| i0.wp.com/editors.dexerto.com/wp-content/uploads/2024/04/17/baby-reindeer-theory-1.jpg?w=1200&resize=1200,0&ssl=1 | 192.0.77.2 | 200 OK | 41 kB |
URL GET HTTP/2i0.wp.com/editors.dexerto.com/wp-content/uploads/2024/04/17/baby-reindeer-theory-1.jpg?w=1200&resize=1200,0&ssl=1 IP192.0.77.2:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerSectigo Limited Subject*.wp.com Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2 ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 1200x651, Scaling: [none]x[none], YUV color, decoders should clamp Hash3c177b2a062a010ba9816ca4fdd77f70 59a418e21e5ef795fd6aac77d21a26435bbc2af6 c156c48d7d9463dc48ba3223fc5fa97b99b1fe5307ff3fd2db62364568a5c0e9
GET /editors.dexerto.com/wp-content/uploads/2024/04/17/baby-reindeer-theory-1.jpg?w=1200&resize=1200,0&ssl=1 HTTP/1.1
Host: i0.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:48:26 GMT
content-type: image/webp
content-length: 40558
last-modified: Wed, 08 May 2024 14:41:17 GMT
expires: Sat, 09 May 2026 02:41:17 GMT
cache-control: public, max-age=63115200
link: <https://editors.dexerto.com/wp-content/uploads/2024/04/17/baby-reindeer-theory-1.jpg>; rel="canonical"
x-content-type-options: nosniff
etag: "99a53a1383fd6fc3"
vary: Accept
x-nc: MISS arn 8
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| i2.wp.com/www.gannett-cdn.com/authoring/authoring-images/2024/04/26/NCOD/73465808007-hagan-nathan.jpeg?auto=webp&crop=199,112,x1,y54&format=pjpg&width=1200&w=1200&resize=1200,0&ssl=1 | 192.0.77.2 | 200 OK | 3.9 kB |
URL GET HTTP/2i2.wp.com/www.gannett-cdn.com/authoring/authoring-images/2024/04/26/NCOD/73465808007-hagan-nathan.jpeg?auto=webp&crop=199,112,x1,y54&format=pjpg&width=1200&w=1200&resize=1200,0&ssl=1 IP192.0.77.2:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerSectigo Limited Subject*.wp.com Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2 ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT
File typeRIFF (little-endian) data, Web/P image, VP8 encoding, 200x300, Scaling: [none]x[none], YUV color, decoders should clamp Hash3ec95dc974c9738897f775ee772c30f5 cc0a6063523e8a078c66b9440db4ebb05cbbc5e9 21b8b16d90325fac31d7c7775eb679c6ba9baa9cafa528a259ace487da3da0df
GET /www.gannett-cdn.com/authoring/authoring-images/2024/04/26/NCOD/73465808007-hagan-nathan.jpeg?auto=webp&crop=199,112,x1,y54&format=pjpg&width=1200&w=1200&resize=1200,0&ssl=1 HTTP/1.1
Host: i2.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:48:26 GMT
content-type: image/webp
content-length: 3924
last-modified: Thu, 09 May 2024 02:48:26 GMT
expires: Sat, 09 May 2026 14:48:26 GMT
cache-control: public, max-age=63115200
link: <https://www.gannett-cdn.com/authoring/authoring-images/2024/04/26/NCOD/73465808007-hagan-nathan.jpeg>; rel="canonical"
x-content-type-options: nosniff
etag: "2eebc21a84afc44c"
vary: Accept
x-nc: MISS arn 6
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| i1.wp.com/images2.minutemediacdn.com/image/upload/c_crop,w_7879,h_4431,x_0,y_0/images/ImagnImages/mmsport/si-temp/01hw2ymcsb1jp1xdywy2?w=1200&resize=1200,0&ssl=1 | 192.0.77.2 | 200 OK | 74 kB |
URL GET HTTP/2i1.wp.com/images2.minutemediacdn.com/image/upload/c_crop,w_7879,h_4431,x_0,y_0/images/ImagnImages/mmsport/si-temp/01hw2ymcsb1jp1xdywy2?w=1200&resize=1200,0&ssl=1 IP192.0.77.2:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerSectigo Limited Subject*.wp.com Fingerprint5D:DB:6E:AA:9E:A8:4A:C3:10:A5:DA:89:DC:1C:BB:D1:87:5F:E1:D2 ValidityTue, 28 Nov 2023 00:00:00 GMT - Sat, 28 Dec 2024 23:59:59 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1200x674, components 3 Hash8355818ebf6388a68897ebe232ccd856 690b8acb4966bf26b773059214bbb37414018555 540262fcad812e88df57a503f7b845b022d810c54b5ba2daca70cb5cb9f386ff
GET /images2.minutemediacdn.com/image/upload/c_crop,w_7879,h_4431,x_0,y_0/images/ImagnImages/mmsport/si-temp/01hw2ymcsb1jp1xdywy2?w=1200&resize=1200,0&ssl=1 HTTP/1.1
Host: i1.wp.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Thu, 09 May 2024 02:48:26 GMT
content-type: image/jpeg
content-length: 73779
last-modified: Mon, 22 Apr 2024 21:38:31 GMT
expires: Thu, 23 Apr 2026 09:38:31 GMT
cache-control: public, max-age=63115200
link: <https://images2.minutemediacdn.com/image/upload/c_crop,w_7879,h_4431,x_0,y_0/images/ImagnImages/mmsport/si-temp/01hw2ymcsb1jp1xdywy2>; rel="canonical"
x-content-type-options: nosniff
etag: "86ddb4399e9f676c"
x-bytes-saved: 1882
vary: Accept
x-nc: MISS arn 1
alt-svc: h3=":443"; ma=86400
access-control-allow-origin: *
access-control-allow-methods: GET, HEAD
timing-allow-origin: *
X-Firefox-Spdy: h2
|
|
| www.melissa-payne.ca/wp-content/themes/flash-news/assets/js/navigation.min.js?ver=1.1.0 | 172.67.204.52 | 200 OK | 24 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-content/themes/flash-news/assets/js/navigation.min.js?ver=1.1.0 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeASCII text, with very long lines (1478), with no line terminators Hashe989ca82dcbfbb13ea142424077c05d9 ba4fa7758b4e1f8439eaa44fe10260697ed8200e bd7e9705573e01d301efe30f1dc3c4a488da6e7f65f23940e80bb819f029bfd5
GET /wp-content/themes/flash-news/assets/js/navigation.min.js?ver=1.1.0 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:26 GMT
content-type: text/javascript
etag: W/"5c6-660efb65-66418bc;br"
last-modified: Thu, 04 Apr 2024 19:11:33 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=JeLcsH1vE7pTwj5SDQBfUDpFK%2Fq0MjdeuBnoNgm%2BHBCkCG8B3XkpGJlgbirQmhqMfpjSV%2FZeUQ0okOCV4K5tht7eeHVxqt9EC3a5IWLpyT%2BrWCjRp87U3FU1KHEZBnfPl9qLuXkqhQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e5eda9f4eb4eb-OSL
content-encoding: br
|
|
| www.melissa-payne.ca/wp-content/themes/flash-news/assets/js/custom.min.js?ver=1.1.0 | 172.67.204.52 | 200 OK | 1.9 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-content/themes/flash-news/assets/js/custom.min.js?ver=1.1.0 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeJavaScript source, ASCII text, with very long lines (7442), with no line terminators Hashbbe03fc831dbb455a4681dfc44bb54e5 3deab0412acb9b39226f461b7995d29cccb7cef0 73d9964a372dc46674023e48baa6718cc48cfa5153436d8c7886a9e595fdbb51
GET /wp-content/themes/flash-news/assets/js/custom.min.js?ver=1.1.0 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:26 GMT
content-type: text/javascript
etag: W/"1d12-660efb65-66418b8;br"
last-modified: Thu, 04 Apr 2024 19:11:33 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=N3yzjjuHF6FK8LovNCAxME%2B8UXMaRq2FRI60gsvxyKXcTDJWmIF2hq0CQPJPg%2Br0VPOnwH4YQRAGw%2F9PtJK5eFZltfr5xksJvjvtmiktOqWvEeEyiife8uN05lvi%2Fl5NdKMyJzp3uw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e5eda9f57b4eb-OSL
content-encoding: br
|
|
| www.melissa-payne.ca/wp-content/plugins/wordpress-popular-posts/assets/js/wpp.min.js?ver=6.4.2 | 172.67.204.52 | 200 OK | 14 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-content/plugins/wordpress-popular-posts/assets/js/wpp.min.js?ver=6.4.2 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeJavaScript source, ASCII text, with very long lines (544), with CRLF line terminators Hash04971509832a326e138a17c783039915 f811b73f05860f98b2f96e177c077e60ab49611e 654c93cbd3b3ca3d35f44b2665b4a6f57ed8f0aef01ac6c56bce39638dfab076
GET /wp-content/plugins/wordpress-popular-posts/assets/js/wpp.min.js?ver=6.4.2 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:26 GMT
content-type: text/javascript
etag: W/"11d3-65ef1906-66266b9;br"
last-modified: Mon, 11 Mar 2024 14:45:26 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=BuH5uRj2oISgi8HtCM%2BPiIKRaY2gSo9CiJNi%2BbD2Bd6mmPyLFDSC3PTmF5YhIMys%2FebmrR%2FAd4bU7OqTjrNhXqYmD%2BZVPZZqAfOZR8QkI7H1DNklXd3LLFBP1gfJVlrVjWOFSy3YHA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e5eda7f3db4eb-OSL
content-encoding: br
|
|
| noisesperusemotel.com/0a4243b915b6aef7ce6409f3497d95fb/invoke.js | 192.243.59.13 | 200 OK | 9.8 kB |
URL GET HTTP/1.1noisesperusemotel.com/0a4243b915b6aef7ce6409f3497d95fb/invoke.js IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerLet's Encrypt Subjectnoisesperusemotel.com Fingerprint58:2C:9C:55:9F:EC:B2:C1:50:10:0F:28:6D:3C:4A:97:83:75:B6:1B ValidityTue, 19 Mar 2024 07:40:07 GMT - Mon, 17 Jun 2024 07:40:06 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (26563), with no line terminators Hasheffe7a61150e1600714e863ade349900 10675aebf91f04803319f0ac8e90d27eba93e522 6ba59aa600ad275021b9bb4e9619cb5ebcdf8476dc9a36bab920779ae3f55bfd
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /0a4243b915b6aef7ce6409f3497d95fb/invoke.js HTTP/1.1
Host: noisesperusemotel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 09 May 2024 02:48:26 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b27f93a451b1dce23f09cf771b0509eb
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| www.melissa-payne.ca/wp-content/themes/flash-news/assets/webfonts/fa-regular-400.woff2 | 172.67.204.52 | 200 OK | 24 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-content/themes/flash-news/assets/webfonts/fa-regular-400.woff2 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 24488, version 772.1280 Hash747442fa76f1d9a31f9a54a2e8a4b448 07fc0ae14bb3187839082aed3bca11dfb1e04524 9169d8be7a8177e5a92a4d04b6de7f6504b938573bf4da5889871c4f376d3849
GET /wp-content/themes/flash-news/assets/webfonts/fa-regular-400.woff2 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/wp-content/themes/flash-news/assets/css/fontawesome.min.css?ver=6.4.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:26 GMT
content-type: font/woff2
content-length: 24488
cache-control: public, max-age=43200
expires: Thu, 09 May 2024 08:01:06 GMT
etag: "5fa8-660efb65-66418c2;;;"
last-modified: Thu, 04 Apr 2024 19:11:33 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: HIT
age: 24440
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=fpNKXVzB5W1vYHpJY8UoKlwyH3DjA5eQXcgjtMLS3Mk5e9nSICqTNTTvTeXJ%2BRfbYrfIcO60WhsQ0ZCmnpvgu17HwImWo4fMCME9uCON2EJhA262aC6Eazj0Ad8N1g5pu5NS6WBIuA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e5ee07b06b4eb-OSL
|
|
| www.melissa-payne.ca/wp-content/fonts/source-sans-pro/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 | 172.67.204.52 | 200 OK | 15 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-content/fonts/source-sans-pro/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 14712, version 1.0 Hash3afeae0d768769f5e5f30ac9805c5b70 3ada17c2b462db3e7a1fd85c3f4670dfe7704f4d 0d0a6262c545e8bbc895116e5afb22579c468d7abb77e378f377d6fed57c1dce
GET /wp-content/fonts/source-sans-pro/6xKydSBYKcSV-LCoeQqfX1RYOo3ig4vwlxdu.woff2 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/wp-content/fonts/ccb0b30ba0847ee1f0a2cf095a330de8.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:27 GMT
content-type: font/woff2
content-length: 14712
cache-control: public, max-age=43200
expires: Wed, 01 May 2024 06:21:21 GMT
etag: "3978-65e81020-6626774;;;"
last-modified: Wed, 06 Mar 2024 06:41:36 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=QUOB05JmqjbU5sfvrCeLB8ZFJeoCpsv1t2BRLU%2BBvWY9ezg0nT3R8oV3HswoL580CndByUKYFdzDLbfH7ltMTIFukzgpXIvWdr3BjZB3%2FnQ8RWEsDc32SmSc%2BJfKgiYyinmzXjkqpg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e5ee01ac3b4eb-OSL
|
|
| www.melissa-payne.ca/wp-content/fonts/lato/S6u9w4BMUTPHh6UVSwiPGQ.woff2 | 172.67.204.52 | 200 OK | 23 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-content/fonts/lato/S6u9w4BMUTPHh6UVSwiPGQ.woff2 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23040, version 1.0 Hashde69cf9e514df447d1b0bb16f49d2457 2ac78601179c3a63ba3f3f3081556b12ddcaf655 c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49
GET /wp-content/fonts/lato/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/wp-content/fonts/ccb0b30ba0847ee1f0a2cf095a330de8.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:27 GMT
content-type: font/woff2
content-length: 23040
cache-control: public, max-age=43200
expires: Wed, 01 May 2024 13:51:39 GMT
etag: "5a00-65e81019-6626753;;;"
last-modified: Wed, 06 Mar 2024 06:41:29 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=FRr52GjqnlhwPVFV3BO8LTs76wI9iWT6NMWWFTn6C2zaRKLBPRVWSBn93lI0C9Bl9AN0QF%2BOQoTm%2Bo0Wt4bxveRIP6%2BibOXhM2jRWq56ogAOWZu5dAIYdSNS3K1quD9t2M6GjK7fFg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e5ee02ac6b4eb-OSL
|
|
| www.melissa-payne.ca/wp-content/themes/flash-news/assets/webfonts/fa-solid-900.woff2 | 172.67.204.52 | 200 OK | 150 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-content/themes/flash-news/assets/webfonts/fa-solid-900.woff2 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 150020, version 772.1280 Size150 kB (150020 bytes) Hashd5e647388e2415268b700d3df2e30a0d 97f0942c6627ddd89fb62170e5cac9a2cbd6c98c 886c86112a804ef1ddd1cb206af4c8c40e34b73c26652ca231404aa35a6b30d9
GET /wp-content/themes/flash-news/assets/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/wp-content/themes/flash-news/assets/css/fontawesome.min.css?ver=6.4.2
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:27 GMT
content-type: font/woff2
content-length: 150020
cache-control: public, max-age=43200
expires: Wed, 01 May 2024 06:21:21 GMT
etag: "24a04-660efb65-66418c4;;;"
last-modified: Thu, 04 Apr 2024 19:11:33 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UpZ0LtqRZP39dNnHHtwlluV1fpUnjLIlYwgGJcvYxGbC7tXIlScByhhqqmkZLKkPb5Tbh2v%2FoAEQmWN1NTBNiANdv1bBb44H2LKQFMZtotV396SCDljkTKzcTibi7%2F5s04QEA%2BHM0w%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e5ee02ac8b4eb-OSL
|
|
| www.melissa-payne.ca/wp-content/fonts/source-sans-pro/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 | 172.67.204.52 | 200 OK | 15 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-content/fonts/source-sans-pro/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 14824, version 1.0 Hash48598bad30f08e1c3eb3d0e69b420bd5 28c2cf160273c2062f909a875c4b4c0541ee2f84 ca57b79a870bbf54700730858603a70d79743779c1b059922ec401bfddc5adc9
GET /wp-content/fonts/source-sans-pro/6xKydSBYKcSV-LCoeQqfX1RYOo3i54rwlxdu.woff2 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/wp-content/fonts/ccb0b30ba0847ee1f0a2cf095a330de8.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:27 GMT
content-type: font/woff2
content-length: 14824
cache-control: public, max-age=43200
expires: Wed, 01 May 2024 13:51:39 GMT
etag: "39e8-65e8101f-6626775;;;"
last-modified: Wed, 06 Mar 2024 06:41:35 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zESmDzWhvgtMW%2BI5MEgqvUjgaOaNlmCZbkDmL%2BQsaqMcC9fh%2BVAJOZbHswL03DIdOtBK9qaHaZ23%2BKDSItw1gX%2BbwYqQwa4Hv4i3xAp1Kn51fDHLpOd8vHAIVgLNrciUKpxo9a0jgg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e5ee07b07b4eb-OSL
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hash17d83a6a1ce5ec032b9d0be6c8c68106 9b412e1c9f9694753b73daa262811ec4c420e7d1 935af939ae598190c9c8175f1ac54241ab2614b3c7599a4c92e1be2ecd42ab23
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Thu, 09 May 2024 02:48:27 GMT
Last-Modified: Thu, 09 May 2024 02:00:03 GMT
Server: ECAcc (ska/F756)
X-Cache: Miss from cloudfront
Via: 1.1 501ad2910f631f0520a6d389d6f053e8.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: elrlAjEFVQKjYX32xAyToINeWxJ_JAC66lUTGXrZR6Se4oR2iWLiBQ==
Age: 2904
|
|
| ocsp.r2m03.amazontrust.com/ | 143.204.53.97 | | 471 B |
URL ocsp.r2m03.amazontrust.com/ IP143.204.53.97:0
Hash17d83a6a1ce5ec032b9d0be6c8c68106 9b412e1c9f9694753b73daa262811ec4c420e7d1 935af939ae598190c9c8175f1ac54241ab2614b3c7599a4c92e1be2ecd42ab23
POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Thu, 09 May 2024 02:48:27 GMT
Last-Modified: Thu, 09 May 2024 02:05:01 GMT
Server: ECAcc (ska/F775)
X-Cache: Miss from cloudfront
Via: 1.1 814e8c24454087e83cd261a6cf477166.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: NEd2O9m5TlE5ILbSBjzq7F6Rg2doBmqLYLOOOcCWjnDbTClh3bEFtQ==
Age: 2606
|
|
| proftrafficcounter.com/stats | 52.57.164.94 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP52.57.164.94:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hashc613376c345cc02b92c8489e770298a6 2ef01a9e28dbb229b4280b66c3ae16d874db9fb3 0a12618ea81ffc738c1c5d83d72630e1ebc7a41ca0552f2d8b75caee66cb4069
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.melissa-payne.ca
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 09 May 2024 02:48:27 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.melissa-payne.ca
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=8336c15a-f71c-443a-bee8-144252ed0ba2:1:1; expires=Sun, 07 May 2034 02:48:27 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| proftrafficcounter.com/stats | 52.57.164.94 | 200 OK | 40 B |
URL GET HTTP/2proftrafficcounter.com/stats IP52.57.164.94:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerAmazon Subjectproftrafficcounter.com FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6 ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT
File typeASCII text, with no line terminators Hash8f632b19ea7c34a4dfca0de8ebe69a55 1833ad63a11896faaedecdae8d682e4a5fa78d8a e6ff2c376b009dad549557ecb86aa75f88313a39a17afb6231e85888ab3d38b7
GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.melissa-payne.ca
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 09 May 2024 02:48:27 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://www.melissa-payne.ca
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=35aedc92-294a-450f-abb8-1c6584bd5d90:2:1; expires=Sun, 07 May 2034 02:48:27 GMT; secure; SameSite=None
X-Firefox-Spdy: h2
|
|
| hearthmint.com/de/40/74/de40747527625eb4f2cfd573cb92ac16.js | 172.240.253.132 | 200 OK | 30 kB |
URL GET HTTP/1.1hearthmint.com/de/40/74/de40747527625eb4f2cfd573cb92ac16.js IP172.240.253.132:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerLet's Encrypt Subjecthearthmint.com FingerprintF6:2B:57:40:EF:4B:6A:35:E0:50:2A:B1:F8:87:89:EF:43:56:37:CA ValidityMon, 06 May 2024 08:30:09 GMT - Sun, 04 Aug 2024 08:30:08 GMT
File typeJavaScript source, ASCII text, with very long lines (65536), with no line terminators Hasha905cd587754126ddaf57435741dab6b 907c0e48eaca65bfc1954e4b5bb77fa252fc96b0 a6ff0d071e8df958d854ed620cb080e3579cb3ad3c2ff8010f09d343a4c54aca
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /de/40/74/de40747527625eb4f2cfd573cb92ac16.js HTTP/1.1
Host: hearthmint.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 09 May 2024 02:48:27 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: a65420503925bcd6dbf3e628bbd69d49
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| www.melissa-payne.ca/wp-content/uploads/wordpress-popular-posts/88249-featured-300x300.jpg | 172.67.204.52 | 200 OK | 14 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-content/uploads/wordpress-popular-posts/88249-featured-300x300.jpg IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3 Hash025166e1dd683f78021f1d9026570ce5 394436c4db66a6060fe05eeb66c564b7a7695ae9 53b3b132226d3d4bca8fa5aa24258c11287e5880c9a4dbf317b1c84c9e14372f
GET /wp-content/uploads/wordpress-popular-posts/88249-featured-300x300.jpg HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=35aedc92-294a-450f-abb8-1c6584bd5d90%3A2%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:27 GMT
content-type: image/jpeg
content-length: 14070
cache-control: public, max-age=43200
expires: Tue, 07 May 2024 22:14:41 GMT
etag: "36f6-66396f17-6648fe5;;;"
last-modified: Tue, 07 May 2024 00:00:23 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=GAnQl9eWBdCSvDFIKgjOch4BmlmSTg%2B3830t%2FZaXJ%2BTMoCGqqP5AqEhr0fT9%2FhdTRMh63ggj7aEs77CzFhfkAv%2B9vYReyg7IfISa1y2teyhPGN1SEyop6izlp1Hbbzak3RN2CuCC8Q%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e5ee39d30b4eb-OSL
|
|
| hearthmint.com/ntv.json?key=0a4243b915b6aef7ce6409f3497d95fb&vstc=1 | 172.240.253.132 | 200 OK | 4.2 kB |
URL GET HTTP/1.1hearthmint.com/ntv.json?key=0a4243b915b6aef7ce6409f3497d95fb&vstc=1 IP172.240.253.132:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerLet's Encrypt Subjecthearthmint.com FingerprintF6:2B:57:40:EF:4B:6A:35:E0:50:2A:B1:F8:87:89:EF:43:56:37:CA ValidityMon, 06 May 2024 08:30:09 GMT - Sun, 04 Aug 2024 08:30:08 GMT
Hash70d595ee91f7b65ee216361fc3d4df6b 62c74bc26a5567a7a707e45b5462c9b58b90dc01 7f94e7fe4dd3fabbe0bc39188ca505fdd75ae3839a96b54e8d9d3d46f85dd5eb
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ntv.json?key=0a4243b915b6aef7ce6409f3497d95fb&vstc=1 HTTP/1.1
Host: hearthmint.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.melissa-payne.ca
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 09 May 2024 02:48:27 GMT
Content-Type: application/json
Content-Length: 4248
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.melissa-payne.ca
Access-Control-Allow-Origin: https://www.melissa-payne.ca
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=22784088; expires=Fri, 10 May 2024 02:48:27 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 10 May 2024 02:48:27 GMT; secure; SameSite=None
uncs=1; expires=Fri, 10 May 2024 02:48:27 GMT; secure; SameSite=None
pdhtkv49=true; expires=Fri, 10 May 2024 02:48:27 GMT; secure; SameSite=None
uncs49=1; expires=Fri, 10 May 2024 02:48:27 GMT; secure; SameSite=None
nlec0a4243b915b6aef7ce6409f3497d95fb=[2229333]; expires=Thu, 09 May 2024 02:48:32 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 2489aad9574fa4a32e6f40144fefff4c
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| www.melissa-payne.ca/wp-content/uploads/wordpress-popular-posts/85239-featured-300x300.jpg | 172.67.204.52 | 200 OK | 7.1 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-content/uploads/wordpress-popular-posts/85239-featured-300x300.jpg IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3 Hash955e98165ecab7f4fd10be8896249133 6d37b9cd9c0952fdb7ea3cd6441a7799b5a77c2a a53d439917110b00acebd8f3dccaf675de56b8ed8e825bb3d6761614a387dae0
GET /wp-content/uploads/wordpress-popular-posts/85239-featured-300x300.jpg HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=35aedc92-294a-450f-abb8-1c6584bd5d90%3A2%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:27 GMT
content-type: image/jpeg
content-length: 7054
cache-control: public, max-age=43200
expires: Thu, 09 May 2024 14:48:27 GMT
etag: "1b8e-66381d9d-66448f4;;;"
last-modified: Mon, 06 May 2024 00:00:29 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=M7%2B%2FapEjKsTLVg6wPyeDdRvtoQw%2FwJtOvrqJAYjdfDK4CTg%2BGAnQO8vCFbkth3hqUf8uUsny5zhOYcoMnRZO1Pg89Zsev94kWZiFBP0Zs7pvtUvb412yeZUItZTShCj33tPh28LabQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e5ee38d24b4eb-OSL
|
|
| www.melissa-payne.ca/wp-content/uploads/wordpress-popular-posts/91723-featured-300x300.jpg | 172.67.204.52 | 200 OK | 10 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-content/uploads/wordpress-popular-posts/91723-featured-300x300.jpg IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=164, yresolution=172, resolutionunit=2], baseline, precision 8, 300x300, components 3 Hashd35d6e9188ee464562dc30566a62e0e0 55ca9eb3d83a3ed59a95aa2591e50bafa454d3ca 4ea50a9f89874a909e0d12809b3f803aaefd0c6fd51e4c4da5d9a00845b9b63a
GET /wp-content/uploads/wordpress-popular-posts/91723-featured-300x300.jpg HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=35aedc92-294a-450f-abb8-1c6584bd5d90%3A2%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:27 GMT
content-type: image/jpeg
content-length: 10526
cache-control: public, max-age=43200
expires: Tue, 07 May 2024 22:14:41 GMT
etag: "291e-66393642-664d7ca;;;"
last-modified: Mon, 06 May 2024 19:57:54 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ZOXZ0hiXSKXzLGqTecx4g5A8xDvPNz4MT%2Bf%2Bto2afk3HohRvS1br6z2rK62TvPDRpBnmZBGo9ypUfBz6AlXoz7JY2wIziyb66Liv%2Fgfp9MZkqGT%2FrIhfEMf%2F%2F0tydwsNZl1ZK94jpA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e5ee38d28b4eb-OSL
|
|
| www.melissa-payne.ca/wp-content/uploads/wordpress-popular-posts/86695-featured-300x300.jpg | 172.67.204.52 | 200 OK | 20 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-content/uploads/wordpress-popular-posts/86695-featured-300x300.jpg IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeJPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, components 3 Hash5a45f6369af3a444718bd71988645093 1c7d548a407c85675926f77f7471067223dfe053 7d584af766221899b562ef4453db48a71a501aa3207fb50a942ab7b3e68d7b59
GET /wp-content/uploads/wordpress-popular-posts/86695-featured-300x300.jpg HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=35aedc92-294a-450f-abb8-1c6584bd5d90%3A2%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:27 GMT
content-type: image/jpeg
content-length: 20225
cache-control: public, max-age=43200
expires: Mon, 06 May 2024 04:54:11 GMT
etag: "4f01-663789a0-66481a4;;;"
last-modified: Sun, 05 May 2024 13:29:04 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=PPTDEgo55tB1BOo3W0Do4vcsj7vTtyrT2phCSWXT4qYPuWCAfQEVBv5TLwPohz%2FnfpjJ26nYxNAAfWb2CQXgrFoxD3It5qlgD5Y7N8Z3k1mpX1jPtMF4ByQCdTEYbCQSpectcoFjqg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e5ee39d2eb4eb-OSL
|
|
| herringgloomilytennis.com/watch.1324393484024.js?key=d1a5e500ed255cc4ebf822ff2ae48229&kw=%5B%22baby%22%2C%22reindeer%22%2C%22fiona%22%2C%22harvey%22%2C%22ready%22%2C%22for%22%2C%22%E2%80%98explosive%E2%80%99%22%2C%22tv%22%2C%22interview%22%2C%22%E2%80%93%22%2C%22melissa%22%2C%22payne%22%5D&refer=https%3A%2F%2Fwww.melissa-payne.ca%2Ftrending%2F8ad102286cd17%2F&tz=0&dev=e&res=14.2071&uuid=8336c15a-f71c-443a-bee8-144252ed0ba2%3A1%3A1 | 172.240.127.234 | 307 Temporary Redirect | 0 B |
URL GET HTTP/1.1herringgloomilytennis.com/watch.1324393484024.js?key=d1a5e500ed255cc4ebf822ff2ae48229&kw=%5B%22baby%22%2C%22reindeer%22%2C%22fiona%22%2C%22harvey%22%2C%22ready%22%2C%22for%22%2C%22%E2%80%98explosive%E2%80%99%22%2C%22tv%22%2C%22interview%22%2C%22%E2%80%93%22%2C%22melissa%22%2C%22payne%22%5D&refer=https%3A%2F%2Fwww.melissa-payne.ca%2Ftrending%2F8ad102286cd17%2F&tz=0&dev=e&res=14.2071&uuid=8336c15a-f71c-443a-bee8-144252ed0ba2%3A1%3A1 IP172.240.127.234:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerLet's Encrypt Subjectherringgloomilytennis.com Fingerprint2A:E0:3F:2A:77:92:96:90:5D:38:27:4E:7F:FC:5D:D2:F9:32:73:11 ValidityMon, 06 May 2024 08:10:21 GMT - Sun, 04 Aug 2024 08:10:20 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.1324393484024.js?key=d1a5e500ed255cc4ebf822ff2ae48229&kw=%5B%22baby%22%2C%22reindeer%22%2C%22fiona%22%2C%22harvey%22%2C%22ready%22%2C%22for%22%2C%22%E2%80%98explosive%E2%80%99%22%2C%22tv%22%2C%22interview%22%2C%22%E2%80%93%22%2C%22melissa%22%2C%22payne%22%5D&refer=https%3A%2F%2Fwww.melissa-payne.ca%2Ftrending%2F8ad102286cd17%2F&tz=0&dev=e&res=14.2071&uuid=8336c15a-f71c-443a-bee8-144252ed0ba2%3A1%3A1 HTTP/1.1
Host: herringgloomilytennis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.melissa-payne.ca
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Thu, 09 May 2024 02:48:27 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.melissa-payne.ca
Access-Control-Allow-Origin: https://www.melissa-payne.ca
Access-Control-Allow-Credentials: true
Location: https://herringgloomilytennis.com/watch.1324393484024.js?dev=e&key=d1a5e500ed255cc4ebf822ff2ae48229&kw=%5B%22baby%22%2C%22reindeer%22%2C%22fiona%22%2C%22harvey%22%2C%22ready%22%2C%22for%22%2C%22%E2%80%98explosive%E2%80%99%22%2C%22tv%22%2C%22interview%22%2C%22%E2%80%93%22%2C%22melissa%22%2C%22payne%22%5D&pst=1715222967&refer=https%3A%2F%2Fwww.melissa-payne.ca%2Ftrending%2F8ad102286cd17%2F&res=14.2071&rmtc=t&shu=c8d95020bb2e455c76c8da412a0cee50036032bf8bfadacba762a2a8dc4e5f70ff734d95cf905d5c11c04e1e5fb5a8b78bb4f8c223a80bf17adf0d04dad18139edbfb05efe4caea1ac7684cdc5ee8b2eec39fab34e3af7dd5f1d69bc98539ff676&tz=0&uuid=8336c15a-f71c-443a-bee8-144252ed0ba2%3A1%3A1
Set-Cookie: u_pl=22609139; expires=Fri, 10 May 2024 02:48:27 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.y0Hr8mSU_wTQP85fB_PHZhnQ6hKftCSzQFsHKSo46Ek; expires=Thu, 09 May 2024 02:49:27 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7c259ef4798c6cac640ca1c72a27219d
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| hearthmint.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuTuYULxpz8zIIgoLMds%2BPnh2jBNd1ZXHNxsRgwINUd1XPllNd1VR1Tc9uLosByXFy1FPvN7tZf0TRP8AgM4Egi8LORfbg%2FgleAsGjzGRx9EHx3lffV%2FC99%2BqLPXdK6nD0ZPUDvSOkpEutml999VYQXK5uCOUG1cFy%2BGnYvFw1%2FTc6Yc1%2Frfoej3t6qe4Hvh%2F4QXVNGJ7owdKMhMgedIJax68167Wg1cTA%2FB9b58FSD6x%2FSi5CsGnlkXcJIh5DpT%2BuctvLdfb6u6mTNNcGfXZ4U%2FWULhTSRZkYD4k6PFND2%2BO1h9DqYG4Xuv%2BvMBJT4j1%2BiEgdnplE1N%2Bf%2B4wkuELEnkPRH4PLMQQdI9Z3INgxAWKGq5tQ6f2r2hR0%2BxlLZ%2ByUVJ4%2BgSimpPLnJaj0hxUpBtUbWrpcaGUxSEqIwRiiO0bmJsh3zkEUE8T55xDsd7L0dAMq3d%2B0UkOwct67EGOIZAzJh6DWg5sd4cElHlzmIWUn1TgIgrbPYuovd%2BK4wdo8Cpkf0HYS0MAPl%2BHimb0h8myIWA4Rm11kZhc9ce%2B4dRHG%2FQK7VcIyDzafEu%2FDXfRZiYITFJagoASFIChygqJfHjBp67a8z6R1UXCW62e5UY503t2jBzrvckVAzRCGlXvZKXlhNiLvk69vocdPqj5t1puNqBO0opDypB3zsOl3kkaz02adVhLBihLCnpt3vSOmpH27jUxMyfnJE0R0AisniMV5UBeAFiXoVokd9T11hua8p3RN8RxMl8jyCvJtb0%2BekpfmW3q5chM8Prry%2BMJb2eiPC4hNicyU%2BEw8IujKu6PruiD713VhyU%2BbWS5SsUNnG7yR05yf%2F%2FZ9vl1ow9ZX7fCbt%2BMZMSsffMRtvkEVE6pryXcrgjFu1rSJOfl53X7Mo2vObq04o1y2ce2dtfU0M9xaodUYVBxv%2Fo1YTEnllRfnX%2FP53%2F6CMGMYVyJ1R%2BQsIPQEcbYLmy3cW01g5EITZR4KV45MPVpcSkEg%2BQLTqIT9D44W9cjQ2Wsqyj17F13jgeZ3oNISfVOiL0tQOYR1F0Z5Zo6u%2FPrlLL5CJL1RJI23H0kj7z0bshUn1Xaj4dOw0wrabcrbUbO%2BnIQBo7TeDOthSBvI7TR5s3P7HwAAAP%2F%2FAQAA%2F%2F%2BYgRAebwQAAA%3D%3D | 172.240.253.132 | 200 OK | 7 B |
URL GET HTTP/1.1hearthmint.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuTuYULxpz8zIIgoLMds%2BPnh2jBNd1ZXHNxsRgwINUd1XPllNd1VR1Tc9uLosByXFy1FPvN7tZf0TRP8AgM4Egi8LORfbg%2FgleAsGjzGRx9EHx3lffV%2FC99%2BqLPXdK6nD0ZPUDvSOkpEutml999VYQXK5uCOUG1cFy%2BGnYvFw1%2FTc6Yc1%2Frfoej3t6qe4Hvh%2F4QXVNGJ7owdKMhMgedIJax68167Wg1cTA%2FB9b58FSD6x%2FSi5CsGnlkXcJIh5DpT%2BuctvLdfb6u6mTNNcGfXZ4U%2FWULhTSRZkYD4k6PFND2%2BO1h9DqYG4Xuv%2BvMBJT4j1%2BiEgdnplE1N%2Bf%2B4wkuELEnkPRH4PLMQQdI9Z3INgxAWKGq5tQ6f2r2hR0%2BxlLZ%2ByUVJ4%2BgSimpPLnJaj0hxUpBtUbWrpcaGUxSEqIwRiiO0bmJsh3zkEUE8T55xDsd7L0dAMq3d%2B0UkOwct67EGOIZAzJh6DWg5sd4cElHlzmIWUn1TgIgrbPYuovd%2BK4wdo8Cpkf0HYS0MAPl%2BHimb0h8myIWA4Rm11kZhc9ce%2B4dRHG%2FQK7VcIyDzafEu%2FDXfRZiYITFJagoASFIChygqJfHjBp67a8z6R1UXCW62e5UY503t2jBzrvckVAzRCGlXvZKXlhNiLvk69vocdPqj5t1puNqBO0opDypB3zsOl3kkaz02adVhLBihLCnpt3vSOmpH27jUxMyfnJE0R0AisniMV5UBeAFiXoVokd9T11hua8p3RN8RxMl8jyCvJtb0%2BekpfmW3q5chM8Prry%2BMJb2eiPC4hNicyU%2BEw8IujKu6PruiD713VhyU%2BbWS5SsUNnG7yR05yf%2F%2FZ9vl1ow9ZX7fCbt%2BMZMSsffMRtvkEVE6pryXcrgjFu1rSJOfl53X7Mo2vObq04o1y2ce2dtfU0M9xaodUYVBxv%2Fo1YTEnllRfnX%2FP53%2F6CMGMYVyJ1R%2BQsIPQEcbYLmy3cW01g5EITZR4KV45MPVpcSkEg%2BQLTqIT9D44W9cjQ2Wsqyj17F13jgeZ3oNISfVOiL0tQOYR1F0Z5Zo6u%2FPrlLL5CJL1RJI23H0kj7z0bshUn1Xaj4dOw0wrabcrbUbO%2BnIQBo7TeDOthSBvI7TR5s3P7HwAAAP%2F%2FAQAA%2F%2F%2BYgRAebwQAAA%3D%3D IP172.240.253.132:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerLet's Encrypt Subjecthearthmint.com FingerprintF6:2B:57:40:EF:4B:6A:35:E0:50:2A:B1:F8:87:89:EF:43:56:37:CA ValidityMon, 06 May 2024 08:30:09 GMT - Sun, 04 Aug 2024 08:30:08 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRSuTuYULxpz8zIIgoLMds%2BPnh2jBNd1ZXHNxsRgwINUd1XPllNd1VR1Tc9uLosByXFy1FPvN7tZf0TRP8AgM4Egi8LORfbg%2FgleAsGjzGRx9EHx3lffV%2FC99%2BqLPXdK6nD0ZPUDvSOkpEutml999VYQXK5uCOUG1cFy%2BGnYvFw1%2FTc6Yc1%2Frfoej3t6qe4Hvh%2F4QXVNGJ7owdKMhMgedIJax68167Wg1cTA%2FB9b58FSD6x%2FSi5CsGnlkXcJIh5DpT%2BuctvLdfb6u6mTNNcGfXZ4U%2FWULhTSRZkYD4k6PFND2%2BO1h9DqYG4Xuv%2BvMBJT4j1%2BiEgdnplE1N%2Bf%2B4wkuELEnkPRH4PLMQQdI9Z3INgxAWKGq5tQ6f2r2hR0%2BxlLZ%2ByUVJ4%2BgSimpPLnJaj0hxUpBtUbWrpcaGUxSEqIwRiiO0bmJsh3zkEUE8T55xDsd7L0dAMq3d%2B0UkOwct67EGOIZAzJh6DWg5sd4cElHlzmIWUn1TgIgrbPYuovd%2BK4wdo8Cpkf0HYS0MAPl%2BHimb0h8myIWA4Rm11kZhc9ce%2B4dRHG%2FQK7VcIyDzafEu%2FDXfRZiYITFJagoASFIChygqJfHjBp67a8z6R1UXCW62e5UY503t2jBzrvckVAzRCGlXvZKXlhNiLvk69vocdPqj5t1puNqBO0opDypB3zsOl3kkaz02adVhLBihLCnpt3vSOmpH27jUxMyfnJE0R0AisniMV5UBeAFiXoVokd9T11hua8p3RN8RxMl8jyCvJtb0%2BekpfmW3q5chM8Prry%2BMJb2eiPC4hNicyU%2BEw8IujKu6PruiD713VhyU%2BbWS5SsUNnG7yR05yf%2F%2FZ9vl1ow9ZX7fCbt%2BMZMSsffMRtvkEVE6pryXcrgjFu1rSJOfl53X7Mo2vObq04o1y2ce2dtfU0M9xaodUYVBxv%2Fo1YTEnllRfnX%2FP53%2F6CMGMYVyJ1R%2BQsIPQEcbYLmy3cW01g5EITZR4KV45MPVpcSkEg%2BQLTqIT9D44W9cjQ2Wsqyj17F13jgeZ3oNISfVOiL0tQOYR1F0Z5Zo6u%2FPrlLL5CJL1RJI23H0kj7z0bshUn1Xaj4dOw0wrabcrbUbO%2BnIQBo7TeDOthSBvI7TR5s3P7HwAAAP%2F%2FAQAA%2F%2F%2BYgRAebwQAAA%3D%3D HTTP/1.1
Host: hearthmint.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/
Cookie: u_pl=22784088; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec0a4243b915b6aef7ce6409f3497d95fb=[2229333]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 09 May 2024 02:48:27 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 61fa72eb758e6a3feeb0773e6956dfc4
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| hearthmint.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTYtcRRStl%2FQqbjRm56YRBAXpea8%2Fp40SHMeRwTETE4MBF1Jfr6fs6lePqlf9eiabwYBk2Vnq6s3pmYwfUfQHGKQ7EGRQmN7ILJyf4CYQXEp3BlsvFPeeOqfg3Hvriz1%2FSqrw9GT1A7OjtKZLjUpYfvVWFF0ub6jED8qD5eanzfrlsu2%2F0W5WwtfK70neNUvVMArDKIzKa8rK2AyWZiRU%2BqAdVdphpV6tRI06Bvb%2F2PkAjgYQ%2FVNyEUpMS4%2BCS1B8jKT346p03cykr7%2Fb85pmxqIvDm8m3cTkCXqLMrYB4uTwTA3jjtcewiQHc7sw%2FX%2BFTE1J8PghWHJ4ZhKsvz%2F3yTRkAiaeQ94fQ%2BoxFB2DmztQ4pgAXODqJpLe%2FavG5nT7GUtn7JSUnj6Byqek9OclJL0fVrQalG8Y7TNlEodBXEANxlCdMVI%2FQbZzDiqfgGefQ4nfydLTDSS9%2FU2nDZQo5r0rNYaKx9ByCOoC%2BNlRAXwcwKcBeuKkzKMoaoWC03C5zXlNtCRrijCirTiiUdhchucze0Nk6RBcD8HtLlK7i666d9y4COt%2Fgdsq4EQAl01J8OEu%2BqJALglyR5BTglwR5BlB3i8OhHZVV9wX2nkWneXqWa4VI5N19uiByToyIaB2CCuKvfSUvDAbUfDJ17fQlSflkNar9RprRw3WpDJucdmsh%2B24Vm%2B3RLsRMzhVQLlz86531JS0breQqik5P3kCRidwegKuzoP6CDQvQLcK7CTfU29pJruJqSQygzAF0qyEbDvY06fkpfmWXi7dhORHVx5feCsd%2FXEB3BZIbYHP1COCjr47um5ysn%2Fd5I78tJlmqqd26GyDNzKayfPfvi%2B3c2PF%2BqobfvM2nxGz8sFH0mUbNBEq6Tjy3YoSQto1Y7kkP6%2B7jyW75t3WireJTzeuvbO23kutdE6ZZAyqjjf%2FBldTUnrlxfnXfP63v6DsGNYX6PkjchZQZgKe7sKlC%2FfOEFi90LA0QO6Lka2yxaVWBFouMGUF3H8wW9QjS2evqSr23F10bACa3UHSK9C3Bfq6ANVDOH9hlKX26MqvX87iKzAdjJi2wT7TVt97NmSnTsq1ULSYjGWLyXqjHksuWKPBQh5zVhPLyxyZm8Zvtm%2F%2FAwAA%2F%2F8BAAD%2F%2FxhVxfZvBAAA | 172.240.253.132 | 200 OK | 7 B |
URL GET HTTP/1.1hearthmint.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSTYtcRRStl%2FQqbjRm56YRBAXpea8%2Fp40SHMeRwTETE4MBF1Jfr6fs6lePqlf9eiabwYBk2Vnq6s3pmYwfUfQHGKQ7EGRQmN7ILJyf4CYQXEp3BlsvFPeeOqfg3Hvriz1%2FSqrw9GT1A7OjtKZLjUpYfvVWFF0ub6jED8qD5eanzfrlsu2%2F0W5WwtfK70neNUvVMArDKIzKa8rK2AyWZiRU%2BqAdVdphpV6tRI06Bvb%2F2PkAjgYQ%2FVNyEUpMS4%2BCS1B8jKT346p03cykr7%2Fb85pmxqIvDm8m3cTkCXqLMrYB4uTwTA3jjtcewiQHc7sw%2FX%2BFTE1J8PghWHJ4ZhKsvz%2F3yTRkAiaeQ94fQ%2BoxFB2DmztQ4pgAXODqJpLe%2FavG5nT7GUtn7JSUnj6Byqek9OclJL0fVrQalG8Y7TNlEodBXEANxlCdMVI%2FQbZzDiqfgGefQ4nfydLTDSS9%2FU2nDZQo5r0rNYaKx9ByCOoC%2BNlRAXwcwKcBeuKkzKMoaoWC03C5zXlNtCRrijCirTiiUdhchucze0Nk6RBcD8HtLlK7i666d9y4COt%2Fgdsq4EQAl01J8OEu%2BqJALglyR5BTglwR5BlB3i8OhHZVV9wX2nkWneXqWa4VI5N19uiByToyIaB2CCuKvfSUvDAbUfDJ17fQlSflkNar9RprRw3WpDJucdmsh%2B24Vm%2B3RLsRMzhVQLlz86531JS0breQqik5P3kCRidwegKuzoP6CDQvQLcK7CTfU29pJruJqSQygzAF0qyEbDvY06fkpfmWXi7dhORHVx5feCsd%2FXEB3BZIbYHP1COCjr47um5ysn%2Fd5I78tJlmqqd26GyDNzKayfPfvi%2B3c2PF%2BqobfvM2nxGz8sFH0mUbNBEq6Tjy3YoSQto1Y7kkP6%2B7jyW75t3WireJTzeuvbO23kutdE6ZZAyqjjf%2FBldTUnrlxfnXfP63v6DsGNYX6PkjchZQZgKe7sKlC%2FfOEFi90LA0QO6Lka2yxaVWBFouMGUF3H8wW9QjS2evqSr23F10bACa3UHSK9C3Bfq6ANVDOH9hlKX26MqvX87iKzAdjJi2wT7TVt97NmSnTsq1ULSYjGWLyXqjHksuWKPBQh5zVhPLyxyZm8Zvtm%2F%2FAwAA%2F%2F8BAAD%2F%2FxhVxfZvBAAA IP172.240.253.132:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerLet's Encrypt Subjecthearthmint.com FingerprintF6:2B:57:40:EF:4B:6A:35:E0:50:2A:B1:F8:87:89:EF:43:56:37:CA ValidityMon, 06 May 2024 08:30:09 GMT - Sun, 04 Aug 2024 08:30:08 GMT
File typeASCII text, with no line terminators Hash132d6af1b46048b45cf86cdee7991d31 eb7007d03d59b65bc6da7e098c4d38fc6dfb6285 ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSTYtcRRStl%2FQqbjRm56YRBAXpea8%2Fp40SHMeRwTETE4MBF1Jfr6fs6lePqlf9eiabwYBk2Vnq6s3pmYwfUfQHGKQ7EGRQmN7ILJyf4CYQXEp3BlsvFPeeOqfg3Hvriz1%2FSqrw9GT1A7OjtKZLjUpYfvVWFF0ub6jED8qD5eanzfrlsu2%2F0W5WwtfK70neNUvVMArDKIzKa8rK2AyWZiRU%2BqAdVdphpV6tRI06Bvb%2F2PkAjgYQ%2FVNyEUpMS4%2BCS1B8jKT346p03cykr7%2Fb85pmxqIvDm8m3cTkCXqLMrYB4uTwTA3jjtcewiQHc7sw%2FX%2BFTE1J8PghWHJ4ZhKsvz%2F3yTRkAiaeQ94fQ%2BoxFB2DmztQ4pgAXODqJpLe%2FavG5nT7GUtn7JSUnj6Byqek9OclJL0fVrQalG8Y7TNlEodBXEANxlCdMVI%2FQbZzDiqfgGefQ4nfydLTDSS9%2FU2nDZQo5r0rNYaKx9ByCOoC%2BNlRAXwcwKcBeuKkzKMoaoWC03C5zXlNtCRrijCirTiiUdhchucze0Nk6RBcD8HtLlK7i666d9y4COt%2Fgdsq4EQAl01J8OEu%2BqJALglyR5BTglwR5BlB3i8OhHZVV9wX2nkWneXqWa4VI5N19uiByToyIaB2CCuKvfSUvDAbUfDJ17fQlSflkNar9RprRw3WpDJucdmsh%2B24Vm%2B3RLsRMzhVQLlz86531JS0breQqik5P3kCRidwegKuzoP6CDQvQLcK7CTfU29pJruJqSQygzAF0qyEbDvY06fkpfmWXi7dhORHVx5feCsd%2FXEB3BZIbYHP1COCjr47um5ysn%2Fd5I78tJlmqqd26GyDNzKayfPfvi%2B3c2PF%2BqobfvM2nxGz8sFH0mUbNBEq6Tjy3YoSQto1Y7kkP6%2B7jyW75t3WireJTzeuvbO23kutdE6ZZAyqjjf%2FBldTUnrlxfnXfP63v6DsGNYX6PkjchZQZgKe7sKlC%2FfOEFi90LA0QO6Lka2yxaVWBFouMGUF3H8wW9QjS2evqSr23F10bACa3UHSK9C3Bfq6ANVDOH9hlKX26MqvX87iKzAdjJi2wT7TVt97NmSnTsq1ULSYjGWLyXqjHksuWKPBQh5zVhPLyxyZm8Zvtm%2F%2FAwAA%2F%2F8BAAD%2F%2FxhVxfZvBAAA HTTP/1.1
Host: hearthmint.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/
Cookie: u_pl=22784088; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlec0a4243b915b6aef7ce6409f3497d95fb=[2229333]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 09 May 2024 02:48:27 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 89a7bc4627dcfc1c2da0dd68887b99a0
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| cdn.cloudimagesb.com/cti/5e/78/a9/5e78a94057ff65f06ec19e727c7be04f/1588233511.jpg | 45.133.44.10 | 200 OK | 24 kB |
URL GET HTTP/2cdn.cloudimagesb.com/cti/5e/78/a9/5e78a94057ff65f06ec19e727c7be04f/1588233511.jpg IP45.133.44.10:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typeJPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 320x240, components 3 Hashd71c872fb9f50bd9383abc0721d1d51e 1f69b40ef2f95798b4e0fd738d630ad4319cd739 6b4a622b9de1ffab8fe905fc8c4633994c732476664b5190ceedd62a3795ab08
GET /cti/5e/78/a9/5e78a94057ff65f06ec19e727c7be04f/1588233511.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 09 May 2024 02:48:27 GMT
content-type: image/jpeg
content-length: 24518
server: nginx/1.21.6
last-modified: Thu, 30 Apr 2020 07:58:34 GMT
etag: "5eaa852a-5fc6"
expires: Sat, 11 May 2024 02:48:27 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| herringgloomilytennis.com/watch.1324393484024.js?dev=e&key=d1a5e500ed255cc4ebf822ff2ae48229&kw=%5B%22baby%22%2C%22reindeer%22%2C%22fiona%22%2C%22harvey%22%2C%22ready%22%2C%22for%22%2C%22%E2%80%98explosive%E2%80%99%22%2C%22tv%22%2C%22interview%22%2C%22%E2%80%93%22%2C%22melissa%22%2C%22payne%22%5D&pst=1715222967&refer=https%3A%2F%2Fwww.melissa-payne.ca%2Ftrending%2F8ad102286cd17%2F&res=14.2071&rmtc=t&shu=c8d95020bb2e455c76c8da412a0cee50036032bf8bfadacba762a2a8dc4e5f70ff734d95cf905d5c11c04e1e5fb5a8b78bb4f8c223a80bf17adf0d04dad18139edbfb05efe4caea1ac7684cdc5ee8b2eec39fab34e3af7dd5f1d69bc98539ff676&tz=0&uuid=8336c15a-f71c-443a-bee8-144252ed0ba2%3A1%3A1 | 172.240.127.234 | 200 OK | 2.0 kB |
URL GET HTTP/1.1herringgloomilytennis.com/watch.1324393484024.js?dev=e&key=d1a5e500ed255cc4ebf822ff2ae48229&kw=%5B%22baby%22%2C%22reindeer%22%2C%22fiona%22%2C%22harvey%22%2C%22ready%22%2C%22for%22%2C%22%E2%80%98explosive%E2%80%99%22%2C%22tv%22%2C%22interview%22%2C%22%E2%80%93%22%2C%22melissa%22%2C%22payne%22%5D&pst=1715222967&refer=https%3A%2F%2Fwww.melissa-payne.ca%2Ftrending%2F8ad102286cd17%2F&res=14.2071&rmtc=t&shu=c8d95020bb2e455c76c8da412a0cee50036032bf8bfadacba762a2a8dc4e5f70ff734d95cf905d5c11c04e1e5fb5a8b78bb4f8c223a80bf17adf0d04dad18139edbfb05efe4caea1ac7684cdc5ee8b2eec39fab34e3af7dd5f1d69bc98539ff676&tz=0&uuid=8336c15a-f71c-443a-bee8-144252ed0ba2%3A1%3A1 IP172.240.127.234:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerLet's Encrypt Subjectherringgloomilytennis.com Fingerprint2A:E0:3F:2A:77:92:96:90:5D:38:27:4E:7F:FC:5D:D2:F9:32:73:11 ValidityMon, 06 May 2024 08:10:21 GMT - Sun, 04 Aug 2024 08:10:20 GMT
File typeJavaScript source, ASCII text, with very long lines (2437) Hashf61622cee42f41965905107b92e3917b 781a12bf1c9059abece3570acd2d871835ae89ee d19b0b195e488a06c9ef4d41160b44adc8b232f47b384bbe6115500fa51dc52c
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /watch.1324393484024.js?dev=e&key=d1a5e500ed255cc4ebf822ff2ae48229&kw=%5B%22baby%22%2C%22reindeer%22%2C%22fiona%22%2C%22harvey%22%2C%22ready%22%2C%22for%22%2C%22%E2%80%98explosive%E2%80%99%22%2C%22tv%22%2C%22interview%22%2C%22%E2%80%93%22%2C%22melissa%22%2C%22payne%22%5D&pst=1715222967&refer=https%3A%2F%2Fwww.melissa-payne.ca%2Ftrending%2F8ad102286cd17%2F&res=14.2071&rmtc=t&shu=c8d95020bb2e455c76c8da412a0cee50036032bf8bfadacba762a2a8dc4e5f70ff734d95cf905d5c11c04e1e5fb5a8b78bb4f8c223a80bf17adf0d04dad18139edbfb05efe4caea1ac7684cdc5ee8b2eec39fab34e3af7dd5f1d69bc98539ff676&tz=0&uuid=8336c15a-f71c-443a-bee8-144252ed0ba2%3A1%3A1 HTTP/1.1
Host: herringgloomilytennis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.melissa-payne.ca
Referer: https://www.melissa-payne.ca/
DNT: 1
Connection: keep-alive
Cookie: u_pl=22609139; ain=eyJhbGciOiJIUzI1NiJ9.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.y0Hr8mSU_wTQP85fB_PHZhnQ6hKftCSzQFsHKSo46Ek
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 09 May 2024 02:48:27 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://www.melissa-payne.ca
Access-Control-Allow-Origin: https://www.melissa-payne.ca
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=8336c15a-f71c-443a-bee8-144252ed0ba2:1:1; expires=Thu, 16 May 2024 02:48:27 GMT; secure; SameSite=None
pdhtkv=true; expires=Fri, 10 May 2024 02:48:27 GMT; secure; SameSite=None
uncs=1; expires=Fri, 10 May 2024 02:48:27 GMT; secure; SameSite=None
pdhtkv5=true; expires=Fri, 10 May 2024 02:48:27 GMT; secure; SameSite=None
uncs5=1; expires=Fri, 10 May 2024 02:48:27 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: add6f31ba35c4bd233a7a6943c817bf9
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| downstairsnegotiatebarren.com/sfp.js | 188.114.96.1 | 200 OK | 28 kB |
URL GET HTTP/2downstairsnegotiatebarren.com/sfp.js IP188.114.96.1:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerLet's Encrypt Subjectdownstairsnegotiatebarren.com Fingerprint5D:DB:CB:C6:CE:2A:8B:34:7D:BC:43:74:33:1D:5F:77:48:F7:BC:1B ValidityThu, 02 May 2024 21:26:34 GMT - Wed, 31 Jul 2024 21:26:33 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (65529), with no line terminators Hashf4a2f8f9f99541c6f105bbd0a025bd40 1f8e3eff12168fdd9e719adfc098d24a45b6916a b717cb04231a10d425fd55b73c85a5407119c6826a8bac94142fddfff6958716
GET /sfp.js HTTP/1.1
Host: downstairsnegotiatebarren.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 09 May 2024 02:48:27 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: c9501542538d03e51e0a95cec443533c
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Thu, 09 May 2024 02:48:26 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mYT31xjRIwWBNlXkOAXHOpfZmFZ9gNVYRDioPoDnJ82inVC%2B2Z5YVPAT%2FUAa2IKjnlFqKR2aHamRVEP7JWHrEWR40QqMf0dm%2FOJ6bg7rNPmuG3Et%2B0ob4MSqZkHPDbqXloIdP0F%2Bnu68WUI51fm2Xw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e5ee45e47b505-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| cdn.cloudimagesb.com/cti/d2/57/a1/d257a1ac39c72caa1194ad12f562c80c/1707725925.png | 45.133.44.10 | 200 OK | 56 kB |
URL GET HTTP/2cdn.cloudimagesb.com/cti/d2/57/a1/d257a1ac39c72caa1194ad12f562c80c/1707725925.png IP45.133.44.10:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerLet's Encrypt Subjectcdn.cloudimagesb.com FingerprintC6:F3:21:F0:21:7D:7E:96:0F:E8:46:7A:5E:C5:3F:D1:52:B0:67:B0 ValidityFri, 22 Mar 2024 03:01:35 GMT - Thu, 20 Jun 2024 03:01:34 GMT
File typePNG image data, 300 x 250, 8-bit/color RGBA, non-interlaced Hash6c97ca71107dc311268c740d94ddd01f 3aad7355668957e6f1b3cdb0845fc151aeea3c3b 727de82e06546c720b222fcacfda5b70c787acf6632090e3d9e1ed50a932cc41
GET /cti/d2/57/a1/d257a1ac39c72caa1194ad12f562c80c/1707725925.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Thu, 09 May 2024 02:48:27 GMT
content-type: image/png
content-length: 56274
server: nginx/1.21.6
last-modified: Mon, 12 Feb 2024 08:18:54 GMT
etag: "65c9d46e-dbd2"
expires: Sat, 11 May 2024 02:48:27 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| feudalplastic.com/pixel/purst?dl=0&th=0&sc=0&rs=2002&rd=2002&fd=512&bv=24.5.6485&tmpl=136 | 172.240.108.76 | 200 OK | 0 B |
URL GET HTTP/1.1feudalplastic.com/pixel/purst?dl=0&th=0&sc=0&rs=2002&rd=2002&fd=512&bv=24.5.6485&tmpl=136 IP172.240.108.76:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerLet's Encrypt Subjectfeudalplastic.com Fingerprint1D:80:AF:E2:81:A7:77:93:2F:DE:4D:9D:B6:42:F5:8B:EA:BB:0F:A7 ValidityMon, 06 May 2024 08:13:24 GMT - Sun, 04 Aug 2024 08:13:23 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pixel/purst?dl=0&th=0&sc=0&rs=2002&rd=2002&fd=512&bv=24.5.6485&tmpl=136 HTTP/1.1
Host: feudalplastic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Thu, 09 May 2024 02:48:27 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range
|
|
| www.melissa-payne.ca/wp-includes/images/w-logo-blue-white-bg.png | 172.67.204.52 | 200 OK | 4.1 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-includes/images/w-logo-blue-white-bg.png IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typePNG image data, 80 x 80, 8-bit/color RGBA, non-interlaced Hash000bf649cc8f6bf27cfb04d1bcdcd3c7 d73d2f6d74ec6cdcbae07955592962e77d8ae814 6bdb369337ac2496761c6f063bffea0aa6a91d4662279c399071a468251f51f0
GET /wp-includes/images/w-logo-blue-white-bg.png HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
DNT: 1
Connection: keep-alive
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=35aedc92-294a-450f-abb8-1c6584bd5d90%3A2%3A1; m5a4xojbcp2nx3gptmm633qal3gzmadn=hearthmint.com; pp_main_de40747527625eb4f2cfd573cb92ac16=1; pp_idelay_de40747527625eb4f2cfd573cb92ac16=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:28 GMT
content-type: image/png
content-length: 4119
cache-control: public, max-age=43200
expires: Thu, 09 May 2024 14:48:28 GMT
etag: "1017-660eb3a9-66253e6;;;"
last-modified: Thu, 04 Apr 2024 14:05:29 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=C0be7XWw6P%2BXh1ibhS9MIcvKtrS21kIVxA3V63qzdyRUVVkKeoD7lNvdVaBprnqVPZWL04325HLY4W1UB5oNRckgLLmRUL9Ti88shw453ixckIG%2FQo6OY6%2FTiVqeIVyGiINBVsJNkg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e5ee80856b4eb-OSL
|
|
| unseenreport.com/pxf.gif?uuid=35aedc92-294a-450f-abb8-1c6584bd5d90&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=de40747527625eb4f2cfd573cb92ac16&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=2 | 192.243.59.12 | 200 OK | 1 B |
URL GET HTTP/1.1unseenreport.com/pxf.gif?uuid=35aedc92-294a-450f-abb8-1c6584bd5d90&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=de40747527625eb4f2cfd573cb92ac16&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=2 IP192.243.59.12:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerLet's Encrypt Subject*.unseenreport.com Fingerprint71:46:15:FD:76:6A:F5:5B:51:06:CC:93:DD:D8:63:E3:8B:10:BF:13 ValidityFri, 22 Mar 2024 07:32:41 GMT - Thu, 20 Jun 2024 07:32:40 GMT
File typevery short file (no magic) Hash93b885adfe0da089cdf634904fd59f71 5ba93c9db0cff93f52b521d7420e43f6eda2784f 6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /pxf.gif?uuid=35aedc92-294a-450f-abb8-1c6584bd5d90&eb=978028c5053b26833423c7a069ce3bd5&te=5db3a4e34790624df926db520a13f79f&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=e&res=14.2071&b_frame=0&pk=de40747527625eb4f2cfd573cb92ac16&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=2 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 09 May 2024 02:48:28 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3dc1f6ba68dee4a97a44903937a9e13a
Strict-Transport-Security: max-age=0; includeSubdomains
|
|
| www.melissa-payne.ca/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 | 172.67.204.52 | 200 OK | 88 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf
GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:26 GMT
content-type: text/javascript
etag: W/"15601-660eb3a9-66255fd;br"
last-modified: Thu, 04 Apr 2024 14:05:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=e9oJclZw2REaHv23eVtXAuNJIpU5s1GAREri9Id%2BpNk9%2BW7ZMaUMmdTjFBxlajIR1ZI%2FBnjvgVweYltdJknTTflyOMNk6u6RfAnTeWigAMNqn8PlkSbi3Yxld7w%2FnuZfRKLXkW7nQg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e5eda7f31b4eb-OSL
content-encoding: br
|
|
| noisesperusemotel.com/d1a5e500ed255cc4ebf822ff2ae48229/invoke.js | 192.243.59.13 | 200 OK | 31 kB |
URL GET HTTP/1.1noisesperusemotel.com/d1a5e500ed255cc4ebf822ff2ae48229/invoke.js IP192.243.59.13:443 ASN#39572 DataWeb Global Group B.V.
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerLet's Encrypt Subjectnoisesperusemotel.com Fingerprint58:2C:9C:55:9F:EC:B2:C1:50:10:0F:28:6D:3C:4A:97:83:75:B6:1B ValidityTue, 19 Mar 2024 07:40:07 GMT - Mon, 17 Jun 2024 07:40:06 GMT
File typeJavaScript source, ASCII text, with very long lines (31322), with no line terminators Hash5f16fdd918c5afae1d6825df62a8db9c 21ee046dac65faeb594dccacc93bcdf345c32cfe 1b795af0410c2dfa0a7273de65b32bfc47689d6aa8cbbff6aa10a4ef14f5a7ca
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /d1a5e500ed255cc4ebf822ff2ae48229/invoke.js HTTP/1.1
Host: noisesperusemotel.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Thu, 09 May 2024 02:48:26 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-PlatformUser-Agent,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0921a279d04f2502549b806247f3ef65
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip
|
|
| www.melissa-payne.ca/wp-includes/js/wp-emoji-release.min.js?ver=6.5.3 | 172.67.204.52 | 200 OK | 19 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-includes/js/wp-emoji-release.min.js?ver=6.5.3 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeJavaScript source, ASCII text, with very long lines (15752) Hashb976b651932bfd25b9ddb5b7693d88a7 7fcb7cb5c11227f9213b1e08a07d0212209e1432 4e6ce5444c7f396cef0eb1fa3611034151e485dd06fbe5573a5583e1eebc98c3
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.5.3 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:27 GMT
content-type: text/javascript
etag: W/"4926-660eb3a9-6625467;br"
last-modified: Thu, 04 Apr 2024 14:05:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=mgidP6PcTZf3omRu9L8uVo05CAOj8u1km02tUBagJcwnwFPVywHQUi3iSIlg1BgbrShdGJNcqzN8ov8hj%2Fa415UZU%2BJ1VLlOaLb4KgNCePHYS4s9i4msZ2dN07F0zFp1nspFNykvYA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e5ee08b13b4eb-OSL
content-encoding: br
|
|
| www.melissa-payne.ca/wp-content/fonts/lato/S6uyw4BMUTPHjx4wXg.woff2 | 172.67.204.52 | 200 OK | 24 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-content/fonts/lato/S6uyw4BMUTPHjx4wXg.woff2 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 23580, version 1.0 Hashe1b3b5908c9cf23dfb2b9c52b9a023ab fcd4136085f2a03481d9958cc6793a5ed98e714c 918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537
GET /wp-content/fonts/lato/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/wp-content/fonts/ccb0b30ba0847ee1f0a2cf095a330de8.css
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:26 GMT
content-type: font/woff2
content-length: 23580
cache-control: public, max-age=43200
expires: Wed, 01 May 2024 13:51:37 GMT
etag: "5c1c-65e81019-662674f;;;"
last-modified: Wed, 06 Mar 2024 06:41:29 GMT
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2Be9RG08X%2FXiWml85EaosNycDqB%2FdMe1wgyJKNMMxug5Bq3J4jYFlgLSnD5ztftXl%2FR%2BTkrweAlO6hSre6g0Awp9q57Vx97b8YZhPSOL2xHZw%2BDbfeTzeEic%2BxaASLl4mhdBGTsWEng%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e5edcb89ab4eb-OSL
|
|
| www.melissa-payne.ca/trending/8ad102286cd17/ | 172.67.204.52 | 200 OK | 45 kB |
URL User Request GET HTTP/2www.melissa-payne.ca/trending/8ad102286cd17/ IP172.67.204.52:443
CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /trending/8ad102286cd17/ HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Thu, 09 May 2024 02:48:25 GMT
content-type: text/html; charset=UTF-8
link: <https://www.melissa-payne.ca/wp-json/>; rel="https://api.w.org/", <https://www.melissa-payne.ca/wp-json/wp/v2/posts/102286>; rel="alternate"; type="application/json", <https://www.melissa-payne.ca/?p=102286>; rel=shortlink
vary: Accept-Encoding
x-litespeed-cache: hit
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7s9uqXZcrCGqulcMPoYZt9CksGnJk5CAgqJGseRhz8I9bYOHDqySYN5NzLCezRiOkkwH%2FDqklciSXaSrzq7dfdEijyISqxAWePvcetkv%2FbLboCTLYeZYqC8UiunIOG%2FUqiHRJr8nZA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e5ed7ddae712e-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| www.melissa-payne.ca/wp-includes/css/dist/block-library/style.min.css?ver=6.5.3 | 172.67.204.52 | 200 OK | 113 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-includes/css/dist/block-library/style.min.css?ver=6.5.3 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
Size113 kB (113381 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.5.3 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:26 GMT
content-type: text/css
cache-control: public, max-age=43200
expires: Wed, 08 May 2024 07:10:22 GMT
etag: W/"1bae5-660eb3a9-6625c3b;br"
last-modified: Thu, 04 Apr 2024 14:05:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=%2FggRjMC6I%2B%2FiiAZbJ8UUJTO229gz9JZUhMR2V7xG6IP4A0gdrtp79ezBkT%2BSsNAy3rjDr4Ze2tM4vNwIcQ%2BgFher4px7p2sFYBobvTHyx72igybWJdSH6vo0%2BV7gDsnClLmTDJejeg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e5eda6f20b4eb-OSL
content-encoding: br
|
|
| www.melissa-payne.ca/favicon.ico | 172.67.204.52 | 302 Found | 4.1 kB |
URL GET HTTP/3www.melissa-payne.ca/favicon.ico IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Cookie: dom3ic8zudi28v8lr6fgphwffqoz0j6c=35aedc92-294a-450f-abb8-1c6584bd5d90%3A2%3A1; m5a4xojbcp2nx3gptmm633qal3gzmadn=hearthmint.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 302 Found
date: Thu, 09 May 2024 02:48:28 GMT
content-type: text/html; charset=UTF-8
location: https://www.melissa-payne.ca/wp-includes/images/w-logo-blue-white-bg.png
link: <https://www.melissa-payne.ca/wp-json/>; rel="https://api.w.org/"
x-redirect-by: WordPress
x-litespeed-cache-control: public,max-age=604800
x-litespeed-tag: 0dd_HTTP.200,0dd_HTTP.302,0dd_default,0dd_URL.b54ff2eddcb0060bcd786ce388d8d4d7,0dd_
x-litespeed-cache: miss
alt-svc: h3=":443"; ma=86400
cf-cache-status: BYPASS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=J%2FGG2DilRMu4%2Frny4ojr4FHMYn3ooceRTDGZ3AlDk4VLqJ7HgfqZv28rp1hu7Ppz4dNdYm9eeTXTQLpDmChzLnUrmR3ATc3pEyNjcRyDff7KBnN8Vo6Eg5rc4a3DrW9ni9tlIlO9DA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 880e5ee60f0ab4eb-OSL
|
|
| www.melissa-payne.ca/wp-content/themes/flash-news/style.css?ver=1.1.0 | 172.67.204.52 | 200 OK | 129 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-content/themes/flash-news/style.css?ver=1.1.0 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeASCII text, with very long lines (63842) Size129 kB (129028 bytes) Hash022358e735106f968dbcbb8fc9d07d48 45613771bbe9a655572ef3fb76746a9751f579a7 f7f1f26943b272831250df4c1244590ca9a6639fc1d45112704c25058e9e1388
GET /wp-content/themes/flash-news/style.css?ver=1.1.0 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:26 GMT
content-type: text/css
cache-control: public, max-age=43200
cf-bgj: minify
cf-polished: origSize=156815
alt-svc: h3=":443"; ma=86400
etag: W/"2648f-660efb65-6641904;br"
expires: Wed, 01 May 2024 06:21:19 GMT
last-modified: Thu, 04 Apr 2024 19:11:33 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=zr6if%2BY3sYpPbOJOIZP3TOasbpgUhEq4oDTiV1BhzqJuEgJt9MB9wu53aM2ViYF2XIWYZ2zgEUoa1lZJ9XCy4y%2FM92uuUs7vufGMm%2BSjgh%2BSjz4deEKrbkBP3sekTKIHuI3%2BPi0%2Bjg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e5eda7f2db4eb-OSL
content-encoding: br
|
|
| www.melissa-payne.ca/wp-content/plugins/wp-automatic/css/wp-automatic.css?ver=1.0.0 | 172.67.204.52 | 200 OK | 2.4 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-content/plugins/wp-automatic/css/wp-automatic.css?ver=1.0.0 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeASCII text, with very long lines (2367), with no line terminators Hash79dc2fc9e9be25c4e4b65af78a1cf86a 36b819e4e1c0761f95c86743a307cff518e4c7ef da26f75773d686f672adddeabc4378a593a11845f01c01dbd2c941744d2ff96a
GET /wp-content/plugins/wp-automatic/css/wp-automatic.css?ver=1.0.0 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:26 GMT
content-type: text/css
cache-control: public, max-age=43200
cf-bgj: minify
cf-polished: origSize=2713
alt-svc: h3=":443"; ma=86400
etag: W/"a99-65e80f31-66265da;br"
expires: Wed, 01 May 2024 09:29:10 GMT
last-modified: Wed, 06 Mar 2024 06:37:37 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=DXTNFKXPLSF3HfX0RGFMerGR24YmV4iIs7F3TujGRqstBxTRUQBjHKQS4Bq%2BwqwkmIJvvIap4x7tXmlF49ihv9JDLj5xj%2F9zsWklncGniSPPJmIEh18MqbtIUCeq3Ji2iy9718fYXA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e5eda6f23b4eb-OSL
content-encoding: br
|
|
| www.melissa-payne.ca/wp-content/plugins/wordpress-popular-posts/assets/css/wpp.css?ver=6.4.2 | 172.67.204.52 | 200 OK | 438 B |
URL GET HTTP/3www.melissa-payne.ca/wp-content/plugins/wordpress-popular-posts/assets/css/wpp.css?ver=6.4.2 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeASCII text, with very long lines (438), with no line terminators Hashae1dce4297fd2531a11f10ad1328fbdb c611ae68cf31076e9286285dfad93c7a864f50db 07a391e09587513aa78421c34ed482a17a5e003c2132edd96227d53831a131b0
GET /wp-content/plugins/wordpress-popular-posts/assets/css/wpp.css?ver=6.4.2 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:26 GMT
content-type: text/css
cache-control: public, max-age=43200
cf-bgj: minify
cf-polished: origSize=1672
alt-svc: h3=":443"; ma=86400
etag: W/"688-65ef1906-66266dd;br"
expires: Wed, 01 May 2024 06:21:19 GMT
last-modified: Mon, 11 Mar 2024 14:45:26 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ttvIos3cena57uJ5cXNu8AqY7JXX%2BAiJ1qKskYxLGCnyUt0QxQHl%2BM3Yod9H72h7R9l6%2F5WyGtk87VQeydafoAiaHmCtbNt1GfSCncA0%2FZ%2FlLBCiOMVVJAoN2i4SpTTj4eaz5Beofw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e5eda6f24b4eb-OSL
content-encoding: br
|
|
| www.melissa-payne.ca/wp-content/plugins/featured-image-from-url/includes/html/js/json-ld.js?ver=4.7.4 | 172.67.204.52 | 200 OK | 507 B |
URL GET HTTP/3www.melissa-payne.ca/wp-content/plugins/featured-image-from-url/includes/html/js/json-ld.js?ver=4.7.4 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeJavaScript source, ASCII text, with very long lines (532), with no line terminators Hashb1e7be7360a73835c0b44b7bf834b4bb 394b871cf36b2f356d12e971c8a8fb6149cfd2a7 1745266d2215ef0c2563fe02c7ae9d23b7f818a9f075970b680d57440edb8f47
GET /wp-content/plugins/featured-image-from-url/includes/html/js/json-ld.js?ver=4.7.4 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:26 GMT
content-type: text/javascript
etag: W/"1fb-663b614c-68e58f9;br"
last-modified: Wed, 08 May 2024 11:26:04 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UfY2sozETZ3lSjqaFpgplU49mtKn4m6t28bvv5S%2FFwXUj2K8MOWIzv80kQibDOSr5KDXAHzfy5a%2Bld4BaFXSCvHoXnRmxfiiax9NU7FZhB0MZB9U4S%2FtbLcSBKOeIEcOzg2Lvzljzw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e5edaaf5fb4eb-OSL
content-encoding: br
|
|
| www.melissa-payne.ca/wp-content/themes/flash-news/assets/js/slick.min.js?ver=1.8.1 | 172.67.204.52 | 200 OK | 43 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-content/themes/flash-news/assets/js/slick.min.js?ver=1.8.1 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeJavaScript source, ASCII text, with very long lines (43146), with no line terminators Hashe299ffe2a73f37d846ff0705429babe1 4fff3bef8d1b965819b88481deb47e1e7eaddc70 4e55b451621a060d376f1b31af3b370ea3d65ab7532ca82e875e52882deefbae
GET /wp-content/themes/flash-news/assets/js/slick.min.js?ver=1.8.1 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:26 GMT
content-type: text/javascript
etag: W/"a88a-660efb65-66418be;br"
last-modified: Thu, 04 Apr 2024 19:11:33 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=OqcYtRysCtgEP3gMHSfRgPaPXUs3i2i1blt6NYzUGoPS%2Bk%2FRkPse47NiUypfMyK3iZYcCmIVwI6eWzzd%2Bu5Lr98QUGO471Sc0txEtbYR742GynDCHyNPFR49XGjlRABMih3zX44gRA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e5eda9f50b4eb-OSL
content-encoding: br
|
|
| www.melissa-payne.ca/wp-content/themes/flash-news/assets/css/slick.min.css?ver=1.8.1 | 172.67.204.52 | 200 OK | 1.3 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-content/themes/flash-news/assets/css/slick.min.css?ver=1.8.1 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeASCII text, with very long lines (1327), with no line terminators Hashda4e146913da6966d85a6b8686886edb 03a28dac9dfc6c33e6175c9c185911c56525d31b fb3ed351cd5c0f1f30f88778ee1f9b056598e6d25ac4fdcab1eebcd8be521cd9
GET /wp-content/themes/flash-news/assets/css/slick.min.css?ver=1.8.1 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:26 GMT
content-type: text/css
cache-control: public, max-age=43200
expires: Wed, 01 May 2024 04:31:38 GMT
etag: W/"52f-660efb65-66418b4;br"
last-modified: Thu, 04 Apr 2024 19:11:33 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=UdNlpPUAPB5B4ckRyINEq3HNFKjk1Gu3OXNEZB9tIXHMhlwIAlYYaUX0xE5PPDr6Ab%2BEbD22rQeyqPvUyrGzUyh7LE9LNVmGEhrZqEwos0rurWWZ1ev5LPffRYAv1dqinMmEJbCKPg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e5eda6f26b4eb-OSL
content-encoding: br
|
|
| www.melissa-payne.ca/wp-content/themes/flash-news/assets/css/fontawesome.min.css?ver=6.4.2 | 172.67.204.52 | 200 OK | 84 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-content/themes/flash-news/assets/css/fontawesome.min.css?ver=6.4.2 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeASCII text, with very long lines (52269), with CRLF line terminators Hash1e114ff86da37904e587879b766b4319 46e5709978ca218f0a1f8e223f2bc1b6e8f16323 12d50f3f2c0011179b49ea047bef6aaea317ab534e723b55d06a46087085736e
GET /wp-content/themes/flash-news/assets/css/fontawesome.min.css?ver=6.4.2 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:26 GMT
content-type: text/css
cache-control: public, max-age=43200
expires: Wed, 01 May 2024 08:11:04 GMT
etag: W/"14786-660efb65-66418b2;br"
last-modified: Thu, 04 Apr 2024 19:11:33 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=7PWGpbGQMrLWTcsB8j9Pq5I82ADEQql9tUSaM0Xfxyv549aHIqV14yCcO2xvmJN%2Br7J1nk%2BH9AMvwbKeozdPTAe0Ha%2FQ2RfUNH53pCnFePzae0DTPo6cCb7uRgAX0LaPEOjDHIiU3g%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e5eda6f28b4eb-OSL
content-encoding: br
|
|
| www.melissa-payne.ca/wp-content/plugins/wp-automatic/js/main-front.js?ver=6.5.3 | 172.67.204.52 | 200 OK | 1.0 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-content/plugins/wp-automatic/js/main-front.js?ver=6.5.3 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeJavaScript source, ASCII text, with very long lines (1092), with no line terminators Hashcb9255d8f9b56663038c8fb95c3ccd21 465ae30e920f88dc421d065a348c5f0d75a0af5f 1e1c484d9c4ccc48ff66e0d2e1504fd9e22cb3efdb567b0dd1deeaac5ee0ff21
GET /wp-content/plugins/wp-automatic/js/main-front.js?ver=6.5.3 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:26 GMT
content-type: text/javascript
etag: W/"3f9-65e80f31-66264f3;br"
last-modified: Wed, 06 Mar 2024 06:37:37 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=n7%2BsN6S36gBSc8d04gum5CoNfV2xonjtQIj4uo226xs%2F4afzNr6NxnjpQbq9iomdxQBpJGwEnqktq7JpymuFd3NxVZZfeI5DjcyXO4gYFf9j7nr%2BdtE%2FfLaDPiDCQayD8odJjVnmbg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e5eda7f39b4eb-OSL
content-encoding: br
|
|
| www.melissa-payne.ca/wp-json/wordpress-popular-posts/v2/widget?is_single=102286 | 172.67.204.52 | 200 OK | 5.3 kB |
URL POST HTTP/3www.melissa-payne.ca/wp-json/wordpress-popular-posts/v2/widget?is_single=102286 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeHTML document, ASCII text, with very long lines (5831), with no line terminators Hash2deea09b3a81aa5c0f2c4b15b1d39f03 f8dd086069d72c63a34a348186f611a44d99eea8 2d09c9b0e122b6452ba013dc359a1a104a1fe212321596a793c3b2d5c06d6a09
POST /wp-json/wordpress-popular-posts/v2/widget?is_single=102286 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Content-Type: application/json
X-WP-Nonce: 06765f62df
Content-Length: 851
Origin: https://www.melissa-payne.ca
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:27 GMT
content-type: application/json; charset=UTF-8
x-robots-tag: noindex
link: <https://www.melissa-payne.ca/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
x-wp-nonce: 06765f62df
allow: POST
x-litespeed-tag: 0dd_HTTP.200
access-control-allow-origin: https://www.melissa-payne.ca
access-control-allow-methods: OPTIONS, GET, POST, PUT, PATCH, DELETE
access-control-allow-credentials: true
vary: Origin,Accept-Encoding
x-litespeed-cache-control: no-cache
cache-control: no-cache, no-store, must-revalidate, max-age=0
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=oaqEvEgq3SD0zdi9XfMDDrkjd54gDW9u%2BqahznKD2Xpv9v%2F%2F55jSBbeKXuOOqMDA%2FIjsOatoJh7OcNLZoQCxyjbpsqGUXGOXZSKdxAkBAFufAuv1XY1so2e%2BbWNaQkucaUv0sKsAWA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e5ee08b18b4eb-OSL
content-encoding: br
|
|
| www.melissa-payne.ca/wp-json/wordpress-popular-posts/v2/views/102286 | 172.67.204.52 | 201 Created | 54 B |
URL POST HTTP/3www.melissa-payne.ca/wp-json/wordpress-popular-posts/v2/views/102286 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hashc4edf3b113b82e41bae6c8f4f95d671b 39b3e9900e51db889ccc3b7d07c0903789dcea21 9536a037f56131fd3d71df92844e303eff1b0de9d023b327172ad0842b7e1310
POST /wp-json/wordpress-popular-posts/v2/views/102286 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Requested-With: XMLHttpRequest
Content-Type: application/x-www-form-urlencoded
Content-Length: 48
Origin: https://www.melissa-payne.ca
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 201 Created
date: Thu, 09 May 2024 02:48:26 GMT
content-type: application/json; charset=UTF-8
x-robots-tag: noindex
link: <https://www.melissa-payne.ca/wp-json/>; rel="https://api.w.org/"
x-content-type-options: nosniff
access-control-expose-headers: X-WP-Total, X-WP-TotalPages, Link
access-control-allow-headers: Authorization, X-WP-Nonce, Content-Disposition, Content-MD5, Content-Type
x-wp-nonce: 06765f62df
allow: GET, POST
x-litespeed-tag: 0dd_HTTP.201
access-control-allow-origin: https://www.melissa-payne.ca
access-control-allow-methods: OPTIONS, GET, POST, PUT, PATCH, DELETE
access-control-allow-credentials: true
vary: Origin,Accept-Encoding
x-litespeed-cache-control: no-cache
cache-control: no-cache, no-store, must-revalidate, max-age=0
alt-svc: h3=":443"; ma=86400
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=xs8T4RTCbqAe7iBlWInauGsC0lpnLYS9ScZ7WgeNqLwm0WrrunpfQQwESi1PX2IEHrcRp%2BrOOEe%2F9nXynfzfuITpr8Amy2Askan7oMq2wA4OfsV%2FrK%2FuPv6MkPQ7aXuN1SCtwNYhzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e5edcb893b4eb-OSL
|
|
| www.melissa-payne.ca/wp-content/fonts/ccb0b30ba0847ee1f0a2cf095a330de8.css | 172.67.204.52 | 200 OK | 32 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-content/fonts/ccb0b30ba0847ee1f0a2cf095a330de8.css IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeASCII text, with very long lines (32340), with no line terminators Hash70a377c0c14acb8ad33202683e295d01 4940a45744ab18b84513fc90b32d0a7bdf952ca8 3bb6ed25ed054703bccec20d933e6c2b6c42fea479a5a32720ed8fa5796a1202
GET /wp-content/fonts/ccb0b30ba0847ee1f0a2cf095a330de8.css HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:26 GMT
content-type: text/css
cache-control: public, max-age=43200
cf-bgj: minify
cf-polished: origSize=37580
alt-svc: h3=":443"; ma=86400
etag: W/"92cc-66214fa0-6624220;br"
expires: Wed, 01 May 2024 06:21:19 GMT
last-modified: Thu, 18 Apr 2024 16:51:44 GMT
vary: Accept-Encoding
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=IpVFL8qetmvljVDNEcCQI0yLwdGExPEUeVwgDeqBVaLFcxhu0bdwPLTPjjGtkoZPdZv83l%2BeCCTC9KbGAbGvwzYk5ncisKZLDjfui6NmO5mmqx%2F6%2FMW9V7uE5gUwPIqa%2BqRvaFvsGQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e5eda6f29b4eb-OSL
content-encoding: br
|
|
| www.melissa-payne.ca/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 | 172.67.204.52 | 200 OK | 14 kB |
URL GET HTTP/3www.melissa-payne.ca/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP172.67.204.52:443
Requested byhttps://www.melissa-payne.ca/trending/8ad102286cd17/ CertificateIssuerGoogle Trust Services LLC Subjectmelissa-payne.ca Fingerprint9D:1C:16:10:A2:4B:E4:86:FA:90:EB:AB:24:D9:3F:8A:35:EB:69:A5 ValidityThu, 18 Apr 2024 16:17:28 GMT - Wed, 17 Jul 2024 16:17:27 GMT
File typeJavaScript source, ASCII text, with very long lines (13479) Hash9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: www.melissa-payne.ca
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.melissa-payne.ca/trending/8ad102286cd17/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
date: Thu, 09 May 2024 02:48:26 GMT
content-type: text/javascript
etag: W/"3509-660eb3a9-662564e;br"
last-modified: Thu, 04 Apr 2024 14:05:29 GMT
vary: Accept-Encoding
alt-svc: h3=":443"; ma=86400
cf-cache-status: REVALIDATED
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=t%2BRrLGgkE3JxBWcBEKtgSwrtkNqFY5U3B8RA2OVux2F7sFllEfrv%2Bd%2F%2BbSVoeedRtuhZwmfvaoGu42C2UzhI6e1g38ydKZI1WNFGvmYPF0HlbqQn9IvY%2BeuyX9Bi2gSTlRd4jcuO%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 880e5eda7f38b4eb-OSL
content-encoding: br
|
|