Report - www.forquickies.com/c/7997cd8321a8b925

Report Overview

Submitted URL
www.forquickies.com/c/7997cd8321a8b925
IP
188.114.96.1
ASN
#13335 CLOUDFLARENET
Submitted
2023-04-27 15:56:08
Access
public
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
4

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
www.forquickies.com	unknown	2021-04-29	2023-04-16	402 B	677 B	188.114.97.1
cdn-adef.akamaized.net	125719	2018-02-06	2023-04-25	10 kB	465 kB	23.36.76.96
aj1867.online	104142	2019-07-22	2023-04-15	2.5 kB	16 kB	212.124.124.110
assets.topsrcs.com	174256	2020-10-20	2023-04-19	428 B	2.3 kB	172.67.71.108

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-04-27	medium	aj1867.online/2ad445f5.js
2023-04-27	medium	aj1867.online/zz7N_SmKkRw7GywqWus2Lj2MR8OuDiFhdgy9vDbwGNT1IR8KY02iPlPw0-XeC9p_08NN0PPZWfj0HHYrL_4CgUHSc4ScdVXEDS4g6kRKDqbxtfZ4mdB04hWjnDuvWvv9TehviRxTxM0LAPor5l4ywofPQqWJ4QwfYluEhS8LZxiOcgaDo3kcrgTkBWsOfxvU-NiciY3X8MDQzIsnFX2Fmjj4gnAF47acq1J2yQQvpkS4OQK_Oyqh6ZdtDEAT3pM6Krj2TR_uwvkjMV92mcg2jgHw_yPJ9Qaic7zDc1srIfRSmWRknHA_8vfmlU2Rlc3yNmbfxLjRM6EkXr1vjrj8vh5PjgWiiErsH99QYRdLC7V8KnqHGl2dh1ITd1kL-MI_kxnWrrQnufmIQy7mE_ZUeVJiPErizgnLTw2PrZRDg10uD-BlLUMd2g5LoeR9-xcn3q-M-3de8cIQQMpNJdzOiaThY22krPFs5N2LRVYpcurDpy0GSQIJ8tS45xTVJKoRTQwvLIQaKq-OwW0L-VllY321QNdgM8yCb?DC=DO

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (5)

	URL	Size	First Seen	Last Seen
	assets.topsrcs.com/js/script_jumps_bo_jm.js?1605507163	1.4 kB	2023-04-27	2023-04-27
Pretty URL assets.topsrcs.com/js/script_jumps_bo_jm.js?1605507163 IP 172.67.71.108 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-27 17:56:09 Last Seen2023-04-27 17:56:09 Times Seen1 Hash a80c6f93fb0fe8f4de828dfdbd48be64 c5b6b7990ca895dd60799caa957bcda6b8d161cf ae27ebca161585f48fa15697b3cbf8726d947d8452d95ff74e0ddfffe0d276cf Loading...

	cdn-adef.akamaized.net/landings/182614/1605507163/js/script.js?1605507163	1.6 kB	2023-04-11	2023-04-27
Pretty URL cdn-adef.akamaized.net/landings/182614/1605507163/js/script.js?1605507163 IP 23.36.76.96 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 12:56:56 Last Seen2023-04-27 17:56:09 Times Seen3 Hash 6e0021085b2484a87e9622a20f3db043 9bca7f939ca1ef1eeb71e7c7950b144bd60f5aca 17e280782aa894b7bbcb063d8993affccb7612069bc3bf4fd93251ca56f3a508 Loading...

	aj1867.online/2ad445f5.js	37 kB	2023-04-07	2023-05-14
Pretty URL aj1867.online/2ad445f5.js IP 212.124.124.110 ASN #47328 True Records Inc. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-07 00:58:19 Last Seen2023-05-14 08:22:46 Times Seen14 Hash 06c6ae81b8c9c677e7c00e33e1fa8701 947f589c65b47e053abc388f9333f427075c88d3 4b3bc7f4942b1e1d8db67b373e345ce00bcabd67a38c1b16907cc75d0c39c412 Loading...

	unknown	594 B	2023-04-27	2023-04-27
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-27 17:56:09 Last Seen2023-04-27 17:56:09 Times Seen1 Hash 56b99eb04f2db35ef228a74da67bca38 cc32987a6c0148eee3e21ac52e54f097a4902f3c bb9c89461d496769999dd1ab98ddf04b53711c842870d2e99c7140d1a21d787b Loading...

	cdn-adef.akamaized.net/landings/182614/1605507163/js/jquery.js?1605507163	96 kB	2023-04-11	2023-04-27
Pretty URL cdn-adef.akamaized.net/landings/182614/1605507163/js/jquery.js?1605507163 IP 23.36.76.96 ASN #20940 Akamai International B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 12:56:56 Last Seen2023-04-27 17:56:09 Times Seen4 Hash 51df2e5468716de7e205ffe50536ada4 426c26a86b864e881921259035419a70a61ff599 2e298b5a94edeafea86abd18c485053ba95c88845b07805e0ee991201a3ffed0 Loading...

HTTP Transactions (27)

URL IP Response Size

www.forquickies.com/c/7997cd8321a8b925

188.114.97.1

301 Moved Permanently

0 B

URL User Request GET HTTP/1.1
www.forquickies.com/c/7997cd8321a8b925
IP
188.114.97.1:80
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /c/7997cd8321a8b925 HTTP/1.1
Host: www.forquickies.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 301 Moved Permanently
Date: Thu, 27 Apr 2023 15:55:53 GMT
Transfer-Encoding: chunked
Connection: keep-alive
Cache-Control: max-age=3600
Expires: Thu, 27 Apr 2023 16:55:53 GMT
Location: https://www.forquickies.com/c/7997cd8321a8b925
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=f0c7ovW%2BbRQFVfyF6e7SpPaPU0KivEDSUYIW%2FMbGsVTE%2B21K192sGTKRpaxfHweSWt6JTZPL74hJgR4jKbVSpDU3Qd%2B4uwEFLF1rm5nKWy1h38YjsZqtDn2l3JHWZidfIdOdWWBM"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 7be8409d2c5a0b59-OSL
alt-svc: h2=":443"; ma=60

cdn-adef.akamaized.net/landings/182614/1605507163/css/style.css?1605507163

23.36.76.96

200 OK

962 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/182614/1605507163/css/style.css?1605507163
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
ASCII text
Size
962 B (962 bytes)
Hash
42f75c9324d28ef14b16b40c87fad9d1
d1329d3a501091926e22e846a56e1987a4d83c57
899d7247f4dde98fa42868a460ab241c89d3259114ad0d04a253f31f650953ba

HTTP Headers

GET /landings/182614/1605507163/css/style.css?1605507163 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: pZ0yJigyl8x/lzFXpoTsyeeaUdHNE0ZnWX3QOi7zEj0NKKCc0HZZHxhU8WtChqgenwHjFUWMODc=
x-amz-request-id: 95RVJ97ZVMM41HNP
Last-Modified: Mon, 16 Nov 2020 06:12:46 GMT
ETag: "55d5723339732c4a92ab7411394b231b"
Accept-Ranges: bytes
Content-Type: text/css
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 27 Apr 2023 15:55:54 GMT
Content-Length: 962
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/182614/1605507163/js/script.js?1605507163

23.36.76.96

200 OK

653 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/182614/1605507163/js/script.js?1605507163
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
ASCII text
Size
653 B (653 bytes)
Hash
89f93323f2516a4706db0147241e4ad6
9fca7adedcbe91d4898859cb35251dabe7ddad93
3b83692ae15b602b182d9929a8136975f7051fbef48145688927609f2ac463e5

HTTP Headers

GET /landings/182614/1605507163/js/script.js?1605507163 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: Un9iDhTH4PGLfZxcu2oZRUQH+UMMSkaSMICUHPjlW+Fy1QHHAMJ4oFwh1jGcguUhPcgGIej2nvE=
x-amz-request-id: 95RZ5X9ACNT3G3E0
Last-Modified: Mon, 16 Nov 2020 06:12:46 GMT
ETag: "6e0021085b2484a87e9622a20f3db043"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 27 Apr 2023 15:55:54 GMT
Content-Length: 653
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/182614/1605507163/js/jquery.js?1605507163

23.36.76.96

200 OK

33 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/182614/1605507163/js/jquery.js?1605507163
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
33 kB (33255 bytes)
Hash
f774fc9062bc47f9784070ddd6af60b7
b2b27c14f2fa6ebd7fcb27efaad3adbd55c027db
eee64d65db637402e2c4676f671b834a289edc1d1323e76871f0bf629b8e7ac2

HTTP Headers

GET /landings/182614/1605507163/js/jquery.js?1605507163 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: oh4UWjLdM6AuP7/SXTMKuE+XHFhkmDVBX/h6XSF9Ve3oCAVvMA9cZb34+bMnG+u38BfMA2I/JRs=
x-amz-request-id: 95RQ9V14J0009S9G
Last-Modified: Mon, 16 Nov 2020 06:12:46 GMT
ETag: "51df2e5468716de7e205ffe50536ada4"
Accept-Ranges: bytes
Content-Type: text/javascript
Server: AmazonS3
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Thu, 27 Apr 2023 15:55:54 GMT
Content-Length: 33255
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/182614/1605507163/images/skin2.jpg

23.36.76.96

200 OK

16 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/182614/1605507163/images/skin2.jpg
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 220x220, components 3\012- data
Size
16 kB (15476 bytes)
Hash
372fe569924224fd314559169ee3fdae
1f2446899ea330d40dd360ec5983830c34227426
2e57612357142931c0d469288ba91e97d93abe66a06d1ba965084ef9aa939add

HTTP Headers

GET /landings/182614/1605507163/images/skin2.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: YD20Z40lr2ZodPflpsPKaFCxjGu+tjP3TtgpRyOSHWHdLGtbKsQmt6lUsMn04+hEsaZ3XAiVAZ4=
x-amz-request-id: 95RJCX828JAFZSZX
Last-Modified: Mon, 16 Nov 2020 06:12:46 GMT
ETag: "372fe569924224fd314559169ee3fdae"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 15476
Date: Thu, 27 Apr 2023 15:55:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/182614/1605507163/images/skin3.jpg

23.36.76.96

200 OK

15 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/182614/1605507163/images/skin3.jpg
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 220x220, components 3\012- data
Size
15 kB (15074 bytes)
Hash
a16727be351356fdd4258175cbd98f16
b9a888025805219cd2df8c40e555f120827c9480
08edd68ea4080f4fdfa35eb086e80d13976ffbf07959bf7c70d0e132db75fccf

HTTP Headers

GET /landings/182614/1605507163/images/skin3.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: TVjuSFzk9lxzKv94bfvUX2iDqcJaMcUb2F/XJ6FUhXveWO4q/ttsjxyaRuJxoI/HYmiF5hnpUzs=
x-amz-request-id: 95RZG0BGA0C62TRC
Last-Modified: Mon, 16 Nov 2020 06:12:46 GMT
ETag: "a16727be351356fdd4258175cbd98f16"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 15074
Date: Thu, 27 Apr 2023 15:55:54 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/182614/1605507163/images/skin6.jpg

23.36.76.96

200 OK

17 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/182614/1605507163/images/skin6.jpg
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 220x220, components 3\012- data
Size
17 kB (16987 bytes)
Hash
bb928a38a95240e464e0ee785a1791f4
3b8e9c762da4d49dc78b2e9ef7ffbdc23ab6866f
9f806c1d6f237e3d3e801d5222119969d39ec1f6dadf21735cc61b4ccd33a49a

HTTP Headers

GET /landings/182614/1605507163/images/skin6.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: MZX1nd21ZkhbpIIITRwqcQGNcOdPpUqpv1FeK+tXxsO7YgXotU8k0LGa1RhLS1KekfA40PvDIuU=
x-amz-request-id: 128X21DNVWC2WZ0V
Last-Modified: Mon, 16 Nov 2020 06:12:46 GMT
ETag: "bb928a38a95240e464e0ee785a1791f4"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 16987
Date: Thu, 27 Apr 2023 15:55:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/182614/1605507163/images/skin4.jpg

23.36.76.96

200 OK

15 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/182614/1605507163/images/skin4.jpg
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 220x220, components 3\012- data
Size
15 kB (14719 bytes)
Hash
3ab74d477cd2785f31140c6a369c79b2
05f0ad1cb2cfa868e6a2f222acb4396dac0968ad
6c11c40bfc258ce4a925faf882f666145ecae060d35a82c0143b912fe50cf3c3

HTTP Headers

GET /landings/182614/1605507163/images/skin4.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: PISRhl0xPX1dHZnBK79VNdOw19Cl4C9LcZCDiKbl7PCK72vjHwB/jbOn/2Zmp2JglGlQ+NlzNQU=
x-amz-request-id: 128T76C88CCWN0BZ
Last-Modified: Mon, 16 Nov 2020 06:12:46 GMT
ETag: "3ab74d477cd2785f31140c6a369c79b2"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 14719
Date: Thu, 27 Apr 2023 15:55:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/182614/1605507163/images/skin1.jpg

23.36.76.96

200 OK

16 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/182614/1605507163/images/skin1.jpg
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 220x220, components 3\012- data
Size
16 kB (15719 bytes)
Hash
78049dd7eccd92a43758c4eba19e3066
8368d8c208d7295bba8831b2c76d2382ab290b37
1251abf170fc632b0688c69abc465618d9fa9bfab3fe3bdd100fa1d106908fdc

HTTP Headers

GET /landings/182614/1605507163/images/skin1.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: MYnaf0Q5UWNCdvhn78xxfZyiJsU2XtYhUnFuTxlTjTUHZYbjJXDDfen1+F0phXUApd5RXagQHH8=
x-amz-request-id: 128MN1M0JTH02TG6
Last-Modified: Mon, 16 Nov 2020 06:12:46 GMT
ETag: "78049dd7eccd92a43758c4eba19e3066"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 15719
Date: Thu, 27 Apr 2023 15:55:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/182614/1605507163/images/age5.jpg

23.36.76.96

200 OK

17 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/182614/1605507163/images/age5.jpg
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 220x220, components 3\012- data
Size
17 kB (17359 bytes)
Hash
088e48a91cedbd2716d3ec03d5b7b7de
59b1e783b7d9704560469febbc62db12f3ab24dc
7eeb11a7447833de1e341574f5bc7a192dbf47c0002021421fafc9a881615a3f

HTTP Headers

GET /landings/182614/1605507163/images/age5.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: F6G54T2tesJMgOFb8ER4/Q/YdZG7d4+iAO5ry45KsX0aDm3yHqcJ/jj5sHEa9s8/yTvQA4lDork=
x-amz-request-id: 0SRWCPPSSZQ6E1DS
Last-Modified: Mon, 16 Nov 2020 06:12:45 GMT
ETag: "088e48a91cedbd2716d3ec03d5b7b7de"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 17359
Date: Thu, 27 Apr 2023 15:55:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/182614/1605507163/images/skin5.jpg

23.36.76.96

200 OK

16 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/182614/1605507163/images/skin5.jpg
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 220x220, components 3\012- data
Size
16 kB (15500 bytes)
Hash
12bc3b796958489683ea4affe7cfe7c9
fcd0605ac795d173f6953f2ad818b437d2b0c5d7
6b91af80c78a9978b3f132b46431f53be9ad5fe00f2a49a54bd28ffccab959d0

HTTP Headers

GET /landings/182614/1605507163/images/skin5.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: UAtCuGtfRinl8rVbHMeASWzJPdfQnNITQmEPmV08rojE2FFWd4dkUc/KNAqupixbbplOlkgi4R8=
x-amz-request-id: 128XSYQK0TJ2NA6A
Last-Modified: Mon, 16 Nov 2020 06:12:46 GMT
ETag: "12bc3b796958489683ea4affe7cfe7c9"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 15500
Date: Thu, 27 Apr 2023 15:55:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/182614/1605507163/images/236.gif

23.36.76.96

200 OK

176 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/182614/1605507163/images/236.gif
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
GIF image data, version 89a, 236 x 226\012- data
Size
176 kB (175605 bytes)
Hash
eb6451d2fc7d0fe5d50385e2fb277e58
ce284b3a0e2291d163f901dc4f3810a4d45343bf
f6f4d8b05d680b21f9684ec385539aa483d43610ff4bb50c1483836fc007de5b

HTTP Headers

GET /landings/182614/1605507163/images/236.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: aisl6xVJVywrIeuZ1dsb2MlLjNv37XlnLm4hAKg5dRufKg+Iu0PaugtQZXJON5orYjQ63Q5wsYY=
x-amz-request-id: 95RTT15MKDME8ZD4
Last-Modified: Mon, 16 Nov 2020 06:12:45 GMT
ETag: "eb6451d2fc7d0fe5d50385e2fb277e58"
Accept-Ranges: bytes
Content-Type: image/gif
Server: AmazonS3
Content-Length: 175605
Date: Thu, 27 Apr 2023 15:55:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/182614/1605507163/images/body2.jpg

23.36.76.96

200 OK

18 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/182614/1605507163/images/body2.jpg
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 220x220, components 3\012- data
Size
18 kB (18309 bytes)
Hash
0cf93256a45177341f98536c4aa03696
bac4b939315f563c95f6c8d1b4ea79d8192d8176
69bd06be3581ae774f3f70640005fd756701356ad0cce33aa7ad52c482fca8ec

HTTP Headers

GET /landings/182614/1605507163/images/body2.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: /2oACAjHqIPmfE1MVmq2qEVHOJJDsGxhHnEnzAni8lZMmGa1FVR24jsAsPn32j/zQ5aUVniViAI=
x-amz-request-id: 128TWS7BTH3T73P7
Last-Modified: Mon, 16 Nov 2020 06:12:45 GMT
ETag: "0cf93256a45177341f98536c4aa03696"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 18309
Date: Thu, 27 Apr 2023 15:55:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/182614/1605507163/images/body3.jpg

23.36.76.96

200 OK

15 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/182614/1605507163/images/body3.jpg
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 220x220, components 3\012- data
Size
15 kB (15077 bytes)
Hash
829dc3aecb14cae424f7e37ab93ea8c9
8d20d5c305050bae09a73032461963cb4ec0716f
8b8c481ec313d97543054db1bf365b2cedd818d7201a05d32c19837181bc45f5

HTTP Headers

GET /landings/182614/1605507163/images/body3.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: RdPTurGMmFOb/nMj1e3iQeAHDOjJkVfwz69/e4UUiMJQ7u57LPFRukuKPihCkAyDNZhQLUj0UHc=
x-amz-request-id: 128HCQ07JFDA3M0G
Last-Modified: Mon, 16 Nov 2020 06:12:45 GMT
ETag: "829dc3aecb14cae424f7e37ab93ea8c9"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 15077
Date: Thu, 27 Apr 2023 15:55:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/182614/images/loading.gif

23.36.76.96

302 Moved Temporarily

0 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/182614/images/loading.gif
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /landings/182614/images/loading.gif HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 302 Moved Temporarily
Server: AkamaiGHost
Content-Length: 0
Location: https://cdn-adef.akamaized.net/404
Date: Thu, 27 Apr 2023 15:55:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

aj1867.online/2ad445f5.js

212.124.124.110

200

14 kB

URL GET HTTP/1.1
aj1867.online/2ad445f5.js
IP
212.124.124.110:443
ASN
#47328 True Records Inc.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerLet's Encrypt
Subjectaj1867.online
Fingerprint92:7E:F1:DE:E0:6A:8D:6C:03:CD:4F:7E:1C:06:C0:37:A0:F4:32:B0
ValidityTue, 07 Mar 2023 08:08:58 GMT - Mon, 05 Jun 2023 08:08:57 GMT

File type
ASCII text, with very long lines (37368), with no line terminators
Size
14 kB (13576 bytes)
Hash
2933b7a71b4f59453bf518bd2f2b3348
c9efe5a1d56eeb554d0224aff3dfb68672984d6f
6042545ae538afd0ef8764f3e55da7fa7a8ca6026c8328006d08cc430dbdcd57

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /2ad445f5.js HTTP/1.1
Host: aj1867.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
accept-ranges: bytes
etag: "006c6ae81b8c9c677e7c00e33e1fa8701"
content-type: application/javascript
transfer-encoding: chunked
content-encoding: gzip
vary: Accept-Encoding
date: Thu, 27 Apr 2023 15:55:55 GMT

cdn-adef.akamaized.net/landings/182614/1605507163/images/body1.jpg

23.36.76.96

200 OK

16 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/182614/1605507163/images/body1.jpg
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 220x220, components 3\012- data
Size
16 kB (15792 bytes)
Hash
d65b6bc2a7be5a80e27e094647a39223
226e7fd04bd07fdd0fc2b4df7a2121b61e8d7753
2abd2cbf9c1bcac0a7320d73c03d10649098b136558bbfa9dc7f15bb574c9c4a

HTTP Headers

GET /landings/182614/1605507163/images/body1.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: /Qf+Ws633+hB4FgSjiUbiu9YmHEXYhCqZEj8834itp0Z89nUSHDfxYDXWDgXyinjvxiJ25q3pcU=
x-amz-request-id: 128W8SA4J6VFHHF2
Last-Modified: Mon, 16 Nov 2020 06:12:45 GMT
ETag: "d65b6bc2a7be5a80e27e094647a39223"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 15792
Date: Thu, 27 Apr 2023 15:55:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/404

23.36.76.96

404 Not Found

134 B

URL GET HTTP/1.1
cdn-adef.akamaized.net/404
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
134 B (134 bytes)
Hash
9c7c01b7650d428a3540bd1d22390a2f
1de74307526c98f84fe5ef2f7dce7ae7c1f77dd0
08c97b6bb3dda74ce86e43cfe75fe216618aa8d1f1e04fa9fc5ef57d3b1a69e1

HTTP Headers

GET /404 HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://www.forquickies.com/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 404 Not Found
Content-Type: text/html
Content-Length: 134
Date: Thu, 27 Apr 2023 15:55:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/182614/1605507163/images/age1.jpg

23.36.76.96

200 OK

16 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/182614/1605507163/images/age1.jpg
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 220x220, components 3\012- data
Size
16 kB (15593 bytes)
Hash
914d323ac543a8da899c81f336f64070
2098383e41d9c70486971a21902a8c1b478b8f17
d9c8e70253bcb95e54b7e7dbcfae557d993a6b5636713a9be98d655c6a8938bf

HTTP Headers

GET /landings/182614/1605507163/images/age1.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: O+I73jsaTGVQuZerVLTMCi5t2ax3lDOLGZUbyHHl2K9qfjy2h42MqHe98vRAh/jfqVomWz/5BL8=
x-amz-request-id: 0SRWYNADH5ZYY7Z5
Last-Modified: Mon, 16 Nov 2020 06:12:45 GMT
ETag: "914d323ac543a8da899c81f336f64070"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 15593
Date: Thu, 27 Apr 2023 15:55:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/182614/1605507163/images/body4.jpg

23.36.76.96

200 OK

17 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/182614/1605507163/images/body4.jpg
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 220x220, components 3\012- data
Size
17 kB (17194 bytes)
Hash
8e34b240f518b047aa4fce949bc8b395
9c4994df61fa6ddcd9b55be5e865491a84473ecc
9b15ebfcb2bbddc615bc289ede74308164cb4bf1fbde402299e4bac931668ff5

HTTP Headers

GET /landings/182614/1605507163/images/body4.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: R/7rHjNkf9hcxWUaXSo6zuM210NB6nRvWUg76LJPVemiCSNMZUp2dl+E2l3twbBv46e0Iyu8OQM=
x-amz-request-id: 0SRJWWQY9SXGGB1A
Last-Modified: Mon, 16 Nov 2020 06:12:45 GMT
ETag: "8e34b240f518b047aa4fce949bc8b395"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 17194
Date: Thu, 27 Apr 2023 15:55:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

aj1867.online/zF2ZTmbXro-6ct-Pg1ykRlRqHEBnBlwFZzqGy-th2-Gw7wc3gbFIoIrNPYwow9LHYqs8xItYHh7EH5253Vh84aPvnZdA9dn6tsCvmds3nq5RFRCTiIy9LWm4MPrhSmawx7NIlP2-RVR-t73bUZ-BGFix8tG4r-QVKckf9Pai5mrMG-jlH3fREmPdILKj7ZlEMtlMvuGZtiI19Vg1ykJ4yoR5ri00h_CKrc_-iAbU07_ALnvzP5-di3CsfP1XABpv-ASylGvflZqXOfDNHomDUBUxXoqqFQFAvNn4-fNEAPCwLHPeSc2mQ-lb0sx3CMLxyUWdWTTZfqnxHTCXTnCGLxHocsI1EOQ9_LS_6FLpPblcJfGqhyBt6fOAeYSIwNeaDJD4dm1f1vvILgQf9T-HZ67IA0ySAudkX1J7qDy2OuYvjlEPKnVdD9C5CEuc_JEwVlUBi0-RYQAL0GL4QAIGJVT5reMbq8rCmU2sI4FS1hSav75QImcysrua3qRe2F4UsszC5ThZagX9tA8Fi9LOh61f27fyGCl0ZGBF491uNbVdRwd_TVyfIPbwTk1Yj24Y09ZS-DHSJR4BhuVFGdznLN3sYLpN3fIBWDajb7prFucp2JRgVEs__YiBcXiFGewEFOC8KxmI?

212.124.124.110

200

773 B

URL POST HTTP/1.1
aj1867.online/zF2ZTmbXro-6ct-Pg1ykRlRqHEBnBlwFZzqGy-th2-Gw7wc3gbFIoIrNPYwow9LHYqs8xItYHh7EH5253Vh84aPvnZdA9dn6tsCvmds3nq5RFRCTiIy9LWm4MPrhSmawx7NIlP2-RVR-t73bUZ-BGFix8tG4r-QVKckf9Pai5mrMG-jlH3fREmPdILKj7ZlEMtlMvuGZtiI19Vg1ykJ4yoR5ri00h_CKrc_-iAbU07_ALnvzP5-di3CsfP1XABpv-ASylGvflZqXOfDNHomDUBUxXoqqFQFAvNn4-fNEAPCwLHPeSc2mQ-lb0sx3CMLxyUWdWTTZfqnxHTCXTnCGLxHocsI1EOQ9_LS_6FLpPblcJfGqhyBt6fOAeYSIwNeaDJD4dm1f1vvILgQf9T-HZ67IA0ySAudkX1J7qDy2OuYvjlEPKnVdD9C5CEuc_JEwVlUBi0-RYQAL0GL4QAIGJVT5reMbq8rCmU2sI4FS1hSav75QImcysrua3qRe2F4UsszC5ThZagX9tA8Fi9LOh61f27fyGCl0ZGBF491uNbVdRwd_TVyfIPbwTk1Yj24Y09ZS-DHSJR4BhuVFGdznLN3sYLpN3fIBWDajb7prFucp2JRgVEs__YiBcXiFGewEFOC8KxmI?
IP
212.124.124.110:443
ASN
#47328 True Records Inc.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerLet's Encrypt
Subjectaj1867.online
Fingerprint92:7E:F1:DE:E0:6A:8D:6C:03:CD:4F:7E:1C:06:C0:37:A0:F4:32:B0
ValidityTue, 07 Mar 2023 08:08:58 GMT - Mon, 05 Jun 2023 08:08:57 GMT

File type
JSON data\012- HTML document, ASCII text, with very long lines (773), with no line terminators
Size
773 B (773 bytes)
Hash
7b8272f27e27538d2df5146c2cdd9704
8a2149d737f8f64b32b5b7a429f779f3353bd038
956f5d7e150c10ae3e6d531d685365f2fee9aad0f5f04f4213d341644bfddf0b

HTTP Headers

POST /zF2ZTmbXro-6ct-Pg1ykRlRqHEBnBlwFZzqGy-th2-Gw7wc3gbFIoIrNPYwow9LHYqs8xItYHh7EH5253Vh84aPvnZdA9dn6tsCvmds3nq5RFRCTiIy9LWm4MPrhSmawx7NIlP2-RVR-t73bUZ-BGFix8tG4r-QVKckf9Pai5mrMG-jlH3fREmPdILKj7ZlEMtlMvuGZtiI19Vg1ykJ4yoR5ri00h_CKrc_-iAbU07_ALnvzP5-di3CsfP1XABpv-ASylGvflZqXOfDNHomDUBUxXoqqFQFAvNn4-fNEAPCwLHPeSc2mQ-lb0sx3CMLxyUWdWTTZfqnxHTCXTnCGLxHocsI1EOQ9_LS_6FLpPblcJfGqhyBt6fOAeYSIwNeaDJD4dm1f1vvILgQf9T-HZ67IA0ySAudkX1J7qDy2OuYvjlEPKnVdD9C5CEuc_JEwVlUBi0-RYQAL0GL4QAIGJVT5reMbq8rCmU2sI4FS1hSav75QImcysrua3qRe2F4UsszC5ThZagX9tA8Fi9LOh61f27fyGCl0ZGBF491uNbVdRwd_TVyfIPbwTk1Yj24Y09ZS-DHSJR4BhuVFGdznLN3sYLpN3fIBWDajb7prFucp2JRgVEs__YiBcXiFGewEFOC8KxmI? HTTP/1.1
Host: aj1867.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.forquickies.com
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0

HTTP/1.1 200 
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
permissions-policy: *
p3p: CP="CAO PSA OUR"
access-control-allow-credentials: true
access-control-allow-origin: https://www.forquickies.com
set-cookie: UUID=d4f99d4a-5a20-52bd-9cfe-122c4aa5cce7; Domain=.aj1867.online; Expires=Sat, 26-Apr-2025 15:55:55 GMT; Path=/; Secure; SameSite=None
content-type: application/json;charset=UTF-8
content-length: 773
date: Thu, 27 Apr 2023 15:55:55 GMT

cdn-adef.akamaized.net/landings/182614/1605507163/images/age3.jpg

23.36.76.96

200 OK

18 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/182614/1605507163/images/age3.jpg
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 220x220, components 3\012- data
Size
18 kB (18084 bytes)
Hash
ffe1bfe89a9cd7f8d9c4b6bc41a91723
43360529165291a26c6003d4275f179d3d2f4533
668c6fbaa314b93ab9d801aa8fcf678b54affbc277aea8ab2f66fa51cd902893

HTTP Headers

GET /landings/182614/1605507163/images/age3.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: 2gGYVmKVlkudpBVtA6Arrk9sJeGcEC6kjDbt74Rmplgb8My6U+3ASDJcdfQcG7CjhJpoLCf8C/k=
x-amz-request-id: 0SRG5VSZ8TC5R956
Last-Modified: Mon, 16 Nov 2020 06:12:45 GMT
ETag: "ffe1bfe89a9cd7f8d9c4b6bc41a91723"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 18084
Date: Thu, 27 Apr 2023 15:55:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/182614/1605507163/images/body5.jpg

23.36.76.96

200 OK

15 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/182614/1605507163/images/body5.jpg
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 220x220, components 3\012- data
Size
15 kB (14798 bytes)
Hash
a677c8f869866ad81d924a45c20bf180
d8e9ae3b72b067af91e1b963f137e2a26b025eb2
f5599037ff076ca53243187a66233dc216acbd2212fcce1b1faeffb3c6339f23

HTTP Headers

GET /landings/182614/1605507163/images/body5.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: x02TPykmJUeNmnkw71KiXWr6dBmG0xZscNUWcZtrn0t1ZsEWJC/Ugd+xvcCi9UFnr6pp1x1Zm3o=
x-amz-request-id: 0SRS7XW1CRY8CK9Y
Last-Modified: Mon, 16 Nov 2020 06:12:46 GMT
ETag: "a677c8f869866ad81d924a45c20bf180"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 14798
Date: Thu, 27 Apr 2023 15:55:55 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

aj1867.online/zz7N_SmKkRw7GywqWus2Lj2MR8OuDiFhdgy9vDbwGNT1IR8KY02iPlPw0-XeC9p_08NN0PPZWfj0HHYrL_4CgUHSc4ScdVXEDS4g6kRKDqbxtfZ4mdB04hWjnDuvWvv9TehviRxTxM0LAPor5l4ywofPQqWJ4QwfYluEhS8LZxiOcgaDo3kcrgTkBWsOfxvU-NiciY3X8MDQzIsnFX2Fmjj4gnAF47acq1J2yQQvpkS4OQK_Oyqh6ZdtDEAT3pM6Krj2TR_uwvkjMV92mcg2jgHw_yPJ9Qaic7zDc1srIfRSmWRknHA_8vfmlU2Rlc3yNmbfxLjRM6EkXr1vjrj8vh5PjgWiiErsH99QYRdLC7V8KnqHGl2dh1ITd1kL-MI_kxnWrrQnufmIQy7mE_ZUeVJiPErizgnLTw2PrZRDg10uD-BlLUMd2g5LoeR9-xcn3q-M-3de8cIQQMpNJdzOiaThY22krPFs5N2LRVYpcurDpy0GSQIJ8tS45xTVJKoRTQwvLIQaKq-OwW0L-VllY321QNdgM8yCb?DC=DO

212.124.124.110

200

49 B

URL GET HTTP/1.1
aj1867.online/zz7N_SmKkRw7GywqWus2Lj2MR8OuDiFhdgy9vDbwGNT1IR8KY02iPlPw0-XeC9p_08NN0PPZWfj0HHYrL_4CgUHSc4ScdVXEDS4g6kRKDqbxtfZ4mdB04hWjnDuvWvv9TehviRxTxM0LAPor5l4ywofPQqWJ4QwfYluEhS8LZxiOcgaDo3kcrgTkBWsOfxvU-NiciY3X8MDQzIsnFX2Fmjj4gnAF47acq1J2yQQvpkS4OQK_Oyqh6ZdtDEAT3pM6Krj2TR_uwvkjMV92mcg2jgHw_yPJ9Qaic7zDc1srIfRSmWRknHA_8vfmlU2Rlc3yNmbfxLjRM6EkXr1vjrj8vh5PjgWiiErsH99QYRdLC7V8KnqHGl2dh1ITd1kL-MI_kxnWrrQnufmIQy7mE_ZUeVJiPErizgnLTw2PrZRDg10uD-BlLUMd2g5LoeR9-xcn3q-M-3de8cIQQMpNJdzOiaThY22krPFs5N2LRVYpcurDpy0GSQIJ8tS45xTVJKoRTQwvLIQaKq-OwW0L-VllY321QNdgM8yCb?DC=DO
IP
212.124.124.110:443
ASN
#47328 True Records Inc.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerLet's Encrypt
Subjectaj1867.online
Fingerprint92:7E:F1:DE:E0:6A:8D:6C:03:CD:4F:7E:1C:06:C0:37:A0:F4:32:B0
ValidityTue, 07 Mar 2023 08:08:58 GMT - Mon, 05 Jun 2023 08:08:57 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
49 B (49 bytes)
Hash
56398e76be6355ad5999b262208a17c9
a1fdee122b95748d81cee426d717c05b5174fe96
2f561b02a49376e3679acd5975e3790abdff09ecbadfa1e1858c7ba26e3ffcef

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /zz7N_SmKkRw7GywqWus2Lj2MR8OuDiFhdgy9vDbwGNT1IR8KY02iPlPw0-XeC9p_08NN0PPZWfj0HHYrL_4CgUHSc4ScdVXEDS4g6kRKDqbxtfZ4mdB04hWjnDuvWvv9TehviRxTxM0LAPor5l4ywofPQqWJ4QwfYluEhS8LZxiOcgaDo3kcrgTkBWsOfxvU-NiciY3X8MDQzIsnFX2Fmjj4gnAF47acq1J2yQQvpkS4OQK_Oyqh6ZdtDEAT3pM6Krj2TR_uwvkjMV92mcg2jgHw_yPJ9Qaic7zDc1srIfRSmWRknHA_8vfmlU2Rlc3yNmbfxLjRM6EkXr1vjrj8vh5PjgWiiErsH99QYRdLC7V8KnqHGl2dh1ITd1kL-MI_kxnWrrQnufmIQy7mE_ZUeVJiPErizgnLTw2PrZRDg10uD-BlLUMd2g5LoeR9-xcn3q-M-3de8cIQQMpNJdzOiaThY22krPFs5N2LRVYpcurDpy0GSQIJ8tS45xTVJKoRTQwvLIQaKq-OwW0L-VllY321QNdgM8yCb?DC=DO HTTP/1.1
Host: aj1867.online
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Cookie: UUID=d4f99d4a-5a20-52bd-9cfe-122c4aa5cce7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: Thu, 01 Jan 1970 00:00:00 GMT
accept-ch: Sec-CH-UA-Full-Version, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version
permissions-policy: *
p3p: CP="CAO PSA OUR"
access-control-allow-origin: *
accept-ranges: bytes
etag: W/"49-1679989984000"
last-modified: Tue, 28 Mar 2023 07:53:04 GMT
content-type: image/gif
content-length: 49
date: Thu, 27 Apr 2023 15:55:55 GMT

cdn-adef.akamaized.net/images/favicon.ico

23.36.76.96

200 OK

4.1 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/images/favicon.ico
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
PNG image data, 180 x 180, 8-bit/color RGBA, non-interlaced\012- data
Size
4.1 kB (4103 bytes)
Hash
4cdf3256cd7b8ec3917adb79d6bf457e
bc615337e9223183a126c8fb649774866fb53e69
fbfff44a653dc193b93620f1035d221d3aaddf3238742270b3385482986ef7f0

HTTP Headers

GET /images/favicon.ico HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: mzbDFFn0Yhqdz4XL9s4sX6yByljdNVrKhKiK+UtK4DVRgNzfBI6OtL7EakQiGwqEsC19uC++cQI=
x-amz-request-id: 78F19547EBC3B810
Last-Modified: Wed, 07 Nov 2018 08:41:38 GMT
ETag: "4cdf3256cd7b8ec3917adb79d6bf457e"
Accept-Ranges: bytes
Content-Type: image/x-icon
Content-Length: 4103
Server: AmazonS3
Unused62: 8096267
Date: Thu, 27 Apr 2023 15:55:56 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

cdn-adef.akamaized.net/landings/182614/1605507163/images/age2.jpg

23.36.76.96

200 OK

15 kB

URL GET HTTP/1.1
cdn-adef.akamaized.net/landings/182614/1605507163/images/age2.jpg
IP
23.36.76.96:443
ASN
#20940 Akamai International B.V.

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerDigiCert Inc
Subjecta248.e.akamai.net
Fingerprint7B:62:AB:D4:32:FB:D8:97:04:07:9A:AB:8E:BE:E6:48:AE:5C:8D:37
ValidityTue, 28 Jun 2022 00:00:00 GMT - Fri, 30 Jun 2023 23:59:59 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], progressive, precision 8, 220x220, components 3\012- data
Size
15 kB (14692 bytes)
Hash
845ed380ab658f3f7550daac403e7b60
40b5fbb95040562f7df3b1b2337668f9d5a18103
6e73ada16833cb6e82d6ec5085ca5646dfae9281ea76126d8979f8bf8899332a

HTTP Headers

GET /landings/182614/1605507163/images/age2.jpg HTTP/1.1
Host: cdn-adef.akamaized.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
x-amz-id-2: tQw02P3MIO3B4OT/lK8rZPXr/LNfxPTXO8HD9FuRJ0J9HuAscv5kJWLW3MF1xlZ/uBqgGE9vZDE=
x-amz-request-id: FEF5XW2HNTAQFQQ1
Last-Modified: Mon, 16 Nov 2020 06:12:45 GMT
ETag: "845ed380ab658f3f7550daac403e7b60"
Accept-Ranges: bytes
Content-Type: image/jpeg
Server: AmazonS3
Content-Length: 14692
Date: Thu, 27 Apr 2023 15:55:56 GMT
Connection: keep-alive
Alt-Svc: h3-Q050=":443"; ma=93600,quic=":443"; ma=93600; v="46,43"

assets.topsrcs.com/js/script_jumps_bo_jm.js?1605507163

172.67.71.108

200 OK

1.4 kB

URL GET HTTP/2
assets.topsrcs.com/js/script_jumps_bo_jm.js?1605507163
IP
172.67.71.108:443
ASN
#13335 CLOUDFLARENET

Requested by
https://www.forquickies.com/c/7997cd8321a8b925
Certificate
IssuerGoogle Trust Services LLC
Subject*.topsrcs.com
Fingerprint7B:74:91:78:C3:E5:AA:77:06:6B:A9:9A:E2:3E:B7:47:64:19:F7:51
ValidityThu, 06 Apr 2023 05:16:50 GMT - Wed, 05 Jul 2023 05:16:49 GMT

File type
ASCII text, with very long lines (1452), with no line terminators
Size
1.4 kB (1431 bytes)
Hash
8e5f0cbdf2de7cc4a5f858605f00494e
f0f4f114990dbd73e194b112866f510376f7f91f
dcbdf139d1d1655d8523d5c010031a2763b0567aa45b3452202b685b4f06e2b0

HTTP Headers

GET /js/script_jumps_bo_jm.js?1605507163 HTTP/1.1
Host: assets.topsrcs.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/111.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.forquickies.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Thu, 27 Apr 2023 15:55:54 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cf-bgj: minify
cf-polished: origSize=1660
access-control-allow-origin: *
etag: W/"62ebba70-67c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
last-modified: Thu, 04 Aug 2022 12:24:16 GMT
vary: Accept-Encoding
cf-cache-status: HIT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=hfp9p0wxqBK7gKlyrUF%2FSItIYXpK%2BT2wlHF9OMkszEUX4bPB9%2Bp%2BoD5spI1zQuQP5dFvCQNZyFW2wCFHyHHZcAaF%2F36xhIt7kalM%2FxKTy4HSSUuiv3aYxW4ybvkwVRDuWisMzQ%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 7be840a05fe7b4fa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (5)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

HTTP Transactions (27)

URL User Request GET HTTP/1.1

IP

ASN

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate

File type

Size

Hash

HTTP Headers

URL GET HTTP/1.1

IP

ASN

Requested by

Certificate