fa532ba3b43f93d62096 fceefe3037085f1490a53c407b013777335b737466ff824904805cebe4590ed7
GET /sbar.json?key=c8df4db5ea2940d8c65eba8e505ee98d&uuid=6b796f6e-b9e2-4fee-95e2-90a0fb203294%3A1%3A1 HTTP/1.1
Host: meetingrailroad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:09:38 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://happy-best-insurance.netlify.app
Access-Control-Allow-Origin: https://happy-best-insurance.netlify.app
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17666392; expires=Wed, 08 May 2024 19:09:38 GMT; secure; SameSite=None
uid_id2=6b796f6e-b9e2-4fee-95e2-90a0fb203294:1:1; expires=Tue, 14 May 2024 19:09:38 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 08 May 2024 19:09:38 GMT; secure; SameSite=None
uncs=1; expires=Wed, 08 May 2024 19:09:38 GMT; secure; SameSite=None
pdhtkv29=true; expires=Wed, 08 May 2024 19:09:38 GMT; secure; SameSite=None
uncs29=1; expires=Wed, 08 May 2024 19:09:38 GMT; secure; SameSite=None
slecc8df4db5ea2940d8c65eba8e505ee98d=[5210994,5210995]; expires=Tue, 07 May 2024 19:09:43 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7e044cb1d7d40d5e70fb6c8d1cba3221
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| rbpedqseszqf.n4.adsco.re/ | 38.132.109.115 | 200 OK | 0 B |
URL POST HTTP/2rbpedqseszqf.n4.adsco.re/ IP38.132.109.115:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subject*.n4.adsco.re Fingerprint45:6E:69:F7:75:1D:65:9E:20:3D:CF:CE:8B:F5:36:72:85:BD:76:EC ValidityFri, 19 Apr 2024 09:12:46 GMT - Thu, 18 Jul 2024 09:12:45 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: rbpedqseszqf.n4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:38 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 16 Jun 2023 08:37:42 GMT
etag: "648c1f56-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| meetingrailroad.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRSu3ix4iOJfbirMwYNCdra7Z6ZnOjksxmRlcc3GRDGgKNVd1ZNya7qaqq7pySISXJAcJ148Cb3f7GbRBNFLDoKJzAY8LAg7elnEPXnRkxAIXgTpyeLig3o%2F9b2C976vPt2wB8SHpftn31BrQko636q7tZcue97p2rJI7aA26AQfBM3TNd0%2FFQZ19%2BXaazxeVfO%2B67mu53q1RaF5ogbzFQiR3Q69eujWm37dazUx0P%2BvjXVgqAPWPyDPQLDJ7H3nBEQ8Rtr75iw3q7nKTp7rWUlzpdFn22%2Bnq6kqUvSO0kQ7SNLtw24os7d4Fyrdmo4L1f%2BvMRIT4vx4F1G6fTgkov7mdM5IgqeI2HEU%2FTG4HEPQMWK1DsH2CBAznF9B2rt5XumCXn2E0gqdkNmHDyCKCZn97QTS3tdnpBjULilpc6FSg0FSQgzGEN0xMruDfG0GothBnH8CwX4i8w%2BXkfY2V4xUEGz%2FxSBqh0ES8Lko5P5cM%2BF8Lmxxfy50qZtEvtvww%2BaUICHGEMkYkg9BjQNbHeHAJg5s5qDH9mux53ltl8XU7YRx3GBtHgXM9Wg78ajnBh3YuNphiDwbIpZDxPoaMn0Nq%2BLGhDhPfQFtf4C5UsKwYzD5hDhvfow%2BK1FwgsIQFJSgEARFTlD0yy0mjW%2FKm0waG3mH0T%2BMjXKk8u4G3VJ5l6cEVA%2BhWbmRHZCnKyadJ25cxirfr8UdljRZ1OLUD5su68RBi0e0w1tui%2FOww2BECWFmpnuviQl59tfHkFXq3jqOiO7AyB3E4nlQ%2BwJoUYJeKbGW3qE2VyI1VtM05iJNVL1yYKpEls8iv%2BpsyAPy3FTVlXUNHu8u%2FP3H4Jd%2FHtxBrEtkusSH4j5BV14fXVQF2byoCkO%2BXcly0RNrtFL8Uk5zPvvV6%2FxqoTRbOmuGX74SV0CV3n6Lm3yZpkykXUNunRGMcb2odMzJ90vmHR5dsObKGatTmy1feHVxqZdpboxQ6RhU7J37HLGYkCfvvTf9yiff%2FR1Cj6FtiZ7dJYcGoXYQZ9dgst2FPx9f%2Bu791gKMItDyqCfKHBS2HGk%2FOrqUgkDyo5pGJQw%2FoiDiu%2Ff%2BeoSNNK1eU1FumOvo6hnQfB1pr0Rfl%2BjLElQOYeyxUZ7p3YWfG1NDJGdGkdQzm5HU8rMpyZUzMGK%2F1m40XBqELa%2FdprwdNf1OEniMUr8Z%2BEFAG8jNJDn1kf4XAAD%2F%2FwEAAP%2F%2FLQjng6QEAAA%3D | 172.240.108.76 | 200 OK | 7 B |
URL GET HTTP/1.1meetingrailroad.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRSu3ix4iOJfbirMwYNCdra7Z6ZnOjksxmRlcc3GRDGgKNVd1ZNya7qaqq7pySISXJAcJ148Cb3f7GbRBNFLDoKJzAY8LAg7elnEPXnRkxAIXgTpyeLig3o%2F9b2C976vPt2wB8SHpftn31BrQko636q7tZcue97p2rJI7aA26AQfBM3TNd0%2FFQZ19%2BXaazxeVfO%2B67mu53q1RaF5ogbzFQiR3Q69eujWm37dazUx0P%2BvjXVgqAPWPyDPQLDJ7H3nBEQ8Rtr75iw3q7nKTp7rWUlzpdFn22%2Bnq6kqUvSO0kQ7SNLtw24os7d4Fyrdmo4L1f%2BvMRIT4vx4F1G6fTgkov7mdM5IgqeI2HEU%2FTG4HEPQMWK1DsH2CBAznF9B2rt5XumCXn2E0gqdkNmHDyCKCZn97QTS3tdnpBjULilpc6FSg0FSQgzGEN0xMruDfG0GothBnH8CwX4i8w%2BXkfY2V4xUEGz%2FxSBqh0ES8Lko5P5cM%2BF8Lmxxfy50qZtEvtvww%2BaUICHGEMkYkg9BjQNbHeHAJg5s5qDH9mux53ltl8XU7YRx3GBtHgXM9Wg78ajnBh3YuNphiDwbIpZDxPoaMn0Nq%2BLGhDhPfQFtf4C5UsKwYzD5hDhvfow%2BK1FwgsIQFJSgEARFTlD0yy0mjW%2FKm0waG3mH0T%2BMjXKk8u4G3VJ5l6cEVA%2BhWbmRHZCnKyadJ25cxirfr8UdljRZ1OLUD5su68RBi0e0w1tui%2FOww2BECWFmpnuviQl59tfHkFXq3jqOiO7AyB3E4nlQ%2BwJoUYJeKbGW3qE2VyI1VtM05iJNVL1yYKpEls8iv%2BpsyAPy3FTVlXUNHu8u%2FP3H4Jd%2FHtxBrEtkusSH4j5BV14fXVQF2byoCkO%2BXcly0RNrtFL8Uk5zPvvV6%2FxqoTRbOmuGX74SV0CV3n6Lm3yZpkykXUNunRGMcb2odMzJ90vmHR5dsObKGatTmy1feHVxqZdpboxQ6RhU7J37HLGYkCfvvTf9yiff%2FR1Cj6FtiZ7dJYcGoXYQZ9dgst2FPx9f%2Bu791gKMItDyqCfKHBS2HGk%2FOrqUgkDyo5pGJQw%2FoiDiu%2Ff%2BeoSNNK1eU1FumOvo6hnQfB1pr0Rfl%2BjLElQOYeyxUZ7p3YWfG1NDJGdGkdQzm5HU8rMpyZUzMGK%2F1m40XBqELa%2FdprwdNf1OEniMUr8Z%2BEFAG8jNJDn1kf4XAAD%2F%2FwEAAP%2F%2FLQjng6QEAAA%3D IP172.240.108.76:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectmeetingrailroad.com Fingerprint66:48:5A:DA:2B:E7:D3:AA:79:74:AF:54:74:2F:DE:61:4A:54:1C:E1 ValidityMon, 06 May 2024 08:08:51 GMT - Sun, 04 Aug 2024 08:08:50 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSTYgcRRSu3ix4iOJfbirMwYNCdra7Z6ZnOjksxmRlcc3GRDGgKNVd1ZNya7qaqq7pySISXJAcJ148Cb3f7GbRBNFLDoKJzAY8LAg7elnEPXnRkxAIXgTpyeLig3o%2F9b2C976vPt2wB8SHpftn31BrQko636q7tZcue97p2rJI7aA26AQfBM3TNd0%2FFQZ19%2BXaazxeVfO%2B67mu53q1RaF5ogbzFQiR3Q69eujWm37dazUx0P%2BvjXVgqAPWPyDPQLDJ7H3nBEQ8Rtr75iw3q7nKTp7rWUlzpdFn22%2Bnq6kqUvSO0kQ7SNLtw24os7d4Fyrdmo4L1f%2BvMRIT4vx4F1G6fTgkov7mdM5IgqeI2HEU%2FTG4HEPQMWK1DsH2CBAznF9B2rt5XumCXn2E0gqdkNmHDyCKCZn97QTS3tdnpBjULilpc6FSg0FSQgzGEN0xMruDfG0GothBnH8CwX4i8w%2BXkfY2V4xUEGz%2FxSBqh0ES8Lko5P5cM%2BF8Lmxxfy50qZtEvtvww%2BaUICHGEMkYkg9BjQNbHeHAJg5s5qDH9mux53ltl8XU7YRx3GBtHgXM9Wg78ajnBh3YuNphiDwbIpZDxPoaMn0Nq%2BLGhDhPfQFtf4C5UsKwYzD5hDhvfow%2BK1FwgsIQFJSgEARFTlD0yy0mjW%2FKm0waG3mH0T%2BMjXKk8u4G3VJ5l6cEVA%2BhWbmRHZCnKyadJ25cxirfr8UdljRZ1OLUD5su68RBi0e0w1tui%2FOww2BECWFmpnuviQl59tfHkFXq3jqOiO7AyB3E4nlQ%2BwJoUYJeKbGW3qE2VyI1VtM05iJNVL1yYKpEls8iv%2BpsyAPy3FTVlXUNHu8u%2FP3H4Jd%2FHtxBrEtkusSH4j5BV14fXVQF2byoCkO%2BXcly0RNrtFL8Uk5zPvvV6%2FxqoTRbOmuGX74SV0CV3n6Lm3yZpkykXUNunRGMcb2odMzJ90vmHR5dsObKGatTmy1feHVxqZdpboxQ6RhU7J37HLGYkCfvvTf9yiff%2FR1Cj6FtiZ7dJYcGoXYQZ9dgst2FPx9f%2Bu791gKMItDyqCfKHBS2HGk%2FOrqUgkDyo5pGJQw%2FoiDiu%2Ff%2BeoSNNK1eU1FumOvo6hnQfB1pr0Rfl%2BjLElQOYeyxUZ7p3YWfG1NDJGdGkdQzm5HU8rMpyZUzMGK%2F1m40XBqELa%2FdprwdNf1OEniMUr8Z%2BEFAG8jNJDn1kf4XAAD%2F%2FwEAAP%2F%2FLQjng6QEAAA%3D HTTP/1.1
Host: meetingrailroad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Cookie: u_pl=17666392; uid_id2=6b796f6e-b9e2-4fee-95e2-90a0fb203294:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc8df4db5ea2940d8c65eba8e505ee98d=[5210994,5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:09:38 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0eefaa5db4bd1bf770e465e99824b009
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| premiumvertising.com/qaxhbaqnquet?dgxqrApH=BQLyAAAAAAAACZUAAlTNqDsil6D0tpAUsdYLDYiZNQ9OrB24RDYjpQQR8fJHTzFZMgHrn03Xuy4ZHM1KJ-xujbjbVZQYiCL-xZ-XMyev-RAv5t1Im1byA2ys9zbFx2w6QXryx9WMsrcKslXhlJJsxtq6EGZ9WErctJ578sAWkKza7aLJVkgbdUeskpUPl1uSRqT_4wioPCYGDrNtbY2zgpPihjZVhMeaZPRr_Qntg5zqyb-9setwFzwOsTBcoGYHuWECaxVSp71JptCAqdLMjO_PL21rRgs5RAvSWgaOB8D0cWkpxYwyQpXIhlBafBNc1Kgvt5jDDQq3OyhZs4IYJ8ODrZYhNkmScQbCOhVwPUBm2loeZBIeNf7pvKnnkJ3QQ1cMhRQ0EBWYBmIDHwvL6WE5y90oVw0HBiY4fg316Is_gJHY0nCH_TLFxKr3ELaM98Fs--1qXH8sbzOa27vi4LCljPUPF_MyulOi_ofziyQWlS1BtFNVFyKY_FYHFSZV4ey0r6PrIbG97QenT8zaVq_dDOjSPU3nGpRDHj5ttUAZODmjjxqBiVbvK8E-izKJue3p2O4yndLDO8J1FG6A0lfT7Lx8PYmwXGnfee0l9NmfXAd79EuUK6XN1olnK77VSRttgMnFnayRWcapPhORkl6mg8g_J93ViAhk6k-5DSdj3OZ6PYnlkPny_HZyRtbl8bsHIQgtvPMoN57uViTJ_1JUvLePlF5tr-Q_SEJMKWAxxIOCAMrhmR-9y1ai0Q1OpV4QPUoQ4uF9i2WDgg7EbMqHxID_N8We-33TAtttxKXoAHu8F4Dt9a39FJarRJxEqkc-ZlrSjAyRWxbI4tmRdcwT7-pbq2lrUOc3nYzxjF2pO2xQlEf4fOYN_AZshMwm-JwYnSR0j_IMjszyaJXVNJUUuCrSv_awYSndhNWrpGLShAoMhTSWoxVmijE0D8-BSDvWb1gyEoTtwrFL6vLlnnfmNNoQekJkAzfFJQTHsfkXFfnH2-Euo_NavScw&wgEdAjXk=4&CglsAaXP=4067087&vrhTCpGj=&AaxlDonB=0,0&knXxQqoS=&ajymogqY=&s=1280,1024,1,1280,1024,0 | 162.252.214.11 | 200 OK | 44 B |
URL GET HTTP/2premiumvertising.com/qaxhbaqnquet?dgxqrApH=BQLyAAAAAAAACZUAAlTNqDsil6D0tpAUsdYLDYiZNQ9OrB24RDYjpQQR8fJHTzFZMgHrn03Xuy4ZHM1KJ-xujbjbVZQYiCL-xZ-XMyev-RAv5t1Im1byA2ys9zbFx2w6QXryx9WMsrcKslXhlJJsxtq6EGZ9WErctJ578sAWkKza7aLJVkgbdUeskpUPl1uSRqT_4wioPCYGDrNtbY2zgpPihjZVhMeaZPRr_Qntg5zqyb-9setwFzwOsTBcoGYHuWECaxVSp71JptCAqdLMjO_PL21rRgs5RAvSWgaOB8D0cWkpxYwyQpXIhlBafBNc1Kgvt5jDDQq3OyhZs4IYJ8ODrZYhNkmScQbCOhVwPUBm2loeZBIeNf7pvKnnkJ3QQ1cMhRQ0EBWYBmIDHwvL6WE5y90oVw0HBiY4fg316Is_gJHY0nCH_TLFxKr3ELaM98Fs--1qXH8sbzOa27vi4LCljPUPF_MyulOi_ofziyQWlS1BtFNVFyKY_FYHFSZV4ey0r6PrIbG97QenT8zaVq_dDOjSPU3nGpRDHj5ttUAZODmjjxqBiVbvK8E-izKJue3p2O4yndLDO8J1FG6A0lfT7Lx8PYmwXGnfee0l9NmfXAd79EuUK6XN1olnK77VSRttgMnFnayRWcapPhORkl6mg8g_J93ViAhk6k-5DSdj3OZ6PYnlkPny_HZyRtbl8bsHIQgtvPMoN57uViTJ_1JUvLePlF5tr-Q_SEJMKWAxxIOCAMrhmR-9y1ai0Q1OpV4QPUoQ4uF9i2WDgg7EbMqHxID_N8We-33TAtttxKXoAHu8F4Dt9a39FJarRJxEqkc-ZlrSjAyRWxbI4tmRdcwT7-pbq2lrUOc3nYzxjF2pO2xQlEf4fOYN_AZshMwm-JwYnSR0j_IMjszyaJXVNJUUuCrSv_awYSndhNWrpGLShAoMhTSWoxVmijE0D8-BSDvWb1gyEoTtwrFL6vLlnnfmNNoQekJkAzfFJQTHsfkXFfnH2-Euo_NavScw&wgEdAjXk=4&CglsAaXP=4067087&vrhTCpGj=&AaxlDonB=0,0&knXxQqoS=&ajymogqY=&s=1280,1024,1,1280,1024,0 IP162.252.214.11:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerSectigo Limited Subjectpremiumvertising.com FingerprintD1:CE:57:04:BC:F5:7B:3C:98:B9:B6:AE:A1:12:B7:56:74:56:F0:8B ValidityMon, 14 Aug 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashd5f0a25e4d3522d56d48ce7bc3e518fb 86794caff58f7fee6e684c2ba7195f970a8d6f4c 9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /qaxhbaqnquet?dgxqrApH=BQLyAAAAAAAACZUAAlTNqDsil6D0tpAUsdYLDYiZNQ9OrB24RDYjpQQR8fJHTzFZMgHrn03Xuy4ZHM1KJ-xujbjbVZQYiCL-xZ-XMyev-RAv5t1Im1byA2ys9zbFx2w6QXryx9WMsrcKslXhlJJsxtq6EGZ9WErctJ578sAWkKza7aLJVkgbdUeskpUPl1uSRqT_4wioPCYGDrNtbY2zgpPihjZVhMeaZPRr_Qntg5zqyb-9setwFzwOsTBcoGYHuWECaxVSp71JptCAqdLMjO_PL21rRgs5RAvSWgaOB8D0cWkpxYwyQpXIhlBafBNc1Kgvt5jDDQq3OyhZs4IYJ8ODrZYhNkmScQbCOhVwPUBm2loeZBIeNf7pvKnnkJ3QQ1cMhRQ0EBWYBmIDHwvL6WE5y90oVw0HBiY4fg316Is_gJHY0nCH_TLFxKr3ELaM98Fs--1qXH8sbzOa27vi4LCljPUPF_MyulOi_ofziyQWlS1BtFNVFyKY_FYHFSZV4ey0r6PrIbG97QenT8zaVq_dDOjSPU3nGpRDHj5ttUAZODmjjxqBiVbvK8E-izKJue3p2O4yndLDO8J1FG6A0lfT7Lx8PYmwXGnfee0l9NmfXAd79EuUK6XN1olnK77VSRttgMnFnayRWcapPhORkl6mg8g_J93ViAhk6k-5DSdj3OZ6PYnlkPny_HZyRtbl8bsHIQgtvPMoN57uViTJ_1JUvLePlF5tr-Q_SEJMKWAxxIOCAMrhmR-9y1ai0Q1OpV4QPUoQ4uF9i2WDgg7EbMqHxID_N8We-33TAtttxKXoAHu8F4Dt9a39FJarRJxEqkc-ZlrSjAyRWxbI4tmRdcwT7-pbq2lrUOc3nYzxjF2pO2xQlEf4fOYN_AZshMwm-JwYnSR0j_IMjszyaJXVNJUUuCrSv_awYSndhNWrpGLShAoMhTSWoxVmijE0D8-BSDvWb1gyEoTtwrFL6vLlnnfmNNoQekJkAzfFJQTHsfkXFfnH2-Euo_NavScw&wgEdAjXk=4&CglsAaXP=4067087&vrhTCpGj=&AaxlDonB=0,0&knXxQqoS=&ajymogqY=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: premiumvertising.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
popads-node: wb11
access-control-allow-origin: *
asf: 6
set-cookie: PP_CV=yes; expires=Tue, 07 May 2024 20:09:39 GMT; Max-Age=3600
cache-control: private, no-store, no-cache, must-revalidate, no-transform, max-age=0
pragma: no-cache
vse: 233
popads-ec: REFM
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Tue, 07 May 2024 19:09:39 GMT
X-Firefox-Spdy: h2
|
|
| premiumvertising.com/gpcqzxapfdfyzdg?dgxqrApH=BQLyAAAAAAAACZUAAmxZ-4cAwEfhvGf2UECGB_qtvqYT2579VsDyHq-x-KMOCoWKO8Cwh9HummKUuTpCFkv3BeLi9Kr4rUAhwDBFDdrDayBy77aoiocQqtEJ9eakB7m2Bv7eyhFcARJjhhjlaXFNE_tcZ0Rn3BcLXOu9WpLlbvBIm1TPhQQpLI6-DrWbj4l-wuC8VqY40n7Px5tkoHYpJJnGhV3TNeuAZtZLOxqqd92lHL1Iz8RxrfHtF7B4Y8Ri0zFgO5WAu-GvP7pjORST-62SbB8vy8jkAIiCCYjlg--qHeTOcwAiUvFXZrMmzJZ0k4WDHsYpvk__SavvBukDEvq8CcO-Kubu4awv0EfDM-ufp3Z2AJUIXcUlXQHxAgL_0bNpZg-DidYS4HGa_GbXU_GmMohSr43z3uah2xcymAM0aTKMvbyR_zlFWO-uSdfZoonTDqYGi9UJO5buYlGKZXfMofAr6ArxSbFUVAHMCJ_EAWR5QBNp2jYL5DDutxmMZnr7KSnWTQLHETDhph0ieF-cMwu3hsRDi86-M_lXu1avtMtErIEVpHZN3vCP77sxR5gk47fQ3MviLUK-8ydHAKWdBySYPLh5tDGVcLjFtYvVlqL6dqtp9yS6iz9yXGM_LGSBvOx97WraSwVDq5I9SqiXd9WtvY92l-oEMt1G5x4aQsQIFZflhAQng-1_RMTxfgYuqrxz8_zV8vLQHk3cV97uDRbqPAmvqWFW1bnPzsZJsP6bn4tnXvQRE3UIoQCuO3B22AU2972eFqXKrWkau2Mm99_NszKap2_At50RnAY9WgTyUU2xKs4VDXrv6r9GXy3jQhI1t7fvavnSysfXLyEaSHTHZgewWqwfhu6T_pb7uwrnQjUSc6GjA72NIHzjZwo3M6auDJXPJE98gxKg7Ws_eirLBqFXfmT-rxbonDnC8o1whVPJ60GJPqne-W20iV5Fzcozo77EVTh9_JlsoEpI0-i43wm75V7996Ly7tVOFufSNXso2WoZfokU&wgEdAjXk=4&CglsAaXP=4067087&vrhTCpGj=&AaxlDonB=0,0&knXxQqoS=&ajymogqY=&s=1280,1024,1,1280,1024,0 | 162.252.214.11 | 200 OK | 44 B |
URL GET HTTP/2premiumvertising.com/gpcqzxapfdfyzdg?dgxqrApH=BQLyAAAAAAAACZUAAmxZ-4cAwEfhvGf2UECGB_qtvqYT2579VsDyHq-x-KMOCoWKO8Cwh9HummKUuTpCFkv3BeLi9Kr4rUAhwDBFDdrDayBy77aoiocQqtEJ9eakB7m2Bv7eyhFcARJjhhjlaXFNE_tcZ0Rn3BcLXOu9WpLlbvBIm1TPhQQpLI6-DrWbj4l-wuC8VqY40n7Px5tkoHYpJJnGhV3TNeuAZtZLOxqqd92lHL1Iz8RxrfHtF7B4Y8Ri0zFgO5WAu-GvP7pjORST-62SbB8vy8jkAIiCCYjlg--qHeTOcwAiUvFXZrMmzJZ0k4WDHsYpvk__SavvBukDEvq8CcO-Kubu4awv0EfDM-ufp3Z2AJUIXcUlXQHxAgL_0bNpZg-DidYS4HGa_GbXU_GmMohSr43z3uah2xcymAM0aTKMvbyR_zlFWO-uSdfZoonTDqYGi9UJO5buYlGKZXfMofAr6ArxSbFUVAHMCJ_EAWR5QBNp2jYL5DDutxmMZnr7KSnWTQLHETDhph0ieF-cMwu3hsRDi86-M_lXu1avtMtErIEVpHZN3vCP77sxR5gk47fQ3MviLUK-8ydHAKWdBySYPLh5tDGVcLjFtYvVlqL6dqtp9yS6iz9yXGM_LGSBvOx97WraSwVDq5I9SqiXd9WtvY92l-oEMt1G5x4aQsQIFZflhAQng-1_RMTxfgYuqrxz8_zV8vLQHk3cV97uDRbqPAmvqWFW1bnPzsZJsP6bn4tnXvQRE3UIoQCuO3B22AU2972eFqXKrWkau2Mm99_NszKap2_At50RnAY9WgTyUU2xKs4VDXrv6r9GXy3jQhI1t7fvavnSysfXLyEaSHTHZgewWqwfhu6T_pb7uwrnQjUSc6GjA72NIHzjZwo3M6auDJXPJE98gxKg7Ws_eirLBqFXfmT-rxbonDnC8o1whVPJ60GJPqne-W20iV5Fzcozo77EVTh9_JlsoEpI0-i43wm75V7996Ly7tVOFufSNXso2WoZfokU&wgEdAjXk=4&CglsAaXP=4067087&vrhTCpGj=&AaxlDonB=0,0&knXxQqoS=&ajymogqY=&s=1280,1024,1,1280,1024,0 IP162.252.214.11:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerSectigo Limited Subjectpremiumvertising.com FingerprintD1:CE:57:04:BC:F5:7B:3C:98:B9:B6:AE:A1:12:B7:56:74:56:F0:8B ValidityMon, 14 Aug 2023 00:00:00 GMT - Fri, 13 Sep 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashd5f0a25e4d3522d56d48ce7bc3e518fb 86794caff58f7fee6e684c2ba7195f970a8d6f4c 9d781128a8ece413b003d5612b8398bf9340ef7f5b751d12bd125ba523d3ceb5
GET /gpcqzxapfdfyzdg?dgxqrApH=BQLyAAAAAAAACZUAAmxZ-4cAwEfhvGf2UECGB_qtvqYT2579VsDyHq-x-KMOCoWKO8Cwh9HummKUuTpCFkv3BeLi9Kr4rUAhwDBFDdrDayBy77aoiocQqtEJ9eakB7m2Bv7eyhFcARJjhhjlaXFNE_tcZ0Rn3BcLXOu9WpLlbvBIm1TPhQQpLI6-DrWbj4l-wuC8VqY40n7Px5tkoHYpJJnGhV3TNeuAZtZLOxqqd92lHL1Iz8RxrfHtF7B4Y8Ri0zFgO5WAu-GvP7pjORST-62SbB8vy8jkAIiCCYjlg--qHeTOcwAiUvFXZrMmzJZ0k4WDHsYpvk__SavvBukDEvq8CcO-Kubu4awv0EfDM-ufp3Z2AJUIXcUlXQHxAgL_0bNpZg-DidYS4HGa_GbXU_GmMohSr43z3uah2xcymAM0aTKMvbyR_zlFWO-uSdfZoonTDqYGi9UJO5buYlGKZXfMofAr6ArxSbFUVAHMCJ_EAWR5QBNp2jYL5DDutxmMZnr7KSnWTQLHETDhph0ieF-cMwu3hsRDi86-M_lXu1avtMtErIEVpHZN3vCP77sxR5gk47fQ3MviLUK-8ydHAKWdBySYPLh5tDGVcLjFtYvVlqL6dqtp9yS6iz9yXGM_LGSBvOx97WraSwVDq5I9SqiXd9WtvY92l-oEMt1G5x4aQsQIFZflhAQng-1_RMTxfgYuqrxz8_zV8vLQHk3cV97uDRbqPAmvqWFW1bnPzsZJsP6bn4tnXvQRE3UIoQCuO3B22AU2972eFqXKrWkau2Mm99_NszKap2_At50RnAY9WgTyUU2xKs4VDXrv6r9GXy3jQhI1t7fvavnSysfXLyEaSHTHZgewWqwfhu6T_pb7uwrnQjUSc6GjA72NIHzjZwo3M6auDJXPJE98gxKg7Ws_eirLBqFXfmT-rxbonDnC8o1whVPJ60GJPqne-W20iV5Fzcozo77EVTh9_JlsoEpI0-i43wm75V7996Ly7tVOFufSNXso2WoZfokU&wgEdAjXk=4&CglsAaXP=4067087&vrhTCpGj=&AaxlDonB=0,0&knXxQqoS=&ajymogqY=&s=1280,1024,1,1280,1024,0 HTTP/1.1
Host: premiumvertising.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
popads-node: wb11
access-control-allow-origin: *
asf: 6
set-cookie: PP_CV=yes; expires=Tue, 07 May 2024 20:09:39 GMT; Max-Age=3600
cache-control: private, no-store, no-cache, must-revalidate, no-transform, max-age=0
pragma: no-cache
vse: 233
popads-ec: REFM
content-type: text/javascript;charset=UTF-8
content-length: 44
date: Tue, 07 May 2024 19:09:39 GMT
X-Firefox-Spdy: h2
|
|
| unseenreport.com/pxf.gif?uuid=6b796f6e-b9e2-4fee-95e2-90a0fb203294&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=c8df4db5ea2940d8c65eba8e505ee98d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19 | 192.243.59.13 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=6b796f6e-b9e2-4fee-95e2-90a0fb203294&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=c8df4db5ea2940d8c65eba8e505ee98d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19 IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=6b796f6e-b9e2-4fee-95e2-90a0fb203294&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=c8df4db5ea2940d8c65eba8e505ee98d&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=19 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 07 May 2024 19:09:39 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: bbd9533c317dacfed8525c4ff9b3052b
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Findex.html&l=1125&fd=159 | 172.240.108.76 | 200 OK | 0 B |
URL GET HTTP/1.1meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Findex.html&l=1125&fd=159 IP172.240.108.76:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectmeetingrailroad.com Fingerprint66:48:5A:DA:2B:E7:D3:AA:79:74:AF:54:74:2F:DE:61:4A:54:1C:E1 ValidityMon, 06 May 2024 08:08:51 GMT - Sun, 04 Aug 2024 08:08:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.barscreative1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Findex.html&l=1125&fd=159 HTTP/1.1
Host: meetingrailroad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Cookie: u_pl=17666392; uid_id2=6b796f6e-b9e2-4fee-95e2-90a0fb203294:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc8df4db5ea2940d8c65eba8e505ee98d=[5210994,5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:09:39 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/img/icon.png | 188.114.97.1 | 200 OK | 12 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/img/icon.png IP188.114.97.1:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typePNG image data, 230 x 253, 8-bit colormap, non-interlaced Hashb1f546ae7b0fbf8f3d19946146456d8a 37792f4d6fb3482b3d0281139a61e2e426fa3056 2a0b851026a70a5da3b5f2fe9e7f5d098c4126c035a68de8e90f8408bab6fd33
GET /sb/interstitial/sweep/default/stories/1/img/icon.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:39 GMT
content-type: image/png
content-length: 11963
last-modified: Fri, 19 Jan 2024 14:17:32 GMT
etag: "65aa847c-2ebb"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 615099
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=iz2MzSvrjGUMG8nU7HugUmbMNxkZQybcDdngXURfL3NWKTqtzBG3qD2sNX9AKoAMpuRgQlj0u5s0EFeHVMTKqXP6pMNDUB8jGNY2f%2BL9C6REnt%2B2SSYzTiMo3eQBLyECTG4kVk%2B9sXBG"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880381712f180b02-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| lbarlr1rhdzl.s4.adsco.re/ | 185.200.116.51 | 200 OK | 0 B |
URL POST HTTP/2lbarlr1rhdzl.s4.adsco.re/ IP185.200.116.51:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subject*.s4.adsco.re Fingerprint6C:EA:F6:8F:57:34:25:F9:39:76:98:E0:61:B8:C8:86:AD:CC:68:0A ValidityFri, 19 Apr 2024 09:12:40 GMT - Thu, 18 Jul 2024 09:12:39 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: lbarlr1rhdzl.s4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:39 GMT
content-type: text/html
content-length: 0
last-modified: Tue, 03 Oct 2023 13:29:59 GMT
etag: "651c1757-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Fcss%2Fanimate.css&l=78693&fd=491 | 172.240.108.76 | 200 OK | 0 B |
URL GET HTTP/1.1meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Fcss%2Fanimate.css&l=78693&fd=491 IP172.240.108.76:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectmeetingrailroad.com Fingerprint66:48:5A:DA:2B:E7:D3:AA:79:74:AF:54:74:2F:DE:61:4A:54:1C:E1 ValidityMon, 06 May 2024 08:08:51 GMT - Sun, 04 Aug 2024 08:08:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Fcss%2Fanimate.css&l=78693&fd=491 HTTP/1.1
Host: meetingrailroad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Cookie: u_pl=17666392; uid_id2=6b796f6e-b9e2-4fee-95e2-90a0fb203294:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc8df4db5ea2940d8c65eba8e505ee98d=[5210994,5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:09:39 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Fcss%2Fstyle.css&l=1434&fd=502 | 172.240.108.76 | 200 OK | 0 B |
URL GET HTTP/1.1meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Fcss%2Fstyle.css&l=1434&fd=502 IP172.240.108.76:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectmeetingrailroad.com Fingerprint66:48:5A:DA:2B:E7:D3:AA:79:74:AF:54:74:2F:DE:61:4A:54:1C:E1 ValidityMon, 06 May 2024 08:08:51 GMT - Sun, 04 Aug 2024 08:08:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Fcss%2Fstyle.css&l=1434&fd=502 HTTP/1.1
Host: meetingrailroad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Cookie: u_pl=17666392; uid_id2=6b796f6e-b9e2-4fee-95e2-90a0fb203294:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc8df4db5ea2940d8c65eba8e505ee98d=[5210994,5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:09:39 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Fjs%2Fscript.js&l=321&fd=314 | 172.240.108.76 | 200 OK | 0 B |
URL GET HTTP/1.1meetingrailroad.com/pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Fjs%2Fscript.js&l=321&fd=314 IP172.240.108.76:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectmeetingrailroad.com Fingerprint66:48:5A:DA:2B:E7:D3:AA:79:74:AF:54:74:2F:DE:61:4A:54:1C:E1 ValidityMon, 06 May 2024 08:08:51 GMT - Sun, 04 Aug 2024 08:08:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbls?bv=24.6.6370&tmpl=482&u=https%3A%2F%2Fcdn.creative-bars1.com%2Fsb%2Finterstitial%2Fsweep%2Fdefault%2Fstories%2F1%2Fjs%2Fscript.js&l=321&fd=314 HTTP/1.1
Host: meetingrailroad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Cookie: u_pl=17666392; uid_id2=6b796f6e-b9e2-4fee-95e2-90a0fb203294:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc8df4db5ea2940d8c65eba8e505ee98d=[5210994,5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:09:40 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| rbpedqseszqf.s4.adsco.re/ | 185.200.116.51 | 200 OK | 0 B |
URL POST HTTP/2rbpedqseszqf.s4.adsco.re/ IP185.200.116.51:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subject*.s4.adsco.re Fingerprint6C:EA:F6:8F:57:34:25:F9:39:76:98:E0:61:B8:C8:86:AD:CC:68:0A ValidityFri, 19 Apr 2024 09:12:40 GMT - Thu, 18 Jul 2024 09:12:39 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: rbpedqseszqf.s4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:40 GMT
content-type: text/html
content-length: 0
last-modified: Tue, 03 Oct 2023 13:29:59 GMT
etag: "651c1757-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 | 142.250.74.99 | 200 OK | 16 kB |
URL GET HTTP/3fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 IP142.250.74.99:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15744, version 1.0 Hash15d9f621c3bd1599f0169dcf0bd5e63e 7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52 f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615
GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 03 May 2024 06:08:19 GMT
expires: Sat, 03 May 2025 06:08:19 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
age: 392481
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| meetingrailroad.com/pixel/sbs?c=1 | 172.240.108.84 | 200 OK | 0 B |
URL GET HTTP/1.1meetingrailroad.com/pixel/sbs?c=1 IP172.240.108.84:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectmeetingrailroad.com Fingerprint66:48:5A:DA:2B:E7:D3:AA:79:74:AF:54:74:2F:DE:61:4A:54:1C:E1 ValidityMon, 06 May 2024 08:08:51 GMT - Sun, 04 Aug 2024 08:08:50 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /pixel/sbs?c=1 HTTP/1.1
Host: meetingrailroad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Cookie: u_pl=17666392; uid_id2=6b796f6e-b9e2-4fee-95e2-90a0fb203294:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc8df4db5ea2940d8c65eba8e505ee98d=[5210994,5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:09:40 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| meetingrailroad.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWhcVRS%2BLw24qOJfdyrMwoVCM3lv%2FqddBGsaCcamtooFRbl%2Fb3LNnXcf9743bxJEggHpcurGlfDyTdKgLaKbLgRbmRRcBISMboKYlRtdCYXiRpA3DQYP3PNzv3PhnO%2B7n26lR6SClB7Ov2HWldZ0tl72Sy9dC4LzpSUVpf1Sv9X4oFE7X7K9c%2B1G2X%2B59Jrkq2a24ge%2BH%2FhBaUFZGZr%2BbAFCxbfbQbntl2uVclCvoW%2F%2FX7vUg6MeRO%2BIPAMlxtP3vTNQfISo%2B828dKuJic9e7KaaJsaiJ3bfjlYjk0XonqSh9RBGu8fdMO5g4S5MtDMZF6b3XyNTY%2BL9eBcs2j0eEqy3PZmTacgITJxG1htB6hEUHYGbTShxQAAucGkZUffmJWMzuvYIpQU6JtMPH0BlYzL92xlE3a8vaNUvXTU6TZSJHPphDtUfQXVGiNM9JOtTUNkeePIJlPiJzD5cQtTdXnbaQInDFxus2W6EDTnD2rIyUwulnGnXZWWm7VM%2FZBW%2FWmnXJgQpNYIKR9ByAOo8pMVRHtLQQxp76IrDEg%2BCoOkLTv1Wm%2FOqaErWEH5Am2FAA7%2FRQsqLHQZI4gG4HoDbDcR2A6vqxph4T30Bm%2F4At5LDiVNwyZh4b36MnsiRSYLMEWSUIFMEWUKQ9fIdoV3F5TeFdikLjmPlOFbzoUk6W3THJB0ZEVA7gBX5VnxEni6Y9J64cQ2r8rDEWyKsCVaXtNKu%2BaLFG3XJaEvW%2FbqU7ZaAUzmUm5rsva7G5NlfH0NcqHvrNBjdg9N74Op50PQF0CwHXcmxHt2haWJU5FJLIy5VFJpy4SBMjjiZRrLmbekj8txE1eVNC8n35%2F7%2Bo%2F%2FLPw%2FugNscsc3xobpP0NHXh1dMRravmMyRb5fjRHXVOi0Uv5rQRE5%2F9bpcy4wVi%2FNu8OUrvACK9PZb0iVLNBIq6jhy64ISQtoFY7kk3y%2B6dyS7nLqVC6mN0njp8qsLi93YSueUiUag6uDi5%2BBqTJ68997kK59993coO4JNc3TTfXJsUGYPPN6Ai%2Ffn%2Fnx88bv363NwhsDqkx4We8jSfGgr7ORSKwItT2rKcjh5QgGT%2B%2Ff%2BeoQNLS1eU5Vvuevo2CnQZBNRN0fP5ujpHFQP4NJTwyS2%2B3M%2FVycGpqeGTNupbaat%2FmxCcuEcnDosVX3RZDKUTSZr9VoouWD1OvN5yFlVtFociRuH5z6y%2FwIAAP%2F%2FAQAA%2F%2F%2Bt3DJrpAQAAA%3D%3D | 172.240.108.76 | 200 OK | 7 B |
URL GET HTTP/1.1meetingrailroad.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTWhcVRS%2BLw24qOJfdyrMwoVCM3lv%2FqddBGsaCcamtooFRbl%2Fb3LNnXcf9743bxJEggHpcurGlfDyTdKgLaKbLgRbmRRcBISMboKYlRtdCYXiRpA3DQYP3PNzv3PhnO%2B7n26lR6SClB7Ov2HWldZ0tl72Sy9dC4LzpSUVpf1Sv9X4oFE7X7K9c%2B1G2X%2B59Jrkq2a24ge%2BH%2FhBaUFZGZr%2BbAFCxbfbQbntl2uVclCvoW%2F%2FX7vUg6MeRO%2BIPAMlxtP3vTNQfISo%2B828dKuJic9e7KaaJsaiJ3bfjlYjk0XonqSh9RBGu8fdMO5g4S5MtDMZF6b3XyNTY%2BL9eBcs2j0eEqy3PZmTacgITJxG1htB6hEUHYGbTShxQAAucGkZUffmJWMzuvYIpQU6JtMPH0BlYzL92xlE3a8vaNUvXTU6TZSJHPphDtUfQXVGiNM9JOtTUNkeePIJlPiJzD5cQtTdXnbaQInDFxus2W6EDTnD2rIyUwulnGnXZWWm7VM%2FZBW%2FWmnXJgQpNYIKR9ByAOo8pMVRHtLQQxp76IrDEg%2BCoOkLTv1Wm%2FOqaErWEH5Am2FAA7%2FRQsqLHQZI4gG4HoDbDcR2A6vqxph4T30Bm%2F4At5LDiVNwyZh4b36MnsiRSYLMEWSUIFMEWUKQ9fIdoV3F5TeFdikLjmPlOFbzoUk6W3THJB0ZEVA7gBX5VnxEni6Y9J64cQ2r8rDEWyKsCVaXtNKu%2BaLFG3XJaEvW%2FbqU7ZaAUzmUm5rsva7G5NlfH0NcqHvrNBjdg9N74Op50PQF0CwHXcmxHt2haWJU5FJLIy5VFJpy4SBMjjiZRrLmbekj8txE1eVNC8n35%2F7%2Bo%2F%2FLPw%2FugNscsc3xobpP0NHXh1dMRravmMyRb5fjRHXVOi0Uv5rQRE5%2F9bpcy4wVi%2FNu8OUrvACK9PZb0iVLNBIq6jhy64ISQtoFY7kk3y%2B6dyS7nLqVC6mN0njp8qsLi93YSueUiUag6uDi5%2BBqTJ68997kK59993coO4JNc3TTfXJsUGYPPN6Ai%2Ffn%2Fnx88bv363NwhsDqkx4We8jSfGgr7ORSKwItT2rKcjh5QgGT%2B%2Ff%2BeoQNLS1eU5Vvuevo2CnQZBNRN0fP5ujpHFQP4NJTwyS2%2B3M%2FVycGpqeGTNupbaat%2FmxCcuEcnDosVX3RZDKUTSZr9VoouWD1OvN5yFlVtFociRuH5z6y%2FwIAAP%2F%2FAQAA%2F%2F%2Bt3DJrpAQAAA%3D%3D IP172.240.108.76:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectmeetingrailroad.com Fingerprint66:48:5A:DA:2B:E7:D3:AA:79:74:AF:54:74:2F:DE:61:4A:54:1C:E1 ValidityMon, 06 May 2024 08:08:51 GMT - Sun, 04 Aug 2024 08:08:50 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTWhcVRS%2BLw24qOJfdyrMwoVCM3lv%2FqddBGsaCcamtooFRbl%2Fb3LNnXcf9743bxJEggHpcurGlfDyTdKgLaKbLgRbmRRcBISMboKYlRtdCYXiRpA3DQYP3PNzv3PhnO%2B7n26lR6SClB7Ov2HWldZ0tl72Sy9dC4LzpSUVpf1Sv9X4oFE7X7K9c%2B1G2X%2B59Jrkq2a24ge%2BH%2FhBaUFZGZr%2BbAFCxbfbQbntl2uVclCvoW%2F%2FX7vUg6MeRO%2BIPAMlxtP3vTNQfISo%2B828dKuJic9e7KaaJsaiJ3bfjlYjk0XonqSh9RBGu8fdMO5g4S5MtDMZF6b3XyNTY%2BL9eBcs2j0eEqy3PZmTacgITJxG1htB6hEUHYGbTShxQAAucGkZUffmJWMzuvYIpQU6JtMPH0BlYzL92xlE3a8vaNUvXTU6TZSJHPphDtUfQXVGiNM9JOtTUNkeePIJlPiJzD5cQtTdXnbaQInDFxus2W6EDTnD2rIyUwulnGnXZWWm7VM%2FZBW%2FWmnXJgQpNYIKR9ByAOo8pMVRHtLQQxp76IrDEg%2BCoOkLTv1Wm%2FOqaErWEH5Am2FAA7%2FRQsqLHQZI4gG4HoDbDcR2A6vqxph4T30Bm%2F4At5LDiVNwyZh4b36MnsiRSYLMEWSUIFMEWUKQ9fIdoV3F5TeFdikLjmPlOFbzoUk6W3THJB0ZEVA7gBX5VnxEni6Y9J64cQ2r8rDEWyKsCVaXtNKu%2BaLFG3XJaEvW%2FbqU7ZaAUzmUm5rsva7G5NlfH0NcqHvrNBjdg9N74Op50PQF0CwHXcmxHt2haWJU5FJLIy5VFJpy4SBMjjiZRrLmbekj8txE1eVNC8n35%2F7%2Bo%2F%2FLPw%2FugNscsc3xobpP0NHXh1dMRravmMyRb5fjRHXVOi0Uv5rQRE5%2F9bpcy4wVi%2FNu8OUrvACK9PZb0iVLNBIq6jhy64ISQtoFY7kk3y%2B6dyS7nLqVC6mN0njp8qsLi93YSueUiUag6uDi5%2BBqTJ68997kK59993coO4JNc3TTfXJsUGYPPN6Ai%2Ffn%2Fnx88bv363NwhsDqkx4We8jSfGgr7ORSKwItT2rKcjh5QgGT%2B%2Ff%2BeoQNLS1eU5Vvuevo2CnQZBNRN0fP5ujpHFQP4NJTwyS2%2B3M%2FVycGpqeGTNupbaat%2FmxCcuEcnDosVX3RZDKUTSZr9VoouWD1OvN5yFlVtFociRuH5z6y%2FwIAAP%2F%2FAQAA%2F%2F%2Bt3DJrpAQAAA%3D%3D HTTP/1.1
Host: meetingrailroad.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Cookie: u_pl=17666392; uid_id2=6b796f6e-b9e2-4fee-95e2-90a0fb203294:1:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecc8df4db5ea2940d8c65eba8e505ee98d=[5210994,5210995]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 07 May 2024 19:09:40 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0717f7b892825a4d95dab473a8eebd2e
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| rbpedqseszqf.l4.adsco.re/ | 185.200.118.51 | 200 OK | 0 B |
URL POST HTTP/2rbpedqseszqf.l4.adsco.re/ IP185.200.118.51:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subject*.l4.adsco.re FingerprintB2:51:02:63:F4:E6:E7:3A:98:79:B7:C5:F8:81:EC:E8:79:B9:BC:22 ValidityFri, 19 Apr 2024 09:12:52 GMT - Thu, 18 Jul 2024 09:12:51 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST / HTTP/1.1
Host: rbpedqseszqf.l4.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 0
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:44 GMT
content-type: text/html
content-length: 0
last-modified: Fri, 02 Jun 2023 14:03:32 GMT
etag: "6479f6b4-0"
access-control-allow-origin: *
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-expose-headers: Content-Length,Content-Range
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js | 104.18.11.207 | 200 OK | 49 kB |
URL GET HTTP/2maxcdn.bootstrapcdn.com/bootstrap/4.0.0/js/bootstrap.min.js IP104.18.11.207:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeJavaScript source, ASCII text, with very long lines (48664) Hash14d449eb8876fa55e1ef3c2cc52b0c17 a9545831803b1359cfeed47e3b4d6bae68e40e99 e7ed36ceee5450b4243bbc35188afabdfb4280c7c57597001de0ed167299b01b
GET /bootstrap/4.0.0/js/bootstrap.min.js HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:34 GMT
content-type: application/javascript; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"14d449eb8876fa55e1ef3c2cc52b0c17"
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 03/18/2024 12:46:36
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1048
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 3acd29804e13da2e3f74a186309e6154
cdn-cache: HIT
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 880381515a6f0b61-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| memegenerator.net/img/instances/42361716.jpg | 188.114.97.1 | 301 Moved Permanently | 0 B |
URL GET HTTP/3memegenerator.net/img/instances/42361716.jpg IP188.114.97.1:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectmemegenerator.net Fingerprint23:30:DC:95:2A:6E:E9:68:01:4E:C7:E8:9B:3B:A2:F8:38:F4:DE:4A ValiditySun, 05 May 2024 18:49:17 GMT - Sat, 03 Aug 2024 18:49:16 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/instances/42361716.jpg HTTP/1.1
Host: memegenerator.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 301 Moved Permanently
date: Tue, 07 May 2024 19:09:36 GMT
location: https://img.memegenerator.net/instances/42361716.jpg
x-powered-by: Express
access-control-allow-origin: memegenerator.net
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
cache-control: max-age=14400
cf-cache-status: HIT
age: 2
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=MZM6Wja9uC6MNKB96JDeDQnIP%2BtAt6TwDrxvXXSKgxaFxMKum9qZc6GgNicFnZDUJU7CTdQSa4MGSmGR62eIU1tOMVObe%2FHUTMBMj4prgtzwv%2BNumznqyeDhiDQyL2DERCpKdg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803815f2f4756b9-OSL
alt-svc: h3=":443"; ma=86400
|
|
| happy-best-insurance.netlify.app/favicon.ico | 35.156.224.161 | 404 Not Found | 3.1 kB |
URL GET HTTP/2happy-best-insurance.netlify.app/favicon.ico IP35.156.224.161:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerDigiCert Inc Subject*.netlify.app FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (3234), with no line terminators Hash983ad7ad3b11851a568dac1033e352b7 b97321d9a14c18bc49a2029cae02a7c6fae9e2a3 7037defc36dc79e60caa283cf5443f489b9daa5be1dee869404a3b0b95f687e6
GET /favicon.ico HTTP/1.1
Host: happy-best-insurance.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=6b796f6e-b9e2-4fee-95e2-90a0fb203294%3A1%3A1; a=DuliDRVgbKGaI5rF4Co5cMim4LnVZOLM
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 404 Not Found
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-encoding: br
content-type: text/html; charset=utf-8
date: Tue, 07 May 2024 19:09:37 GMT
etag: 1610690238-ssl-df
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-nf-request-id: 01HXA7C6MXKCFRS4P7HR3693X2
X-Firefox-Spdy: h2
|
|
| downstairsnegotiatebarren.com/sfp.js | 188.114.97.1 | 200 OK | 86 kB |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP188.114.97.1:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:37 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: 3b8b3fad3f4940fd5e797c1c0036db3e
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 07 May 2024 19:09:36 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NgfpHgRwIh3hDM6GVLiEPCjJSSf3VOBtoUzKPSDclJbscSxsvmsS5NZYSpPu1poBeOaszf21W4e8Ju2MsD5lV8sq97TL6njGsZq5ZWLjMO9q7dJDRpFdWoDKAysei9nLbYc1Oi5%2BNVLDTyTc3Cew3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803816008440b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| c.adsco.re/ | 104.17.167.186 | 200 OK | 82 kB |
IP104.17.167.186:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (689) Hasha0b475c65fed312aba8d7c43a0cbc928 3fdd052b41c37318e44084be4f92d42fba4ded61 2dfb2101b24f80be00b1baecce7eec815e61a13381f6983051b6261b8035468a
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 19:09:38 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Fri, 07 Jun 2024 19:09:38 GMT
etag: W/"oLR1xl/tMSq6jXxDoMvJKA=="
cf-cache-status: HIT
age: 175976
vary: Accept-Encoding
server: cloudflare
cf-ray: 88038168f97b56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/css/animate.css | 188.114.97.1 | 200 OK | 79 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/css/animate.css IP188.114.97.1:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
Hash5982c5377696d20476871062646b253f 8bf2c93fa9ccc908f7df0fb7abb911bbac3e4242 4e23a6449e6ef4614f0107cecf5c9eda75d2041c7c71f4a55d45f2a7e75450f4
GET /sb/interstitial/sweep/default/stories/1/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:39 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:17:32 GMT
etag: W/"65aa847c-13365"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=hgHoGwk8%2FBSW2DrgarkGmOGEsGi2lBTG0amZvszY%2FwtfKy9ORTGAVv8WspaelZ%2FadHtqHC36KDbF2%2FV5y21KiOKoxVpvbhvt8GydnyrHiN8Cwzt0CZbAPWvWEvRALQovdZ9nDXVNppnE"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880381711efb0b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| foundersfinancial.net/wp-content/uploads/2020/02/auto-insurance-1.jpg | 0.0.0.0 | | 0 B |
URL GET foundersfinancial.net/wp-content/uploads/2020/02/auto-insurance-1.jpg IP0.0.0.0:0
Requested byhttps://happy-best-insurance.netlify.app/
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/02/auto-insurance-1.jpg HTTP/1.1
Host: foundersfinancial.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| pop.dojo.cc/1421.js | 172.66.43.60 | 200 OK | 13 kB |
IP172.66.43.60:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerGoogle Trust Services LLC Subjectdojo.cc Fingerprint18:BA:05:3D:87:25:38:A2:EC:B2:AB:DE:09:C5:BF:06:92:F5:AE:E6 ValidityMon, 06 May 2024 20:25:13 GMT - Sun, 04 Aug 2024 20:25:12 GMT
File typeJavaScript source, ASCII text, with very long lines (5419) Hash93737d37db8a0957378104c82260c50e bac1d10660f4e9f4fa2206b94f0d5293a84f0888 b9bdfba08be76bca1598f83fc4fb2538f5f9fc6a9847ec0575385afebd885ca4
GET /1421.js HTTP/1.1
Host: pop.dojo.cc
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:34 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
cache-control: no-cache, private
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cPDm42G8UeCrcDa9O7ng4ZKuF2hzFtU1R74ELegCRf6ZB9JmN72UeSCqvWoaJvNoV2lDwPlrhGzzvWgcb8kbfXgqXNIpunetbfBgw0KuYCVAIZYQG4P%2FkxazrbXyuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880381523ed7b4f9-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| c.adsco.re/ | 0.0.0.0 | | 0 B |
IP0.0.0.0:0
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:36 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Fri, 07 Jun 2024 19:09:36 GMT
etag: W/"oLR1xl/tMSq6jXxDoMvJKA=="
cf-cache-status: HIT
age: 175974
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803816158f356af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats | 52.58.212.182 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP52.58.212.182:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash98ba584a921fd57a41cc7d0e13924b54 62a46444ab79b7e99e536b5eb29b6b87ed645b12 cd412fb8f6cf52175bc36c52023894c1c05eeec857f6178a698fa311bc121763
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:35 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://happy-best-insurance.netlify.app
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=6b796f6e-b9e2-4fee-95e2-90a0fb203294:1:1; expires=Fri, 05 May 2034 19:09:35 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| foundersfinancial.net/wp-content/uploads/2020/02/auto-insurance-1.jpg | 0.0.0.0 | | 0 B |
URL GET foundersfinancial.net/wp-content/uploads/2020/02/auto-insurance-1.jpg IP0.0.0.0:0
Requested byhttps://happy-best-insurance.netlify.app/
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2020/02/auto-insurance-1.jpg HTTP/1.1
Host: foundersfinancial.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
|
|
| fonts.googleapis.com/css?family=Raleway | 142.250.74.106 | 200 OK | 1.8 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Raleway IP142.250.74.106:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeASCII text, with very long lines (1799), with no line terminators Hash38953f560ac3f240b93b7bd703ee769d 544b2cf5bbadf6f799f8b12a5488d19c5671c0d1 bbf757fd59d8f9c134295d9a2fb1493d30a398ee99b6a234bb1b679ca41ddf6d
GET /css?family=Raleway HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 19:09:34 GMT
date: Tue, 07 May 2024 19:09:34 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/js/script.js | 188.114.97.1 | 200 OK | 321 B |
URL GET HTTP/2cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/js/script.js IP188.114.97.1:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeASCII text, with very long lines (343), with no line terminators Hash4f46dc256e627bbc1fa54e2996e30b25 56ff1d7676599e3d1ddbee84dad29f2a2bece6ce 6933ea1db439c96d670e6ce25bcbfa19052ce0626fee500df36d11167636d6c3
GET /sb/interstitial/sweep/default/stories/1/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:39 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:17:32 GMT
etag: W/"65aa847c-141"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mUNjSUEGMfqEilDTARh0O6DDlgwGYOy%2BWoo1o972zRhUgBR7gnCT6ntUqILqdJbGffOGMlzcFsVR3jyvb%2By%2B70YHI3nu6zQoXfvHPXrqZHbuoQUkYnZolJqDPSSSj2JBrBAeCAoY%2F42q"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88038172b9c10b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.barscreative1.com/sb/interstitial/sweep/default/stories/1/index.html | 45.133.44.4 | 200 OK | 1.1 kB |
URL GET HTTP/2cdn.barscreative1.com/sb/interstitial/sweep/default/stories/1/index.html IP45.133.44.4:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectcdn.barscreative1.com FingerprintF6:54:F4:B9:EB:AD:1E:FA:8F:76:B9:75:20:9B:41:57:32:37:94:E3 ValiditySun, 10 Mar 2024 03:01:32 GMT - Sat, 08 Jun 2024 03:01:31 GMT
File typeHTML document, ASCII text, with very long lines (1191), with no line terminators Hash3cb5e6c9f01bfa7cb22cea97b0b797bd e7d11b7e73cef3077f1fd9422b02887a0a9b92a3 ff16f3fe2fabcd2e6ff096ae0c0c535ea1b9e3ad821158fe96dd38a673a24ca8
GET /sb/interstitial/sweep/default/stories/1/index.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:39 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Fri, 19 Jan 2024 14:17:32 GMT
etag: W/"65aa847c-465"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Tue, 07 May 2024 20:09:39 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/img/close.svg | 188.114.97.1 | 200 OK | 1.3 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/img/close.svg IP188.114.97.1:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeSVG Scalable Vector Graphics image Hash5ff33e884803785a8002a2aa5fa03b0e a04406f2592e23e648bee499477f823da0c48362 6ba65121162b5b03e75501501ddaa928f73be8d1fe81c032a4879561de63ff58
GET /sb/interstitial/sweep/default/stories/1/img/close.svg HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:39 GMT
content-type: image/svg+xml
last-modified: Fri, 19 Jan 2024 14:17:32 GMT
etag: W/"65aa847c-4ff"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 1904201
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yUP7qVf97Ng0HpPseOFicip1TwY8NNKCH2eULR1NiRX5JyWMraOUt6kZF%2BCKzSZND6WN7TL9LJy3w4l3uVjK5N02zoDyjLBp5iyNPGbGPORloe%2FHvdcLi4kfR0l1Dm8HhM1UlXlBxpAl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880381711f080b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| happy-best-insurance.netlify.app/ | 35.156.224.161 | 200 OK | 27 kB |
URL User Request GET HTTP/2happy-best-insurance.netlify.app/ IP35.156.224.161:443
CertificateIssuerDigiCert Inc Subject*.netlify.app FingerprintB0:8E:E9:A5:C3:D9:B5:C1:FF:B6:51:7A:DF:98:CF:2D:28:18:41:9B ValidityMon, 15 Jan 2024 00:00:00 GMT - Fri, 14 Feb 2025 23:59:59 GMT
File typeHTML document, ASCII text, with very long lines (2783), with CRLF, LF line terminators Hash080cffa841057195cb4d846c2167bc5a 2382f9e3d30b5c448d0685175b3bf3ddd85d87f6 814897da6b22325f8022d6f86d3a1b33f57eb7477537ddd9895cd6dd44a948e1
GET / HTTP/1.1
Host: happy-best-insurance.netlify.app
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
age: 0
cache-control: public,max-age=0,must-revalidate
cache-status: "Netlify Edge"; fwd=miss
content-encoding: br
content-type: text/html; charset=UTF-8
date: Tue, 07 May 2024 19:09:33 GMT
etag: "43445efb342815ff1d914ae0968b4675-ssl-df"
server: Netlify
strict-transport-security: max-age=31536000; includeSubDomains; preload
vary: Accept-Encoding
x-nf-request-id: 01HXA7C37BT4JH5TN9ZDZB1EYS
X-Firefox-Spdy: h2
|
|
| www.bbb.org/ProfileImages/a6618507-0167-46ab-a08b-450a1b7e5d7c.jpeg | 172.67.146.213 | 200 OK | 57 kB |
URL GET HTTP/2www.bbb.org/ProfileImages/a6618507-0167-46ab-a08b-450a1b7e5d7c.jpeg IP172.67.146.213:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectwww.bbb.org Fingerprint2B:72:15:F9:07:97:63:28:3B:C7:01:62:D3:12:D5:03:32:06:FE:11 ValiditySat, 06 Apr 2024 17:26:37 GMT - Fri, 05 Jul 2024 17:26:36 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 120x120, segment length 16, baseline, precision 8, 575x390, components 3 Hash2435e36ca4753bcb8785b74aac4e8bdf e9f3a6d66b6da537c976dd62f4d6515cf83c8154 d667e2414a234b914adbe5bba8682637c58378705fea5ae718b4ad6fbadf7fa6
GET /ProfileImages/a6618507-0167-46ab-a08b-450a1b7e5d7c.jpeg HTTP/1.1
Host: www.bbb.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:35 GMT
content-type: image/jpeg
vary: Accept-Encoding
x-amz-id-2: abuIQhPelfCXHCf6BcVzzHLS9OPjJCJfOqteXWM/kDn7vYUm6MuBR9Z/1/X3tMs1G6je2vskbPI=
x-amz-request-id: 0D25E84GAC5ECER1
last-modified: Fri, 17 Dec 2021 02:12:17 GMT
etag: W/"2435e36ca4753bcb8785b74aac4e8bdf"
x-amz-server-side-encryption: AES256
x-amz-meta-user-agent: aws-datasync
x-amz-meta-file-atime: 1626983588658847900ns
x-amz-meta-file-owner: 65534
x-amz-meta-file-permissions: 100644
x-amz-version-id: null
x-amz-meta-file-group: 65534
x-amz-meta-file-mtime: 1491158405434221500ns
expires: Thu, 06 Jun 2024 19:09:35 GMT
cache-control: public, max-age=2592000
pragma: public
cf-cache-status: MISS
server: cloudflare
cf-ray: 88038153dd6db529-OSL
X-Firefox-Spdy: h2
|
|
| c.adsco.re/ | 104.17.167.186 | 200 OK | 82 kB |
IP104.17.167.186:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (689) Hasha0b475c65fed312aba8d7c43a0cbc928 3fdd052b41c37318e44084be4f92d42fba4ded61 2dfb2101b24f80be00b1baecce7eec815e61a13381f6983051b6261b8035468a
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Tue, 07 May 2024 19:09:38 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Fri, 07 Jun 2024 19:09:38 GMT
etag: W/"oLR1xl/tMSq6jXxDoMvJKA=="
cf-cache-status: HIT
age: 175976
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803816b1e8356af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css | 104.18.11.207 | 200 OK | 141 kB |
URL GET HTTP/2stackpath.bootstrapcdn.com/bootstrap/4.1.3/css/bootstrap.min.css IP104.18.11.207:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerGoogle Trust Services LLC Subjectbootstrapcdn.com Fingerprint57:B4:25:B9:9C:88:A1:A3:3D:F7:31:74:02:E4:D1:E0:0A:F5:11:63 ValidityWed, 27 Mar 2024 00:22:09 GMT - Tue, 25 Jun 2024 00:22:08 GMT
File typeASCII text, with very long lines (65324) Size141 kB (140936 bytes) Hash04aca1f4cd3ec3c05a75a879f3be75a3 675fcf28f9fbf37139d3b2c0b676f96f601a4203 7928b5ab63c6e89ee0ee26f5ef201a58c72baf91abb688580a1aa26eb57b3c11
GET /bootstrap/4.1.3/css/bootstrap.min.css HTTP/1.1
Host: stackpath.bootstrapcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:34 GMT
content-type: text/css; charset=utf-8
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
vary: Accept-Encoding
access-control-allow-origin: *
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"04aca1f4cd3ec3c05a75a879f3be75a3"
last-modified: Mon, 25 Jan 2021 22:04:06 GMT
cdn-cachedat: 03/18/2024 12:28:12
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 752
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: e3054bd445a6629b2370ac88dbfca50e
cdn-cache: HIT
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 880381514a3e0b61-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| memegenerator.net/img/instances/42361716.jpg | 188.114.97.1 | 301 Moved Permanently | 0 B |
URL GET HTTP/2memegenerator.net/img/instances/42361716.jpg IP188.114.97.1:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerLet's Encrypt Subjectmemegenerator.net Fingerprint23:30:DC:95:2A:6E:E9:68:01:4E:C7:E8:9B:3B:A2:F8:38:F4:DE:4A ValiditySun, 05 May 2024 18:49:17 GMT - Sat, 03 Aug 2024 18:49:16 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /img/instances/42361716.jpg HTTP/1.1
Host: memegenerator.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Tue, 07 May 2024 19:09:34 GMT
location: https://img.memegenerator.net/instances/42361716.jpg
x-powered-by: Express
access-control-allow-origin: memegenerator.net
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Origin, X-Requested-With, Content-Type, Accept, Authorization
cache-control: max-age=14400
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JFqIzENZNyicGyWYGpRJKopP65eLCjeqM6pXkDjaGr04sSO3Ja2m76G49W0Bqn%2B5FD2zyQCOBq6kk9CudLL4Yb9i7e6AvJ%2Fff5dcopDWOius%2BwyYUgkigVOc%2BKq0i2KgVPZDhw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88038151ed00b52d-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.moneytips.com/logo/26116.jpeg | 104.26.5.108 | 301 Moved Permanently | 0 B |
URL GET HTTP/2www.moneytips.com/logo/26116.jpeg IP104.26.5.108:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerCloudflare, Inc. Subjectmoneytips.com FingerprintEB:ED:59:51:42:8C:9F:A6:41:27:B6:7F:5E:84:AF:E2:05:9C:8F:59 ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /logo/26116.jpeg HTTP/1.1
Host: www.moneytips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Tue, 07 May 2024 19:09:35 GMT
content-type: text/html
location: https://moneytips.com/logo/26116.jpeg
cache-control: max-age=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=74I5OuWOfVQigthR55tYzt0fnOJ0%2BERInfWth1mNy1tBDLKk8PZN2I9Y9oR5YApbpE7HiE4r5iS7tD2vhqh30KF7PYWFLnU6U3XVT85t7Osqy3tMsNGNH5DwpEUt2a4xGLg0"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88038153c98c5684-OSL
X-Firefox-Spdy: h2
|
|
| cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/js/jquery.min.js | 188.114.97.1 | 200 OK | 87 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/js/jquery.min.js IP188.114.97.1:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeJavaScript source, ASCII text, with very long lines (32058) Hashc9f5aeeca3ad37bf2aa006139b935f0a 1055018c28ab41087ef9ccefe411606893dabea2 87083882cc6015984eb0411a99d3981817f5dc5c90ba24f0940420c5548d82de
GET /sb/interstitial/sweep/default/stories/1/js/jquery.min.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:39 GMT
content-type: application/javascript
last-modified: Fri, 19 Jan 2024 14:17:32 GMT
etag: W/"65aa847c-15283"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 615099
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QgvfRYmKPtJgKWyT2d7a%2BZhyAS53UllcyxxUhEwsxsUAHlARpQMHqReFsHnRAnMmDj5Bx7YBeQ6%2F1axjwPS%2B%2B6awI2ZEspPn1CvFLvhH0r4EPrU104I6i6cXBjHoc1JNDujmZQ1FFDXB"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880381713f400b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap | 142.250.74.106 | 200 OK | 7.0 kB |
URL GET HTTP/3fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap IP142.250.74.106:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typeASCII text, with very long lines (7193), with no line terminators Hash16b49a99486594c0b42d9bd7821deb2c 2fb46e5e86d6b37d4497cc04bfd89b3cb33a276a 3f3540952441e06ef81189cf63d46bac242804e386779dbb0cdd78ed10025c21
GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 07 May 2024 19:09:39 GMT
date: Tue, 07 May 2024 19:09:39 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/css/style.css | 188.114.97.1 | 200 OK | 1.4 kB |
URL GET HTTP/2cdn.creative-bars1.com/sb/interstitial/sweep/default/stories/1/css/style.css IP188.114.97.1:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerGoogle Trust Services LLC Subjectcreative-bars1.com Fingerprint3D:29:39:2C:F1:E5:C6:EF:54:F5:70:B5:CF:A8:C2:75:4D:89:72:13 ValidityMon, 15 Apr 2024 15:02:18 GMT - Sun, 14 Jul 2024 15:02:17 GMT
File typeASCII text, with very long lines (1523), with no line terminators Hashaf8b297e908242d66890c4650aaffdd2 45fe0a1587b11f77bf71085d15dbae9750a97179 cc03ce0e52d2d5b339b37554d900c6ec631929d4d729ffbd1fb200eba267d5ad
GET /sb/interstitial/sweep/default/stories/1/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://happy-best-insurance.netlify.app
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:39 GMT
content-type: text/css
last-modified: Fri, 19 Jan 2024 14:17:32 GMT
etag: W/"65aa847c-59a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1UwvL6vpEe5pSAgXlR7%2B6W4iErrmlFz8AylImbSO2U2%2BG7RT%2BihN1OSmyGbI12Ve0ilM0WbsTKm7HdyS5GhGFcnth7Iiw7YMczOVeSKIL7Rs2FOPZySkpkR6B%2B3gjMfYbx%2Bs%2FVMpWRtU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 88038170fec10b02-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.moneytips.com/logo/26116.jpeg | 104.26.5.108 | 301 Moved Permanently | 0 B |
URL GET HTTP/2www.moneytips.com/logo/26116.jpeg IP104.26.5.108:443
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerCloudflare, Inc. Subjectmoneytips.com FingerprintEB:ED:59:51:42:8C:9F:A6:41:27:B6:7F:5E:84:AF:E2:05:9C:8F:59 ValidityThu, 25 Jan 2024 00:00:00 GMT - Tue, 31 Dec 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /logo/26116.jpeg HTTP/1.1
Host: www.moneytips.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Tue, 07 May 2024 19:09:36 GMT
content-type: text/html
location: https://moneytips.com/logo/26116.jpeg
cache-control: max-age=86400
cf-cache-status: HIT
age: 1
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=1oPOVupAK8oZzjEe39Zx4pfTX%2FdCkH9ehEQGdiTCQuJmoru%2BgZp%2B%2BwfHfOnAc2hiW%2B%2B91JHM5Mqn3XoRZbZdm5htCTRkIkNA4imwgYLD4sHQf7vp0t8%2FToYrp83NdlmSj50d"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8803815f590a5684-OSL
X-Firefox-Spdy: h2
|
|
| c.adsco.re/ | 0.0.0.0 | | 0 B |
IP0.0.0.0:0
Requested byhttps://happy-best-insurance.netlify.app/ CertificateIssuerSectigo Limited Subject*.adsco.re Fingerprint40:64:05:9C:99:0A:1E:9F:A7:49:61:8E:86:4C:4B:06:9C:73:83:73 ValiditySat, 23 Sep 2023 00:00:00 GMT - Sun, 29 Sep 2024 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: c.adsco.re
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://happy-best-insurance.netlify.app/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Tue, 07 May 2024 19:09:36 GMT
content-type: text/html
cache-control: public, max-age=2678400
accept-ch: Sec-CH-UA, Sec-CH-UA-Mobile, Sec-CH-UA-Full-Version, Sec-CH-UA-Platform, Sec-CH-UA-Platform-Version, Sec-CH-UA-Arch, Sec-CH-UA-Model, Device-Memory, Downlink, ECT, RTT, Width, Viewport-Width, DPR
permissions-policy: ch-ua=(self "https://adsco.re"),ch-ua-mobile=(self "https://adsco.re"),ch-ua-full-version=(self "https://adsco.re"),ch-ua-platform=(self "https://adsco.re"),ch-ua-platform-version=(self "https://adsco.re"),ch-ua-arch=(self "https://adsco.re"),ch-ua-model=(self "https://adsco.re"),ch-device-memory=(self "https://adsco.re"),ch-downlink=(self "https://adsco.re"),ch-ect=(self "https://adsco.re"),ch-rtt=(self "https://adsco.re"),ch-width=(self "https://adsco.re"),ch-viewport-width=(self "https://adsco.re"),ch-dpr=(self "https://adsco.re")
link: <//6.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//4.adsco.re/>;rel=prefetch;crossorigin;as=fetch,<//adsco.re/>;rel=preconnect
expires: Fri, 07 Jun 2024 19:09:36 GMT
etag: W/"oLR1xl/tMSq6jXxDoMvJKA=="
cf-cache-status: HIT
age: 175974
vary: Accept-Encoding
server: cloudflare
cf-ray: 88038161896d56af-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|