| | 188.114.97.1 | 301 Moved Permanently | 167 B |
URL User Request GET HTTP/1.1IP188.114.97.1:80
File typeHTML document, ASCII text, with CRLF line terminators Hash0104c301c5e02bd6148b8703d19b3a73 7436e0b4b1f8c222c38069890b75fa2baf9ca620 446a6087825fa73eadb045e5a2e9e2adf7df241b571228187728191d961dda1f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET / HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 301 Moved Permanently
Date: Thu, 18 Apr 2024 09:55:55 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 18 Apr 2024 10:55:55 GMT
Location: https://www.amy-escort.com/
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Z3eEv2g7zsAqpdVHpziV3cX7l%2FrxgidkSiqYtlllcRLi1td%2FwYvrsX3JOGxjRe8fuOf30n8NvILejFFJYo02UHCimuMec2edXm1Fa0czdUwBbGkV%2BCoG8nPFxR45XnNGPabxRnk%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 8763c8312af256c7-OSL
alt-svc: h2=":443"; ma=60
|
|
| www.amy-escort.com/wp-content/uploads/2021/12/cropped-a-m-y-escort.png | 188.114.96.1 | 200 OK | 2.7 kB |
URL GET HTTP/3www.amy-escort.com/wp-content/uploads/2021/12/cropped-a-m-y-escort.png IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typePNG image data, 100 x 121, 8-bit gray+alpha, non-interlaced Hash309811edf67f123778490a0fff6ead95 e4b696d75772758905319a97879efee14df8bd0f 8b4215f2fa281f0ce2987f4c48f7a8e4cd4ef59005ff4fb2ffd001fadfa68714
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2021/12/cropped-a-m-y-escort.png HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:56 GMT
content-type: image/png
content-length: 2657
last-modified: Sat, 18 Dec 2021 17:55:44 GMT
etag: "d8127b-a61-5d36f5d516800"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=CNMpRZF8%2FwGPieAl1JIcyLEpT%2BUQObLnEsbxTfMAndiYDW7G1QsU9kU3JonkzboEFIELVzmAlOBqFozvITzTPedhrYgigbJSIBkEGsU7PG67IlJfHi7C0LIH3iSb5oTLYt3kq5I%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8763c8346d145689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amy-escort.com/wp-content/uploads/2021/12/escort.jpg | 188.114.96.1 | 200 OK | 194 kB |
URL GET HTTP/3www.amy-escort.com/wp-content/uploads/2021/12/escort.jpg IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, manufacturer=Canon, model=Canon EOS 70D], baseline, precision 8, 1280x853, components 3 Size194 kB (193870 bytes) Hashef26ebaaa7d27756f6d2e0ef298cb05e f97c25d5c12c69f49dd0a75a96e7893a8a13e16d 2fd7ce19bc76c3b35f60af3cf58a670f605fab509cd7c61be9d655858f183791
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2021/12/escort.jpg HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:56 GMT
content-type: image/jpeg
content-length: 193870
last-modified: Sat, 18 Dec 2021 13:57:50 GMT
etag: "d8128d-2f54e-5d36c0a857380"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=38U43qftTzjRt5zscaknaDU6MOhOFcbMWNAf5Fg2kNDICJ9J%2FPjFbebAZB4KFUUlCTvpUFumt7fJXxENTSOwsgdE0V3TD%2FOmorK1WZOzCimXS9Or97QKF76DAzHUH247f4fidg4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8763c8347d155689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amy-escort.com/wp-content/uploads/2021/12/good-listener.jpg | 188.114.96.1 | 200 OK | 66 kB |
URL GET HTTP/3www.amy-escort.com/wp-content/uploads/2021/12/good-listener.jpg IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4, manufacturer=Canon, model=Canon EOS 5D Mark III], baseline, precision 8, 640x426, components 3 Hash48bb94895572fa34d1845fd38687c968 0c089a6d3332541948a08cd7cb0cdddfddb89c43 f8b1546ee24f0da9ebd975b87e912411e842d9d24bab7e447565acc2c85d641b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2021/12/good-listener.jpg HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:56 GMT
content-type: image/jpeg
content-length: 66180
last-modified: Sat, 18 Dec 2021 14:10:25 GMT
etag: "d81293-10284-5d36c3785d640"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=KxpfYYeCHSvGTAK1DZ1QqLg9RajAjwFHLgWypjIW7iY7FVVrJLu4beeVegHVNQFct9OLgJ6L%2BNCery5iMX89Z%2Bw0a9KRWFo7nLzRZIV2NFqNsMr5IeYzwUiz7sLTtz2%2BwoVbRMs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8763c8347d1c5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.amy-escort.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:35:00 GMT
expires: Fri, 18 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 26457
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.amy-escort.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:35:00 GMT
expires: Fri, 18 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 26457
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.amy-escort.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17 | 188.114.96.1 | 200 OK | 2.7 kB |
URL GET HTTP/3www.amy-escort.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (6194) Hash170687433986a4a559fa4f16b1d7c70e 84349b5fb0fcb057ae1768667f480fd607a1da49 722a90d42ef2bd0ea38f0fdac6b4c0523aa4a027e9ffe889972100746e165582
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.17 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:56 GMT
content-type: text/javascript
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
etag: W/"19620d5-1940-5b075c75d5c80-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pgrP%2FKRrJxkEi7xzTZhtUHxtnjF36wMSrcNnez3%2FTDRxBLquSPU85qcGR6lIpgmSEoFEPkDCQma66d7mVlC5m4ic%2F0wnuXRM9kKRRZO8xCtTZ0Qve6Ug%2BqviSf7EV7tYwgRYZWM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c8349d475689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 | 216.58.207.227 | 200 OK | 48 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 IP216.58.207.227:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 48236, version 1.0 Hash015c126a3520c9a8f6a27979d0266e96 2acf956561d44434a6d84204670cf849d3215d5f 3c4d6a1421c7ddb7e404521fe8c4cd5be5af446d7689cd880be26612eaad3cfa
GET /s/opensans/v40/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.amy-escort.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 48236
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:35:00 GMT
expires: Fri, 18 Apr 2025 02:35:00 GMT
cache-control: public, max-age=31536000
age: 26457
last-modified: Thu, 14 Dec 2023 02:08:40 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| fonts.gstatic.com/s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 | 216.58.207.227 | 200 OK | 19 kB |
URL GET HTTP/2fonts.gstatic.com/s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 IP216.58.207.227:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 19280, version 1.0 Hash386fb59be54b2d819064af98e57cc226 9e2d14d736be97ec84bfca3513558450cd6e3249 b4855cc8ec721cbaf27f3c907345e101b1524858221c14faa79df34cb2f84991
GET /s/opensans/v40/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.amy-escort.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 19280
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 09:52:47 GMT
expires: Fri, 18 Apr 2025 09:52:47 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 14 Dec 2023 02:02:23 GMT
content-type: font/woff2
age: 190
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| youtu.be/h_xjfqrFl7o?_=1 | 142.250.74.78 | 303 See Other | 0 B |
IP142.250.74.78:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /h_xjfqrFl7o?_=1 HTTP/1.1
Host: youtu.be
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 303 See Other
content-type: application/binary
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 18 Apr 2024 09:55:57 GMT
location: https://www.youtube.com/watch?_=1&v=h_xjfqrFl7o&feature=youtu.be
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
cross-origin-opener-policy: same-origin-allow-popups; report-to="SHORT_URL"
report-to: {"group":"SHORT_URL","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/SHORT_URL"}]}
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
server: ESF
content-length: 0
x-xss-protection: 0
set-cookie: YSC=3xUjKtKoqqc; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.amy-escort.com/wp-content/themes/luxury-interior/images/status.gif | 188.114.96.1 | 200 OK | 3.2 kB |
URL GET HTTP/3www.amy-escort.com/wp-content/themes/luxury-interior/images/status.gif IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typeGIF image data, version 89a, 32 x 32 Hashbe1cede97289c13920048f238fd37b85 313b867d11fc0dd6bc6ca47c334bbcf18956ca76 fd29b3b084cf11160bfc4e99d98a261f2b36bff29113b07367c5204563c5d355
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/luxury-interior/images/status.gif HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/wp-content/themes/luxury-interior/style.css?ver=6.5.2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:57 GMT
content-type: image/gif
content-length: 3208
last-modified: Thu, 11 Apr 2024 11:31:56 GMT
etag: "19619e6-c88-615d080a95c43"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=2AC4eGFrto%2BQOtvhuV2G0BSaa8DrZtSKmaSIl3zhamT%2BApSQnxNdN1lx7weYtNeYSPj2uPWgzMZRGIMeMr9Nv9aSSEDzgaaX3aNBl54cSMVC8Tu9%2B3AM4lTNx%2BbRNtrC%2FUkw%2FLA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8763c83aaf8c5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amy-escort.com/wp-content/uploads/2021/12/cropped-cropped-a-m-y-escort-192x192.png | 188.114.96.1 | 200 OK | 8.3 kB |
URL GET HTTP/3www.amy-escort.com/wp-content/uploads/2021/12/cropped-cropped-a-m-y-escort-192x192.png IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typePNG image data, 192 x 192, 8-bit gray+alpha, non-interlaced Hasha22160de58a7e2063ee79def4aa69f45 e6124229018b414be6a1c088ceb3861513d91229 bcc939c3cf563d2cfd1152e39060e29c7c63604698548a86a12092920e9fdb61
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2021/12/cropped-cropped-a-m-y-escort-192x192.png HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:58 GMT
content-type: image/png
content-length: 8284
last-modified: Sat, 18 Dec 2021 17:58:32 GMT
etag: "d8127e-205c-5d36f6754e200"
cache-control: max-age=14400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=cO40cVgxNtC9Z9qZlD0d7fqgQGUE%2FlfvJSWgkncroiiRSq5DUy0zW%2Fdn2MWhat8vovOi1xN94O8BOiCdTxeBKOGGbRXI7EkaJhOe39Q%2FnYuTajWywe%2FW7frB4cYrh7g%2FNjyCbds%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8763c840482b5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amy-escort.com/wp-includes/js/mediaelement/mejs-controls.svg | 188.114.96.1 | 200 OK | 70 kB |
URL GET HTTP/3www.amy-escort.com/wp-includes/js/mediaelement/mejs-controls.svg IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typeSVG Scalable Vector Graphics image Hashf0849a5e79712b10e1531925e3edb879 a5fd4a315cb977532daca83c130ce8ffc57f6f3f ad55816ac6c62f214e60a1913ff4f0215ab329034cbc7436a5514941449ca7b9
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/mediaelement/mejs-controls.svg HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:58 GMT
content-type: image/svg+xml
last-modified: Tue, 01 Aug 2017 04:43:51 GMT
etag: W/"19620db-11f6-555a9cb3a8fc0-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2BLKCJ3h5BfoQR9bqI98BS6%2BHX1knrFvtF0PV6Cyyun1dQstpOpXVRD%2BaaIx9SHnPxptLAR1Ts0TwRzuMBblN8bdcdCfCJ6dqeTqAHMsHo%2FtV0IPdcdqaOENRU7PIxIGaDsJnceM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c83c29d05689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15344, version 1.0 Hash5d4aeb4e5f5ef754e307d7ffaef688bd 06db651cdf354c64a7383ea9c77024ef4fb4cef8 3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 18 Apr 2024 02:43:03 GMT
expires: Fri, 18 Apr 2025 02:43:03 GMT
cache-control: public, max-age=31536000
age: 25975
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.amy-escort.com/wp-content/themes/luxury-interior/css/owl.carousel.css?ver=6.5.2 | 188.114.96.1 | 200 OK | 17 kB |
URL GET HTTP/3www.amy-escort.com/wp-content/themes/luxury-interior/css/owl.carousel.css?ver=6.5.2 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
Hash83ef097be10f83e9f999a55c34a04beb e718931278aa33db5c3012b814c30accfe87f244 87b34f2c1c4c30f70478efc10c6c026f9311019f028157314717e6ddfa4c1f4b
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/luxury-interior/css/owl.carousel.css?ver=6.5.2 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:56 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 11:31:56 GMT
etag: W/"196198f-fbc-615d080a90e22-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=68Of4Sj4cRKfdfmTZuT52Jk49z91OJ3Q2dLWGglx%2B5R0OLq7Tgs02mm7Fzu1ZL9gkWQnHDxnGl%2FUeQkbG3rl3FHUQFPXbszJxj0wunjgIxZp0BLmv0jTCjcTSKzh67YAk%2FNLrtE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c8344cd65689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube.com/s/player/0af6e327/www-player.css | 142.250.74.78 | 200 OK | 48 kB |
URL GET HTTP/3www.youtube.com/s/player/0af6e327/www-player.css IP142.250.74.78:443
Requested byhttps://www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeASCII text, with very long lines (65536), with no line terminators Hasheff7afac8f7ac0ed881f37ffd3eebcbe 21acf841f4603dbfaed62decef15175b5d68f20f ff1235e0e6c896931d1f31f618b35e68a469befd8c90d7a0da22f1d988b0bbc2
GET /s/player/0af6e327/www-player.css HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 48137
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 07:35:25 GMT
expires: Thu, 17 Apr 2025 07:35:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 Apr 2024 04:21:26 GMT
content-type: text/css
vary: Accept-Encoding, Origin
age: 94833
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.amy-escort.com/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 | 188.114.96.1 | 200 OK | 33 kB |
URL GET HTTP/3www.amy-escort.com/wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typeASCII text, with very long lines (59701) Hash51a8390b47aa0582cf2d9c96c5addee2 b16a640874025d085c38119a1a02a3460f83f2de 98cecf88a23542fa047ce46eedb650b5c5128761ed4386c0977b847094ddfa20
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.5.2 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:57 GMT
content-type: text/css
last-modified: Tue, 27 Feb 2024 14:48:23 GMT
etag: W/"1961959-1bae5-6125e1e30bbc0-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ivSxofr%2FKOh2V3%2B87rHUyJYFrnXIZ%2BJpmMRa0sQXOuDR7LZD%2FjZYc1NJrdHIuMy6xLXexuRw6gxwFDfOLGLbJKALMRGNy%2Bq2Eur082qoLdWlhGJlHF45Br2gZapFgB9zeeezVDU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c8344cc95689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube.com/s/player/0af6e327/www-embed-player.vflset/www-embed-player.js | 142.250.74.78 | 200 OK | 98 kB |
URL GET HTTP/3www.youtube.com/s/player/0af6e327/www-embed-player.vflset/www-embed-player.js IP142.250.74.78:443
Requested byhttps://www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (682) Hashd5b8d160ab640bfc1dd99acd65f1d38d 1be3896846933d5011c56d56b4a0609b9f1a1caf a4a828c62029e531dfd2399d717731f7a22ce1c3e2c0bb796eee2c4bae9046b7
GET /s/player/0af6e327/www-embed-player.vflset/www-embed-player.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 97800
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 07:35:25 GMT
expires: Thu, 17 Apr 2025 07:35:25 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 Apr 2024 04:21:26 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 94833
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.amy-escort.com/wp-content/uploads/2021/12/cropped-cropped-a-m-y-escort-32x32.png | 188.114.96.1 | 200 OK | 682 B |
URL GET HTTP/3www.amy-escort.com/wp-content/uploads/2021/12/cropped-cropped-a-m-y-escort-32x32.png IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typePNG image data, 32 x 32, 8-bit gray+alpha, non-interlaced Hash98c72cca4cb501d272dcc4a8f74eb79b 045cd26ed78565acad30b5d4a95e129b89fe3c6e 0b19427a69c64cb401427fe1a21496ab9aa4815ca109b0add686fedfd4cc5bba
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/uploads/2021/12/cropped-cropped-a-m-y-escort-32x32.png HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:58 GMT
content-type: image/png
content-length: 682
last-modified: Sat, 18 Dec 2021 17:58:32 GMT
etag: "d81281-2aa-5d36f6754e200"
cache-control: max-age=14400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fHfgW%2Fmv4wKjVndtEVPUGmfTHFcTTlsMFHBmPbYU7YiJr7VcrlnM7v3FA5JlOLlSOm6y2V3lrLZkadE3ZCG1uPygEgOvEK7%2F7pMPTA5mo02LXJsh6bEpUY1CYoZK4VWX1MuPMZs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 8763c840482c5689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amy-escort.com/wp-content/themes/luxury-interior/css/bootstrap.css?ver=6.5.2 | 188.114.96.1 | 200 OK | 841 kB |
URL GET HTTP/3www.amy-escort.com/wp-content/themes/luxury-interior/css/bootstrap.css?ver=6.5.2 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typeUnicode text, UTF-8 text, with very long lines (560) Size841 kB (840870 bytes) Hashac098d6c7e3080f4ab05286577e33a49 d5c6e0b139c46fd642a3d645176949457d8e059e c976412ab9f0de52d02853d852746654d93d4da6685c4f2a2fbed8e416c370e4
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/luxury-interior/css/bootstrap.css?ver=6.5.2 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:57 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 11:31:56 GMT
etag: W/"1961976-39754-615d080a9026a-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=yNvglPCiK7RtulDYOr2Kt%2FjwykOaAbIcP07OcTMXy5WT12ij4qXqKArXYaRP6Jxh7pm4%2Bs1yPTFg5gR3pMqM9kP9fbi0AuXYFiKjjJ6ISNxg3HO3yb9tvPL74nkAfpIwonUuGgg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c8344ccc5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1 | 142.250.74.78 | 200 OK | 38 kB |
URL GET HTTP/3www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1 IP142.250.74.78:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (58088) Hashc8e15c85f62c3c04977cfcae28b99320 7e1202962e1f513fa4c29ec4e5897d6c4f5f084d ff219fad4a415e34cfc5d5d663129520008531d01670008e0d2db44bc7c2155d
GET /embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.amy-escort.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 18 Apr 2024 09:55:58 GMT
strict-transport-security: max-age=31536000
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-resource-policy: cross-origin
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=SQi2pmp8ABs; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=8AIL33Zk86w; Domain=.youtube.com; Expires=Tue, 15-Oct-2024 09:55:58 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMIG4%3D; Domain=.youtube.com; Expires=Tue, 15-Oct-2024 09:55:58 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create | 216.58.207.234 | 200 OK | 42 kB |
URL OPTIONS HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/Create IP216.58.207.234:443
Requested byhttps://www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashee835e7b22d1f7a8428c5e22e4564338 4b70b7192c0be72d89265a0582037f8a9dc90a44 3c479bcb868324b6fcbf262b699f64090c72cae17181285f79c630d726cd4119
POST /$rpc/google.internal.waa.v1.Waa/Create HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 24
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 18 Apr 2024 09:55:59 GMT
server: ESF
cache-control: private
content-length: 41942
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| i.ytimg.com/vi/h_xjfqrFl7o/default.jpg | 216.58.207.246 | 200 OK | 3.5 kB |
URL GET HTTP/2i.ytimg.com/vi/h_xjfqrFl7o/default.jpg IP216.58.207.246:443
Requested byhttps://www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subjectedgestatic.com Fingerprint78:1A:D9:37:F2:33:3C:A9:0F:4C:4A:E8:40:9E:55:8E:02:75:1E:15 ValidityMon, 04 Mar 2024 06:35:07 GMT - Mon, 27 May 2024 06:35:06 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 120x90, components 3 Hash7dcabe9d9a624bb1342f6267bea4f447 4580f12aa159cbde6f3cf3ab4917793bbf7d629d 4031450d0aa377c02439305e1a4ce0fb30873cb302827cc22dc21ee3d0749422
GET /vi/h_xjfqrFl7o/default.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 3517
date: Thu, 18 Apr 2024 09:55:59 GMT
expires: Thu, 18 Apr 2024 11:55:59 GMT
cache-control: public, max-age=7200
etag: "1609491315"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| yt3.ggpht.com/ytc/AIdro_n-E_8v24oegSSYJ3pM3Dpn8L5ge83lgAZpMrJ2bonFIGw=s68-c-k-c0x00ffffff-no-rj | 142.250.74.161 | 200 OK | 3.9 kB |
URL GET HTTP/2yt3.ggpht.com/ytc/AIdro_n-E_8v24oegSSYJ3pM3Dpn8L5ge83lgAZpMrJ2bonFIGw=s68-c-k-c0x00ffffff-no-rj IP142.250.74.161:443
Requested byhttps://www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subject*.googleusercontent.com FingerprintE0:0C:38:A4:4D:4F:CB:42:05:30:9A:C4:60:B3:64:3F:EF:43:D1:2F ValidityMon, 04 Mar 2024 07:14:32 GMT - Mon, 27 May 2024 07:14:31 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=2, software=Google], baseline, precision 8, 68x68, components 3 Hash40d6a8ae9b62f8e9f11b122597d9f154 d6a8a06e4baac44156b03f80048728c8ac437c28 2f591977ad8cb528424cd7babe51ecda7873960025761d44d36bedceb9c70068
GET /ytc/AIdro_n-E_8v24oegSSYJ3pM3Dpn8L5ge83lgAZpMrJ2bonFIGw=s68-c-k-c0x00ffffff-no-rj HTTP/1.1
Host: yt3.ggpht.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
access-control-allow-origin: *
timing-allow-origin: *
access-control-expose-headers: Content-Length
content-disposition: inline;filename="unnamed.jpg"
x-content-type-options: nosniff
server: fife
content-length: 3924
x-xss-protection: 0
date: Thu, 18 Apr 2024 06:02:47 GMT
expires: Fri, 19 Apr 2024 06:02:47 GMT
cache-control: public, max-age=86400, no-transform
age: 13992
etag: "v150"
content-type: image/jpeg
vary: Origin
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.google.com/js/th/miBSy5jQPJh1sa2HAK-WLAAFHwiuSy-Xwy9oQisegJw.js | 142.250.74.164 | 200 OK | 20 kB |
URL GET HTTP/2www.google.com/js/th/miBSy5jQPJh1sa2HAK-WLAAFHwiuSy-Xwy9oQisegJw.js IP142.250.74.164:443
Requested byhttps://www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subjectwww.google.com FingerprintCC:CC:99:46:65:6C:77:0B:C8:AA:AD:5E:58:B6:2D:19:B2:C7:0B:06 ValidityMon, 04 Mar 2024 07:19:07 GMT - Mon, 27 May 2024 07:19:06 GMT
File typeJavaScript source, ASCII text, with very long lines (51811) Hash5145e2908423fe4aac30cdd17c12277c bd8117e06b0151b88d0867008d51c5b6f225bf56 9a2052cb98d03c9875b1ad8700af962c00051f08ae4b2f97c32f68422b1e809c
GET /js/th/miBSy5jQPJh1sa2HAK-WLAAFHwiuSy-Xwy9oQisegJw.js HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: br
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/botguard-scs
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="botguard-scs"
report-to: {"group":"botguard-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/botguard-scs"}]}
content-length: 20259
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 05:03:48 GMT
expires: Thu, 17 Apr 2025 05:03:48 GMT
cache-control: public, max-age=31536000
age: 103931
last-modified: Thu, 04 Apr 2024 18:30:00 GMT
content-type: text/javascript
vary: Accept-Encoding
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 216.58.207.234 | 200 OK | 0 B |
URL POST HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP216.58.207.234:443
Requested byhttps://www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
OPTIONS /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type,x-goog-api-key,x-user-agent
Referer: https://www.youtube.com/
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
access-control-allow-origin: https://www.youtube.com
vary: origin, referer, x-origin
access-control-allow-credentials: true
access-control-allow-methods: DELETE,GET,HEAD,OPTIONS,PATCH,POST,PUT
access-control-allow-headers: content-type,x-goog-api-key,x-user-agent
access-control-max-age: 3600
date: Thu, 18 Apr 2024 09:55:59 GMT
content-type: text/html
server: ESF
content-length: 0
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT | 216.58.207.234 | 200 OK | 110 B |
URL POST HTTP/2jnn-pa.googleapis.com/$rpc/google.internal.waa.v1.Waa/GenerateIT IP216.58.207.234:443
Requested byhttps://www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
Hashd20b8ff5a207f8c192582c2a2fa6cbc9 a748d3e29ebbbccfb12f22658397e4d448164d66 be3570e2fad8402001fb4e9a8dbb882142571b76f54befebe459c33359001ec7
POST /$rpc/google.internal.waa.v1.Waa/GenerateIT HTTP/1.1
Host: jnn-pa.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Api-Key: AIzaSyDyT5W0Jh49F30Pqqtyfdf7pDLFKLJoAnw
Content-Type: application/json+protobuf
X-User-Agent: grpc-web-javascript/0.1
Content-Length: 871
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
content-type: application/json+protobuf; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: gzip
date: Thu, 18 Apr 2024 09:55:59 GMT
server: ESF
cache-control: private
content-length: 110
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
access-control-allow-origin: https://www.youtube.com
access-control-allow-credentials: true
access-control-expose-headers: vary,vary,vary,content-encoding,date,server,content-length
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.youtube.com/generate_204?4MrVyw | 142.250.74.78 | 204 No Content | 0 B |
URL GET HTTP/3www.youtube.com/generate_204?4MrVyw IP142.250.74.78:443
Requested byhttps://www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /generate_204?4MrVyw HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 204 No Content
content-length: 0
cross-origin-resource-policy: cross-origin
date: Thu, 18 Apr 2024 09:56:00 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.amy-escort.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.5.2 | 188.114.96.1 | 200 OK | 554 B |
URL GET HTTP/3www.amy-escort.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.5.2 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typeASCII text, with very long lines (1191), with no line terminators Hash51300497928562f8c86c7aaba99237cd e5826832b85c6afc6502b74cbb8ac5394b04c363 6d161e98e47ae150b51211443eef37040fb6269dcf85ad2048548066dca99e6f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.5.2 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:56 GMT
content-type: text/javascript
last-modified: Fri, 08 Apr 2022 20:07:18 GMT
etag: W/"19620c8-4a7-5dc2a2438e980-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=NSDsAN4zmN84boKSt9%2FVTNt3Revf2t8C%2Bkexm0AtpDGZ7exPcOSmg3XeRI%2F7UJitZis%2Bc5Y0umnLhLJhdnrw3LryTydXw2cbMgZtqiRukaRaQ9g7VYw5iXv6L2%2F5E%2FAxnfAK2x8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c8348d375689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 | 142.250.74.78 | 200 OK | 31 B |
URL POST HTTP/3www.youtube.com/youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 IP142.250.74.78:443
Requested byhttps://www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hash5e1fa6fd9abd549a576f3f24b1d3c8d4 d5335d7f7d33be6a0b663f03b2df4df2521c4a87 d7d5e54ad1e33d7ab49c664323ced79cb9723ff15e9764cd0edc3e15208e8336
POST /youtubei/v1/log_event?alt=json&key=AIzaSyAO_FJ2SlqU8Q4STEHLGCilw_Y9_11qcW8 HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Goog-Request-Time: 1713434181448
Content-Type: application/json
X-Goog-Visitor-Id: Cgs4QUlMMzNaazg2dyiu3IOxBjIOCgJOTxIIEgQSAgsMIG4%3D
X-YouTube-Client-Name: 56
X-YouTube-Client-Version: 1.20240415.01.00
X-YouTube-Utc-Offset: 0
X-YouTube-Time-Zone: UTC
X-YouTube-Ad-Signals: dt=1713434158912&flash=0&frm=2&u_tz&u_his=2&u_h=1024&u_w=1280&u_ah=1024&u_aw=1280&u_cd=24&bc=31&bih=-12245933&biw=-12245933&brdim=0%2C0%2C0%2C0%2C1280%2C0%2C1280%2C1024%2C221%2C124&vis=1&wgl=true&ca_type=image
Content-Length: 911
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/json; charset=UTF-8
vary: Origin, X-Origin, Referer
content-encoding: br
date: Thu, 18 Apr 2024 09:56:21 GMT
server: scaffolding on HTTPServer2
content-length: 31
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.youtube.com/watch?_=1&v=h_xjfqrFl7o&feature=youtu.be | 142.250.74.78 | 200 OK | 0 B |
URL GET HTTP/3www.youtube.com/watch?_=1&v=h_xjfqrFl7o&feature=youtu.be IP142.250.74.78:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /watch?_=1&v=h_xjfqrFl7o&feature=youtu.be HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br, identity
Range: bytes=0-
Referer: https://www.amy-escort.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/html; charset=utf-8
x-content-type-options: nosniff
cache-control: no-cache, no-store, max-age=0, must-revalidate
pragma: no-cache
expires: Mon, 01 Jan 1990 00:00:00 GMT
date: Thu, 18 Apr 2024 09:55:58 GMT
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy: same-origin-allow-popups; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=1L8ORqKRESE; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
__Secure-YEC=CgsxOVV4THNjcnBzVSiu3IOxBjIOCgJOTxIIEgQSAgsMIFM%3D; Domain=.youtube.com; Expires=Sun, 18-May-2025 09:55:57 GMT; Path=/; Secure; HttpOnly; SameSite=lax
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMIFM%3D; Domain=.youtube.com; Expires=Sun, 18-May-2025 09:55:58 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=; Domain=.youtube.com; Expires=Fri, 23-Jul-2021 09:55:58 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.amy-escort.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 | 188.114.96.1 | 200 OK | 158 kB |
URL GET HTTP/3www.amy-escort.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (65266) Size158 kB (158005 bytes) Hashe53ec3d6e21be78115810135f5e956fe 523892839b88351523e0498ba881c4431197b54e b15c3ea03d50c2430490e7416733a254feea4237bb60b54181bd3473ebe4149f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.17 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:57 GMT
content-type: text/javascript
last-modified: Thu, 29 Sep 2022 14:21:11 GMT
etag: W/"19620da-26935-5e9d196cce3c0-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=pNhMpRklHGyYIF%2BTbJmRzex%2B0GiGBx8RQvjQ2QrcNodTGwMfCAB1QeRvR%2BBcuqQypReV6%2BVanNOAzsq9UHf4TBaDbl%2FnE8JoWPaLFBnwRcMwk6xHkc7IJyda8kKqzzc%2BcWXdlZI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c8348d345689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube.com/player_api | 142.250.74.78 | 200 OK | 1.1 kB |
URL GET HTTP/3www.youtube.com/player_api IP142.250.74.78:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (1087), with no line terminators Hash7636fb2fc6f1df302cf90faaed3040e0 e6414cbf10da9dfa1153dc36cc3d63e959aedffb 7583831ce9c67bce79b507015f84ab21449760656941b333809523ca4c9f3b31
GET /player_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Thu, 18 Apr 2024 09:55:58 GMT
date: Thu, 18 Apr 2024 09:55:58 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
cross-origin-resource-policy: cross-origin
origin-trial: AmhMBR6zCLzDDxpW+HfpP67BqwIknWnyMOXOQGfzYswFmJe+fgaI6XZgAzcxOrzNtP7hEDsOo1jdjFnVr2IdxQ4AAAB4eyJvcmlnaW4iOiJodHRwczovL3lvdXR1YmUuY29tOjQ0MyIsImZlYXR1cmUiOiJXZWJWaWV3WFJlcXVlc3RlZFdpdGhEZXByZWNhdGlvbiIsImV4cGlyeSI6MTc1ODA2NzE5OSwiaXNTdWJkb21haW4iOnRydWV9
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-form-factor=*, ch-ua-platform=*, ch-ua-platform-version=*
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=OnHDXLdQa40; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=vUNx-hjP3Bw; Domain=.youtube.com; Expires=Tue, 15-Oct-2024 09:55:58 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_PRIVACY_METADATA=CgJOTxIIEgQSAgsMIBo%3D; Domain=.youtube.com; Expires=Tue, 15-Oct-2024 09:55:58 GMT; Path=/; Secure; HttpOnly; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.amy-escort.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 | 188.114.96.1 | 200 OK | 88 kB |
URL GET HTTP/3www.amy-escort.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:57 GMT
content-type: text/javascript
last-modified: Mon, 28 Aug 2023 17:14:23 GMT
etag: W/"1962062-15601-603fed35e19c0-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=RXauyzJil111RsW8ttYtx0PweKRolzgaKI8gdJd1L6eIMaVHdtS5sWn8YeBxr0a6S5Jxly6SvGLUNdLBVdlnr%2BDHlC9nIsbgdTQubo%2BR0iH3DrTOxaoSAcdgQgQbNlfepRm%2BPfE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c8345cf05689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.amy-escort.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 | 188.114.96.1 | 200 OK | 11 kB |
URL GET HTTP/3www.amy-escort.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typeASCII text, with very long lines (11256), with no line terminators Hash2b0dd7eecea03b4bdedb94ba622fdb03 703becba85161118dd6fc66af465428ef43f561c b7908a015a567ec2363011df2475368dbff34360e9da3fdff50604d6395fb646
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:56 GMT
content-type: text/css
last-modified: Tue, 29 Sep 2020 15:53:06 GMT
etag: W/"19620c9-2bf8-5b075c75d5c80-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JDuXMHFkz%2Fncg6jr%2FiA10z9%2BoNGESXmX8jiBLrg3p92qe0b3XNWoHexJYGzDC0k0CTsbmg0CPZ0%2BF1khsF0M0o2pJPFGIwCUhI30I3ibDEUWOlPqZbGZBFFbBln5PwgE%2Bdtlkdc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c8347d255689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.amy-escort.com/wp-content/themes/luxury-interior/js/theme.js?ver=6.5.2 | 188.114.96.1 | 200 OK | 2.8 kB |
URL GET HTTP/3www.amy-escort.com/wp-content/themes/luxury-interior/js/theme.js?ver=6.5.2 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (2903), with no line terminators Hashcef95023e3ff92622333c123c18d6332 d37f4f9eaff6bdb7bf5a5c70591e9c09b6cbffb8 aa8c1cb43a170cac45de564c8833788248a7a342f83582a2a4c419579e78b269
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/luxury-interior/js/theme.js?ver=6.5.2 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:56 GMT
content-type: text/javascript
last-modified: Thu, 11 Apr 2024 11:31:56 GMT
etag: W/"1961aa9-ae4-615d080aeaf93-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=Gz7V7j7UB6U%2BjdYFtu%2BaY843A58xPnxdJmJlGVgPZn3cJgB0JL9WRPtox9xE0M5dW1jho%2FdhChDk%2B6mnGv13v78CbYvHjBOeZulcbA0qzQSWRYkBs7vv5mRpcUlKAbgiM%2BBWCv0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c8346d0d5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.amy-escort.com/wp-content/themes/luxury-interior/webfonts/fa-solid-900.woff2 | 188.114.96.1 | 200 OK | 39 kB |
URL GET HTTP/3www.amy-escort.com/wp-content/themes/luxury-interior/webfonts/fa-solid-900.woff2 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 38784, version 1.0 Hashf9b85c9463af7103b9b24bbbf09a06ed d28d7222bcbeb8ea701a771e85f7efe006e62fb1 62554277d07b20c6bfae7c6267b3198b4846f604a37d4085bf9f54c392210b56
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/luxury-interior/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/wp-content/themes/luxury-interior/css/fontawesome-all.css?ver=6.5.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:58 GMT
content-type: font/woff2
last-modified: Thu, 11 Apr 2024 11:31:58 GMT
etag: W/"1961bcc-9780-615d080cd47cd-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: EXPIRED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=krxO%2ByveBvtfLQUBqk8Pyb0qw6vEJ%2BJuJBxcAdpsRLJ8%2B7grxoUDritVdtjbf%2FMRHLkTa%2BCEx9Om0pkk%2BOWbh3cY87BEG1tv8Qwf4409ju3LDS98phzti%2FPW8iAOnrAeDCaxA9Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c83af8035689-OSL
alt-svc: h3=":443"; ma=86400
|
|
| www.amy-escort.com/wp-content/themes/luxury-interior/style.css?ver=6.5.2 | 188.114.96.1 | 200 OK | 23 kB |
URL GET HTTP/3www.amy-escort.com/wp-content/themes/luxury-interior/style.css?ver=6.5.2 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typeassembler source, ASCII text, with very long lines (1312) Hasha8f00594ab8280e8beb0646b628b422c e77957490f0564c398dc1476fbd21b4953fd0c54 a20b48910cbf0a0215bfe93376ec5bb6afde72b39d3be5331e1139b4640a8cc1
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/luxury-interior/style.css?ver=6.5.2 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:56 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 11:31:56 GMT
etag: W/"1961b08-5ac4-615d080b3e3a4-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=0soR1I8Zz4fVaTorOcCxxRW5Us%2FQV2wKcVVspQe1X%2FDfSHkURnhe9GPBqelsncl0ccB55oqRZ3uotP6lIXw4imoZR%2FrDpNDO7Z7ZzF9YSAkBsaDYeB3D9DW9wubmYnyJN%2BNHYb4%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c8344cdc5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.amy-escort.com/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 | 188.114.96.1 | 200 OK | 19 kB |
URL GET HTTP/3www.amy-escort.com/wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (15752) Hashb976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.5.2 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:57 GMT
content-type: text/javascript
last-modified: Tue, 13 Feb 2024 14:36:07 GMT
etag: W/"19620fa-4926-61144508b03c0-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IC3VcpRU%2FJcDNosnp7PksI4qWHRQeRX%2BNVIN%2FBkgIZOi4%2FvyHtRUKhNcL68td2TxQIThELw6GdANOgZvVJWBwoXwSN1DFlxx6o3lGop0zBMRZUvMkbANSxNNYoeGa%2BqISMA31Ys%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c83bf9935689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube.com/s/player/f92087f2/www-widgetapi.vflset/www-widgetapi.js | 142.250.74.78 | 200 OK | 221 kB |
URL GET HTTP/3www.youtube.com/s/player/f92087f2/www-widgetapi.vflset/www-widgetapi.js IP142.250.74.78:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (531) Size221 kB (220979 bytes) Hash9b6064f6f8869163df0a8733e6a96a06 08e8ea54128d830998f4a97af3aec67eb7b27cc7 889b17a954d92c4905c6da78f51df1906a8826e9b4d0a9e3474d6b423558ec2b
GET /s/player/f92087f2/www-widgetapi.vflset/www-widgetapi.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 68429
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 16 Apr 2024 07:20:44 GMT
expires: Wed, 16 Apr 2025 07:20:44 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 16 Apr 2024 04:18:33 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 182114
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.amy-escort.com/wp-content/themes/luxury-interior/css/default.css?ver=6.5.2 | 188.114.96.1 | 200 OK | 11 kB |
URL GET HTTP/3www.amy-escort.com/wp-content/themes/luxury-interior/css/default.css?ver=6.5.2 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
Hash379fc5dd8095ba3b64f75521c4257f61 fdc487d791eb6c44f4f3882d614b12d54f695606 e33c7d9305d3965238bd31938ec1303e32b108683af3de3fd1cb2a7554102400
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/luxury-interior/css/default.css?ver=6.5.2 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:56 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 11:31:56 GMT
etag: W/"1961985-2c5d-615d080a9026a-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OdnppjI0dhP9fTbepJIbjf2%2BwCg3X3s4QYKJ3rOnIJRjS78u6Hb%2F%2BCI%2FNRnsqzBO9aMGARAl5ykGEL6rufd4%2FHRWrcjxV2%2FCkz9mFiOj8ceTiA1euQ9q0mb1IBFfCrHM4atNN9k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c8345ce05689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.amy-escort.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 | 188.114.96.1 | 200 OK | 14 kB |
URL GET HTTP/3www.amy-escort.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (13479) Hash9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:56 GMT
content-type: text/javascript
last-modified: Fri, 09 Jun 2023 05:49:24 GMT
etag: W/"196205a-3509-5fdabee5f2100-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=uid1oNCPLJEMiW1cIqW%2FFWJWElhs1ZtyStlSGihC09N%2BIuTRS2HFle%2BcPk7Y7V5mhlT%2BC1f6bGSNzK5%2BRfCljVS8nFsWXTHLZWwHZ4F1hI5wpAXBbMZC%2F7JBZMBtk6GOatKr%2Ftg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c8346cfe5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 | 216.58.207.227 | 200 OK | 16 kB |
URL GET HTTP/2fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 IP216.58.207.227:443
Requested byhttps://www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint8F:81:43:71:C4:F3:8C:FA:6D:EC:B4:5E:1F:58:71:AA:48:42:0E:E9 ValidityMon, 04 Mar 2024 07:16:39 GMT - Mon, 27 May 2024 07:16:38 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 15552, version 1.0 Hash285467176f7fe6bb6a9c6873b3dad2cc ea04e4ff5142ddd69307c183def721a160e0a64e 5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.youtube.com
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 11 Apr 2024 17:25:07 GMT
expires: Fri, 11 Apr 2025 17:25:07 GMT
cache-control: public, max-age=31536000
age: 577851
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.amy-escort.com/wp-content/themes/luxury-interior/css/responsive.css?ver=6.5.2 | 188.114.96.1 | 200 OK | 5.5 kB |
URL GET HTTP/3www.amy-escort.com/wp-content/themes/luxury-interior/css/responsive.css?ver=6.5.2 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typeASCII text, with very long lines (5718), with no line terminators Hash3a354717abebb035b48e3d70c95b71bd df93e2cd1bd88b494104302e6076cbe9052f1404 1fc82d9baa6dd189a45e4a34acff45c7c7dfdcefa1f3fd35732ce2d6f5087b93
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/luxury-interior/css/responsive.css?ver=6.5.2 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:56 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 11:31:56 GMT
etag: W/"1961994-1556-615d080a90e22-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=kLjq%2F9cUS49R3yQyfxz6DIyDaGC5AzLup%2FidQhI7nqxcW73zws4xYLQC%2FL%2Flb91vhSKHAATkPlPNjfi6nTZp7jAPQauQdltNphE8pCqTf2c7zlC34puUfWuvyvBBF8Qzyi3XnQY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c8345ceb5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.amy-escort.com/wp-content/themes/luxury-interior/js/owl.carousel.js?ver=6.5.2 | 188.114.96.1 | 200 OK | 87 kB |
URL GET HTTP/3www.amy-escort.com/wp-content/themes/luxury-interior/js/owl.carousel.js?ver=6.5.2 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/luxury-interior/js/owl.carousel.js?ver=6.5.2 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:57 GMT
content-type: text/javascript
last-modified: Thu, 11 Apr 2024 11:31:56 GMT
etag: W/"1961aa3-1543a-615d080ad6f41-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=HzpYVCpHYZxDxaJR%2BHbroGSZ%2F16fvkMlTa39lZrFz5BxwLJ8AnRU%2Fwii0koB6gggh%2BpQcd4lPgpJ4SXqzfNhITVcZhbl%2BBX9EwmAJIvhXAxwEp%2BC7WFcs0N4HNmDgBT%2BTv08zr8%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c8346cff5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.amy-escort.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.5.2 | 188.114.96.1 | 200 OK | 4.2 kB |
URL GET HTTP/3www.amy-escort.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.5.2 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typeASCII text, with very long lines (4186), with no line terminators Hashea958276b7de454bd3c2873f0dc47e5f b143f6e8e8f79d8f104c26b0057ef5514d763219 2e10d353ff038c2cad3492fc17801af3e6ef2669c9e9713bdb78b1dcb104c4fe
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.5.2 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:56 GMT
content-type: text/css
last-modified: Fri, 07 Jun 2019 20:45:02 GMT
etag: W/"19620d0-105a-58ac1e7924f80-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rkUT6fmzha7A7%2BNVr%2BCYnobQ7CzdyInukLzVKsfC1Hf4KVWvYU6HUd8K4VdHz4KJnYZLPHci7s37UNvSTQV6ijytnJtN1Rr5dbKf71287HDCz%2Fl7Sx7gyHUZvY%2FfapXLzKFQ9lc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c8348d2e5689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube.com/s/player/0af6e327/player_ias.vflset/en_US/base.js | 142.250.74.78 | 200 OK | 2.5 MB |
URL GET HTTP/3www.youtube.com/s/player/0af6e327/player_ias.vflset/en_US/base.js IP142.250.74.78:443
Requested byhttps://www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
Size2.5 MB (2546025 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /s/player/0af6e327/player_ias.vflset/en_US/base.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-encoding: gzip
accept-ranges: bytes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 809601
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 07:38:07 GMT
expires: Thu, 17 Apr 2025 07:38:07 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 Apr 2024 04:21:26 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 94671
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.amy-escort.com/wp-content/themes/luxury-interior/css/blocks.css?ver=6.5.2 | 188.114.96.1 | 200 OK | 14 kB |
URL GET HTTP/3www.amy-escort.com/wp-content/themes/luxury-interior/css/blocks.css?ver=6.5.2 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
Hash956a3a02d9632aade0d9976e7ff12118 1116cca458301ea0e00606f42e797a032faa44ed 9f57f8e0afeb95ff95dc67818048210078fe434787ddb4e42d1102363f211489
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/luxury-interior/css/blocks.css?ver=6.5.2 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:56 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 11:31:56 GMT
etag: W/"196196d-376e-615d080a9026a-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7m5cTtCkoNrE2ap1mCFRi%2BH14WTwRlE9X31faE8i%2FZT5BgxSKxYJRcWG058xU3cQwRscueq82b84hPxSn%2Ffyguk0iKT5PdBrGuB2UTrwoSWGvZmdiBNZGxDQwZIgfDhFKhEeoMg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c8345ce75689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| www.youtube.com/s/player/0af6e327/player_ias.vflset/en_US/embed.js | 142.250.74.78 | 200 OK | 59 kB |
URL GET HTTP/3www.youtube.com/s/player/0af6e327/player_ias.vflset/en_US/embed.js IP142.250.74.78:443
Requested byhttps://www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1 CertificateIssuerGoogle Trust Services LLC Subject*.google.com Fingerprint02:6C:2F:38:A0:8A:95:AC:E8:2B:67:AA:69:A4:34:6E:15:99:F5:1D ValidityMon, 04 Mar 2024 06:35:50 GMT - Mon, 27 May 2024 06:35:49 GMT
File typeJavaScript source, ASCII text, with very long lines (3391) Hashd402bd816dc653a38c45b999b83a09ec cafbc4938c3dfd636aa833b1003248d97353f2c0 0dd380ba638f1df10476e7866f3e04f56e13ecc0dd03974eb46122d7e31dffc8
GET /s/player/0af6e327/player_ias.vflset/en_US/embed.js HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.youtube.com/embed/h_xjfqrFl7o?controls=0&rel=0&disablekb=1&showinfo=0&modestbranding=0&html5=1&iv_load_policy=3&autoplay=0&end=0&loop=0&playsinline=0&start=0&nocookie=false&enablejsapi=1&origin=https%3A%2F%2Fwww.amy-escort.com&widgetid=1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
accept-ranges: bytes
content-encoding: br
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
content-length: 18201
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 17 Apr 2024 07:39:06 GMT
expires: Thu, 17 Apr 2025 07:39:06 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 17 Apr 2024 04:21:26 GMT
content-type: text/javascript
vary: Accept-Encoding, Origin
age: 94612
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.amy-escort.com/wp-content/themes/luxury-interior/js/bootstrap.js?ver=6.5.2 | 188.114.96.1 | 200 OK | 146 kB |
URL GET HTTP/3www.amy-escort.com/wp-content/themes/luxury-interior/js/bootstrap.js?ver=6.5.2 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (620) Size146 kB (145543 bytes) Hash1376378024397729b1febb40f5a0e16f 7cd58dfe612352aedc5068b96d78052de6a634ea 4ea6de9832c8e17c55a323a97dfbfe1532f9a0f9e74f46bfa962c9cb6fc035e8
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/luxury-interior/js/bootstrap.js?ver=6.5.2 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:57 GMT
content-type: text/javascript
last-modified: Thu, 11 Apr 2024 11:31:56 GMT
etag: W/"1961a89-23887-615d080ab0225-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=COepCciDBxIxaO9fGig9wKnkCVv0uZjGL8zbShuF7zhhyrg8RBkvN80U5RfHgROzjSSjlV%2BQGMjHhR13eRh7%2FH5luCpEGo84CgpdbSOSRqrgDdNv01i6h%2F1nNmy31vBFrI24HRM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c8346d095689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| | 188.114.96.1 | 301 Moved Permanently | 45 kB |
URL User Request GET HTTP/2IP188.114.96.1:443
CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /4Gd HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 301 Moved Permanently
date: Thu, 18 Apr 2024 09:55:55 GMT
content-type: text/html; charset=UTF-8
location: http://www.amy-escort.com
x-powered-by: PHP/8.2.16
expires: Wed, 11 Jan 1984 05:00:00 GMT
cache-control: no-cache, must-revalidate, max-age=0
vary: Accept-Encoding
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PwwmYENgNywfC%2FCI4NqJWzJeUK%2F6Jt25EzMc7NSEYvPbJ0DVYsoo64cxx5oQQ1UgEkk%2BbXIX%2BDCGCs0mM0%2BpTI%2Fq5riVRlZI6QtDorRV2rTLrll%2F%2FXtGxIsC2Faezwnh7roRJT0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c82c9a480b49-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| www.amy-escort.com/wp-content/themes/luxury-interior/css/fontawesome-all.css?ver=6.5.2 | 188.114.96.1 | 200 OK | 71 kB |
URL GET HTTP/3www.amy-escort.com/wp-content/themes/luxury-interior/css/fontawesome-all.css?ver=6.5.2 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
Hash51d29024d1baa27ec59afd175eacabc9 5999cad39d9caabf93fcd0f0905cd0ab0c2e46cd 7802ab7abd053752bebf764dbf39c389fa17e47909fcdd317225f39efa6de14f
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-content/themes/luxury-interior/css/fontawesome-all.css?ver=6.5.2 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:56 GMT
content-type: text/css
last-modified: Thu, 11 Apr 2024 11:31:56 GMT
etag: W/"196198a-1151e-615d080a90a3a-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=rYaCeomYsoFMItcamOPSENAgsVrRaQrd8wOYPCKJcLPwI30T2o3B%2BkcT65Plm%2F773Uyn4MmbLCKeBzZHY0RfYeKgVgMNgK3JqU%2FvyYhM9HI8s2iWm3g7skbvrcZZWipG1rpvghI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c8345ce45689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|
| fonts.googleapis.com/css?family=Open+Sans%3Aital%2Cwght%400%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800&ver=6.5.2 | 142.250.74.106 | 200 OK | 39 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Open+Sans%3Aital%2Cwght%400%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800&ver=6.5.2 IP142.250.74.106:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint47:5A:64:7D:9F:47:34:07:31:91:97:F7:04:42:7A:D5:EA:AD:07:4E ValidityMon, 04 Mar 2024 07:16:44 GMT - Mon, 27 May 2024 07:16:43 GMT
File typeASCII text, with very long lines (1572) Hashaa7e979e3d411fd53018aaa94f2a3f1e 0323941dc5a841d28c5a5806462f3c9c4f7dcbea 4697e9e21bee074db19036a34dd2977cfa4d90455fa83aefb72ba0000e422da8
GET /css?family=Open+Sans%3Aital%2Cwght%400%2C300%3B0%2C400%3B0%2C500%3B0%2C600%3B0%2C700%3B0%2C800%3B1%2C300%3B1%2C400%3B1%2C500%3B1%2C600%3B1%2C700%3B1%2C800&ver=6.5.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 18 Apr 2024 09:55:56 GMT
date: Thu, 18 Apr 2024 09:55:56 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.amy-escort.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.5.2 | 188.114.96.1 | 200 OK | 1.1 kB |
URL GET HTTP/3www.amy-escort.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.5.2 IP188.114.96.1:443
Requested byhttps://www.amy-escort.com/ CertificateIssuerGoogle Trust Services LLC Subjectamy-escort.com Fingerprint97:A5:6B:39:F7:EA:E4:72:55:A4:85:24:2C:49:3D:74:AE:86:CE:BB ValidityFri, 23 Feb 2024 03:03:06 GMT - Thu, 23 May 2024 03:03:05 GMT
File typeJavaScript source, ASCII text, with very long lines (1145), with no line terminators Hash8e9324620d8bfb8c0625430b9a551597 5a6d16b85be402fa2d7c02257437b649ca879544 a41b21c23b2bfaee55c6a39fcc40e843ea687990bd503157257c25b498800a55
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.5.2 HTTP/1.1
Host: www.amy-escort.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.amy-escort.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 18 Apr 2024 09:55:56 GMT
content-type: text/javascript
last-modified: Tue, 07 Feb 2023 16:00:42 GMT
etag: W/"19620d2-453-5f41e3fe93e80-br"
vary: Accept-Encoding
cache-control: max-age=14400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C5oXc%2FajMi8pLjfgI7t8jynhlet6NOj3VWoHiT5wTKWvB9dnATHWMHP9a%2B%2FnWqzwAvCm9ibLOkXFSS9pyCnq48uCTLrRJ3AgwWgRSSIS04FvUqb%2FrxU5U5LM6BbOtRKvusUjL5Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 8763c8348d405689-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
|
|