rewardusacenter.com/
107.21.226.142 0 B IP 107.21.226.142:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: rewardusacenter.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 26 May 2023 07:59:20 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://amclicks.com/clk.php?c=7749&p=504&s1=lead_root&s2=rewardusacenter.com
server: Apache/2.4.41 (Ubuntu)
X-Firefox-Spdy: h2
amclicks.com/clk.php?c=7749&p=504&s1=lead_root&s2=rewardusacenter.com
52.2.18.249 0 B URL amclicks.com/clk.php?c=7749&p=504&s1=lead_root&s2=rewardusacenter.com
IP 52.2.18.249:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /clk.php?c=7749&p=504&s1=lead_root&s2=rewardusacenter.com HTTP/1.1
Host: amclicks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 26 May 2023 07:59:20 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://amclicks.com/x/7749/504/0/lead_root/rewardusacenter.com/0/0/0/0/
server: Apache/2.4.41 (Ubuntu)
X-Firefox-Spdy: h2
amclicks.com/x/7749/504/0/lead_root/rewardusacenter.com/0/0/0/0/
52.2.18.249 171 B URL amclicks.com/x/7749/504/0/lead_root/rewardusacenter.com/0/0/0/0/
IP 52.2.18.249:0
File type HTML document, ASCII text, with no line terminators
Hash f559de92aa1b5249a1529a924f51c785
d4fd7118c06501310a6b44366620fbf96b00ac67
84de6ae085f3e443c09a8e923edb38c9d5da0176a03ada704f8817b2c4e4d961
GET /x/7749/504/0/lead_root/rewardusacenter.com/0/0/0/0/ HTTP/1.1
Host: amclicks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 May 2023 07:59:20 GMT
content-type: text/html; charset=UTF-8
content-length: 171
server: Apache/2.4.41 (Ubuntu)
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: ci_session=rsgj9j2mfef9kcbbpo42i9je1khsguf1; expires=Fri, 26-May-2023 09:59:20 GMT; Max-Age=7200; path=/; HttpOnly; SameSite=Lax
ref=1; expires=Fri, 26-May-2023 08:59:20 GMT; Max-Age=3600
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2
amclicks.com/x/7749/504/0/lead_root/rewardusacenter.com/0/0/0/0/
52.2.18.249 0 B URL amclicks.com/x/7749/504/0/lead_root/rewardusacenter.com/0/0/0/0/
IP 52.2.18.249:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /x/7749/504/0/lead_root/rewardusacenter.com/0/0/0/0/ HTTP/1.1
Host: amclicks.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://amclicks.com/x/7749/504/0/lead_root/rewardusacenter.com/0/0/0/0/
Cookie: ref=1; ci_session=rsgj9j2mfef9kcbbpo42i9je1khsguf1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 302 Found
date: Fri, 26 May 2023 07:59:21 GMT
content-type: text/html; charset=UTF-8
content-length: 0
location: https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0
server: Apache/2.4.41 (Ubuntu)
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate
pragma: no-cache
set-cookie: ref=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0
X-Firefox-Spdy: h2
www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0
23.96.13.243 3.3 kB URL www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0
IP 23.96.13.243:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF, LF line terminators
Hash bb84d0f6a605a0ab0dab247a650a4e31
8046563d5c44129fc8cf6cfcaa887083e25878b8
7e4e2add856e51771cdcaeabfbee4b2c69b433e66c7aef513989362d25df6269
GET /mof?sid=1148&affid=123036&SubID=lead_root0 HTTP/1.1
Host: www.myopportunityfinder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://amclicks.com/
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 3307
Content-Type: text/html; charset=utf-8
Date: Fri, 26 May 2023 07:59:21 GMT
Server: Microsoft-IIS/10.0
Cache-Control: private
Content-Encoding: gzip
Vary: Accept-Encoding
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.6/postscribe.min.js
104.17.24.14200 OK 5.0 kB URL GET HTTP/3 cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.6/postscribe.min.js
IP 104.17.24.14:443
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (17117)
Hash 9dc30a5f28951b5f0623ac993885a2af
5c031b6959fef792df316f42575262425a1f2bfb
fe95a4c752590b7e2d5296446643300206175ff9312c477057c1c9dec02e9f84
GET /ajax/libs/postscribe/2.0.6/postscribe.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 07:59:22 GMT
content-type: application/javascript; charset=utf-8
content-length: 4996
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03faa-43d5"
last-modified: Mon, 04 May 2020 16:15:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2469124
expires: Wed, 15 May 2024 07:59:22 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=d7oZkGNY4YkDy56ssPgUQSKyA32sCE3gSwntSTyOE3%2BPX36abE7YjH44HRclOO6MsRYtSFgJrvyoLi%2BGWfgQ967ZeRXLS%2BwIcpPho5OMv9JB%2BF6w4kRPVKC0B3M4e3Lk82Ij5Lvp"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7cd47a73df16b521-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
code.jquery.com/jquery-3.4.1.min.js
69.16.175.10200 OK 31 kB URL GET HTTP/2 code.jquery.com/jquery-3.4.1.min.js
IP 69.16.175.10:443
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerSectigo Limited
Subject*.jquery.com
Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83
ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (65451)
Hash 220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /jquery-3.4.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.myopportunityfinder.com
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 07:59:22 GMT
content-encoding: gzip
content-length: 30638
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15851"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1685087962.dop001.sk1.t,1685087962.cds264.sk1.hn,1685087962.cds201.sk1.c
X-Firefox-Spdy: h2
code.jquery.com/ui/1.12.0/jquery-ui.min.js
69.16.175.10200 OK 68 kB URL GET HTTP/2 code.jquery.com/ui/1.12.0/jquery-ui.min.js
IP 69.16.175.10:443
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerSectigo Limited
Subject*.jquery.com
Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83
ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (32250)
Hash 8cbf62fc02083afe12a90787cb8f9e3c
6c16d0906b837e37e5a924127639ab9dde1b1898
78613a6e5bab939b078feae691fb0661e2b2671dcce1b1be66517203b2a7b3b1
GET /ui/1.12.0/jquery-ui.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 26 May 2023 07:59:22 GMT
content-encoding: gzip
content-length: 67684
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
accept-ranges: bytes
server: nginx
etag: W/"28feccc0-3ddc9"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1685087962.dop065.sk1.t,1685087962.cds253.sk1.hn,1685087962.cds256.sk1.c
X-Firefox-Spdy: h2
www.myopportunityfinder.com/Content/new_styles/base.css
23.96.13.243200 OK 335 B URL GET HTTP/1.1 www.myopportunityfinder.com/Content/new_styles/base.css
IP 23.96.13.243:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerGoDaddy.com, Inc.
Subjectmyopportunityfinder.com
Fingerprint03:91:5B:FE:96:6E:22:C6:7D:69:04:A7:27:BC:07:DE:15:2B:67:95
ValidityThu, 12 Jan 2023 10:00:09 GMT - Mon, 12 Feb 2024 13:06:22 GMT
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash d81e579c7b17ed27ed1b9b1f930f4737
6e9203d9feb01be13ff0d7aa20056c4e23b8a9e0
ab8a5aa7964db79d03e874b68ce4abe526569646628a693564a3e7376319320e
GET /Content/new_styles/base.css HTTP/1.1
Host: www.myopportunityfinder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 335
Content-Type: text/css
Date: Fri, 26 May 2023 07:59:22 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "5559535e4e8d51:0"
Last-Modified: Fri, 21 Feb 2020 18:24:51 GMT
Vary: Accept-Encoding
X-Powered-By: ASP.NET
www.myopportunityfinder.com/Content/checkbox-popup.css?v=1
23.96.13.243200 OK 787 B URL GET HTTP/1.1 www.myopportunityfinder.com/Content/checkbox-popup.css?v=1
IP 23.96.13.243:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerGoDaddy.com, Inc.
Subjectmyopportunityfinder.com
Fingerprint03:91:5B:FE:96:6E:22:C6:7D:69:04:A7:27:BC:07:DE:15:2B:67:95
ValidityThu, 12 Jan 2023 10:00:09 GMT - Mon, 12 Feb 2024 13:06:22 GMT
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash eb35a4a9712df609ab1d8022dbce027d
5e5b43c337859ba729aabafe370b23a18ceb1cc4
a3a1b5154e586a3858afcdda1067b549923effcb89741b28dfdbcf3622042de3
GET /Content/checkbox-popup.css?v=1 HTTP/1.1
Host: www.myopportunityfinder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 787
Content-Type: text/css
Date: Fri, 26 May 2023 07:59:22 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "e419d88bf7cfd71:0"
Last-Modified: Tue, 02 Nov 2021 14:40:14 GMT
Vary: Accept-Encoding
X-Powered-By: ASP.NET
www.myopportunityfinder.com/Scripts/detectmobilebrowsers.com.js
23.96.13.243200 OK 1.9 kB URL GET HTTP/1.1 www.myopportunityfinder.com/Scripts/detectmobilebrowsers.com.js
IP 23.96.13.243:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerGoDaddy.com, Inc.
Subjectmyopportunityfinder.com
Fingerprint03:91:5B:FE:96:6E:22:C6:7D:69:04:A7:27:BC:07:DE:15:2B:67:95
ValidityThu, 12 Jan 2023 10:00:09 GMT - Mon, 12 Feb 2024 13:06:22 GMT
File type Unicode text, UTF-8 (with BOM) text, with very long lines (2082), with CRLF line terminators
Hash fd6c9c1ce8a327054802bbaa62e464a3
19152f6108aaa732a6ee4411e211a1fee8982f52
58a9b42f566271dbdf12d861807cb46455f4fedfe795421e0f742b8688cd02b5
GET /Scripts/detectmobilebrowsers.com.js HTTP/1.1
Host: www.myopportunityfinder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 1909
Content-Type: application/x-javascript
Date: Fri, 26 May 2023 07:59:22 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "848c835e4e8d51:0"
Last-Modified: Fri, 21 Feb 2020 18:24:51 GMT
Vary: Accept-Encoding
X-Powered-By: ASP.NET
www.myopportunityfinder.com/Content/nitro_darker.png
23.96.13.243200 OK 7.6 kB URL GET HTTP/1.1 www.myopportunityfinder.com/Content/nitro_darker.png
IP 23.96.13.243:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerGoDaddy.com, Inc.
Subjectmyopportunityfinder.com
Fingerprint03:91:5B:FE:96:6E:22:C6:7D:69:04:A7:27:BC:07:DE:15:2B:67:95
ValidityThu, 12 Jan 2023 10:00:09 GMT - Mon, 12 Feb 2024 13:06:22 GMT
File type PNG image data, 226 x 55, 8-bit/color RGBA, non-interlaced\012- data
Hash f95ab421fc0ba6fc4222ebd80ec0ffaa
6ec24ed7c66e5e1e8dc87bd1410505bff4e77589
e500f21c08856d09d89aa3cf6d85afac7c4fad1baac5ad4f74f28de8dcbd6e25
GET /Content/nitro_darker.png HTTP/1.1
Host: www.myopportunityfinder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 7554
Content-Type: image/png
Date: Fri, 26 May 2023 07:59:22 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
ETag: "6f83d97154d2d71:0"
Last-Modified: Fri, 05 Nov 2021 14:50:15 GMT
X-Powered-By: ASP.NET
www.myopportunityfinder.com/Content/images/loading_black.gif
23.96.13.243 56 kB URL www.myopportunityfinder.com/Content/images/loading_black.gif
IP 23.96.13.243:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type GIF image data, version 89a, 200 x 200\012- data
Hash c2691bd5de228f7ca2d9cdbe27412e22
788900bba262a46dffa7cc57b8c2f4f883a71870
8e6286fbbc036d1a8c62a4445cb8521c3c9c0cf09b504152086ea9168e248222
GET /Content/images/loading_black.gif HTTP/1.1
Host: www.myopportunityfinder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 56524
Content-Type: image/gif
Date: Fri, 26 May 2023 07:59:22 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
ETag: "86a2dc8bf7cfd71:0"
Last-Modified: Tue, 02 Nov 2021 14:40:14 GMT
X-Powered-By: ASP.NET
www.myopportunityfinder.com/favicon.ico
23.96.13.243200 OK 32 kB URL GET HTTP/1.1 www.myopportunityfinder.com/favicon.ico
IP 23.96.13.243:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerGoDaddy.com, Inc.
Subjectmyopportunityfinder.com
Fingerprint03:91:5B:FE:96:6E:22:C6:7D:69:04:A7:27:BC:07:DE:15:2B:67:95
ValidityThu, 12 Jan 2023 10:00:09 GMT - Mon, 12 Feb 2024 13:06:22 GMT
File type MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 4859e39ae6c0f1f428f2126a6bb32bd9
1c0c85678ae963bc96d0b7fbe1eb89074cf1fbe0
a94f8a8553caea8430dd4ca3cc01d4e318d19828f74cb65453ffb7f5d9e2f44d
GET /favicon.ico HTTP/1.1
Host: www.myopportunityfinder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 32038
Content-Type: image/x-icon
Date: Fri, 26 May 2023 07:59:22 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
ETag: "2f5f1f35e4e8d51:0"
Last-Modified: Fri, 21 Feb 2020 18:24:51 GMT
X-Powered-By: ASP.NET
www.gonitrotrack.com/Api/Tracking/Track?emailAddress=0
23.96.13.243 63 B URL www.gonitrotrack.com/Api/Tracking/Track?emailAddress=0
IP 23.96.13.243:0
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
File type JSON data\012- , ASCII text, with no line terminators
Hash f124cfad06cecee5cc08185c85f9db18
16d73bf3a734d9e82ff31fe676a47d846772df46
701bf423734afd6a4153a91c3129820fb81d05dec26b344c3f3c425f25864a8f
GET /Api/Tracking/Track?emailAddress=0 HTTP/1.1
Host: www.gonitrotrack.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.myopportunityfinder.com
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 201 Created
Content-Length: 63
Content-Type: text/plain; charset=utf-8
Date: Fri, 26 May 2023 07:59:23 GMT
Server: Microsoft-IIS/10.0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://www.myopportunityfinder.com
Cache-Control: no-cache
Expires: -1
Pragma: no-cache
Set-Cookie: TrackingCookie=Email=0&Unique=cfe30d4d-c48c-4b23-bb80-62afcbd36aea; expires=Sun, 26 May 2024 07:59:23 GMT; path=/;SameSite=None;; secure
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
23.96.13.243200 OK 4.9 kB URL User Request GET HTTP/1.1 www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
IP 23.96.13.243:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Certificate IssuerGoDaddy.com, Inc.
Subjectmyopportunityfinder.com
Fingerprint03:91:5B:FE:96:6E:22:C6:7D:69:04:A7:27:BC:07:DE:15:2B:67:95
ValidityThu, 12 Jan 2023 10:00:09 GMT - Mon, 12 Feb 2024 13:06:22 GMT
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (3610), with CRLF, LF line terminators
Hash 7ab8159b3165e9e54f776d0451d3c319
9777ad447dbe60e2b7ae0bfd85838bc83e481944
9e3528f3e67de1b6255bd5282169d706c296313b2ed16deb60a28716f0b7f4e9
GET /mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea HTTP/1.1
Host: www.myopportunityfinder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 4931
Content-Type: text/html; charset=utf-8
Date: Fri, 26 May 2023 07:59:23 GMT
Server: Microsoft-IIS/10.0
Cache-Control: private
Content-Encoding: gzip
Set-Cookie: ASP.NET_SessionId=cw5plasrl4yi4uq1ovst4nxh; path=/; HttpOnly; SameSite=Lax
Vary: Accept-Encoding
X-AspNetMvc-Version: 5.2
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.6/postscribe.min.js
104.17.24.14200 OK 5.0 kB URL GET HTTP/3 cdnjs.cloudflare.com/ajax/libs/postscribe/2.0.6/postscribe.min.js
IP 104.17.24.14:443
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintA9:11:71:07:07:92:48:7E:A9:3C:E8:32:25:3F:EB:AC:7D:51:7E:8F
ValidityWed, 03 Aug 2022 00:00:00 GMT - Wed, 02 Aug 2023 23:59:59 GMT
File type ASCII text, with very long lines (17117)
Hash 9dc30a5f28951b5f0623ac993885a2af
5c031b6959fef792df316f42575262425a1f2bfb
fe95a4c752590b7e2d5296446643300206175ff9312c477057c1c9dec02e9f84
GET /ajax/libs/postscribe/2.0.6/postscribe.min.js HTTP/1.1
Host: cdnjs.cloudflare.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
date: Fri, 26 May 2023 07:59:23 GMT
content-type: application/javascript; charset=utf-8
content-length: 4996
access-control-allow-origin: *
cache-control: public, max-age=30672000
content-encoding: br
etag: "5eb03faa-43d5"
last-modified: Mon, 04 May 2020 16:15:38 GMT
cf-cdnjs-via: cfworker/kv
cross-origin-resource-policy: cross-origin
timing-allow-origin: *
x-content-type-options: nosniff
vary: Accept-Encoding
cf-cache-status: HIT
age: 2469125
expires: Wed, 15 May 2024 07:59:23 GMT
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=vZVlgIqk1rOybFuOlVDq4eazJsye8CZnUNXJEfTDyHsHkfYmU%2F54U433e7OvIrtBj%2FK54oXHqlSyWIIQh3xq0Rvn%2F7RKcnl5G8IEV10CREYdRI6nadwYaYaXSAiwRXbwqfEVh%2BnV"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
strict-transport-security: max-age=15780000
server: cloudflare
cf-ray: 7cd47a7ecc2a1bfe-OSL
alt-svc: h3=":443"; ma=86400
code.jquery.com/jquery-3.4.1.min.js
69.16.175.10200 OK 31 kB URL GET HTTP/2 code.jquery.com/jquery-3.4.1.min.js
IP 69.16.175.10:443
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerSectigo Limited
Subject*.jquery.com
Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83
ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (65451)
Hash 220afd743d9e9643852e31a135a9f3ae
88523924351bac0b5d560fe0c5781e2556e7693d
0925e8ad7bd971391a8b1e98be8e87a6971919eb5b60c196485941c3c1df089a
GET /jquery-3.4.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.myopportunityfinder.com
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 May 2023 07:59:23 GMT
content-encoding: gzip
content-length: 30638
content-type: application/javascript; charset=utf-8
last-modified: Fri, 20 Aug 2021 17:47:53 GMT
accept-ranges: bytes
server: nginx
etag: W/"611feac9-15851"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1685087963.dop001.sk1.t,1685087963.cds264.sk1.hn,1685087963.cds201.sk1.c
X-Firefox-Spdy: h2
code.jquery.com/ui/1.12.0/jquery-ui.min.js
69.16.175.10200 OK 68 kB URL GET HTTP/2 code.jquery.com/ui/1.12.0/jquery-ui.min.js
IP 69.16.175.10:443
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerSectigo Limited
Subject*.jquery.com
Fingerprint64:50:4C:BB:DF:F3:1D:70:CC:5D:9E:B7:BE:80:91:84:03:C1:D1:83
ValidityWed, 03 Aug 2022 00:00:00 GMT - Fri, 14 Jul 2023 23:59:59 GMT
File type ASCII text, with very long lines (32250)
Hash 8cbf62fc02083afe12a90787cb8f9e3c
6c16d0906b837e37e5a924127639ab9dde1b1898
78613a6e5bab939b078feae691fb0661e2b2671dcce1b1be66517203b2a7b3b1
GET /ui/1.12.0/jquery-ui.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 26 May 2023 07:59:23 GMT
content-encoding: gzip
content-length: 67684
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
accept-ranges: bytes
server: nginx
etag: W/"28feccc0-3ddc9"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1685087963.dop065.sk1.t,1685087963.cds253.sk1.hn,1685087963.cds256.sk1.c
X-Firefox-Spdy: h2
www.myopportunityfinder.com/Content/checkbox-popup.css?v=1
23.96.13.243200 OK 787 B URL GET HTTP/1.1 www.myopportunityfinder.com/Content/checkbox-popup.css?v=1
IP 23.96.13.243:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerGoDaddy.com, Inc.
Subjectmyopportunityfinder.com
Fingerprint03:91:5B:FE:96:6E:22:C6:7D:69:04:A7:27:BC:07:DE:15:2B:67:95
ValidityThu, 12 Jan 2023 10:00:09 GMT - Mon, 12 Feb 2024 13:06:22 GMT
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash eb35a4a9712df609ab1d8022dbce027d
5e5b43c337859ba729aabafe370b23a18ceb1cc4
a3a1b5154e586a3858afcdda1067b549923effcb89741b28dfdbcf3622042de3
GET /Content/checkbox-popup.css?v=1 HTTP/1.1
Host: www.myopportunityfinder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Cookie: ASP.NET_SessionId=cw5plasrl4yi4uq1ovst4nxh
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 787
Content-Type: text/css
Date: Fri, 26 May 2023 07:59:23 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "e419d88bf7cfd71:0"
Last-Modified: Tue, 02 Nov 2021 14:40:14 GMT
Vary: Accept-Encoding
X-Powered-By: ASP.NET
www.myopportunityfinder.com/Content/nitro.css
23.96.13.243200 OK 2.0 kB URL GET HTTP/1.1 www.myopportunityfinder.com/Content/nitro.css
IP 23.96.13.243:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerGoDaddy.com, Inc.
Subjectmyopportunityfinder.com
Fingerprint03:91:5B:FE:96:6E:22:C6:7D:69:04:A7:27:BC:07:DE:15:2B:67:95
ValidityThu, 12 Jan 2023 10:00:09 GMT - Mon, 12 Feb 2024 13:06:22 GMT
File type Unicode text, UTF-8 (with BOM) text
Hash d419f4d4c125db99184a044baf9557c5
f8e9db878759916598a2ff658e361a5a00f9a186
be338067cab2f513e42b4cc36c481b0a527905ba86414cbf1ca81a8e90573c40
GET /Content/nitro.css HTTP/1.1
Host: www.myopportunityfinder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Cookie: ASP.NET_SessionId=cw5plasrl4yi4uq1ovst4nxh
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 2048
Content-Type: text/css
Date: Fri, 26 May 2023 07:59:23 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "8072b9a68489d91:0"
Last-Modified: Thu, 18 May 2023 12:31:21 GMT
Vary: Accept-Encoding
X-Powered-By: ASP.NET
www.myopportunityfinder.com/Content/new_styles/base.css
23.96.13.243200 OK 335 B URL GET HTTP/1.1 www.myopportunityfinder.com/Content/new_styles/base.css
IP 23.96.13.243:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerGoDaddy.com, Inc.
Subjectmyopportunityfinder.com
Fingerprint03:91:5B:FE:96:6E:22:C6:7D:69:04:A7:27:BC:07:DE:15:2B:67:95
ValidityThu, 12 Jan 2023 10:00:09 GMT - Mon, 12 Feb 2024 13:06:22 GMT
File type Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
Hash d81e579c7b17ed27ed1b9b1f930f4737
6e9203d9feb01be13ff0d7aa20056c4e23b8a9e0
ab8a5aa7964db79d03e874b68ce4abe526569646628a693564a3e7376319320e
GET /Content/new_styles/base.css HTTP/1.1
Host: www.myopportunityfinder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Cookie: ASP.NET_SessionId=cw5plasrl4yi4uq1ovst4nxh
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 335
Content-Type: text/css
Date: Fri, 26 May 2023 07:59:23 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "5559535e4e8d51:0"
Last-Modified: Fri, 21 Feb 2020 18:24:51 GMT
Vary: Accept-Encoding
X-Powered-By: ASP.NET
www.myopportunityfinder.com/Scripts/detectmobilebrowsers.com.js
23.96.13.243200 OK 1.9 kB URL GET HTTP/1.1 www.myopportunityfinder.com/Scripts/detectmobilebrowsers.com.js
IP 23.96.13.243:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerGoDaddy.com, Inc.
Subjectmyopportunityfinder.com
Fingerprint03:91:5B:FE:96:6E:22:C6:7D:69:04:A7:27:BC:07:DE:15:2B:67:95
ValidityThu, 12 Jan 2023 10:00:09 GMT - Mon, 12 Feb 2024 13:06:22 GMT
File type Unicode text, UTF-8 (with BOM) text, with very long lines (2082), with CRLF line terminators
Hash fd6c9c1ce8a327054802bbaa62e464a3
19152f6108aaa732a6ee4411e211a1fee8982f52
58a9b42f566271dbdf12d861807cb46455f4fedfe795421e0f742b8688cd02b5
GET /Scripts/detectmobilebrowsers.com.js HTTP/1.1
Host: www.myopportunityfinder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Cookie: ASP.NET_SessionId=cw5plasrl4yi4uq1ovst4nxh
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 1909
Content-Type: application/x-javascript
Date: Fri, 26 May 2023 07:59:23 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "848c835e4e8d51:0"
Last-Modified: Fri, 21 Feb 2020 18:24:51 GMT
Vary: Accept-Encoding
X-Powered-By: ASP.NET
www.myopportunityfinder.com/Scripts/nitro.min.js?v=4
23.96.13.243200 OK 1.2 kB URL GET HTTP/1.1 www.myopportunityfinder.com/Scripts/nitro.min.js?v=4
IP 23.96.13.243:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerGoDaddy.com, Inc.
Subjectmyopportunityfinder.com
Fingerprint03:91:5B:FE:96:6E:22:C6:7D:69:04:A7:27:BC:07:DE:15:2B:67:95
ValidityThu, 12 Jan 2023 10:00:09 GMT - Mon, 12 Feb 2024 13:06:22 GMT
File type HTML document, ASCII text, with very long lines (3247), with no line terminators
Hash 3efae74e10ef2be8eb819a43e9ca5776
dad41b7f0ff79292b6be96319e008f674a6b5d1f
fd47e73dfb26a04f2b249c5b0fa9288471a7ea4d9841857cb324b5b9bc77adf9
GET /Scripts/nitro.min.js?v=4 HTTP/1.1
Host: www.myopportunityfinder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Cookie: ASP.NET_SessionId=cw5plasrl4yi4uq1ovst4nxh
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 1161
Content-Type: application/x-javascript
Date: Fri, 26 May 2023 07:59:23 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
Content-Encoding: gzip
ETag: "01bcc8bf7cfd71:0"
Last-Modified: Tue, 02 Nov 2021 14:40:14 GMT
Vary: Accept-Encoding
X-Powered-By: ASP.NET
www.myopportunityfinder.com/Content/new_images/nitro/mof_logo.jpg
23.96.13.243200 OK 19 kB URL GET HTTP/1.1 www.myopportunityfinder.com/Content/new_images/nitro/mof_logo.jpg
IP 23.96.13.243:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerGoDaddy.com, Inc.
Subjectmyopportunityfinder.com
Fingerprint03:91:5B:FE:96:6E:22:C6:7D:69:04:A7:27:BC:07:DE:15:2B:67:95
ValidityThu, 12 Jan 2023 10:00:09 GMT - Mon, 12 Feb 2024 13:06:22 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 415x102, components 3\012- data
Hash d3b6a1879c883fed57c24d1cb2570fc5
9902bf5aeafa1fe150cd46668bd2fdeb89c38cae
6e252ef3c5f995ffa51982fdb48be6caa549ef0c9bddb503269eaad37caa1aee
GET /Content/new_images/nitro/mof_logo.jpg HTTP/1.1
Host: www.myopportunityfinder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Cookie: ASP.NET_SessionId=cw5plasrl4yi4uq1ovst4nxh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 19297
Content-Type: image/jpeg
Date: Fri, 26 May 2023 07:59:24 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
ETag: "9f8bdb34e4e8d51:0"
Last-Modified: Fri, 21 Feb 2020 18:24:51 GMT
X-Powered-By: ASP.NET
www.myopportunityfinder.com/Content/nitro_darker.png
23.96.13.243200 OK 7.6 kB URL GET HTTP/1.1 www.myopportunityfinder.com/Content/nitro_darker.png
IP 23.96.13.243:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerGoDaddy.com, Inc.
Subjectmyopportunityfinder.com
Fingerprint03:91:5B:FE:96:6E:22:C6:7D:69:04:A7:27:BC:07:DE:15:2B:67:95
ValidityThu, 12 Jan 2023 10:00:09 GMT - Mon, 12 Feb 2024 13:06:22 GMT
File type PNG image data, 226 x 55, 8-bit/color RGBA, non-interlaced\012- data
Hash f95ab421fc0ba6fc4222ebd80ec0ffaa
6ec24ed7c66e5e1e8dc87bd1410505bff4e77589
e500f21c08856d09d89aa3cf6d85afac7c4fad1baac5ad4f74f28de8dcbd6e25
GET /Content/nitro_darker.png HTTP/1.1
Host: www.myopportunityfinder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Cookie: ASP.NET_SessionId=cw5plasrl4yi4uq1ovst4nxh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 7554
Content-Type: image/png
Date: Fri, 26 May 2023 07:59:24 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
ETag: "6f83d97154d2d71:0"
Last-Modified: Fri, 05 Nov 2021 14:50:15 GMT
X-Powered-By: ASP.NET
www.myopportunityfinder.com/favicon.ico
23.96.13.243200 OK 32 kB URL GET HTTP/1.1 www.myopportunityfinder.com/favicon.ico
IP 23.96.13.243:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerGoDaddy.com, Inc.
Subjectmyopportunityfinder.com
Fingerprint03:91:5B:FE:96:6E:22:C6:7D:69:04:A7:27:BC:07:DE:15:2B:67:95
ValidityThu, 12 Jan 2023 10:00:09 GMT - Mon, 12 Feb 2024 13:06:22 GMT
File type MS Windows icon resource - 4 icons, 16x16, 32 bits/pixel, 32x32, 32 bits/pixel\012- data
Hash 4859e39ae6c0f1f428f2126a6bb32bd9
1c0c85678ae963bc96d0b7fbe1eb89074cf1fbe0
a94f8a8553caea8430dd4ca3cc01d4e318d19828f74cb65453ffb7f5d9e2f44d
GET /favicon.ico HTTP/1.1
Host: www.myopportunityfinder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Cookie: ASP.NET_SessionId=cw5plasrl4yi4uq1ovst4nxh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 32038
Content-Type: image/x-icon
Date: Fri, 26 May 2023 07:59:24 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
ETag: "2f5f1f35e4e8d51:0"
Last-Modified: Fri, 21 Feb 2020 18:24:51 GMT
X-Powered-By: ASP.NET
proadprovider.blob.core.windows.net/images/Ensurethat7424.png
52.239.186.36200 OK 26 kB URL GET HTTP/1.1 proadprovider.blob.core.windows.net/images/Ensurethat7424.png
IP 52.239.186.36:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerMicrosoft Corporation
Subject*.blob.core.windows.net
Fingerprint36:56:DF:08:27:62:A2:47:DA:DA:23:62:EC:69:3C:EC:D5:ED:98:C4
ValiditySat, 25 Mar 2023 13:33:55 GMT - Mon, 25 Mar 2024 13:33:55 GMT
File type PNG image data, 500 x 300, 8-bit colormap, non-interlaced\012- data
Hash f7814dca3bb86ea3b281839290b8a8cf
e5a576550fdd8c4da79ffb9338dced730d9731ca
0a7b6f112332747eb549f8859512838167e57d4bf6e21b770c241ebf96cf7203
GET /images/Ensurethat7424.png HTTP/1.1
Host: proadprovider.blob.core.windows.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 26380
Content-Type: application/octet-stream
Content-MD5: 94FNyju4bqOygYOSkLiozw==
Last-Modified: Thu, 13 Jan 2022 19:47:10 GMT
ETag: 0x8D9D6CD7D2B4F31
Server: Windows-Azure-Blob/1.0 Microsoft-HTTPAPI/2.0
x-ms-request-id: 3f2eff93-801e-0074-26a7-8fab2e000000
x-ms-version: 2009-09-19
x-ms-lease-status: unlocked
x-ms-blob-type: BlockBlob
Date: Fri, 26 May 2023 07:59:23 GMT
www.myopportunityfinder.com/Content/new_images/nitro/mof_bg.jpg
23.96.13.243200 OK 497 kB URL GET HTTP/1.1 www.myopportunityfinder.com/Content/new_images/nitro/mof_bg.jpg
IP 23.96.13.243:443
ASN #8075 MICROSOFT-CORP-MSN-AS-BLOCK
Requested by https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Certificate IssuerGoDaddy.com, Inc.
Subjectmyopportunityfinder.com
Fingerprint03:91:5B:FE:96:6E:22:C6:7D:69:04:A7:27:BC:07:DE:15:2B:67:95
ValidityThu, 12 Jan 2023 10:00:09 GMT - Mon, 12 Feb 2024 13:06:22 GMT
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 1922x976, components 3\012- data
Size 497 kB (497107 bytes)
Hash d83d2c05865006a46b8ef3d5a5cb1f27
59b6ab519798f3f7e88dac939172f58d7287d1a2
8bae1cb1d064101714e977fe5b607671e12b152d056f4476b2ff5040eef7bd6e
GET /Content/new_images/nitro/mof_bg.jpg HTTP/1.1
Host: www.myopportunityfinder.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://www.myopportunityfinder.com/mof?sid=1148&affid=123036&SubID=lead_root0&uid=cfe30d4d-c48c-4b23-bb80-62afcbd36aea
Cookie: ASP.NET_SessionId=cw5plasrl4yi4uq1ovst4nxh
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Length: 497107
Content-Type: image/jpeg
Date: Fri, 26 May 2023 07:59:24 GMT
Server: Microsoft-IIS/10.0
Accept-Ranges: bytes
ETag: "bdc8da34e4e8d51:0"
Last-Modified: Fri, 21 Feb 2020 18:24:51 GMT
X-Powered-By: ASP.NET