Report - jordans13shoes.us/

Report Overview

Submitted URL
jordans13shoes.us/
IP
107.150.164.252
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti
Submitted
2023-01-09 03:44:02
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
22

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
code.jquery.com	634	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	35 kB	69.16.175.10
www.jordans13shoes.us	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	9.4 kB	145 kB	107.150.164.252
c.statcounter.com	7772	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	827 B	724 B	104.20.219.77
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.7 kB	9.8 kB	95.101.11.115
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	1.8 kB	93.184.220.29
maxcdn.bootstrapcdn.com	724	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	977 B	20 kB	104.18.10.207
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	964 B	104.18.32.68
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	35.241.9.150
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.155.171.116
img.jordans13shoes.us	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	7.5 kB	492 kB	107.150.164.252
www.statcounter.com	11621	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	379 B	380 B	104.20.219.77
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	391 B	34.117.237.239
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	62 kB	34.120.237.76
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
jordans13shoes.us	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	349 B	517 B	107.150.164.252

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-09	medium	jordans13shoes.us/	Malware
2023-01-09	medium	www.jordans13shoes.us/includes/templates/13105/jscript/13105.js	Malware
2023-01-09	medium	www.jordans13shoes.us/includes/templates/13105/jscript/bootstrap-submenu.min.js	Malware
2023-01-09	medium	www.jordans13shoes.us/includes/templates/13105/jscript/jquery.input-counter.min.js	Malware
2023-01-09	medium	www.jordans13shoes.us/includes/templates/13105/jscript/scriptbreaker-multiple-accordion-1.js	Malware
2023-01-09	medium	www.jordans13shoes.us/includes/templates/13105/jscript/xzoom.min.js	Malware
2023-01-09	medium	www.jordans13shoes.us/includes/templates/13105/jscript/jquery.hammer.min.js	Malware
2023-01-09	medium	www.jordans13shoes.us/includes/templates/13105/jscript/bootstrap.min.js	Malware
2023-01-09	medium	www.jordans13shoes.us/includes/templates/13105/jscript/hc-sticky.js	Malware
2023-01-09	medium	www.jordans13shoes.us/includes/templates/13105/jscript/jquery.fancybox.js	Malware
2023-01-09	medium	www.jordans13shoes.us/	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (19)

	URL	Size	First Seen	Last Seen
	www.jordans13shoes.us/	113 B	2023-03-11	2023-07-01
Pretty URL www.jordans13shoes.us/ IP 107.150.164.252 ASN #59447 Istanbuldc Veri Merkezi Ltd Sti Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:23:04 Last Seen2023-07-01 21:26:17 Times Seen8 Hash 7484a1c952df53953b5d526e87a02bdd ec6d6248674aac2875ebf5fb7072a42e4930e5dc 0bbb3c5119f99a1415c27da794920c91aa69e40a8166dfcb20b58dc2c9d8c18a Loading...

	www.jordans13shoes.us/includes/templates/13105/jscript/xzoom.min.js	14 kB	2023-03-07	2023-10-31
Pretty URL www.jordans13shoes.us/includes/templates/13105/jscript/xzoom.min.js IP 107.150.164.252 ASN #59447 Istanbuldc Veri Merkezi Ltd Sti Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:04:17 Last Seen2023-10-31 09:16:18 Times Seen49 Hash 505873bae4269a5eb92be7dff11d5f69 56055d97da68c06424ceda302a19becdd5c477b4 b4e9f0b789718e8a3071b6cc7a50c0fbfbd3102859c4b2c884cbd8a8612a1294 Loading...

	www.jordans13shoes.us/	77 B	2023-03-12	2023-03-12
Pretty URL www.jordans13shoes.us/ IP 107.150.164.252 ASN #59447 Istanbuldc Veri Merkezi Ltd Sti Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 18:47:02 Last Seen2023-03-12 18:47:02 Times Seen1 Hash f14cd99cc9847f43548b9286ce381547 0eda05dfc57f31f080a8c59d4d1ab283acfb0b5e 68f3496055f67308573134528374d743cfc74351ab8532f739089b984decdfe7 Loading...

	www.jordans13shoes.us/includes/templates/13105/jscript/jquery.fancybox.js	49 kB	2023-03-07	2024-04-26
Pretty URL www.jordans13shoes.us/includes/templates/13105/jscript/jquery.fancybox.js IP 107.150.164.252 ASN #59447 Istanbuldc Veri Merkezi Ltd Sti Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:55 Last Seen2024-04-26 12:41:11 Times Seen1262 Hash 921e9cb04ad6e2559869ec845c5be39b 1cf3d47b5ccb7cb6e9019c64f2a88d03a64853e4 6c78ce6b6d1928630b903084ea9d503643f303ba05455860cc7cd17f7687cc65 Loading...

	www.jordans13shoes.us/includes/templates/13105/jscript/scriptbreaker-multiple-accordion-1.js	2.9 kB	2023-03-07	2023-09-16
Pretty URL www.jordans13shoes.us/includes/templates/13105/jscript/scriptbreaker-multiple-accordion-1.js IP 107.150.164.252 ASN #59447 Istanbuldc Veri Merkezi Ltd Sti Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:57:40 Last Seen2023-09-16 22:19:43 Times Seen18 Hash 8369f89374b0fd876aff47bddceadf7c 0296f133b6cf2febc7d45b47377696d6b090d2f0 9aaf53df4b67a6027f6cfe427c6931488230ef83790a8d9893a19319d3642fe9 Loading...

	www.jordans13shoes.us/	178 B	2023-03-07	2023-09-16
Pretty URL www.jordans13shoes.us/ IP 107.150.164.252 ASN #59447 Istanbuldc Veri Merkezi Ltd Sti Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 15:06:06 Last Seen2023-09-16 22:19:43 Times Seen10 Hash 985ff5de02154e5d06e7c15d0cf1755e e5ce33663bdfd8d91619709cba7dcf50d6334643 37d2eef041438812f123a136e75e8bb757d7c322a38a9431d5a317fc6306958a Loading...

	www.jordans13shoes.us/	601 B	2023-03-11	2023-10-23
Pretty URL www.jordans13shoes.us/ IP 107.150.164.252 ASN #59447 Istanbuldc Veri Merkezi Ltd Sti Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:23:04 Last Seen2023-10-23 15:28:05 Times Seen17 Hash aa1773137bf2bca0a3bacb30614774cb 02d1446ffd9074142b104167a59b4603b26a59d6 a2defed7db47b64058bd6e4335d91ebffbf69adab5d242cae73ede9db4d16100 Loading...

	www.jordans13shoes.us/	43 B	2023-03-09	2023-07-01
Pretty URL www.jordans13shoes.us/ IP 107.150.164.252 ASN #59447 Istanbuldc Veri Merkezi Ltd Sti Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 04:21:54 Last Seen2023-07-01 21:26:17 Times Seen14 Hash c0fad889e223f7257c95b8c1fff19f80 8ba0b89bad97aa9108f1ddc8b25d576eb3a9d5fc e48b8e84fb8a96e0d3cae4df84c1e7083aacd43f59f4a6e2ddc5a8d96f128d33 Loading...

	www.jordans13shoes.us/includes/templates/13105/jscript/jquery.hammer.min.js	13 kB	2023-03-07	2024-01-25
Pretty URL www.jordans13shoes.us/includes/templates/13105/jscript/jquery.hammer.min.js IP 107.150.164.252 ASN #59447 Istanbuldc Veri Merkezi Ltd Sti Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:26:33 Last Seen2024-01-25 07:24:33 Times Seen122 Hash ca15b1fa44670dfb425d7c838ae25577 d7f6a048a52767c22a6b9a44d38e0eda5ce7c437 0803456692d9d256ae9033c4c484890450ae49a14389a3412be3e9ea58f875d3 Loading...

	www.jordans13shoes.us/includes/templates/13105/jscript/bootstrap.min.js	37 kB	2023-03-07	2024-04-26
Pretty URL www.jordans13shoes.us/includes/templates/13105/jscript/bootstrap.min.js IP 107.150.164.252 ASN #59447 Istanbuldc Veri Merkezi Ltd Sti Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-04-26 23:45:34 Times Seen54703 Hash 5869c96cc8f19086aee625d670d741f9 430a443d74830fe9be26efca431f448c1b3740f9 53964478a7c634e8dad34ecc303dd8048d00dce4993906de1bacf67f663486ef Loading...

	www.jordans13shoes.us/includes/templates/13105/jscript/hc-sticky.js	11 kB	2023-03-07	2023-07-01
Pretty URL www.jordans13shoes.us/includes/templates/13105/jscript/hc-sticky.js IP 107.150.164.252 ASN #59447 Istanbuldc Veri Merkezi Ltd Sti Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 17:04:17 Last Seen2023-07-01 21:26:17 Times Seen26 Hash 9428bd4c44699fa67da45edf5d835603 6a6ec60d225c229f184469dd6ae99822e7f236a4 77c5a01f9b82ad418881c98cd0dd247e518ee6ef0284d5c2e633819e7b4cc5e1 Loading...

	www.statcounter.com/counter/counter.js	44 kB	2023-03-07	2024-03-30
Pretty URL www.statcounter.com/counter/counter.js IP 104.20.219.77 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:55 Last Seen2024-03-30 16:46:15 Times Seen13 Hash 366890db672c87ff79dd22a7534643d2 e7b0da6b49f35363f125deb595ff67ccb0dc222c 38773f599cca495f0904c3d5a9981fc081b743a8d9aa106ed17e0d9b03ae6598 Loading...

	code.jquery.com/jquery-1.12.4.min.js	97 kB	2023-03-07	2024-04-27
Pretty URL code.jquery.com/jquery-1.12.4.min.js IP 69.16.175.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-27 00:37:22 Times Seen118764 Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Loading...

	www.jordans13shoes.us/includes/templates/13105/jscript/jquery.input-counter.min.js	1.9 kB	2023-03-11	2023-10-23
Pretty URL www.jordans13shoes.us/includes/templates/13105/jscript/jquery.input-counter.min.js IP 107.150.164.252 ASN #59447 Istanbuldc Veri Merkezi Ltd Sti Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:23:04 Last Seen2023-10-23 15:28:05 Times Seen32 Hash c1364ab4d63022cc9c1edf3b4391b8e9 b276fe215761465028900f5ab88e6eb3d2c65342 344171381bc4ba4c27a3baab31809a3f8d965461e31cf2f9678a75d801eb9cd4 Loading...

	www.jordans13shoes.us/includes/templates/13105/jscript/13105.js	2.6 kB	2023-03-11	2023-07-01
Pretty URL www.jordans13shoes.us/includes/templates/13105/jscript/13105.js IP 107.150.164.252 ASN #59447 Istanbuldc Veri Merkezi Ltd Sti Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:23:04 Last Seen2023-07-01 21:26:17 Times Seen13 Hash 96275eaf18d730d1f1cb50bf0f248dd4 5181a1204c9cf4d20c5d35b8fe279fad624406df 2d9c90d30774b0264c8fce40bdca1bef5fdac64050847102d2a3489b782d1e47 Loading...

	www.jordans13shoes.us/	421 B	2023-03-11	2023-07-01
Pretty URL www.jordans13shoes.us/ IP 107.150.164.252 ASN #59447 Istanbuldc Veri Merkezi Ltd Sti Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:23:04 Last Seen2023-07-01 21:26:17 Times Seen7 Hash e6f8aa0c45a26a21d084d0637582e246 5e703ade1d747697f44f97ad55d10098bc148d67 8e628cf127cd017b35097c5c6cdefd8bc2858b9a3329da826f0248d0927df225 Loading...

	www.jordans13shoes.us/includes/templates/13105/jscript/bootstrap-submenu.min.js	2.8 kB	2023-03-09	2023-12-21
Pretty URL www.jordans13shoes.us/includes/templates/13105/jscript/bootstrap-submenu.min.js IP 107.150.164.252 ASN #59447 Istanbuldc Veri Merkezi Ltd Sti Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-09 04:21:54 Last Seen2023-12-21 19:05:03 Times Seen36 Hash 8b18f14e8e6b15a770ca7235ee24fd25 4e113d10ca5637d379c4df3c497a030284692d6f fe47dda03a50f63554fc123ca8a8fa74aaf4ed9eaf0d44ec30467ec7fc97b245 Loading...

	www.jordans13shoes.us/	266 B	2023-03-11	2023-10-23
Pretty URL www.jordans13shoes.us/ IP 107.150.164.252 ASN #59447 Istanbuldc Veri Merkezi Ltd Sti Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:23:04 Last Seen2023-10-23 15:28:05 Times Seen17 Hash fcd83865a914a54ceed030837960f0c6 277be7c62959030cccd8d21c340f89e1b56ccbc3 306ee882a1cd060101562327252161b33b03182bbcdf186e8324367fad7cddf3 Loading...

	www.jordans13shoes.us/	376 B	2023-03-11	2023-07-01
Pretty URL www.jordans13shoes.us/ IP 107.150.164.252 ASN #59447 Istanbuldc Veri Merkezi Ltd Sti Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:23:04 Last Seen2023-07-01 21:26:17 Times Seen7 Hash 81a2c847016ed4f242f325633dee1be7 21f74688c2ba9315d1c5ad51ba37b059ba97b4c9 bbc80fad96016988ed356774b35c25c3a95c6a4d8d7cddfa823b1c4e409928f3 Loading...

HTTP Transactions (68)

URL IP Response Size

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
b782882bdabaf3b08e64120922b4a4b7
2035ed7fc9fb5b6ee9715601ba43de5f94d0c0e9
3fe7d1a9a55b86ec25d02634749ccfae11f3477033ba8cd7ac4131b7948ba619

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3FE7D1A9A55B86EC25D02634749CCFAE11F3477033BA8CD7AC4131B7948BA619"
Last-Modified: Sat, 07 Jan 2023 07:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14798
Expires: Mon, 09 Jan 2023 07:50:29 GMT
Date: Mon, 09 Jan 2023 03:43:51 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
516b9d6951b09439a51d5284994ed92f
5c78edb38bae36caa8e2db8ed6635a32e46c91dd
eaaf4ebc59d2a06d02b552154c5adb7c713ffc4a7f5caabcff1c2b4cd6ec5c7b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EAAF4EBC59D2A06D02B552154C5ADB7C713FFC4A7F5CAABCFF1C2B4CD6EC5C7B"
Last-Modified: Fri, 06 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6045
Expires: Mon, 09 Jan 2023 05:24:36 GMT
Date: Mon, 09 Jan 2023 03:43:51 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
89a058935fd04697c87e9441fbb466a9
59b5b08119374b1da34cff7e43a7c6dc80103f6e
3a3261f495323ff0f60067b2930b8d0e5e4e5cd6ae9b14929a88047587b735da

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3A3261F495323FF0F60067B2930B8D0E5E4E5CD6AE9B14929A88047587B735DA"
Last-Modified: Sat, 07 Jan 2023 23:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9012
Expires: Mon, 09 Jan 2023 06:14:03 GMT
Date: Mon, 09 Jan 2023 03:43:51 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Content-Length, Alert, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 09 Jan 2023 02:48:20 GMT
content-type: application/json
age: 3331
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
b1fcd419a4245617397846e8d17233f6
2a037ce244587640b27ead9a0ec2af4f862d91b2
e059b6d834c06e58494c43fb2ff42acbc27c1a1d8f7f30e2f32ca0e167599e2f

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-08-14-47-57.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Bvlcqrcpe/Rs7e9yBnLQ5v25kibb5NutET2hkYS84b+MDfsB0Gsy4QJgnet667L0vhZlan5fVOQ=
x-amz-request-id: JB2J3NV01V7T7NKF
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 09 Jan 2023 03:01:04 GMT
age: 2567
last-modified: Tue, 20 Dec 2022 14:47:58 GMT
etag: "b1fcd419a4245617397846e8d17233f6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

jordans13shoes.us/

107.150.164.252

301 Moved Permanently

305 B

URL HTTP/1.1
jordans13shoes.us/
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
305 B (305 bytes)
Hash
49a09f0ebb47698a9137aa80a626d4e4
aff3c36dcdc6e01559fcf295ef3b97f95b5e4223
fcc11e187a62a2a4ea44a76fa1e1973af8a0a8182d5dae07807320555814dc86

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Mon, 09 Jan 2023 03:43:51 GMT
Server: Apache
Location: https://www.jordans13shoes.us/
Content-Length: 305
Connection: close
Content-Type: text/html; charset=iso-8859-1

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Mon, 09 Jan 2023 03:43:51 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Expires, Last-Modified, Alert, Content-Type, Content-Length, ETag, Pragma, Cache-Control, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 09 Jan 2023 03:33:44 GMT
age: 607
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
54ac41a005cad66e958c904071ea1d4f
66932889be57eb15ab99237a69d292b12090c68d
52545e144a7ca5c37c5369d5f5b566b4e5e820b1920ab7fe8e413e7fe022e21b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1783
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 09 Jan 2023 03:43:52 GMT
Last-Modified: Mon, 09 Jan 2023 03:14:09 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e4d86a4616fa1c1f8f0d3dae582168f8
bc3818d737c1cced0f44621702843d222afd3935
44fccda2bc8070060394fcc55eab79ca80d4fe59e033e8122022652c7c1ca0b1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "44FCCDA2BC8070060394FCC55EAB79CA80D4FE59E033E8122022652C7C1CA0B1"
Last-Modified: Mon, 09 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 09 Jan 2023 09:43:52 GMT
Date: Mon, 09 Jan 2023 03:43:52 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e4d86a4616fa1c1f8f0d3dae582168f8
bc3818d737c1cced0f44621702843d222afd3935
44fccda2bc8070060394fcc55eab79ca80d4fe59e033e8122022652c7c1ca0b1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "44FCCDA2BC8070060394FCC55EAB79CA80D4FE59E033E8122022652C7C1CA0B1"
Last-Modified: Mon, 09 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 09 Jan 2023 09:43:52 GMT
Date: Mon, 09 Jan 2023 03:43:52 GMT
Connection: keep-alive

push.services.mozilla.com/

35.155.171.116

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.155.171.116:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: AsN59KIFQN6kzbFwRgoJXw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: IHqntKeY4BEpAmoxGecsZ5/aIi0=

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
e0ab4f7d3ed3540e7e14d17c701c54d6
9990f48876e99f6c1014cb36d8b293c3d2450720
ef436b06ea587654322853c8523360b8ffa18d0cff4e98e7c9d5df0c3edad85d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2442
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 09 Jan 2023 03:43:52 GMT
Last-Modified: Mon, 09 Jan 2023 03:03:10 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 280

code.jquery.com/jquery-1.12.4.min.js

69.16.175.10

200 OK

34 kB

URL HTTP/2
code.jquery.com/jquery-1.12.4.min.js
IP
69.16.175.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (32077)
Size
34 kB (33738 bytes)
Hash
fc7624613c4e25843694cdb7fa956f05
7765bb4016ae929e22be579ccde505b94c2a63c1
49c97d70ef48bfdc1d7b96271b5613bb099b2c040ebdf5624962aea92ff428ae

HTTP Headers

GET /jquery-1.12.4.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.jordans13shoes.us
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:52 GMT
content-encoding: gzip
content-length: 33738
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-17b8b"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-sp-metadata: HS256.CIi37p0GEoYBCiRlYWU2OTQwNS1lYzhhLTQ2OTctYTU4ZS02ZDdiNGU3NTQ4YjgQ+OiCoKvU+wIaBgj4mu6dBiIMOTEuOTAuNDIuMTU0KPQ3MAM4BEIWVExTX0FFU18xMjhfR0NNX1NIQTI1NlogYzdkMmI0YzQ4NGE0MTNlMTkxZGU2YWNmZjJkYjIwMDkaLAgBEiQ1M2IzYTQ2OS1mMTY2LTRlMjQtYTUyMy04NTAzMWE4ODcxOWUYyocCIhgIAhIUY2RzMjUxLnNrMS5od2Nkbi5uZXQ=.QBIicn+GnGn1TjGNPY2HyLs27GQXxf3XND3myDKPzZI=
x-hw: 1673235832.dop206.sk1.t,1673235832.cds020.sk1.hn,1673235832.cds251.sk1.c
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
e0ab4f7d3ed3540e7e14d17c701c54d6
9990f48876e99f6c1014cb36d8b293c3d2450720
ef436b06ea587654322853c8523360b8ffa18d0cff4e98e7c9d5df0c3edad85d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2442
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Mon, 09 Jan 2023 03:43:52 GMT
Last-Modified: Mon, 09 Jan 2023 03:03:10 GMT
Server: ECS (ska/F711)
X-Cache: HIT
Content-Length: 280

www.jordans13shoes.us/includes/templates/13105/css/css_buttons.css

107.150.164.252

200 OK

831 B

URL HTTP/2
www.jordans13shoes.us/includes/templates/13105/css/css_buttons.css
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
ASCII text, with CRLF line terminators
Size
831 B (831 bytes)
Hash
cc9bb9b12583bdcb8199486353143361
8eff8a33b302b358b282f74cd6d36066a530d880
cb71b89b2ca6a88c114ea85b549768d00200d08dcb1f87cd9a88cef6d5ac49cf

HTTP Headers

GET /includes/templates/13105/css/css_buttons.css HTTP/1.1
Host: www.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Cookie: zenid=6fngv41rcaomt9p0rlold2erc1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:52 GMT
server: Apache
last-modified: Sun, 01 Jan 2006 20:15:46 GMT
etag: "653-40951bb498080-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 831
content-type: text/css
X-Firefox-Spdy: h2

www.jordans13shoes.us/includes/templates/13105/css/lightbox.css

107.150.164.252

200 OK

575 B

URL HTTP/2
www.jordans13shoes.us/includes/templates/13105/css/lightbox.css
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
ASCII text, with CR line terminators
Size
575 B (575 bytes)
Hash
c7a626ca8405d6ae9f0b50c89998984a
914e4ae28055635cf60a463afb08d2a586a73aaf
6a4e502fae20f95801dd3fb003abdb571123cca2e12ea1ae4de434b186aa4e77

HTTP Headers

GET /includes/templates/13105/css/lightbox.css HTTP/1.1
Host: www.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Cookie: zenid=6fngv41rcaomt9p0rlold2erc1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:52 GMT
server: Apache
last-modified: Fri, 15 Jun 2018 04:28:04 GMT
etag: "5fd-56ea6a451bd00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 575
content-type: text/css
X-Firefox-Spdy: h2

www.jordans13shoes.us/includes/templates/13105/css/xzoom.css

107.150.164.252

200 OK

600 B

URL HTTP/2
www.jordans13shoes.us/includes/templates/13105/css/xzoom.css
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
ASCII text
Size
600 B (600 bytes)
Hash
0bdff26582143e993c1a3b086e95a88d
615e0b0a3385170151a8518ccef71d2825c310d4
0466c7ccbcdaa4fa0ac4d37118342752ad5de0ce2ee9114ceab747f0ed43c1a2

HTTP Headers

GET /includes/templates/13105/css/xzoom.css HTTP/1.1
Host: www.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Cookie: zenid=6fngv41rcaomt9p0rlold2erc1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:52 GMT
server: Apache
last-modified: Sun, 28 Jun 2020 10:17:38 GMT
etag: "656-5a92240669480-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 600
content-type: text/css
X-Firefox-Spdy: h2

www.jordans13shoes.us/includes/templates/13105/css/jquery.fancybox.css

107.150.164.252

200 OK

1.4 kB

URL HTTP/2
www.jordans13shoes.us/includes/templates/13105/css/jquery.fancybox.css
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
ASCII text
Size
1.4 kB (1430 bytes)
Hash
557c29a4f424dc35fc9f1f639861642e
a9e0b8128c4936dbe1b611e4beb1760aa6513501
f7cf467cf3da2933b1388c3a2b7c4483edb0ce7680252bf1922f68c272446554

HTTP Headers

GET /includes/templates/13105/css/jquery.fancybox.css HTTP/1.1
Host: www.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Cookie: zenid=6fngv41rcaomt9p0rlold2erc1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:52 GMT
server: Apache
last-modified: Thu, 21 Jun 2018 00:15:10 GMT
etag: "135b-56f1bceed1f80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 1430
content-type: text/css
X-Firefox-Spdy: h2

www.jordans13shoes.us/includes/templates/13105/css/bootstrap-submenu.min.css

107.150.164.252

200 OK

694 B

URL HTTP/2
www.jordans13shoes.us/includes/templates/13105/css/bootstrap-submenu.min.css
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
ASCII text, with very long lines (4878)
Size
694 B (694 bytes)
Hash
6b44b3b110959a43cb5deeb1834292d1
d97f1bfe102e28b68e3e7ec5fccc7c95e2f6091a
99dbe31f9e360759f113459a3f30b719364bb05d5e81121340211bd73b075f8e

HTTP Headers

GET /includes/templates/13105/css/bootstrap-submenu.min.css HTTP/1.1
Host: www.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Cookie: zenid=6fngv41rcaomt9p0rlold2erc1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:52 GMT
server: Apache
last-modified: Sat, 19 Mar 2016 00:16:38 GMT
etag: "13c0-52e5bc6eee580-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 694
content-type: text/css
X-Firefox-Spdy: h2

www.jordans13shoes.us/includes/templates/13105/css/13105.css

107.150.164.252

200 OK

2.9 kB

URL HTTP/2
www.jordans13shoes.us/includes/templates/13105/css/13105.css
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
ASCII text, with CRLF line terminators
Size
2.9 kB (2880 bytes)
Hash
e1a02682e84773aec7aca11989254fe6
dc0d311dcc361755242ef384b72b6ca92c3b2a4e
ba35da3bbd71652e3c683a40692547bcacfeec250008945d722634adb8edea08

HTTP Headers

GET /includes/templates/13105/css/13105.css HTTP/1.1
Host: www.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Cookie: zenid=6fngv41rcaomt9p0rlold2erc1
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:52 GMT
server: Apache
last-modified: Thu, 07 Jul 2022 07:58:09 GMT
etag: "33f7-5e332724f732a-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 2880
content-type: text/css
X-Firefox-Spdy: h2

www.jordans13shoes.us/includes/templates/13105/images/logo.png

107.150.164.252

200 OK

9.9 kB

URL HTTP/2
www.jordans13shoes.us/includes/templates/13105/images/logo.png
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
PNG image data, 500 x 135, 8-bit/color RGB, non-interlaced\012- data
Size
9.9 kB (9934 bytes)
Hash
e1c2ab754587392a7712bef8a7a42be5
46493aeeaf4de21a33bb47cb9e15e6e06bfeb738
d5e7f70a55e82e194f5430dadd0f1f680ba4a97c6e3bb49724a08002eb23c06a

HTTP Headers

GET /includes/templates/13105/images/logo.png HTTP/1.1
Host: www.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Cookie: zenid=6fngv41rcaomt9p0rlold2erc1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:52 GMT
server: Apache
last-modified: Mon, 13 Aug 2018 08:02:30 GMT
etag: "26ce-5734c83d47180"
accept-ranges: bytes
content-length: 9934
content-type: image/png
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/3.3.7/fonts/glyphicons-halflings-regular.woff2

104.18.10.207

200 OK

18 kB

URL HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/fonts/glyphicons-halflings-regular.woff2
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 18028, version 1.589\012- data
Size
18 kB (18028 bytes)
Hash
448c34a56d699c29117adc64c43affeb
ca35b697d99cae4d1b60f2d60fcd37771987eb07
fe185d11a49676890d47bb783312a0cda5a44c4039214094e7957b4c040ef11c

HTTP Headers

GET /bootstrap/3.3.7/fonts/glyphicons-halflings-regular.woff2 HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.jordans13shoes.us
Connection: keep-alive
Referer: https://maxcdn.bootstrapcdn.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
content-type: font/woff2
content-length: 18028
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: "448c34a56d699c29117adc64c43affeb"
last-modified: Mon, 25 Jan 2021 22:04:00 GMT
cdn-cachedat: 11/15/2022 10:30:09
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1053
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: f30c07e03bc2811cdf456c72b3f67759
cdn-cache: HIT
cf-cache-status: MISS
accept-ranges: bytes
vary: Accept-Encoding
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 786a2bd499beb500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.jordans13shoes.us/images/banners/banner.jpg

107.150.164.252

200 OK

71 kB

URL HTTP/2
www.jordans13shoes.us/images/banners/banner.jpg
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1200x559, components 3\012- data
Size
71 kB (71019 bytes)
Hash
116ad391e2dc5993f8b0bb00fd8c20d1
1baf4ecaa8446bc08d2af3a2050d7e8a8a9304e5
2287c130900a0579acc1850599e1151768e354f1da567589a2ef4de630e52708

HTTP Headers

GET /images/banners/banner.jpg HTTP/1.1
Host: www.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Cookie: zenid=6fngv41rcaomt9p0rlold2erc1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:52 GMT
server: Apache
last-modified: Sat, 22 May 2021 12:02:37 GMT
etag: "1156b-5c2e9f3d39b07"
accept-ranges: bytes
content-length: 71019
content-type: image/jpeg
X-Firefox-Spdy: h2

www.jordans13shoes.us/includes/templates/13105/jscript/13105.js

107.150.164.252

200 OK

657 B

URL HTTP/2
www.jordans13shoes.us/includes/templates/13105/jscript/13105.js
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
ASCII text, with CRLF line terminators
Size
657 B (657 bytes)
Hash
e38b54dc1d728c93e04b7fd296dc4bc8
d8b196f12b305d4c90474e7fb2b355e19afef6cd
010b685f9f6059233b1680e129c4c8d5f843ffc7f1b81af6e288f90b08d8493e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /includes/templates/13105/jscript/13105.js HTTP/1.1
Host: www.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Cookie: zenid=6fngv41rcaomt9p0rlold2erc1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Fri, 22 Jun 2018 08:08:58 GMT
etag: "a41-56f368b355a80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 657
content-type: application/javascript
X-Firefox-Spdy: h2

www.jordans13shoes.us/includes/templates/13105/jscript/bootstrap-submenu.min.js

107.150.164.252

200 OK

969 B

URL HTTP/2
www.jordans13shoes.us/includes/templates/13105/jscript/bootstrap-submenu.min.js
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
ASCII text, with very long lines (2610)
Size
969 B (969 bytes)
Hash
fc82c55c9292ce7aff670032493ec845
d5d9d47f5102f85d98b85457ca6397ea08d82645
d1c1ace8345db85df7b1ad28ff08f266c5bf31c2315e6fe938bcc81f36eae1be

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /includes/templates/13105/jscript/bootstrap-submenu.min.js HTTP/1.1
Host: www.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Cookie: zenid=6fngv41rcaomt9p0rlold2erc1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Sat, 19 Mar 2016 00:16:38 GMT
etag: "ae4-52e5bc6eee580-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 969
content-type: application/javascript
X-Firefox-Spdy: h2

www.jordans13shoes.us/includes/templates/13105/jscript/jquery.input-counter.min.js

107.150.164.252

200 OK

593 B

URL HTTP/2
www.jordans13shoes.us/includes/templates/13105/jscript/jquery.input-counter.min.js
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
ASCII text, with very long lines (1874), with no line terminators
Size
593 B (593 bytes)
Hash
608f8e1c327761c2d11f40878b8c8a41
b8cd4808acc912952498a25731130d7a366e1cbf
d73336fdd724d1b3330cb5714e5e03775b7a154e83dd203a467330cc4db7c6c1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /includes/templates/13105/jscript/jquery.input-counter.min.js HTTP/1.1
Host: www.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Cookie: zenid=6fngv41rcaomt9p0rlold2erc1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Tue, 14 May 2019 06:09:08 GMT
etag: "752-588d2deeae900-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 593
content-type: application/javascript
X-Firefox-Spdy: h2

www.jordans13shoes.us/includes/templates/13105/jscript/scriptbreaker-multiple-accordion-1.js

107.150.164.252

200 OK

948 B

URL HTTP/2
www.jordans13shoes.us/includes/templates/13105/jscript/scriptbreaker-multiple-accordion-1.js
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
ASCII text, with CRLF line terminators
Size
948 B (948 bytes)
Hash
a0a56dc1493baf0c8036b282c2663f00
c3ec5443d0053ddc93d7b947889b0dfe6c4f84d6
05b1d6640c7995fedbe8d9c79551cf23100c7b7d4c2084e856ddced32e860453

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /includes/templates/13105/jscript/scriptbreaker-multiple-accordion-1.js HTTP/1.1
Host: www.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Cookie: zenid=6fngv41rcaomt9p0rlold2erc1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Tue, 25 Jun 2019 06:41:46 GMT
etag: "b24-58c2038f55e80-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 948
content-type: application/javascript
X-Firefox-Spdy: h2

www.jordans13shoes.us/images/footer_payment.png

107.150.164.252

200 OK

11 kB

URL HTTP/2
www.jordans13shoes.us/images/footer_payment.png
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
PNG image data, 160 x 35, 8-bit/color RGBA, non-interlaced\012- data
Size
11 kB (10992 bytes)
Hash
0a187346aaba68aee8540d7f9f9d0158
009d9ec8b44791a9299aa3af6da31ce0630b4cb1
2f4d60a40d726133e94e5abc6c1c1150c1c06303f3dfc9bc9f85628fd7e76df8

HTTP Headers

GET /images/footer_payment.png HTTP/1.1
Host: www.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Cookie: zenid=6fngv41rcaomt9p0rlold2erc1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Thu, 21 Jun 2018 01:56:20 GMT
etag: "2af0-56f1d38b9f900"
accept-ranges: bytes
content-length: 10992
content-type: image/png
X-Firefox-Spdy: h2

www.jordans13shoes.us/includes/templates/13105/jscript/xzoom.min.js

107.150.164.252

200 OK

4.6 kB

URL HTTP/2
www.jordans13shoes.us/includes/templates/13105/jscript/xzoom.min.js
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
ASCII text, with very long lines (14091)
Size
4.6 kB (4550 bytes)
Hash
c13a0664c2ead03fdcf830ba945f30b7
2abfae1ba5e1c9e50e598677cf18a9a7aeadbb17
769cf849c15e871ab1f57e383b6c0cfd787d67534bbc43203fd2d8e87a59d70a

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /includes/templates/13105/jscript/xzoom.min.js HTTP/1.1
Host: www.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Cookie: zenid=6fngv41rcaomt9p0rlold2erc1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Thu, 21 Jun 2018 00:22:08 GMT
etag: "3814-56f1be7d74c00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4550
content-type: application/javascript
X-Firefox-Spdy: h2

www.jordans13shoes.us/includes/templates/13105/jscript/jquery.hammer.min.js

107.150.164.252

200 OK

4.1 kB

URL HTTP/2
www.jordans13shoes.us/includes/templates/13105/jscript/jquery.hammer.min.js
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
ASCII text, with very long lines (12825)
Size
4.1 kB (4148 bytes)
Hash
a32bd159c04c244c2ce11a7009525190
4f9a23a89ad83c3ef675f9de8315bb53f3335d83
845aee6c83f8279d93956f35a1793b72545c34af9f02940858d89665d067beee

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /includes/templates/13105/jscript/jquery.hammer.min.js HTTP/1.1
Host: www.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Cookie: zenid=6fngv41rcaomt9p0rlold2erc1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Sun, 11 Feb 2018 01:39:56 GMT
etag: "32cf-564e5d6b49300-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 4148
content-type: application/javascript
X-Firefox-Spdy: h2

www.jordans13shoes.us/includes/templates/13105/jscript/bootstrap.min.js

107.150.164.252

200 OK

9.8 kB

URL HTTP/2
www.jordans13shoes.us/includes/templates/13105/jscript/bootstrap.min.js
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
ASCII text, with very long lines (32033)
Size
9.8 kB (9833 bytes)
Hash
c83dab682eea0b37ac9522e2856cbb6b
db1fb35549a4ac9cc12811f09bc4b07b48c51434
a9611bc805de07c98225bb878876a24b063fa52559adaf2ba4e997566d5cf3a1

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /includes/templates/13105/jscript/bootstrap.min.js HTTP/1.1
Host: www.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Cookie: zenid=6fngv41rcaomt9p0rlold2erc1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Mon, 25 Jul 2016 07:53:30 GMT
etag: "90b5-538711480d280-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 9833
content-type: application/javascript
X-Firefox-Spdy: h2

www.jordans13shoes.us/includes/templates/13105/jscript/hc-sticky.js

107.150.164.252

200 OK

4.0 kB

URL HTTP/2
www.jordans13shoes.us/includes/templates/13105/jscript/hc-sticky.js
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
ASCII text, with very long lines (10510)
Size
4.0 kB (3970 bytes)
Hash
f6b85c0ecbeb17b5749b32de3f74e049
f2a01703647e4551f101c5f0b5bb99940a400978
1024a0026421f73e074d21fd6a3b7f6e64f69896a41abe20258e77ee5f549aaf

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /includes/templates/13105/jscript/hc-sticky.js HTTP/1.1
Host: www.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Cookie: zenid=6fngv41rcaomt9p0rlold2erc1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Thu, 17 May 2018 22:13:10 GMT
etag: "2a2e-56c6e24040980-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 3970
content-type: application/javascript
X-Firefox-Spdy: h2

www.jordans13shoes.us/includes/templates/13105/jscript/jquery.fancybox.js

107.150.164.252

200 OK

14 kB

URL HTTP/2
www.jordans13shoes.us/includes/templates/13105/jscript/jquery.fancybox.js
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
ASCII text
Size
14 kB (13922 bytes)
Hash
711e2ae0ba4411cc4bb74bd9b04807f0
b33f3c310875a4854605c4069742ef4da52e1251
9c8d84c1d9442efa552a20abc517f5b6b66ce92e7edcc66f93b3c8de0474bb31

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /includes/templates/13105/jscript/jquery.fancybox.js HTTP/1.1
Host: www.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Cookie: zenid=6fngv41rcaomt9p0rlold2erc1
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Sun, 11 Feb 2018 01:39:56 GMT
etag: "be42-564e5d6b49300-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 13922
content-type: application/javascript
X-Firefox-Spdy: h2

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
00dae74d254e25e6065bc0fd90785480
19611ae1948df1cb77231aea0adca9cac1f27730
5314ed713156c8b9dc2a379f21c2f162187920f6be0f920fff935b7fdbe32eb3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5314ED713156C8B9DC2A379F21C2F162187920F6BE0F920FFF935B7FDBE32EB3"
Last-Modified: Mon, 09 Jan 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 09 Jan 2023 09:43:53 GMT
Date: Mon, 09 Jan 2023 03:43:53 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
00dae74d254e25e6065bc0fd90785480
19611ae1948df1cb77231aea0adca9cac1f27730
5314ed713156c8b9dc2a379f21c2f162187920f6be0f920fff935b7fdbe32eb3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5314ED713156C8B9DC2A379F21C2F162187920F6BE0F920FFF935B7FDBE32EB3"
Last-Modified: Mon, 09 Jan 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21597
Expires: Mon, 09 Jan 2023 09:43:50 GMT
Date: Mon, 09 Jan 2023 03:43:53 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
00dae74d254e25e6065bc0fd90785480
19611ae1948df1cb77231aea0adca9cac1f27730
5314ed713156c8b9dc2a379f21c2f162187920f6be0f920fff935b7fdbe32eb3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5314ED713156C8B9DC2A379F21C2F162187920F6BE0F920FFF935B7FDBE32EB3"
Last-Modified: Mon, 09 Jan 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 09 Jan 2023 09:43:53 GMT
Date: Mon, 09 Jan 2023 03:43:53 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
00dae74d254e25e6065bc0fd90785480
19611ae1948df1cb77231aea0adca9cac1f27730
5314ed713156c8b9dc2a379f21c2f162187920f6be0f920fff935b7fdbe32eb3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5314ED713156C8B9DC2A379F21C2F162187920F6BE0F920FFF935B7FDBE32EB3"
Last-Modified: Mon, 09 Jan 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 09 Jan 2023 09:43:53 GMT
Date: Mon, 09 Jan 2023 03:43:53 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
00dae74d254e25e6065bc0fd90785480
19611ae1948df1cb77231aea0adca9cac1f27730
5314ed713156c8b9dc2a379f21c2f162187920f6be0f920fff935b7fdbe32eb3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5314ED713156C8B9DC2A379F21C2F162187920F6BE0F920FFF935B7FDBE32EB3"
Last-Modified: Mon, 09 Jan 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Mon, 09 Jan 2023 09:43:53 GMT
Date: Mon, 09 Jan 2023 03:43:53 GMT
Connection: keep-alive

r3.o.lencr.org/

95.101.11.115

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
95.101.11.115:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
457ca75ed75785c514fb36a16792410f
fcc640c00713c93633d0b2887104c8fbc6c754f9
ff6a40bdaa6bc25eefb2d7ed130ea34460494d92c19c07dff4cc371c45d1ac44

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FF6A40BDAA6BC25EEFB2D7ED130EA34460494D92C19C07DFF4CC371C45D1AC44"
Last-Modified: Fri, 06 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8077
Expires: Mon, 09 Jan 2023 05:58:30 GMT
Date: Mon, 09 Jan 2023 03:43:53 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca7956cf-b613-4307-88cb-8cc1a3fda11c.jpeg

34.120.237.76

200 OK

9.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca7956cf-b613-4307-88cb-8cc1a3fda11c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.6 kB (9594 bytes)
Hash
aa9ed964b2f5f08ec571b525992f1566
9de0dfe9d1018726f1504b26964629f419700a49
d75747ac8726cbbe7583c48c2522cecc0c3ed6a0fa3694513c694876847b5944

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fca7956cf-b613-4307-88cb-8cc1a3fda11c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9594
x-amzn-requestid: 7844d69e-b683-47ed-8ad8-a26f67916de1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eJ4BbFjnIAMFhSA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b3d3a2-6da6fede0b33969b774aab38;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 07:05:06 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 1h_UiB89mG6qQdHyosgLG4MYT3KBOyDxLsBCuKuK7smmTWAiEsncxw==
via: 1.1 6ba2a21321beeef65404429d0a4b6380.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sun, 08 Jan 2023 11:12:45 GMT
age: 59468
etag: "9de0dfe9d1018726f1504b26964629f419700a49"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f2b50a0-7eb4-4513-84d9-bef528bd99f3.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.3 kB (8284 bytes)
Hash
23b87f42d40f3cc7bc9f46964e83d787
400474fb7b7d241935f5a5745281e6d95902581c
5a2818d70f4304bb2ed26ad0fe1658bc130aff43e11c60e0abac8be6e51836c7

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0f2b50a0-7eb4-4513-84d9-bef528bd99f3.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8284
x-amzn-requestid: 5c9f2c93-3275-489c-9583-0e339a1f6fcb
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eWhZ8FhcIAMFy-A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8e2a5-500bb3d46026ba1f5371f98f;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 03:10:29 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: 6rp8e_-TjvGBEgszRGgfln9tZHhN4TBXjjmWEE2-hy2uJAtOiO-b3Q==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 618052a0d9c86c1a3bf663f82d041d1c.cloudfront.net (CloudFront), 1.1 google
date: Sun, 08 Jan 2023 04:06:10 GMT
age: 85063
etag: "400474fb7b7d241935f5a5745281e6d95902581c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71367d17-5f39-4d68-acc2-9e84cc70b6ee.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10157 bytes)
Hash
958d699fe0e01f8f1e6002637f87ab63
9feb324f4c37992e68e04762494841d532b3da2b
a20dce10643f6cb9aed206ca177c54538076e61568528e5fdc2744d8cc25846a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F71367d17-5f39-4d68-acc2-9e84cc70b6ee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10157
x-amzn-requestid: cc023618-8a3b-452e-84cc-04c8b5f48a3f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eWhZ8Es5IAMFYtA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b8e2a5-6d9f330a4b3df85c661c1bd6;Sampled=0
x-amzn-remapped-date: Sat, 07 Jan 2023 03:10:29 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ugdPKuDbc79tRm-gf9Z7034UDcmx-xbb0oxzckjipPoJbTsywGFejQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 09 Jan 2023 03:29:03 GMT
age: 890
etag: "9feb324f4c37992e68e04762494841d532b3da2b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab696bdd-92ae-4c01-855b-6bbe0e8165ad.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8866 bytes)
Hash
e0189748e9478c37ab22a71c0826ca99
08186f7c9717eb7165ee8b9b803760da967b82e7
40a9b3a38f6799c2005bc7cc2716104b175a2178efc8029188b9aff19e598483

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fab696bdd-92ae-4c01-855b-6bbe0e8165ad.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8866
x-amzn-requestid: b4a6c607-98b7-4689-96c3-646756db23df
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eZblsHkmIAMFzKw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63ba0c8a-02beb65706f8d3d44a812788;Sampled=0
x-amzn-remapped-date: Sun, 08 Jan 2023 00:21:30 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: MzzI0YmTAJhriuvne16lq57vyPB1DKLu_KhfpDQ3cUmmtRwO_AQsJQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Sun, 08 Jan 2023 09:02:38 GMT
age: 67275
etag: "08186f7c9717eb7165ee8b9b803760da967b82e7"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.5 kB (9539 bytes)
Hash
a23d61d610c7b55d943fcb2636a01b65
82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065
28bf3039cc8c1213e64893c71bc150eda573223feb2cc15ad0814a44960d434a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F33bbc100-e509-4a4f-8b98-1d44a52a7a3c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9539
x-amzn-requestid: 9f388939-cfb7-432e-a921-e9188736bb45
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eTw5QGZ6oAMFxQg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b7c83b-4f9d5bfc30e5ee126333d54e;Sampled=0
x-amzn-remapped-date: Fri, 06 Jan 2023 07:05:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: b85TTh5GZmQqmHRmmdz9bAw6COe0CeTyHotfElj0qpL9H051dywT3Q==
via: 1.1 1f6e68152880a39d72e6bf2996cd6a60.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Sun, 08 Jan 2023 09:29:35 GMT
age: 65658
etag: "82c4c5170c7b586c2a7a1f2d2d5c9ff0219af065"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e2e4caa-f18f-43f7-bbce-461d21b07be2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8929 bytes)
Hash
2afe6c3864f4dd4661cdf28d845e8a95
431f560fc40b5de4881e5e4692672c977915afd1
040f2289b10935f9c7fc054092153a02e5cb132cbe72f6a53802eab9a2415c4d

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6e2e4caa-f18f-43f7-bbce-461d21b07be2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8929
x-amzn-requestid: b13a1539-130b-4a12-94e8-3e624eb12e8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: eJ4FdHNkIAMFlnw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63b3d3bc-43ec5dcf3921d6247324f994;Sampled=0
x-amzn-remapped-date: Tue, 03 Jan 2023 07:05:32 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: QSEl29JtaoxSMIoqxodoFcSbo1muCHaYN-j0HzVCs9a-XgFYHdA6GQ==
via: 1.1 1cc6ed0d2d3dd9529ce544f9dfe61a52.cloudfront.net (CloudFront), 1.1 ee8246c5442dace7525c74f6a799bb46.cloudfront.net (CloudFront), 1.1 google
date: Sun, 08 Jan 2023 12:25:51 GMT
age: 55082
etag: "431f560fc40b5de4881e5e4692672c977915afd1"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

img.jordans13shoes.us/images/Air_Jordan_002/Jordan_13_Retro_Ray_Allen_PE_414571-125_feJv7NRnZ.jpg

107.150.164.252

200 OK

26 kB

URL HTTP/2
img.jordans13shoes.us/images/Air_Jordan_002/Jordan_13_Retro_Ray_Allen_PE_414571-125_feJv7NRnZ.jpg
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 91", baseline, precision 8, 450x450, components 3\012- data
Size
26 kB (25987 bytes)
Hash
d273734d9dfda59e5649674cb986e2f0
069e973d1ee9de4687a672d80a1d22661be38ebe
77ee9e614f4782be2ec40ebba45085c8194f108ffeff59c4866991e1f66dc05c

HTTP Headers

GET /images/Air_Jordan_002/Jordan_13_Retro_Ray_Allen_PE_414571-125_feJv7NRnZ.jpg HTTP/1.1
Host: img.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Thu, 04 Aug 2022 02:42:42 GMT
etag: "6583-5e5614db74c80"
accept-ranges: bytes
content-length: 25987
content-type: image/jpeg
X-Firefox-Spdy: h2

img.jordans13shoes.us/images/images_005/Travis_Scott_x_Air_Jordan_1_Low_Reverse_Mocha_DM7866-162_QJAMPZG13.jpg

107.150.164.252

200 OK

18 kB

URL HTTP/2
img.jordans13shoes.us/images/images_005/Travis_Scott_x_Air_Jordan_1_Low_Reverse_Mocha_DM7866-162_QJAMPZG13.jpg
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 91", baseline, precision 8, 450x450, components 3\012- data
Size
18 kB (18166 bytes)
Hash
ffd3aafd96a1b273b415612bd5dbdbd4
2ab278207aad74543a093149bd0bb2d9e67b797f
c1375ad1e30594a9f9b42a7e0704ca22772710d1074a5848f907feb02959e3e1

HTTP Headers

GET /images/images_005/Travis_Scott_x_Air_Jordan_1_Low_Reverse_Mocha_DM7866-162_QJAMPZG13.jpg HTTP/1.1
Host: img.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Sat, 21 May 2022 09:36:30 GMT
etag: "46f6-5df82577b6380"
accept-ranges: bytes
content-length: 18166
content-type: image/jpeg
X-Firefox-Spdy: h2

img.jordans13shoes.us/images/images_005/Travis_Scott_x_Fragment_x_Air_Jordan_1_Low_OG_White_DM7866-140_ApQfJ1m58.jpg

107.150.164.252

200 OK

21 kB

URL HTTP/2
img.jordans13shoes.us/images/images_005/Travis_Scott_x_Fragment_x_Air_Jordan_1_Low_OG_White_DM7866-140_ApQfJ1m58.jpg
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 91", baseline, precision 8, 450x450, components 3\012- data
Size
21 kB (21360 bytes)
Hash
f71ee5abb98c1bfadf2a6aac139c9b4d
2fe3411b2ca9294dbde73b7fd1faa04e79654780
337935c5e5b51c1ceabc08d3c593e089acb3e221fc1c4660074ebcf6a0b68dc3

HTTP Headers

GET /images/images_005/Travis_Scott_x_Fragment_x_Air_Jordan_1_Low_OG_White_DM7866-140_ApQfJ1m58.jpg HTTP/1.1
Host: img.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Sat, 21 May 2022 09:36:22 GMT
etag: "5370-5df8257015180"
accept-ranges: bytes
content-length: 21360
content-type: image/jpeg
X-Firefox-Spdy: h2

img.jordans13shoes.us/images/images_007/Travis_Scott_x_Air_Jordan_6_Medium_Olive_CN1084-200_ArOuN4UZR.jpg

107.150.164.252

200 OK

28 kB

URL HTTP/2
img.jordans13shoes.us/images/images_007/Travis_Scott_x_Air_Jordan_6_Medium_Olive_CN1084-200_ArOuN4UZR.jpg
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 91", baseline, precision 8, 450x450, components 3\012- data
Size
28 kB (28266 bytes)
Hash
a168f337b9e9e58677930e393a27183c
3dcd7ec1353469a7c464aa774d07baa954a1348e
a0d3f14dc8d192e96658c14bd97b34aff01746526ff8c3b749190de6b3cd0a02

HTTP Headers

GET /images/images_007/Travis_Scott_x_Air_Jordan_6_Medium_Olive_CN1084-200_ArOuN4UZR.jpg HTTP/1.1
Host: img.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Sat, 21 May 2022 09:39:58 GMT
etag: "6e6a-5df8263e13780"
accept-ranges: bytes
content-length: 28266
content-type: image/jpeg
X-Firefox-Spdy: h2

img.jordans13shoes.us/images/Air_Jordan_002/Air_Jordan_9_Chile_Red_CT8019-600_3g8doBc1p.jpg

107.150.164.252

200 OK

54 kB

URL HTTP/2
img.jordans13shoes.us/images/Air_Jordan_002/Air_Jordan_9_Chile_Red_CT8019-600_3g8doBc1p.jpg
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 91", baseline, precision 8, 450x450, components 3\012- data
Size
54 kB (53592 bytes)
Hash
2f331c88e0cb8c41fc0d091a320a8d4f
db7144e39d42f24015df4583ed504f0304dd128d
47aaa5d3d372761f7a73a5fd00fe6d3dc5cd5360c7c8c825f78fa70a72d1236e

HTTP Headers

GET /images/Air_Jordan_002/Air_Jordan_9_Chile_Red_CT8019-600_3g8doBc1p.jpg HTTP/1.1
Host: img.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Thu, 04 Aug 2022 02:43:52 GMT
etag: "d158-5e56151e36a00"
accept-ranges: bytes
content-length: 53592
content-type: image/jpeg
X-Firefox-Spdy: h2

img.jordans13shoes.us/images/images_005/Air_Jordan_11_Gamma_Blue_378037-006_jIVYapAJf.jpg

107.150.164.252

200 OK

22 kB

URL HTTP/2
img.jordans13shoes.us/images/images_005/Air_Jordan_11_Gamma_Blue_378037-006_jIVYapAJf.jpg
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 91", baseline, precision 8, 450x450, components 3\012- data
Size
22 kB (21519 bytes)
Hash
2dd875340c50097527b2e125b19a40c5
cb3cebb4fec5d3ed61be1d590bcf5b26ca2e981c
2cdf90ef5dbdef767bd0c00024f3c41a523d3c5279420ead1da37b3b1ef5f671

HTTP Headers

GET /images/images_005/Air_Jordan_11_Gamma_Blue_378037-006_jIVYapAJf.jpg HTTP/1.1
Host: img.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Sat, 21 May 2022 09:36:40 GMT
etag: "540f-5df825813fa00"
accept-ranges: bytes
content-length: 21519
content-type: image/jpeg
X-Firefox-Spdy: h2

img.jordans13shoes.us/images/Air_Jordan_001/Jordan_12_Retro_Flu_Game__2016__130690-002_EJwfcnrxC.jpg

107.150.164.252

200 OK

20 kB

URL HTTP/2
img.jordans13shoes.us/images/Air_Jordan_001/Jordan_12_Retro_Flu_Game__2016__130690-002_EJwfcnrxC.jpg
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 91", baseline, precision 8, 450x450, components 3\012- data
Size
20 kB (20059 bytes)
Hash
3dae5ce624c622851d32298312ec26c9
0fa6422158cf208dc13f25589612e4e0bce83967
311f51cba0b544bcd23dceaadcbe8c02f6e1d97c9fb0e51ffe3ba7decd6b802f

HTTP Headers

GET /images/Air_Jordan_001/Jordan_12_Retro_Flu_Game__2016__130690-002_EJwfcnrxC.jpg HTTP/1.1
Host: img.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Thu, 04 Aug 2022 02:42:32 GMT
etag: "4e5b-5e5614d1eb600"
accept-ranges: bytes
content-length: 20059
content-type: image/jpeg
X-Firefox-Spdy: h2

img.jordans13shoes.us/images/images_005/Air_Jordan_11_Bred_378037-061_7N5wHqpuc.jpg

107.150.164.252

200 OK

22 kB

URL HTTP/2
img.jordans13shoes.us/images/images_005/Air_Jordan_11_Bred_378037-061_7N5wHqpuc.jpg
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 91", baseline, precision 8, 450x450, components 3\012- data
Size
22 kB (22146 bytes)
Hash
57db92e67ee5d91d3be6699eeecdae3d
40e617ca3946c7f93adbe1a4e6b81434ed30363f
55361a288ac85c7e015407f2e8e2c807edf5e3dfebcf52bf24e9168710f01c87

HTTP Headers

GET /images/images_005/Air_Jordan_11_Bred_378037-061_7N5wHqpuc.jpg HTTP/1.1
Host: img.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Sat, 21 May 2022 09:36:36 GMT
etag: "5682-5df8257d6f100"
accept-ranges: bytes
content-length: 22146
content-type: image/jpeg
X-Firefox-Spdy: h2

img.jordans13shoes.us/images/Air_Jordan_001/Jordan_11_Retro_Cherry__2022__CT8012-116_ptLoKyIJT.jpg

107.150.164.252

200 OK

30 kB

URL HTTP/2
img.jordans13shoes.us/images/Air_Jordan_001/Jordan_11_Retro_Cherry__2022__CT8012-116_ptLoKyIJT.jpg
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 91", baseline, precision 8, 450x450, components 3\012- data
Size
30 kB (29993 bytes)
Hash
680bc312dfa4fddde849ee477a51c0c0
79def2415a2797c3e82b5fe4bf8b715704f1e4d7
70a3ff1a761910346a9355e4c5039de8141622c15c87ed78f51aa080ea3e996c

HTTP Headers

GET /images/Air_Jordan_001/Jordan_11_Retro_Cherry__2022__CT8012-116_ptLoKyIJT.jpg HTTP/1.1
Host: img.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Thu, 04 Aug 2022 02:42:30 GMT
etag: "7529-5e5614d003180"
accept-ranges: bytes
content-length: 29993
content-type: image/jpeg
X-Firefox-Spdy: h2

img.jordans13shoes.us/images/Air_Jordan_001/Jordan_12_Retro_Indigo_130690-404_f5URkLaQy.jpg

107.150.164.252

200 OK

28 kB

URL HTTP/2
img.jordans13shoes.us/images/Air_Jordan_001/Jordan_12_Retro_Indigo_130690-404_f5URkLaQy.jpg
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 91", baseline, precision 8, 450x450, components 3\012- data
Size
28 kB (28444 bytes)
Hash
e16b562362e9010e91c662e39b2f0460
442b1a1c3e48e0ed78b55bd6ca8547b839a52046
4074658cba18b03c8887cfc05386138f4cbb45ef2204e995b9a95ad1453192fe

HTTP Headers

GET /images/Air_Jordan_001/Jordan_12_Retro_Indigo_130690-404_f5URkLaQy.jpg HTTP/1.1
Host: img.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Thu, 04 Aug 2022 02:42:32 GMT
etag: "6f1c-5e5614d1eb600"
accept-ranges: bytes
content-length: 28444
content-type: image/jpeg
X-Firefox-Spdy: h2

img.jordans13shoes.us/images/Air_Jordan_001/Jordan_12_Retro_Utility_DC1062-006_wICRU7oPA.jpg

107.150.164.252

200 OK

29 kB

URL HTTP/2
img.jordans13shoes.us/images/Air_Jordan_001/Jordan_12_Retro_Utility_DC1062-006_wICRU7oPA.jpg
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 91", baseline, precision 8, 450x450, components 3\012- data
Size
29 kB (28782 bytes)
Hash
1fb682deb575273a359b3f61425522ef
530a74c18e938434a5c08ef5d79c9da58750128f
7e7f9257a54777a317198d5d3156efb3db7f39dd29b2cd37d1f40ebed35044ea

HTTP Headers

GET /images/Air_Jordan_001/Jordan_12_Retro_Utility_DC1062-006_wICRU7oPA.jpg HTTP/1.1
Host: img.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Thu, 04 Aug 2022 02:42:34 GMT
etag: "706e-5e5614d3d3a80"
accept-ranges: bytes
content-length: 28782
content-type: image/jpeg
X-Firefox-Spdy: h2

img.jordans13shoes.us/images/Air_Jordan_002/Jordan_13_Retro_Black_Hyper_Royal_414571-040_nVuyL7qjk.jpg

107.150.164.252

200 OK

28 kB

URL HTTP/2
img.jordans13shoes.us/images/Air_Jordan_002/Jordan_13_Retro_Black_Hyper_Royal_414571-040_nVuyL7qjk.jpg
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 91", baseline, precision 8, 450x450, components 3\012- data
Size
28 kB (28417 bytes)
Hash
f66c0a5abd026854c2a167f60218d31d
b7ef2e35b4641b43b80db2409f51e9948e22fc80
23c00b2627a68a2fd02574cd063f60706ffb3c73883361828b0f5aee5e7a9fe8

HTTP Headers

GET /images/Air_Jordan_002/Jordan_13_Retro_Black_Hyper_Royal_414571-040_nVuyL7qjk.jpg HTTP/1.1
Host: img.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Thu, 04 Aug 2022 02:42:42 GMT
etag: "6f01-5e5614db74c80"
accept-ranges: bytes
content-length: 28417
content-type: image/jpeg
X-Firefox-Spdy: h2

img.jordans13shoes.us/images/Air_Jordan_002/Jordan_13_Retro_Bred__2017__414571-004_JY05tg21j.jpg

107.150.164.252

200 OK

30 kB

URL HTTP/2
img.jordans13shoes.us/images/Air_Jordan_002/Jordan_13_Retro_Bred__2017__414571-004_JY05tg21j.jpg
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 91", baseline, precision 8, 450x450, components 3\012- data
Size
30 kB (30075 bytes)
Hash
fd17eb2438c2a43f9fe7718154c5d897
45babfef79b6e11709d7c8b909855948743c5bac
36d5db0d3548c0d9e262d09dc82c65dc9b3929fcafeea9aad7048e389f7021f5

HTTP Headers

GET /images/Air_Jordan_002/Jordan_13_Retro_Bred__2017__414571-004_JY05tg21j.jpg HTTP/1.1
Host: img.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Thu, 04 Aug 2022 02:42:42 GMT
etag: "757b-5e5614db74c80"
accept-ranges: bytes
content-length: 30075
content-type: image/jpeg
X-Firefox-Spdy: h2

img.jordans13shoes.us/images/Air_Jordan_001/Jordan_13_Retro_Gym_Red_Flint_Grey_DJ5982-600_rWfUYotlv.jpg

107.150.164.252

200 OK

32 kB

URL HTTP/2
img.jordans13shoes.us/images/Air_Jordan_001/Jordan_13_Retro_Gym_Red_Flint_Grey_DJ5982-600_rWfUYotlv.jpg
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 91", baseline, precision 8, 450x450, components 3\012- data
Size
32 kB (31858 bytes)
Hash
e61b114b660e89c6e0c42704ccc8e590
7f4b51ff752db14b148f94208abc4dfe47e0884a
011957b7d4f588f750b74caaac661f2f346f9f30fc95f530a133d9dfadb81481

HTTP Headers

GET /images/Air_Jordan_001/Jordan_13_Retro_Gym_Red_Flint_Grey_DJ5982-600_rWfUYotlv.jpg HTTP/1.1
Host: img.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Thu, 04 Aug 2022 02:42:40 GMT
etag: "7c72-5e5614d98c800"
accept-ranges: bytes
content-length: 31858
content-type: image/jpeg
X-Firefox-Spdy: h2

img.jordans13shoes.us/images/Air_Jordan_002/Jordan_13_Retro_Doernbecher_836405-305_wCjtcJTpM.jpg

107.150.164.252

200 OK

42 kB

URL HTTP/2
img.jordans13shoes.us/images/Air_Jordan_002/Jordan_13_Retro_Doernbecher_836405-305_wCjtcJTpM.jpg
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 91", baseline, precision 8, 450x450, components 3\012- data
Size
42 kB (42412 bytes)
Hash
a2c935691e1bbf6f744bfa083f0daade
fcf47687246ebe085150eb672d9ffbe654282a97
756b7bb5ba68750862c0527b3140861eed20851a6e3440f26df2935c25f06006

HTTP Headers

GET /images/Air_Jordan_002/Jordan_13_Retro_Doernbecher_836405-305_wCjtcJTpM.jpg HTTP/1.1
Host: img.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Thu, 04 Aug 2022 02:42:44 GMT
etag: "a5ac-5e5614dd5d100"
accept-ranges: bytes
content-length: 42412
content-type: image/jpeg
X-Firefox-Spdy: h2

img.jordans13shoes.us/images/Air_Jordan_002/Air_Jordan_3_Fire_Red_DN3707160_KSDNwpRcl.jpg

107.150.164.252

200 OK

58 kB

URL HTTP/2
img.jordans13shoes.us/images/Air_Jordan_002/Air_Jordan_3_Fire_Red_DN3707160_KSDNwpRcl.jpg
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v90), quality = 91", baseline, precision 8, 450x450, components 3\012- data
Size
58 kB (57516 bytes)
Hash
f60dbc6b34dc089e8849a6f0610ff051
b9425a77f0f9e5011b587d0f6f79128854d44ffc
9b3778498346532bee46bae8586d30f071238ca07803a473375ba7623ebcba8b

HTTP Headers

GET /images/Air_Jordan_002/Air_Jordan_3_Fire_Red_DN3707160_KSDNwpRcl.jpg HTTP/1.1
Host: img.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:53 GMT
server: Apache
last-modified: Thu, 04 Aug 2022 02:43:08 GMT
etag: "e0ac-5e5614f440700"
accept-ranges: bytes
content-length: 57516
content-type: image/jpeg
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
81844eba82b6d2a0bc6d1fff8a8e1d55
aaab92d3020d9e0d96c298e2e1c086c485bcc071
ee853b9ca290c9bc9e974de5a511e68175941ed00b721a9455d68343f4120d39

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Mon, 09 Jan 2023 03:43:54 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Fri, 06 Jan 2023 18:34:05 GMT
Expires: Fri, 13 Jan 2023 18:34:04 GMT
Etag: "aaab92d3020d9e0d96c298e2e1c086c485bcc071"
Cache-Control: max-age=398409,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb6
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 786a2bde3b11b515-OSL

www.jordans13shoes.us/favicon.ico

107.150.164.252

200 OK

950 B

URL HTTP/2
www.jordans13shoes.us/favicon.ico
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type
MS Windows icon resource - 1 icon, 32x32, 32 bits/pixel\012- data
Size
950 B (950 bytes)
Hash
bde9cca2482f582de4e15bb4512d20f8
3a273a19fbe8ee72c65ee0923c4089fc71d407f8
6a974da170f2d5e10fd891c6849a6c596d210bc12385e7584d9f63ad904ed83c

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Cookie: zenid=6fngv41rcaomt9p0rlold2erc1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:54 GMT
server: Apache
last-modified: Thu, 28 Jun 2018 05:40:08 GMT
etag: "10be-56fad29fc9e00-gzip"
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
content-length: 950
content-type: image/x-icon
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css

104.18.10.207

200 OK

0 B

URL HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/3.3.7/css/bootstrap.min.css
IP
104.18.10.207:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /bootstrap/3.3.7/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.jordans13shoes.us
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:52 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"ec3bb52a00e176a7181d454dffaea219"
last-modified: Mon, 25 Jan 2021 22:03:59 GMT
cdn-cachedat: 01/05/2023 13:19:14
cdn-proxyver: 1.03
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 1082
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-status: 200
cdn-requestid: 4acbfd0f2e45d21178391503e60d5ff4
cdn-cache: HIT
cf-cache-status: HIT
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 786a2bd36969b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.statcounter.com/counter/counter.js

104.20.219.77

200 OK

0 B

URL HTTP/2
www.statcounter.com/counter/counter.js
IP
104.20.219.77:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /counter/counter.js HTTP/1.1
Host: www.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:54 GMT
content-type: application/javascript
vary: Accept-Encoding
last-modified: Fri, 06 Jan 2023 11:14:12 GMT
etag: W/"63b80284-aa70"
expires: Mon, 09 Jan 2023 10:51:23 GMT
cache-control: max-age=43200
cf-cache-status: HIT
age: 17551
server: cloudflare
cf-ray: 786a2bde8f7c0b61-OSL
content-encoding: br
X-Firefox-Spdy: h2

www.jordans13shoes.us/

107.150.164.252

200 OK

0 B

URL HTTP/2
www.jordans13shoes.us/
IP
107.150.164.252:0
ASN
#59447 Istanbuldc Veri Merkezi Ltd Sti

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET / HTTP/1.1
Host: www.jordans13shoes.us
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:52 GMT
server: Apache
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
content-encoding: gzip
vary: Accept-Encoding
set-cookie: zenid=6fngv41rcaomt9p0rlold2erc1; path=/; domain=.www.jordans13shoes.us; secure; HttpOnly
content-type: text/html; charset=utf-8
X-Firefox-Spdy: h2

c.statcounter.com/t.php?sc_project=12538051&u1=A70267D34BE34F72314AA82645BC044D&java=1&security=0f4d0a3f&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//www.jordans13shoes.us/&t=Jordans%2013%20%7C%20Jordan%2013%20Outlet%20Sale%20%7C%20Jordan%2013s%20Official%20Website&invisible=1&sc_rum_e_s=3519&sc_rum_e_e=3528&sc_rum_f_s=0&sc_rum_f_e=3505&get_config=true

104.20.219.77

200 OK

0 B

URL HTTP/2
c.statcounter.com/t.php?sc_project=12538051&u1=A70267D34BE34F72314AA82645BC044D&java=1&security=0f4d0a3f&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//www.jordans13shoes.us/&t=Jordans%2013%20%7C%20Jordan%2013%20Outlet%20Sale%20%7C%20Jordan%2013s%20Official%20Website&invisible=1&sc_rum_e_s=3519&sc_rum_e_e=3528&sc_rum_f_s=0&sc_rum_f_e=3505&get_config=true
IP
104.20.219.77:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /t.php?sc_project=12538051&u1=A70267D34BE34F72314AA82645BC044D&java=1&security=0f4d0a3f&sc_snum=1&sess=a8f3c4&p=0&rcat=d&rdom=d&rdomg=new&bb=1&jg=new&rr=1.1.1.1.1.1.1.1.1&resolution=1280&h=1024&camefrom=&u=https%3A//www.jordans13shoes.us/&t=Jordans%2013%20%7C%20Jordan%2013%20Outlet%20Sale%20%7C%20Jordan%2013s%20Official%20Website&invisible=1&sc_rum_e_s=3519&sc_rum_e_e=3528&sc_rum_f_s=0&sc_rum_f_e=3505&get_config=true HTTP/1.1
Host: c.statcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.jordans13shoes.us
Connection: keep-alive
Referer: https://www.jordans13shoes.us/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Mon, 09 Jan 2023 03:43:54 GMT
content-type: application/json
p3p: policyref="http://www.statcounter.com/w3c/p3p.xml", CP="ADMa OUR COM NAV NID DSP NOI COR"
expires: Mon, 26 Jul 1997 05:00:00 GMT
set-cookie: is_unique=sc12538051.1673235834.0; SameSite=None; Secure; Expires=Saturday, 08-Jan-2028 11:43:54 CST; Path=/; Domain=.statcounter.com
is_visitor_unique=1673235834651211458; SameSite=None; Secure; Expires=Wednesday, 08-Jan-2025 11:43:54 CST; Path=/; Domain=.statcounter.com
access-control-allow-origin: https://www.jordans13shoes.us
access-control-allow-credentials: true
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 786a2bdecf8d0b61-OSL
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (19)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations