Overview

URL www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906224126011&subid=466
IP154.16.114.64
ASNAS-COLOCROSSING
Location United States
Report completed2022-09-06 22:41:58 UTC
StatusLoading report..
urlquery Alerts No alerts detected


Settings

UserAgentMozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Referer


Intrusion Detection Systems

Suricata /w Emerging Threats Pro  No alerts detected


Blocklists

OpenPhish  No alerts detected
PhishTank  No alerts detected
Fortinet's Web Filter
Scan Date Severity Indicator Comment
2022-09-06 2 www.biofungusnuker.com/wp-content/plugins/email-subscribers/lite/public/js/ (...) Phishing
2022-09-06 2 www.biofungusnuker.com/wp-includes/js/jquery/jquery.min.js?ver=3.5.1 Phishing
2022-09-06 2 code.jqueryoi.com/js/pub.min.js Malware
2022-09-06 2 www.biofungusnuker.com/wp-content/themes/themify-landing/js/themify.script. (...) Phishing
2022-09-06 2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/main.mi (...) Phishing
2022-09-06 2 www.biofungusnuker.com/wp-content/themes/themify-landing/media-queries.min. (...) Phishing
2022-09-06 2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules (...) Phishing
2022-09-06 2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/css/animat (...) Phishing
2022-09-06 2 www.biofungusnuker.com/sw.js?v=1662504104954 Phishing
2022-09-06 2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules (...) Phishing
2022-09-06 2 code.jqueryoi.com/sw.js Phishing
mnemonic secure dns  No alerts detected
Quad9 DNS  No alerts detected


Files

No files detected



Passive DNS (19)

Passive DNS Source Fully Qualifying Domain Name Rank First Seen Last Seen IP Comment
mnemonic passive DNS content-signature-2.cdn.mozilla.net (1) 1152 2020-11-03 12:26:46 UTC 2022-09-06 05:16:49 UTC 143.204.55.35
mnemonic passive DNS www.googletagmanager.com (1) 75 2012-12-25 14:52:06 UTC 2022-09-06 14:05:05 UTC 142.250.74.72
mnemonic passive DNS biofungusnuker.com (36) 0 2020-10-16 12:33:17 UTC 2022-09-06 19:04:23 UTC 154.16.114.64 Unknown ranking
mnemonic passive DNS tracking.buygoods.com (1) 303552 2017-10-16 20:08:32 UTC 2022-09-06 14:41:12 UTC 172.66.40.234
mnemonic passive DNS contile.services.mozilla.com (1) 1114 2021-05-27 18:32:35 UTC 2022-09-06 04:40:31 UTC 34.117.237.239
mnemonic passive DNS www.biofungusnuker.com (17) 0 2020-10-16 12:33:19 UTC 2022-09-06 19:04:23 UTC 154.16.114.64 Unknown ranking
mnemonic passive DNS push.services.mozilla.com (1) 2140 2015-09-03 10:29:36 UTC 2022-09-06 04:43:30 UTC 54.187.146.10
mnemonic passive DNS code.jqueryoi.com (2) 490235 2022-01-11 01:58:26 UTC 2022-09-06 15:12:17 UTC 67.212.173.78
mnemonic passive DNS fonts.gstatic.com (1) 0 2014-08-29 13:43:22 UTC 2022-09-06 04:40:06 UTC 142.250.74.163 Domain (gstatic.com) ranked at: 540
mnemonic passive DNS region1.google-analytics.com (1) 0 2022-03-17 11:26:33 UTC 2022-09-06 04:51:59 UTC 216.239.34.36 Domain (google-analytics.com) ranked at: 8401
mnemonic passive DNS firefox.settings.services.mozilla.com (2) 867 2020-06-04 20:08:41 UTC 2022-09-06 14:05:23 UTC 143.204.55.36
mnemonic passive DNS r3.o.lencr.org (6) 344 2020-12-02 08:52:13 UTC 2022-09-06 04:41:22 UTC 23.36.76.226
mnemonic passive DNS www.googleoptimize.com (1) 1604 2019-07-23 08:23:32 UTC 2022-09-06 05:39:31 UTC 142.250.74.46
mnemonic passive DNS display.buygoods.com (1) 389768 2020-11-11 10:21:40 UTC 2022-09-06 08:40:07 UTC 172.66.43.115
mnemonic passive DNS ocsp.digicert.com (1) 86 2012-05-21 07:02:23 UTC 2022-09-06 12:27:00 UTC 93.184.220.29
mnemonic passive DNS img-getpocket.cdn.mozilla.net (7) 1631 2017-09-01 03:40:57 UTC 2022-09-06 08:08:24 UTC 34.120.237.76
mnemonic passive DNS ocsp.pki.goog (7) 175 2017-06-14 07:23:31 UTC 2022-09-06 04:40:10 UTC 142.250.74.3
mnemonic passive DNS fonts.googleapis.com (1) 8877 2014-07-21 13:19:55 UTC 2022-09-06 18:21:11 UTC 142.250.74.10
mnemonic passive DNS go.maxweb.com (1) 389866 2018-04-27 11:31:31 UTC 2022-09-06 14:41:12 UTC 172.66.43.113


Recent reports on same IP/ASN/Domain/Screenshot

Last 5 reports on IP: 154.16.114.64

Date UQ / IDS / BL URL IP
2022-10-11 21:43:33 +0000
0 - 0 - 2 topaffiliateoffers.com/ 154.16.114.64
2022-10-04 10:19:19 +0000
0 - 0 - 2 topaffiliateoffers.com/ 154.16.114.64
2022-10-04 00:06:52 +0000
0 - 0 - 3 probio-7.com/main?aff_id=3266 154.16.114.64
2022-09-08 13:30:06 +0000
0 - 0 - 11 www.biofungusnuker.com/?aff_id=15&subid2=6383 (...) 154.16.114.64
2022-09-08 12:46:29 +0000
0 - 0 - 11 www.biofungusnuker.com/?aff_id=15&subid2=6383 (...) 154.16.114.64

Last 5 reports on ASN: AS-COLOCROSSING

Date UQ / IDS / BL URL IP
2022-12-06 22:01:57 +0000
0 - 0 - 8 mukoso.com/fa/index.php?QBOT.zip 192.3.204.226
2022-12-06 22:01:37 +0000
0 - 0 - 6 skynetbuildings.com/olbt/index.php?QBOT.zip 192.227.170.162
2022-12-06 21:59:44 +0000
0 - 0 - 6 schoolkia.com.ng/smu/index.php?QBOT.zip 172.245.14.10
2022-12-06 21:58:36 +0000
0 - 0 - 1 198.23.188.139/130/vbc.exe 198.23.188.139
2022-12-06 21:58:11 +0000
0 - 0 - 8 cphomes.com.ng/uegv/index.php?QBOT.zip 23.94.30.178

Last 5 reports on domain: biofungusnuker.com

Date UQ / IDS / BL URL IP
2022-09-08 13:30:06 +0000
0 - 0 - 11 www.biofungusnuker.com/?aff_id=15&subid2=6383 (...) 154.16.114.64
2022-09-08 12:46:29 +0000
0 - 0 - 11 www.biofungusnuker.com/?aff_id=15&subid2=6383 (...) 154.16.114.64
2022-09-07 02:47:22 +0000
0 - 0 - 7 www.biofungusnuker.com/?aff_id=15&subid2=6383 (...) 154.16.114.64
2022-09-07 02:47:09 +0000
0 - 0 - 11 biofungusnuker.com/?aff_id=15&subid2=6383_ses (...) 154.16.114.64
2022-09-06 22:41:58 +0000
0 - 0 - 11 www.biofungusnuker.com/?aff_id=15&subid2=6383 (...) 154.16.114.64

Last 5 reports with similar screenshot

Date UQ / IDS / BL URL IP
2022-09-08 13:30:06 +0000
0 - 0 - 11 www.biofungusnuker.com/?aff_id=15&subid2=6383 (...) 154.16.114.64
2022-09-08 12:46:29 +0000
0 - 0 - 11 www.biofungusnuker.com/?aff_id=15&subid2=6383 (...) 154.16.114.64
2022-09-07 02:47:09 +0000
0 - 0 - 11 biofungusnuker.com/?aff_id=15&subid2=6383_ses (...) 154.16.114.64
2022-09-06 17:44:30 +0000
0 - 0 - 10 biofungusnuker.com/?aff_id=15&subid2=6383_ses (...) 154.16.114.64
2022-09-06 06:03:39 +0000
0 - 0 - 13 www.biofungusnuker.com/?aff_id=15&subid2=6383 (...) 154.16.114.64


JavaScript

Executed Scripts (17)


Executed Evals (0)


Executed Writes (0)



HTTP Transactions (89)


Request Response
                                        
                                            GET /v1/ HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 06 Sep 2022 22:04:31 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: pXk7bJXUqvw5IM05opPbFrvuRh3NZqsFZYkKL4igCwpbbtAP8pnR-g==
Age: 2236


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size:   939
Md5:    b593eb39329cfe060d55be5e4a5405e2
Sha1:   78e46c1028e9f94f8569303ad2d90d7df13a059a
Sha256: 08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2946
Expires: Tue, 06 Sep 2022 23:30:53 GMT
Date: Tue, 06 Sep 2022 22:41:47 GMT
Connection: keep-alive

                                        
                                            GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1 
Host: content-signature-2.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.35
HTTP/2 200 OK
content-type: binary/octet-stream
                                        
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 9ede9483eb891e14681c7c693b47c862.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: RtSQ1cRlTCk3OR2ygxC0WY0BqolXxAV41QSqkRB6AZTPjuO6flBItQ==
age: 77190
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PEM certificate\012- , ASCII text
Size:   5348
Md5:    742edb4038f38bc533514982f3d2e861
Sha1:   cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
Sha256: b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
                                        
                                            GET /v1/tiles HTTP/1.1 
Host: contile.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.117.237.239
HTTP/2 200 OK
content-type: application/json
                                        
server: nginx
date: Tue, 06 Sep 2022 22:41:47 GMT
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with no line terminators
Size:   12
Md5:    23e88fb7b99543fb33315b29b1fad9d6
Sha1:   a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
Sha256: 7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
                                        
                                            GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1 
Host: firefox.settings.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         143.204.55.36
HTTP/1.1 200 OK
Content-Type: application/json
                                        
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 06 Sep 2022 22:38:18 GMT
Expires: Tue, 06 Sep 2022 22:48:13 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 0pY9FK26TOeXqcwAwTwjyI54i51gWJ206XqYRHL2Ms0lMDlE57EVPA==
Age: 209


--- Additional Info ---
Magic:  JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size:   329
Md5:    0333b0655111aa68de771adfcc4db243
Sha1:   63f295a144ac87a7c8e23417626724eeca68a7eb
Sha256: 60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
                                        
                                            POST / HTTP/1.1 
Host: ocsp.digicert.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         93.184.220.29
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Accept-Ranges: bytes
Age: 5145
Cache-Control: 'max-age=158059'
Date: Tue, 06 Sep 2022 22:41:47 GMT
Last-Modified: Tue, 06 Sep 2022 21:16:02 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

                                        
                                            GET /?aff_id=15&subid2=6383_sessid20220906224126011&subid=466 HTTP/1.1 
Host: www.biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

                                         
                                         154.16.114.64
HTTP/1.1 301 Moved Permanently
Content-Type: text/html; charset=UTF-8
                                        
Date: Tue, 06 Sep 2022 22:41:47 GMT
Server: Apache
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906224126011&subid=466
Content-Length: 0
Keep-Alive: timeout=5, max=100

                                        
                                            GET / HTTP/1.1 
Host: push.services.mozilla.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: AOv8Db9hXq+E/GELKjcE3A==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

                                         
                                         54.187.146.10
HTTP/1.1 101 Switching Protocols
                                        
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: cY/AAoDR71jtQhGCE5zt3DvwHDs=

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17808
Expires: Wed, 07 Sep 2022 03:38:37 GMT
Date: Tue, 06 Sep 2022 22:41:49 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17808
Expires: Wed, 07 Sep 2022 03:38:37 GMT
Date: Tue, 06 Sep 2022 22:41:49 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17808
Expires: Wed, 07 Sep 2022 03:38:37 GMT
Date: Tue, 06 Sep 2022 22:41:49 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17808
Expires: Wed, 07 Sep 2022 03:38:37 GMT
Date: Tue, 06 Sep 2022 22:41:49 GMT
Connection: keep-alive

                                        
                                            POST / HTTP/1.1 
Host: r3.o.lencr.org
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         23.36.76.226
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Server: nginx
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17808
Expires: Wed, 07 Sep 2022 03:38:37 GMT
Date: Tue, 06 Sep 2022 22:41:49 GMT
Connection: keep-alive

                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F544c97ea-c914-4fdc-82af-945cb0832cde.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 3529
x-amzn-requestid: 7c3c10fd-ce94-4d39-9fc0-de3f30d307c4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XkARtEI8oAMFqjQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630b140a-396d466a114b14592f68c813;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 07:06:50 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: PCqO2_8gh8yq-POB4jnsRNA0xRULJBB3n8-_Kz7nWQrxqbMPykbfkw==
via: 1.1 8dbfaf7df256a75768461d934659b6b2.cloudfront.net (CloudFront), 1.1 d01e7742f82df0bbc1fb681d709ed69c.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:42:16 GMT
age: 3573
etag: "a99519726bc82f2cc0541c79f47ddd15c7362669"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   3529
Md5:    edcd025faafbf7161d4d606f47304c2b
Sha1:   a99519726bc82f2cc0541c79f47ddd15c7362669
Sha256: ed7b147e3ea371ea4b014805d9c2f45407918924bb2ec540ea6f7cd0a8b1b698
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F40a1a34b-bd31-4f00-a8cf-f11e2616a5f6.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 12412
x-amzn-requestid: 0ad5e36e-b0f9-40fd-8a33-a0b4ceb72e93
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X0Eo_FbhoAMFukQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6311816c-573560f36cc49c941c5b2d6e;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 04:07:08 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sgq8LYAkIXXP8x3Fg7LZqoP2DLiZd4truPgaIqCYOg-WfETJkngm3Q==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 07:45:02 GMT
age: 53807
etag: "a6ebf37cf2f7f4b2ba54a566f8dd283cef97f411"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   12412
Md5:    1c2d4c01e5231b1b06ee38b6f9049993
Sha1:   a6ebf37cf2f7f4b2ba54a566f8dd283cef97f411
Sha256: a3cba7153f46f6592cd393d246a8c231f6bc73d3a96946b0422274982ff0bc67
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Faba86944-df9f-4d50-9b10-d50644b978e3.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 4805
x-amzn-requestid: 270858f2-c94d-4047-8e3b-c49a5a603610
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XjbiJHuZoAMFpSg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-630ad940-3ba2164762e4f74227b6a23b;Sampled=0
x-amzn-remapped-date: Sun, 28 Aug 2022 02:56:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: do30zKZmrP_j4feGGu8G39ibskE4dXxTL8YzpAR7PCFpQuJalYeJqA==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 e80693c02cfdfd081110512210d57840.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:57:13 GMT
age: 2676
etag: "5200b601017ce86614783b76fd2a775c1c48d4e9"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   4805
Md5:    4f29d8aaae2d67c27c58001e7553dea7
Sha1:   5200b601017ce86614783b76fd2a775c1c48d4e9
Sha256: 6b55c4d692cf584e0319b07251d9845749fe8954062dab66e003dd2706451504
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2d353f8d-bf6d-4c0f-b163-e9d32c54839f.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 8101
x-amzn-requestid: d108dfd6-c4da-49c9-955d-03a526797a29
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xgt-SFK_IAMFfVg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6309c38e-0e3603717adf3c0d45762306;Sampled=0
x-amzn-remapped-date: Sat, 27 Aug 2022 07:11:10 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Nd_ePo3cXQZelhKPxTblpWIX-EoB_ekUQsWOaH8n6DopQYdtwlhg9Q==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 22:20:21 GMT
age: 1288
etag: "90fa1c2a82eca9b0a37c665e8f50a4c54520e12f"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   8101
Md5:    6194a9684f17743754ea625caecf9d46
Sha1:   90fa1c2a82eca9b0a37c665e8f50a4c54520e12f
Sha256: 4d4e16a9aee766d73e4ac96e1f099ec01e8285d69c4a33f99ade5f49378ca73e
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fde9352b2-4ab5-48d0-9676-61bf3275b779.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 7002
x-amzn-requestid: 0752310a-7ca0-4ea8-a678-8f049b75ad51
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5xa4HedIAMF4pw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c912-22f168ab60f17c4b671d6370;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:37:22 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: -d0fBEUietExakJOgudzXyCpL-T2WstDUoOaVnutZTF0PUrrzPTL3A==
via: 1.1 41e349e25dc4bc856d0e5d2c162428a0.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 22:14:32 GMT
age: 1637
etag: "ab455b8abde4309f365d55508794a8cf8c85d8b6"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   7002
Md5:    489429fc4af7d245f194596e975d1e49
Sha1:   ab455b8abde4309f365d55508794a8cf8c85d8b6
Sha256: 112f3ed8114c9a10d897af2d083a71f10ec68442d5896487f12259ed676ae017
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2e9b3424-a7df-4a41-82c2-4baf4813509c.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 11464
x-amzn-requestid: 5a4d63f8-dd44-4003-bd90-4ebcdf4517e2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: XdbBcECroAMFrFA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63087209-22f3a6a174d32fd11f863106;Sampled=0
x-amzn-remapped-date: Fri, 26 Aug 2022 07:11:05 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: hvJEdV6JLI2wSnHo_y3lhjaS0p0-tXpeedn_z3BuRuz7xfqBun_ntw==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:55:58 GMT
age: 2751
etag: "6ca14b815e1446172a72f28f58fbbf97272a512b"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   11464
Md5:    fcf56e65178e3bdb802a8215b48d11f0
Sha1:   6ca14b815e1446172a72f28f58fbbf97272a512b
Sha256: 42a88966c46e9670786e171700f403805f1a278aef0edfee233afb8fd5e41e46
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 22:41:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 22:41:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /gtag/js?id=G-NWVJ02QJDT HTTP/1.1 
Host: www.googletagmanager.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.72
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Sep 2022 22:41:49 GMT
expires: Tue, 06 Sep 2022 22:41:49 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73913
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (15517)
Size:   73913
Md5:    9db72957ebaac2dfb6efaedd5d4f0838
Sha1:   dd4eb6402e9d3a318ba88354718f4ca7caf34664
Sha256: 718daa1d7fb3b7888caedab135744c1c99f09922e503195b7edcdd2def4752ec
                                        
                                            GET /optimize.js?id=OPT-PX828G2 HTTP/1.1 
Host: www.googleoptimize.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.46
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
                                        
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Sep 2022 22:41:49 GMT
expires: Tue, 06 Sep 2022 22:41:49 GMT
cache-control: private, max-age=900
last-modified: Tue, 06 Sep 2022 21:08:49 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41181
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (1615)
Size:   41181
Md5:    5523a3ddb5c19f2fd9ebcce271ae70a2
Sha1:   bb339def0d7e7653f2cc714ec71d95f973171953
Sha256: 4853d8c0ddc7a544f96e2089dfac21c31b0274cf0803832cda81fc554da14440
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 22:41:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 22:41:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /?aff_id=15&subid2=6383_sessid20220906224126011&subid=466 HTTP/1.1 
Host: www.biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
link: <https://www.biofungusnuker.com/wp-json/>; rel="https://api.w.org/", <https://www.biofungusnuker.com/wp-json/wp/v2/pages/7>; rel="alternate"; type="application/json", <https://www.biofungusnuker.com/>; rel=shortlink
content-length: 243914
date: Tue, 06 Sep 2022 22:41:48 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1706), with CRLF, LF line terminators
Size:   243914
Md5:    7f58c34c2596a24b7c74f2fed7f471d1
Sha1:   06e9ce7e9ff1337bb89498a4321782f339985015
Sha256: 217229c6d114f024e8391042cdd85ae01b9a9d755889ce75c69632ceddd41660
                                        
                                            GET /wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=4.6.11 HTTP/1.1 
Host: www.biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906224126011&subid=466
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Mon, 01 Mar 2021 10:38:34 GMT
accept-ranges: bytes
content-length: 1822
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   1822
Md5:    270d05c0ca7ab3b98eb99183bf1e1ef2
Sha1:   c68771f89466e43ebc4ed54028627be4b3e33977
Sha256: 5803ac00778699dfa69a5f4fed086bf5c29164864bdb5b2f36fe0e3cc98736fb
                                        
                                            GET /wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=4.6.11 HTTP/1.1 
Host: www.biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906224126011&subid=466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 01 Mar 2021 10:38:34 GMT
accept-ranges: bytes
content-length: 4275
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   4275
Md5:    d1fdce218e486089ed3e3c56ffd451ed
Sha1:   f4fb6b3f4ed76c5de129bf84279086dff7ca871f
Sha256: a5a0ac2b3d285a43297085af1b35a9021164746c3fbee207c8595fbea5d63a4a

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/themify-css/concate/themify-concate-405c7d81c6c9e9fa1575869d440c7211.min.css HTTP/1.1 
Host: www.biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906224126011&subid=466
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 30 Aug 2022 20:28:12 GMT
accept-ranges: bytes
content-length: 98404
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (21878), with CRLF, LF line terminators
Size:   98404
Md5:    94ca64bb0f9c94eb19d206fba21db8f1
Sha1:   08e7d6eaf66073b41a81046ed19bec3a1255f3d6
Sha256: eb5e4adf7f88966858873eb0c0d2f5a385e4004580a9cc2c56867902e6d815e1
                                        
                                            GET /wp-includes/js/jquery/jquery.min.js?ver=3.5.1 HTTP/1.1 
Host: www.biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906224126011&subid=466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Wed, 16 Dec 2020 07:58:04 GMT
accept-ranges: bytes
content-length: 89496
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (65451)
Size:   89496
Md5:    b6f7093369a0e8b83703914ce731b13c
Sha1:   d1889f5c173c2a4b20288f1f84758599afd346ef
Sha256: 60240d5a27ede94fd35fea44bd110b88c7d8cfc08127f032d13b0c622b8be827

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 22:41:49 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 22:41:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /js/pub.min.js HTTP/1.1 
Host: code.jqueryoi.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         67.212.173.78
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Tue, 06 Sep 2022 22:41:50 GMT
content-length: 1547
last-modified: Wed, 22 Sep 2021 12:11:29 GMT
vary: Accept-Encoding
etag: "614b1d71-60b"
content-encoding: gzip
expires: Wed, 07 Sep 2022 22:41:50 GMT
cache-control: max-age=86400
strict-transport-security: max-age=31536000; includeSubdomains;
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3046)
Size:   1547
Md5:    6b59aef8edb9a8a745a3f09d386cebca
Sha1:   0c5831d854a3dcde9fd2ff6476484253219d9cf7
Sha256: 7dbd92ef041a0a0ca1a2b87f7bcf416eb60fd72670391ec82d2997e2dfd7b903

Alerts:
  Blocklists:
    - fortinet: Malware
                                        
                                            GET /wp-content/uploads/2020/10/28.-mONEY-bACK.png HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Tue, 03 Nov 2020 07:24:56 GMT
accept-ranges: bytes
content-length: 7270
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 746 x 152, 8-bit colormap, non-interlaced\012- data
Size:   7270
Md5:    d1fb5a5d83c2b4979eb9a38a43802606
Sha1:   0c4ae4dcdbc2225423f6323927954ef1507141d3
Sha256: ae4b6f2fc1e8d6f78110c5f0694ed905c6d599522f1ab5c30638bbb69fced66b
                                        
                                            GET /wp-content/themes/themify-landing/js/themify.script.min.js?ver=5.0.6 HTTP/1.1 
Host: www.biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906224126011&subid=466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 1001
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (501)
Size:   1001
Md5:    0b9070926d46b977161ec1a572299ae1
Sha1:   2fb0c7ff7534d73818f29cd22dd9884a8d9db0e3
Sha256: 3612092149ae982f6f94ef5d7af5f4a022dc8efa52eb18d8a382e47b6f76c7a2

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/themify-landing/themify/themify-builder/js/themify.builder.script.min.js?ver=5.0.5 HTTP/1.1 
Host: www.biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906224126011&subid=466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 15697
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (551)
Size:   15697
Md5:    3ca456c7ab74f2d523dca3ff999941ab
Sha1:   8543c902a8ff405d60332d3ad02863e5fb999b2b
Sha256: 3c96378b65d5fb22c3313952dce83f31f18e6c2662989107d0576d66617ba1d3
                                        
                                            GET /wp-content/themes/themify-landing/themify/js/main.min.js?ver=5.0.5 HTTP/1.1 
Host: www.biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906224126011&subid=466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 26408
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (553)
Size:   26408
Md5:    4f040ddd228d764d433ee31f2fd06868
Sha1:   88b4417a276a08bbb17c02e08c90bfc44179ac07
Sha256: 337f41195e18addb58f14268fbea93376cedcf62dc7f89e73e81177221637a37

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2020/11/4r.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:19:41 GMT
accept-ranges: bytes
content-length: 174896
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1500, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1000], progressive, precision 8, 600x900, components 3\012- data
Size:   174896
Md5:    ee5c3a7b3d275bfa83e1b09fc7961fc6
Sha1:   c4138263bdca73d1f01c5ee5f7af8407862d87ca
Sha256: 308d9e3a68f8572302745735e22b29b13d8eba5ff0fbfadb878ba52f58010c19
                                        
                                            GET /wp-content/uploads/2020/10/26.-60-Day-Money-Back-Guarantee.png HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Tue, 03 Nov 2020 07:25:00 GMT
accept-ranges: bytes
content-length: 49004
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 480 x 480, 8-bit colormap, non-interlaced\012- data
Size:   49004
Md5:    19daf776b1c17b081e2382735f469ae1
Sha1:   02111774fb0f42d7025bab2f9a35db5c877e1ae7
Sha256: 0573acd36c523ebb9fb914409f42ad0d6fc51d59b3b2a0dc52ca8c11124ab6db
                                        
                                            GET /wp-content/uploads/2020/11/BIO-FUNGUS-NUKER_2.png HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Wed, 11 Nov 2020 09:36:02 GMT
accept-ranges: bytes
content-length: 16693
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1353 x 220, 8-bit/color RGBA, non-interlaced\012- data
Size:   16693
Md5:    e84ccd880a21ae914e585d6c6d0f3968
Sha1:   acd7af3c0be0f9eed00b000deee5933714039a5e
Sha256: cb8050910cf07d93e11b1a019a2b6f83730e31a27a048f3e3d9116aae6082ca9
                                        
                                            GET /wp-content/uploads/2020/11/8r.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:19:36 GMT
accept-ranges: bytes
content-length: 142959
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size:   142959
Md5:    dcde181b407e2a4fb76f073117795ef7
Sha1:   d776a33ae438bd23e39f0c2b3186ebf8fc9be87b
Sha256: b343dddcd88fddb8f3f880190ff0fc8897341c49b2c360481f9de4f15807038a
                                        
                                            GET /wp-content/uploads/2020/10/Testimonial-Instagram-Quote-2.png HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Tue, 03 Nov 2020 07:20:07 GMT
accept-ranges: bytes
content-length: 91372
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1080 x 1080, 8-bit colormap, non-interlaced\012- data
Size:   91372
Md5:    96137593658435d55556106487a460ef
Sha1:   acd642d5071a3100f790a95dc5913134445cae58
Sha256: 28501541aa65ddddfcd2a87909ab80fa9aeb27e66f5fd21a300a7f5e4fdab335
                                        
                                            GET /wp-content/uploads/2020/10/30.-Easy-Fixes-For-Smelly-Feet.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:24:40 GMT
accept-ranges: bytes
content-length: 75750
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Size:   75750
Md5:    80083f083079d855125df3d5a07a91eb
Sha1:   23efdac2b1a0916adf1707c5581c39a90f4230ca
Sha256: b6f15e99420334e2cc0ad01080358308a8847d493a76422bf14ef33fd0d71ff0
                                        
                                            GET /wp-content/uploads/themify-css/concate/themify-mobile-dee6a58368f16c5a779def98678d751a.min.css HTTP/1.1 
Host: www.biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906224126011&subid=466
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Tue, 30 Aug 2022 20:17:39 GMT
accept-ranges: bytes
content-length: 6100
date: Tue, 06 Sep 2022 22:41:50 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (6083)
Size:   6100
Md5:    9c65ab3d364b34be36f8ff1aaad5688d
Sha1:   e602603e0bcf1d9aa08fd1a40cc046a9dd61af32
Sha256: c47271831ddb3c92e6a83a18e01c0d0f9a8450852bfa855a0a2a9f2e910edda4
                                        
                                            GET /wp-content/themes/themify-landing/media-queries.min.css?ver=5.0.6 HTTP/1.1 
Host: www.biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906224126011&subid=466
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Thu, 22 Oct 2020 18:52:10 GMT
accept-ranges: bytes
content-length: 4203
date: Tue, 06 Sep 2022 22:41:50 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (4202)
Size:   4203
Md5:    6744c911c6ee2b8940f01439c284a7e4
Sha1:   72f0b106e1efcb4079c699665455901e3265926f
Sha256: f38b8b8614425e370e4972fa42a7d9fe79cd181d03cbd04b12821f426d35a7ee

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2020/11/7r.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:19:38 GMT
accept-ranges: bytes
content-length: 109456
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size:   109456
Md5:    e44b3bd5bc837b9df1fd1cb74afdabd5
Sha1:   3f75200138c7b8e48d35ecf3b6618361aa9c8970
Sha256: b9a0b47a56bbbc597bb6b8135d7281be2109187c03eaffbf96ae8c0aee47b4fa
                                        
                                            GET /wp-content/uploads/2020/11/1r.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:19:48 GMT
accept-ranges: bytes
content-length: 231040
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size:   231040
Md5:    3cc91d3adc5689ea23faa79a9860c982
Sha1:   15b017607ccd0bd87ad99c0aa704b730a183b382
Sha256: 9df5e3df32c0877bf589078c217f4989f67d1306952e0511834d2972c3fded65
                                        
                                            GET /wp-content/uploads/2020/11/11r.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:19:26 GMT
accept-ranges: bytes
content-length: 115168
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size:   115168
Md5:    d494e4fe791e67849f00b74375377d30
Sha1:   59ea2a7426ce425bb5d00ecdeb86035f9530a4a9
Sha256: 7bc7402d27fc4ed8424744b11435d41f3bb378024cb9a66eab87d1e596e683f9
                                        
                                            GET /wp-content/uploads/2020/10/31-Lazy-Mnas-One-Day-Detox.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:24:36 GMT
accept-ranges: bytes
content-length: 84102
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Size:   84102
Md5:    708bd423f428c6632e2fec751c1ab8c4
Sha1:   4c4bb3eeb33bbcdc2e23014cc95cd55080a36250
Sha256: 6133f17999c0c1c9c42a30fd998028416232ce0e84ab7cd0c704f0809fc2b55a
                                        
                                            GET /wp-content/uploads/2020/10/29.-Vitamins-And-Minerals-Handbook.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:24:44 GMT
accept-ranges: bytes
content-length: 91998
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Size:   91998
Md5:    fe6a010f8602871f3888895d0f23455f
Sha1:   5ead712d31c9657696717a0f202861c8284af0b9
Sha256: 36e6cf2199e7785b2367f59e7e1c7deb9b36d61b95b5660d2a7ac933e557eec2
                                        
                                            GET /wp-content/uploads/2020/11/10r.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:19:29 GMT
accept-ranges: bytes
content-length: 165871
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 600x600, components 3\012- data
Size:   165871
Md5:    1c87ab47a38c289997ad53250b2ff537
Sha1:   3b30795949247a558bf650be75d4230cd3774ba9
Sha256: 8bd43efdd39131498a3776f7c708f0025066f4aeed8522070864f4bf7839d8f5
                                        
                                            GET /wp-content/uploads/2020/10/18-rs.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:22:36 GMT
accept-ranges: bytes
content-length: 121901
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:10:23 14:48:03], progressive, precision 8, 900x600, components 3\012- data
Size:   121901
Md5:    65be28f8a079f4436ac5d001d86175ec
Sha1:   385d7e68b60cf6fcbd40e70d367e3516cb6863e0
Sha256: 09f80355d12d6402915eef7f459f3d5d3e4fa27f665c6bf814e0ec0341772bb3
                                        
                                            GET /wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-1.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:20:24 GMT
accept-ranges: bytes
content-length: 112102
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Size:   112102
Md5:    445d6b54165ce12712a5375abfece8ef
Sha1:   ee4f3723c9b7b33ce0d5d5f8d2b187100d6612f9
Sha256: 7a64b93a68712b42d1f045407fd0d3bb8537b85c55705f4d15a7e8c5dd3659e2
                                        
                                            GET /wp-content/uploads/2020/10/19-rs.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:22:32 GMT
accept-ranges: bytes
content-length: 112289
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:10:23 14:47:20], progressive, precision 8, 650x650, components 3\012- data
Size:   112289
Md5:    faa98f31f05fefb116853a0a294911b8
Sha1:   0f556ef256ace144517df2597cf4fa3e8106a95f
Sha256: 275e3a03b42aab4217d1f52033cf0993e6f3b94bab37ee6875d45ddd4993b647
                                        
                                            GET /wp-content/uploads/2020/11/1-BASIC.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:19:56 GMT
accept-ranges: bytes
content-length: 104858
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:11:02 13:45:59], progressive, precision 8, 267x670, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 24935-21573, spot sensor temperature 0.000000, unit fahrenheit, color scheme 0, calibration: offset 2619437658466756329472.000000, slope 4061723361280.000000\012- data
Size:   104858
Md5:    2355ea650107a94df0c7144fba4b3d40
Sha1:   ce7be156916a2dc632a93423e79feca8815ea908
Sha256: 0f680435887c21115d190f5116e0902f950e1726ebfaf3fd3a1674d57d12b02e
                                        
                                            GET /wp-content/uploads/2020/11/17r.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:19:10 GMT
accept-ranges: bytes
content-length: 145952
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:11:02 14:14:27], progressive, precision 8, 700x467, components 3\012- data
Size:   145952
Md5:    5d5272b0e231020c86a3bcf45c9992b2
Sha1:   f5e8ac389ba65fdc181012499442b458509176a5
Sha256: 8b32015d819957ca6256bfec907393fdba75550a29c144cac4f075250a0b5d77
                                        
                                            GET /wp-content/uploads/2020/11/3-STANDARD.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:20:04 GMT
accept-ranges: bytes
content-length: 125560
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:11:02 13:46:17], progressive, precision 8, 267x670, components 3\012- data
Size:   125560
Md5:    c0f4fa670859979e4e547f134faf8d26
Sha1:   59b5bc86311e2a9cfab95bb3b62f56ebf5d9ccc3
Sha256: 576e296fde222c8d182c0651bad7f587c8128eac395d9e7f22536b51279fbe49
                                        
                                            GET /wp-content/uploads/2020/11/9r.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:19:33 GMT
accept-ranges: bytes
content-length: 161260
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size:   161260
Md5:    fa10f4caa0f4f1cc916f5e9e97e6d043
Sha1:   5f450ea6dee721828826576296baf132935e335d
Sha256: 1b88cf27e086bcee12b7969e39455928acd6254c091836fd210a200b33d56b17
                                        
                                            GET /wp-content/uploads/2020/10/19.-Myco-Nuker-Fungal-Natural-Treatment.png HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Tue, 03 Nov 2020 07:25:57 GMT
accept-ranges: bytes
content-length: 157703
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 1080 x 1080, 8-bit colormap, non-interlaced\012- data
Size:   157703
Md5:    40e7b065f2ab8ab30acf837e07ed89f5
Sha1:   24132b610dcd903dc6fca42b118c60a89824a2d3
Sha256: 039b43040ad92a751498808e72a3e1c91f647748e09c71073276d2e338b55541
                                        
                                            GET /wp-content/uploads/2020/10/5-rsToenail-Fungus-Transformation.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:23:14 GMT
accept-ranges: bytes
content-length: 284033
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:10:23 14:56:22], progressive, precision 8, 900x900, components 3\012- data
Size:   284033
Md5:    afff2562975f976e996acab16f1ef233
Sha1:   0f0b12eb817258085dd9bf2b0ab48036168aa581
Sha256: 80047c21c9c6ffb89abff2a12550e1d8cb67d1370df3d3e780a16f97cba77f4b
                                        
                                            GET /wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-3.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:20:28 GMT
accept-ranges: bytes
content-length: 144017
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Size:   144017
Md5:    b446714ddbc04171e1e7b30767922365
Sha1:   5f3424525b71e12813a1c1de2083613c60269968
Sha256: 553beb0af1eb98b33eb14cd9dd992729a11faf22a104e31ee967b6a5384dba65
                                        
                                            GET /wp-content/uploads/2020/11/6-PREMIUM.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:19:59 GMT
accept-ranges: bytes
content-length: 141307
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:11:02 13:45:34], progressive, precision 8, 281x700, components 3\012- data
Size:   141307
Md5:    294e82e9127a87607fc2a9d30f35b0d1
Sha1:   50372b3a9ab2d564c7373d099db87f9b07ccd416
Sha256: 81a1064f1dc34852f060c2e2cd570e2778e2a17fa6daabe2f504eb511c007906
                                        
                                            GET /wp-content/uploads/2020/11/2r.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:19:45 GMT
accept-ranges: bytes
content-length: 299066
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size:   299066
Md5:    330a705f21c79091070ff8997ab6d92b
Sha1:   41f244b2fb7ab11ac2259c3f525e7c51ddfecbc7
Sha256: 74658094ced3ba5e265b4e3e75f8877e0d2646d88bbd2df46731221ed5a83138
                                        
                                            GET /wp-content/uploads/2020/11/15r.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:19:15 GMT
accept-ranges: bytes
content-length: 168793
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size:   168793
Md5:    afeb8ede6d8acbbff45bcd7a3c87eed3
Sha1:   3c57bf4698f0ff51ed0c65984d37030fa27529f0
Sha256: 4525d1ce669ad72055146204530190614a26cc33d867359f21c97ac4a92def12
                                        
                                            GET /wp-content/uploads/2020/11/13r.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:19:21 GMT
accept-ranges: bytes
content-length: 194426
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size:   194426
Md5:    1d24ebcf92fe37e9082c03c2b31e1df0
Sha1:   6107c9cd2b2a269594ce759119ab0ac99e48d42e
Sha256: 6ba149bf6cc9117c8318d71338eb2b5ad9c94f48d894be2828a11608bc78330c
                                        
                                            GET /wp-content/uploads/2020/11/16r.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:19:12 GMT
accept-ranges: bytes
content-length: 194250
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size:   194250
Md5:    67840ca9c5d981ce5054ca2547e8f875
Sha1:   0390830f7e0f2a51682102b78559a9160f94fb1d
Sha256: b67cd2b10f7e9875d9387ab500702b1c1e25eadc66de2c75d3c30d212a856912
                                        
                                            GET /wp-content/uploads/2020/11/12r.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:19:24 GMT
accept-ranges: bytes
content-length: 206418
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size:   206418
Md5:    92861fa27a5685911446a022714d8ed0
Sha1:   81cd10ba9efaffc9d7e1e64c65af7d1473eb23c2
Sha256: 36bf0cd7ed9a85f23eb9c33147c7a8e304a1ede7373d310c3f70d59143dc0b26
                                        
                                            GET /wp-content/uploads/2020/11/23r.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:19:54 GMT
accept-ranges: bytes
content-length: 204851
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size:   204851
Md5:    a8f904dc77916235b57c70f369b2bb6a
Sha1:   541bfb55b58b748d592237520ec28b498df34580
Sha256: 2de640b4f2f06b32e8c4460538f3dcd057048712b1c4b3f5ec83456982bccfae
                                        
                                            GET /wp-content/uploads/2020/11/14r.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:19:18 GMT
accept-ranges: bytes
content-length: 246645
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 30050-16495, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 17875471468176858939392.000000, slope 75530841815994297227822967554048.000000\012- data
Size:   246645
Md5:    48c6967c890da1ab223f9a9d41b9bee9
Sha1:   35ac259c50008332f6c5b122546781dedc8ad029
Sha256: 06efc01636d9cbe89852bc48454b8d3bc8061dc69d0ace4aae812b5a68e6a9dd
                                        
                                            GET /wp-content/uploads/2020/11/Myco-Nuker-label.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 13:52:41 GMT
accept-ranges: bytes
content-length: 775000
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=675, bps=0, PhotometricIntepretation=CMYK, orientation=upper-left, width=1620], baseline, precision 8, 700x292, components 4\012- data
Size:   775000
Md5:    229c89df816b15531898ac6871bd7dbc
Sha1:   fdc27b5c9656642bda4c2838a39d393016b4d825
Sha256: 0fd52035dfea573b25022e5afd69753d820574f06638ffa5943fa35e5fc815e1
                                        
                                            GET /wp-content/uploads/2020/10/To-get-from-this-2-scaled.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:20:57 GMT
accept-ranges: bytes
content-length: 114763
date: Tue, 06 Sep 2022 22:41:50 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 2560x1707, components 3\012- data
Size:   114763
Md5:    8477f3a80322520148723e00f2c58463
Sha1:   717e7275df536587b767560785e5f4433fa30118
Sha256: d7876ba55c7b43bafbb74da2258a2fdc2cdbbb7cab83f9377c096670b6063e1e
                                        
                                            GET /css?family=Oswald:400,700%7CCrimson+Text:700i,400,700,400i&display=swap HTTP/1.1 
Host: fonts.googleapis.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.10
HTTP/2 200 OK
content-type: text/css; charset=utf-8
                                        
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Sep 2022 22:41:49 GMT
date: Tue, 06 Sep 2022 22:41:49 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   1235
Md5:    479fbf3f0dc0adb6971824791bec4eb4
Sha1:   b170d3cb1afdde8ff8895e99aa43b5058fadd3ec
Sha256: 15fee1b9ee9e3ca658bdac39068fc10f64e7ac810a9882ae593fe0f7a6de0169
                                        
                                            GET /wp-content/uploads/2020/10/32.-Fungus-Transformation-Myco-Nuker-1.png HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Tue, 03 Nov 2020 07:24:03 GMT
accept-ranges: bytes
content-length: 2964360
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 5760 x 3000, 8-bit colormap, non-interlaced\012- data
Size:   2964360
Md5:    69c409c5bab0cc632d961368ca75ed3f
Sha1:   82f4f2817f4a30aa14d867ca1d2c5dde267c55a9
Sha256: 10e6c091e39402c70bac1d6b7cd82db1e1c771ef90f14886fc09f5d68eac8c55
                                        
                                            POST /gts1c3 HTTP/1.1 
Host: ocsp.pki.goog
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

                                         
                                         142.250.74.3
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
                                        
Date: Tue, 06 Sep 2022 22:41:50 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

                                        
                                            GET /s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2 HTTP/1.1 
Host: fonts.gstatic.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.biofungusnuker.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

                                         
                                         142.250.74.163
HTTP/2 200 OK
content-type: font/woff2
                                        
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 21:38:35 GMT
expires: Tue, 05 Sep 2023 21:38:35 GMT
cache-control: public, max-age=31536000
age: 90195
last-modified: Mon, 18 Jul 2022 19:23:34 GMT
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  Web Open Font Format (Version 2), TrueType, length 17908, version 1.0\012- data
Size:   17908
Md5:    e46b4e2e3b47cc232937ebf72b4c537e
Sha1:   2675bc06ee643b8c935370325a327efb74746e6a
Sha256: d8543b5dcaea1fc4a0301dc12b5b2adc9079e0794dd6a45879588fb844f3438e
                                        
                                            GET /conversion/iframe/?a=6383&token=2ac0eb6f6c02b0fd4b48d31cd94f8f35 HTTP/1.1 
Host: go.maxweb.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

                                         
                                         172.66.43.113
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Tue, 06 Sep 2022 22:41:50 GMT
vary: Accept-Encoding
expires: Tue, 06 Sep 2022 23:41:50 GMT
cache-control: max-age=3600, private
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 746ab6dffb270af6-OSL
content-encoding: br
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Size:   521
Md5:    6e99d6e231adc9b1d117e3c5e40fe1ef
Sha1:   b0c3ca04824630110f2cc870f204ab23d010618e
Sha256: f13e545dd987c580983de9335c1507dfe76a9426d1630d4554308a9f42fe1d62
                                        
                                            GET /wp-content/themes/themify-landing/themify/js/modules/jquery.imagesloaded.min.js?ver=4.1.4 HTTP/1.1 
Host: www.biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906224126011&subid=466
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 3932
date: Tue, 06 Sep 2022 22:41:50 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (3921)
Size:   3932
Md5:    1f323646e6ff48c37944512d867f49c9
Sha1:   27415be1e46996bd850ba10d193d44feb4f81a69
Sha256: eb0045ba455512d20b72d4a2148abc8c75f3088ca96bcfeadff4a1b56eacbeab

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/themify-landing/themify/js/modules/tf_wow.min.js?ver=5.0.5 HTTP/1.1 
Host: www.biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906224126011&subid=466
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 2110
date: Tue, 06 Sep 2022 22:41:50 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (533)
Size:   2110
Md5:    278c3a0b9f48985031858bd14f855519
Sha1:   2502887ebb26f397ad1152db01f00dc43677b32a
Sha256: ad7c531720b78898150aacbcef72addf69bbd59ccef4eb718397290294b2f5c3
                                        
                                            GET /wp-content/themes/themify-landing/themify/css/animate.min.css?ver=3.6.2 HTTP/1.1 
Host: www.biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906224126011&subid=466
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 12852
date: Tue, 06 Sep 2022 22:41:50 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (12838)
Size:   12852
Md5:    2691132c46dca8f1d65babd2fc8358ae
Sha1:   6ce52079fbd16ad1531ff93cbfa1d7eb32781ba2
Sha256: 9db57198bf6002de2c513968733286b6678a70645bc7c7770224a2c60490e272

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/uploads/2020/10/Myco-nuker_St.png HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662504104.1.0.1662504104.0.0.0; _ga=GA1.1.1465921017.1662504105
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/png
                                        
last-modified: Tue, 03 Nov 2020 07:29:02 GMT
accept-ranges: bytes
content-length: 1157453
date: Tue, 06 Sep 2022 22:41:50 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  PNG image data, 3000 x 3000, 8-bit colormap, non-interlaced\012- data
Size:   1157453
Md5:    bcab79483fb09770c6956d1f626a44cd
Sha1:   07c874ded33c2cadaebe0e2f136f028051998c9b
Sha256: cd33005bef59a3c2c13318f2db5cf691ece5f6a0b5d9cf7a8491150fae4c061f
                                        
                                            GET /sw.js?v=1662504104954 HTTP/1.1 
Host: www.biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: _ga_NWVJ02QJDT=GS1.1.1662504104.1.0.1662504104.0.0.0; _ga=GA1.1.1465921017.1662504105; sessid2=sessid2022090622417024; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220906224126011; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Mon, 14 Feb 2022 11:44:29 GMT
accept-ranges: bytes
content-length: 49
date: Tue, 06 Sep 2022 22:41:50 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with no line terminators
Size:   49
Md5:    6f25a7e5dfc97f9725b80ce6dab06a84
Sha1:   3c01ae61c07356a97633a3612b28ad5e4f99866a
Sha256: ccab01b0139eb20f1b457278aefb951c6ca4d474b26a889fd4e3a59d9aba6f20

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/themify-landing/themify/js/modules/fixedheader.min.js?ver=5.0.5 HTTP/1.1 
Host: www.biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906224126011&subid=466
Cookie: _ga_NWVJ02QJDT=GS1.1.1662504104.1.0.1662504104.0.0.0; _ga=GA1.1.1465921017.1662504105; sessid2=sessid2022090622417024; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220906224126011; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: application/javascript
                                        
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 4126
date: Tue, 06 Sep 2022 22:41:50 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  data
Size:   5565
Md5:    41739d8ee4495c36d66888528846de07
Sha1:   36dac7328b2b4eecef45aee2f41eee3b6dfcf9cd
Sha256: 61f1c229e09eb789a9a4c075b320feb5af0b21c0f757c0c207a19ee323c109bb

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /wp-content/themes/themify-landing/themify/themify-builder/css/modules/frames.min.css?ver=5.0.5 HTTP/1.1 
Host: www.biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906224126011&subid=466
Cookie: _ga_NWVJ02QJDT=GS1.1.1662504104.1.0.1662504104.0.0.0; _ga=GA1.1.1465921017.1662504105; sessid2=sessid2022090622417024; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220906224126011; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: text/css
                                        
last-modified: Thu, 22 Oct 2020 18:52:10 GMT
accept-ranges: bytes
content-length: 705
date: Tue, 06 Sep 2022 22:41:51 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text, with very long lines (704)
Size:   705
Md5:    ba5c5a4de0e92a943dfe7f3e86d4f840
Sha1:   9eadc3b9410cdfd4f3c019519c9002d4857897a6
Sha256: 0feede88e961b94693c86462d85a81249451c555c68d40aa9b39569cc8be94c4
                                        
                                            POST /g/collect?v=2&tid=G-NWVJ02QJDT&gtm=2oe8v0&_p=1576842335&cid=1465921017.1662504105&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662504104&sct=1&seg=0&dl=https%3A%2F%2Fwww.biofungusnuker.com%2F%3Faff_id%3D15%26subid2%3D6383_sessid20220906224126011%26subid%3D466&dt=Eradicate%20Fungus%20%7C%20BIO%20Fungus%20Nuker&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1 
Host: region1.google-analytics.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.biofungusnuker.com
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

                                         
                                         216.239.34.36
HTTP/2 204 No Content
content-type: text/plain
                                        
access-control-allow-origin: https://www.biofungusnuker.com
date: Tue, 06 Sep 2022 22:41:51 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

                                        
                                            GET /sw.js HTTP/1.1 
Host: code.jqueryoi.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

                                         
                                         67.212.173.78
HTTP/2 200 OK
content-type: application/javascript
                                        
server: nginx
date: Tue, 06 Sep 2022 22:41:51 GMT
content-length: 776
last-modified: Wed, 13 Jul 2022 18:17:53 GMT
vary: Accept-Encoding
etag: "62cf0c51-308"
content-encoding: gzip
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline';
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  ASCII text
Size:   776
Md5:    aa6261f6bcdea58ca6703b3109bd5eb6
Sha1:   788cbd4d7de687a942a7d0797e2119de29192e88
Sha256: ab99cce1d646bd4caaca1f3d9af1f9e80a8a607031bde78f31b64c30d65cc8cd

Alerts:
  Blocklists:
    - fortinet: Phishing
                                        
                                            GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff29f2a08-1dd5-4577-ae0d-6852e6e83ba7.jpeg HTTP/1.1 
Host: img-getpocket.cdn.mozilla.net
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

                                         
                                         34.120.237.76
HTTP/2 200 OK
content-type: image/jpeg
                                        
server: nginx
content-length: 5384
x-amzn-requestid: b2d61cc9-3109-4b76-9aee-96f14b755184
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YDqcrFFGIAMF8pA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317bdea-43651bdc494d8c415225415e;Sampled=0
x-amzn-remapped-date: Tue, 06 Sep 2022 21:38:50 GMT
x-amz-cf-pop: SEA19-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: AdZGxVLg3lCcqbxAbsf79mse38ZRqK_L98l4OQZELiaNS4pAjuQ1BA==
via: 1.1 6ca7826fb0f4c565b1af9c7737725c48.cloudfront.net (CloudFront), 1.1 89791e6b21b9a30cc51cac1bc51cf098.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 21:41:08 GMT
age: 3648
etag: "cfca3a21a33e58f300343f643634c50a924bb6db"
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2


--- Additional Info ---
Magic:  JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size:   5384
Md5:    6447311cd0f34fb9cde4e21946e0d8af
Sha1:   cfca3a21a33e58f300343f643634c50a924bb6db
Sha256: e2de947b52e13a0350c5b6904020924b957161d825930677386185a62d2f2401
                                        
                                            GET /track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6 HTTP/1.1 
Host: tracking.buygoods.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.66.40.234
HTTP/2 200 OK
content-type: text/html; charset=UTF-8
                                        
date: Tue, 06 Sep 2022 22:41:50 GMT
vary: Accept-Encoding
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 746ab6dfdeb9b506-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /wp-content/uploads/2020/11/24r.jpg HTTP/1.1 
Host: biofungusnuker.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers

                                         
                                         154.16.114.64
HTTP/2 200 OK
content-type: image/jpeg
                                        
last-modified: Tue, 03 Nov 2020 07:19:51 GMT
accept-ranges: bytes
content-length: 217054
date: Tue, 06 Sep 2022 22:41:49 GMT
server: Apache
X-Firefox-Spdy: h2


--- Additional Info ---
                                        
                                            GET /v1/disclaimer?id=disclaimer&account_id=6213 HTTP/1.1 
Host: display.buygoods.com
                                        
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

                                         
                                         172.66.43.115
HTTP/2 200 OK
                                        
date: Tue, 06 Sep 2022 22:41:50 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-credentials: true
strict-transport-security: max-age=31536000;
set-cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
cache-control: private
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 746ab6df38dcb4eb-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2


--- Additional Info ---