Report - electrocomm.tripod.com/onlinemeds.html

Report Overview

Submitted URL
electrocomm.tripod.com/onlinemeds.html
IP
209.202.252.105
ASN
#6354 LYCOS
Submitted
2022-11-25 03:59:37
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
8

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
mp.4dex.io	2629	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	458 B	468 B	104.18.2.114
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.210.158.59
sp-log.lycos.com	464992	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	389 B	310 B	209.202.254.90
ssl.google-analytics.com	275	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	18 kB	216.58.207.200
securepubads.g.doubleclick.net	190	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	857 B	134 kB	216.58.207.194
b1h-euc1.zemanta.com	49890	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	469 B	150 B	213.227.153.223
bidder.criteo.com	750	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	502 B	335 B	178.250.0.165
log.outbrainimg.com	2177	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.0 kB	646 B	70.42.32.95
dnacdn.net	3760	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	511 B	709 B	178.250.2.146
electrocomm.tripod.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.5 kB	50 kB	209.202.252.105
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	6.2 kB	23.36.77.32
cdn.purpleads.io	185817	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.1 kB	30 kB	143.204.55.67
prebid-eu.creativecdn.com	5570	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	470 B	261 B	185.184.8.90
onetag-sys.com	1840	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	456 B	507 B	51.75.86.98
gum.criteo.com	381	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	665 B	18 kB	178.250.0.157
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	700 B	2.0 kB	54.230.245.100
tlx.3lift.com	598	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	548 B	731 B	18.196.195.252
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.1 kB	4.2 kB	142.250.74.35
www.googletagservices.com	169	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	381 B	28 kB	142.250.74.66
static.criteo.net	652	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	816 B	35 kB	178.250.0.130
images.outbrainimg.com	2085	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	550 B	73 kB	23.38.201.176
gem.gbc.criteo.com	6039	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	387 B	537 B	178.250.6.104
contextual.media.net	513	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	929 B	8.5 kB	23.38.200.22
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.4 kB	9.2 kB	93.184.220.29
scripts.lycos.com	296922	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	781 B	2.8 kB	209.202.254.12
platform.bidgear.com	30367	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	405 B	2.1 kB	172.67.74.36
ocsp.sectigo.com	487	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	340 B	964 B	104.18.32.68
hb.minutemedia-prebid.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	940 B	1.1 kB	44.196.183.4
script.4dex.io	2135	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.3 kB	2.3 kB	104.26.9.169
ib.adnxs.com	241	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	5.3 kB	185.83.142.19
prebid.media.net	1256	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	468 B	564 B	34.107.148.139
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
api.purpleads.io	146037	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.8 kB	124 kB	52.206.34.100
cdn.psdn.xyz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	391 B	87 kB	205.185.216.10
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.2 kB	37 kB	34.120.237.76
prebid.a-mo.net	1148	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	905 B	646 B	147.75.85.234
udmserve.net	3645	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	390 B	472 B	68.71.249.118

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-25	medium	electrocomm.tripod.com/onlinemeds.html	Phishing
2022-11-25	medium	electrocomm.tripod.com/onlinemeds.html	Phishing
2022-11-25	medium	electrocomm.tripod.com/adm/ad/footerAd.iframe.html	Phishing
2022-11-25	medium	electrocomm.tripod.com/adm/ad/injectAd.iframe.html	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (35)

	URL	Size	First Seen	Last Seen
	contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CU2BX48Z&prvid=2034%2C2033%2C2031%2C2030%2C273%2C2028%2C2027%2C236%2C2025%2C2069%2C237%2C117%2C97%2C99%2C3012%2C3011%2C3010%2C201%2C2039%2C3007%2C246%2C4%2C203%2C9%2C2011%2C2055%2C3022%2C3020%2C294%2C251%2C175%2C2009%2C178%2C255%2C3018%2C3017%2C214%2C3014%2C77%2C38%2C182%2C261%2C141%2C222%2C301%2C225%2C10000%2C80%2C108%2C229&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=0&usp_consent=1	23 kB	2023-03-08	2023-03-11
Pretty URL contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CU2BX48Z&prvid=2034%2C2033%2C2031%2C2030%2C273%2C2028%2C2027%2C236%2C2025%2C2069%2C237%2C117%2C97%2C99%2C3012%2C3011%2C3010%2C201%2C2039%2C3007%2C246%2C4%2C203%2C9%2C2011%2C2055%2C3022%2C3020%2C294%2C251%2C175%2C2009%2C178%2C255%2C3018%2C3017%2C214%2C3014%2C77%2C38%2C182%2C261%2C141%2C222%2C301%2C225%2C10000%2C80%2C108%2C229&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=0&usp_consent=1 IP 23.38.200.22 ASN #16625 AKAMAI-AS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:58:32 Last Seen2023-03-11 23:45:27 Times Seen1 Hash 3e3fbe5df218c1dee10d863f807a4d42 8535a6a8b55fd6c0889f16e9658e677d50493676 d615efdc3f4fb91df4cd6dc7d44c5c9e57de323afb59923ab199cf53ecda6f04 Loading...

	electrocomm.tripod.com/onlinemeds.html	104 B	2023-03-07	2024-04-04
Pretty URL electrocomm.tripod.com/onlinemeds.html IP 209.202.252.105 ASN #6354 LYCOS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:12 Last Seen2024-04-04 06:47:53 Times Seen88 Hash 21142a3b7692cea667e3d40d3a959b89 639f05e0056bd286c61f29658d298f30a4ceb962 a9c11f0016d1715a629e7d21330e147280d3b5e720877a8934054a29fec8572c Loading...

	cdn.purpleads.io/video-agent.js?publisherId=baa118f88597f78a9da433cfc284ae13:62f5b7fb63a45a5cb18f0f1f46aeab87502d89635f75a80d1d870d1b20d72f0e1ce0119b83feb1a1eebb642d3c7bff478f181e00d56a49a12d903d3eb9df4454	43 kB	2023-03-11	2023-03-11
Pretty URL cdn.purpleads.io/video-agent.js?publisherId=baa118f88597f78a9da433cfc284ae13:62f5b7fb63a45a5cb18f0f1f46aeab87502d89635f75a80d1d870d1b20d72f0e1ce0119b83feb1a1eebb642d3c7bff478f181e00d56a49a12d903d3eb9df4454 IP 143.204.55.67 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:33:44 Last Seen2023-03-11 21:39:24 Times Seen1 Hash 29d2ecb54277189c0d144b5beca4e6ab 0a74d6193472281a1d6ab2fbbf9f9e00eb79f1b1 9b7181d5ef28a0265e9140e4f812522ed9590f9eb1db04d2a802eb2e7fadba40 Loading...

	platform.bidgear.com/ads.php?domainid=6586&sizeid=2&zoneid=7226	1.6 kB	2023-03-11	2023-03-11
Pretty URL platform.bidgear.com/ads.php?domainid=6586&sizeid=2&zoneid=7226 IP 172.67.74.36 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:33:44 Last Seen2023-03-11 19:33:44 Times Seen1 Hash 4a62a7c781c97f93f3ead7f18ad7565f 5b24d4fbd3234d94edcaa2341ff1eb9fef406344 a16529a16ec9fd7bf5e1a5742adc00e6f7d9ac1999dca22d4559808383b7b207 Loading...

	securepubads.g.doubleclick.net/gpt/pubads_impl_2022111501.js	390 kB	2023-03-08	2023-03-11
Pretty URL securepubads.g.doubleclick.net/gpt/pubads_impl_2022111501.js IP 216.58.207.194 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:38 Last Seen2023-03-11 23:53:02 Times Seen1 Hash 64fc849a9428412b7896345cfeb4acb4 81878c0ee1dc3cee6e61267efef87247c5240adf a4c7748a8849068a7262049472b6b640aea77d843c16a57de3e34d3c47e4a01f Loading...

	scripts.lycos.com/catman/init.js	2.5 kB	2023-03-07	2024-04-17
Pretty URL scripts.lycos.com/catman/init.js IP 209.202.254.12 ASN #6354 LYCOS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:12 Last Seen2024-04-17 18:58:20 Times Seen571 Hash 66e54ed2b8eaa3b82ba27ff49c42e81d 79b8df00da71f4fe5526f855345059c7dcdecfe8 b1d4a753cf3cc25720fc2883a3e6c6be8c43637041c34aa376cf7428f7672520 Loading...

	electrocomm.tripod.com/onlinemeds.html	114 B	2023-03-07	2024-04-04
Pretty URL electrocomm.tripod.com/onlinemeds.html IP 209.202.252.105 ASN #6354 LYCOS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:12 Last Seen2024-04-04 06:47:53 Times Seen88 Hash 782470a4a2f8b88d14f457aeee5ee15d e95cef3827807edabeee9ef667c3cd41c6166c65 ebb20db5b5460abc6083c24d64e5ce094983201ea36dfb48673c6e10c4bdd5d9 Loading...

	electrocomm.tripod.com/adm/ad/footerAd.iframe.html	428 B	2023-03-07	2023-04-02
Pretty URL electrocomm.tripod.com/adm/ad/footerAd.iframe.html IP 209.202.252.105 ASN #6354 LYCOS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:12 Last Seen2023-04-02 21:22:53 Times Seen7 Hash 32d114c54d72faaa1762a3fb783978cf b4e8c4199246a33511892ab9d9b32a315e4e7912 b874c95aec42b7386808bbcf13de5bd587df014e206786e1a112c3e75bacefa7 Loading...

	electrocomm.tripod.com/adm/ad/injectAd.iframe.html	1.5 kB	2023-03-07	2023-04-02
Pretty URL electrocomm.tripod.com/adm/ad/injectAd.iframe.html IP 209.202.252.105 ASN #6354 LYCOS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:12 Last Seen2023-04-02 21:22:53 Times Seen7 Hash 405414607f03f73d09c85aa0777579b0 f92fb01b83db2f63638242551032b5b2e7dcdb57 2da177bb6f4319c45b9e88c295e30860d91e49a2b0b03ea247af5e47fad8c6a7 Loading...

	static.criteo.net/js/ld/publishertag.prebid.130.js	90 kB	2023-03-07	2023-04-05
Pretty URL static.criteo.net/js/ld/publishertag.prebid.130.js IP 178.250.0.130 ASN #44788 Criteo SA Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 18:43:09 Last Seen2023-04-05 02:01:15 Times Seen28 Hash 3c26caaf9394ff0a83109d1d5d0dd349 b72aa136b5e63cbca7cf5dc79c2f91679bdf88a8 a26695adab8d7538059dd2a25948c481f5a8fffefee171985a305f9fea9dd628 Loading...

	electrocomm.tripod.com/onlinemeds.html	2.8 kB	2023-03-11	2023-03-11
Pretty URL electrocomm.tripod.com/onlinemeds.html IP 209.202.252.105 ASN #6354 LYCOS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:33:44 Last Seen2023-03-11 19:33:44 Times Seen1 Hash f1353137f23dceaa5ad6295315b276c3 6553204ae244ab4ab2a05eb6984b48a410bf76b4 df96e99ca4b5a169db6886daa3b8a92c8c4f6ae2779bfc53a50b2fe277f6b93c Loading...

	scripts.lycos.com/catman3/code/tripod.lycos.com/memberembedded.js	1.8 kB	2023-03-08	2023-03-12
Pretty URL scripts.lycos.com/catman3/code/tripod.lycos.com/memberembedded.js IP 209.202.254.12 ASN #6354 LYCOS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:09:32 Last Seen2023-03-12 18:25:09 Times Seen1 Hash 659a06bbecd72afa18551e0dacde797c 5575bed3bd2d0cb0d2890c11fd494b92fc1b92f4 cfc94e99d3866ff33c4d8d82c63f2cbbf1a1125b6ee6dbab6b4780b2a49c8229 Loading...

	gum.criteo.com/syncframe?origin=publishertag&topUrl=electrocomm.tripod.com#%7B%22uid%22:%7B%22origin%22:0%7D,%22lwid%22:%7B%22origin%22:0%7D,%22bundle%22:%7B%22origin%22:0%7D,%22optout%22:%7B%22value%22:false,%22origin%22:0%7D,%22sid%22:%7B%22origin%22:0%7D,%22tld%22:%22tripod.com%22,%22topUrl%22:%22electrocomm.tripod.com%22,%22version%22:130,%22cw%22:true,%22lsw%22:true,%22origin%22:%22publishertag%22,%22requestId%22:%220.28426741497290875%22%7D	418 B	2023-03-07	2023-04-01
Pretty URL gum.criteo.com/syncframe?origin=publishertag&topUrl=electrocomm.tripod.com#%7B%22uid%22:%7B%22origin%22:0%7D,%22lwid%22:%7B%22origin%22:0%7D,%22bundle%22:%7B%22origin%22:0%7D,%22optout%22:%7B%22value%22:false,%22origin%22:0%7D,%22sid%22:%7B%22origin%22:0%7D,%22tld%22:%22tripod.com%22,%22topUrl%22:%22electrocomm.tripod.com%22,%22version%22:130,%22cw%22:true,%22lsw%22:true,%22origin%22:%22publishertag%22,%22requestId%22:%220.28426741497290875%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:51:37 Last Seen2023-04-01 10:34:33 Times Seen447 Hash 755b312976dc0edb23fa08bed999c482 6685710ba04dc63e4122ec3ce89f3adfe479adf4 663197a6a8353d989cdc65d4f3112e425a00839c85a3fde99bbe451a9c604a6f Loading...

	gum.criteo.com/syncframe?origin=publishertag&topUrl=electrocomm.tripod.com#%7B%22uid%22:%7B%22origin%22:0%7D,%22lwid%22:%7B%22origin%22:0%7D,%22bundle%22:%7B%22origin%22:0%7D,%22optout%22:%7B%22value%22:false,%22origin%22:0%7D,%22sid%22:%7B%22origin%22:0%7D,%22tld%22:%22tripod.com%22,%22topUrl%22:%22electrocomm.tripod.com%22,%22version%22:130,%22cw%22:true,%22lsw%22:true,%22origin%22:%22publishertag%22,%22requestId%22:%220.28426741497290875%22%7D	14 kB	2023-03-07	2023-05-06
Pretty URL gum.criteo.com/syncframe?origin=publishertag&topUrl=electrocomm.tripod.com#%7B%22uid%22:%7B%22origin%22:0%7D,%22lwid%22:%7B%22origin%22:0%7D,%22bundle%22:%7B%22origin%22:0%7D,%22optout%22:%7B%22value%22:false,%22origin%22:0%7D,%22sid%22:%7B%22origin%22:0%7D,%22tld%22:%22tripod.com%22,%22topUrl%22:%22electrocomm.tripod.com%22,%22version%22:130,%22cw%22:true,%22lsw%22:true,%22origin%22:%22publishertag%22,%22requestId%22:%220.28426741497290875%22%7D IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:51:36 Last Seen2023-05-06 00:14:31 Times Seen2035 Hash 49e65b540d43d40997ce3844d41b2dd0 b7331c5edc086ee2c7731b1b36e937e7c44450a7 f185c1b78d87a007d9492a85c6ce64c06cc851ef9f13ca3caf8aaafe243b0ac2 Loading...

	electrocomm.tripod.com/onlinemeds.html	774 B	2023-03-08	2023-04-02
Pretty URL electrocomm.tripod.com/onlinemeds.html IP 209.202.252.105 ASN #6354 LYCOS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 23:09:32 Last Seen2023-04-02 21:22:53 Times Seen8 Hash c71393e5eac61b3e9ccc653bee42790c 88f5ff485720a563448d7bd0d5371378857949ad 7468f4884af0177f307fdf4c7547f4255f418a4a52f4516dd3a5d415900ba8a6 Loading...

	electrocomm.tripod.com/adm/ad/footerAd.iframe.html	1.7 kB	2023-03-07	2023-04-02
Pretty URL electrocomm.tripod.com/adm/ad/footerAd.iframe.html IP 209.202.252.105 ASN #6354 LYCOS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:12 Last Seen2023-04-02 21:22:53 Times Seen7 Hash c97741e620efa373c9d004caaaa49703 bed820f8811b9fe01597326544695918d27d542b 9ec195beee76b3ba39c3a8b7388cc9a94608a60c80c80ea2247bcc1914d76118 Loading...

	acdn.adnxs.com/dmp/async_usersync.html	53 kB	2023-03-07	2023-12-07
Pretty URL acdn.adnxs.com/dmp/async_usersync.html IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:46 Last Seen2023-12-07 18:10:42 Times Seen719 Hash b9209c89b2e3e289b9354d90fe0a28e4 e335cad88fe42d0803d89b9deacee8925cc1d75c eb465362ecc5bb3962677fd3fe5b096d57864d446f4d2cdee069b8b6556a586d Loading...

	cdn.purpleads.io/agent.js?publisherId=578907b000c053fb8e5d64f2910adc88:3648297a2037798a703a260270c31e5f177137dbb9d66359b21b3a730dfe501c185d3900933e00bbd7a4b9d4fb44ed51472f8275678f64b194e7f85cf6f4dd9d	56 kB	2023-03-11	2023-03-11
Pretty URL cdn.purpleads.io/agent.js?publisherId=578907b000c053fb8e5d64f2910adc88:3648297a2037798a703a260270c31e5f177137dbb9d66359b21b3a730dfe501c185d3900933e00bbd7a4b9d4fb44ed51472f8275678f64b194e7f85cf6f4dd9d IP 143.204.55.67 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:33:44 Last Seen2023-03-11 21:39:24 Times Seen1 Hash 581f30d2f047217159ade10df470b118 3adb33dff79b2f8d479f47bf5c96197578222202 fe76e446ccc56e00699f9d70947237f4eba3f3d534d08793293fc9fdfa9591b8 Loading...

	electrocomm.tripod.com/onlinemeds.html	1.9 kB	2023-03-11	2023-03-11
Pretty URL electrocomm.tripod.com/onlinemeds.html IP 209.202.252.105 ASN #6354 LYCOS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 19:33:44 Last Seen2023-03-11 19:33:44 Times Seen1 Hash 6e212b693c9e6e9549744a682c381e0d 0cb79631c906faecb4dc1d24c16221d559612f3d cb7413668fc1caa68b2d29b318a4245c22cec90da209664e401d1e4953b30f69 Loading...

	script.4dex.io/localstore.js	483 B	2023-03-07	2024-03-04
Pretty URL script.4dex.io/localstore.js IP 104.26.9.169 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:09 Last Seen2024-03-04 13:07:26 Times Seen5600 Hash 922cffdd75f7192f75231d92684885aa 48ae21017844de388e0a32206a2691fa4c109669 e8fe64429e5900c16c7f8dd7861704e2f4d38e00cbb16bc18820b46d92461389 Loading...

	electrocomm.tripod.com/onlinemeds.html	454 B	2023-03-07	2024-04-04
Pretty URL electrocomm.tripod.com/onlinemeds.html IP 209.202.252.105 ASN #6354 LYCOS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:12 Last Seen2024-04-04 06:47:52 Times Seen94 Hash e11284d81ee8e4adb76cfe200a27cb6e 0767ae5d2fa6782483a1c5ec3e7a81c4d44df0fa 0828b2f95c832636040e7a019108ac9342e2c61335a19bc72ddd7956d80470d9 Loading...

	electrocomm.tripod.com/onlinemeds.html	504 B	2023-03-07	2024-04-04
Pretty URL electrocomm.tripod.com/onlinemeds.html IP 209.202.252.105 ASN #6354 LYCOS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:12 Last Seen2024-04-04 06:47:52 Times Seen86 Hash 4f2bc49ade51e6cc1dd4917f66d2bb7e 21f664d7ebaa0afea2706c2e22a0d3d77f3d8639 96025044059bbbcf93a0cea7754ad7e77ac1d019c918931b12a4eef83b110282 Loading...

	www.googletagservices.com/tag/js/gpt.js	80 kB	2023-03-11	2023-03-11
Pretty URL www.googletagservices.com/tag/js/gpt.js IP 142.250.74.66 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 15:25:20 Last Seen2023-03-11 22:05:01 Times Seen1 Hash d7de889bad125bcf034b332f73b99630 f45f51038df3a995ab43d3d73c8ac07b1783b75d 4c2ac5238d2bb08c521bb4c463afd8688f3bb2ee59aa2297ab212a741a010c2b Loading...

	imasdk.googleapis.com/js/sdkloader/ima3.js	379 kB	2023-03-11	2023-03-11
Pretty URL imasdk.googleapis.com/js/sdkloader/ima3.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 13:41:27 Last Seen2023-03-11 23:05:09 Times Seen1 Hash 39456b650832a319efa4c2e1ec75f0cc 0c27b6a62b6739e4a2bae00bee31c37e1eb110dd 2fb94cc5f4e050854cd18abcf65c8e58f62f512e141acf6b256aadbc27f1a48e Loading...

	unknown	0 B	2023-03-07	2024-04-26
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-26 16:30:23 Times Seen37095908 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	ssl.google-analytics.com/ga.js	46 kB	2023-03-07	2024-04-16
Pretty URL ssl.google-analytics.com/ga.js IP 216.58.207.200 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:00 Last Seen2024-04-16 23:24:27 Times Seen3495 Hash e9372f0ebbcf71f851e3d321ef2a8e5a 2c7d19d1af7d97085c977d1b69dcb8b84483d87c 1259ea99bd76596239bfd3102c679eb0a5052578dc526b0452f4d42f8bcdd45f Loading...

	cdn.psdn.xyz/prebid-video-7.22.0-2022-10-26.gz.js	269 kB	2023-03-08	2023-03-13
Pretty URL cdn.psdn.xyz/prebid-video-7.22.0-2022-10-26.gz.js IP 205.185.216.10 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:45:44 Last Seen2023-03-13 17:57:55 Times Seen1 Hash 84e3ba5b6a5bac8a1d20dd9d55a7199f 99aa893074755c39eabc1ba5fe0bb1dbea0f97ab e2e36065bc293def46f304ec1c821797d909addf533405588ff146c856d0ea68 Loading...

	electrocomm.tripod.com/onlinemeds.html	6.7 kB	2023-03-07	2024-04-04
Pretty URL electrocomm.tripod.com/onlinemeds.html IP 209.202.252.105 ASN #6354 LYCOS Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:41:12 Last Seen2024-04-04 06:47:52 Times Seen86 Hash 8c64799a8794003cdb77c4f713b6ec9e 9ada4612bb1014853d22e5ce4d0a47cc86b10741 9985339b2a65d3884651f7aa7d709a3821ed631d25d90e9a7bf5b2702fc3d547 Loading...

		Size	First Seen	Last Seen
	#1 Write - a201cc0040c4b195426f895d97243dea	1.6 kB	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 19:33:44 Last Seen2023-03-11 19:33:44 Times Seen1 Hash a201cc0040c4b195426f895d97243dea fc14cf81f6380a11bf730ea32ef60ac30086cf12 301162f268665bd81ffe900ed5e6681a78627aec9bc907080cf540efc6df5f15 Loading...

	#2 Write - 84b7e7d4c0b8376c74160f2622071641	2.7 kB	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 19:33:44 Last Seen2023-03-11 19:33:44 Times Seen1 Hash 84b7e7d4c0b8376c74160f2622071641 5ad0c0ef51b9d0dfeb116dc9e3619144226b293f f1786be5449bc1f221982ee4da554f321ab41679a36d8bf4e7fdc9f8df54e598 Loading...

	#3 Write - 6af5ed19fd0f4ef1e18b37124bbcb2d2	2.3 kB	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 19:33:44 Last Seen2023-03-11 19:33:44 Times Seen1 Hash 6af5ed19fd0f4ef1e18b37124bbcb2d2 a8ef43eb7536ca1cba46b0d16c3dfe2168da4e15 8bc32c81635e3b39b98da5d3f3b7a4978fe9c28f3aa37593ccf1c22d8c80a0e3 Loading...

	#4 Write - 339d63e4a2f56e641b9082ea90885403	120 B	2023-03-07	2024-04-04
Pretty Observations First Seen2023-03-07 12:41:12 Last Seen2024-04-04 06:47:54 Times Seen100 Hash 339d63e4a2f56e641b9082ea90885403 dbe45ca62e46922fc022a43757cf99aec62db79b dd2b6fc4f143fdd2122541d461dfba11efeb2452247d1086c4af243ab69b1f44 Loading...

	#5 Write - eb84c5d6f01a88f9fa3183462ef9ab9a	845 B	2023-03-08	2024-04-04
Pretty Observations First Seen2023-03-08 23:09:33 Last Seen2024-04-04 06:47:54 Times Seen105 Hash eb84c5d6f01a88f9fa3183462ef9ab9a b7e7eefaf461bbcfd06be5be54551e1a15bfc502 aefd5c48a49325f6509d86766a9473ee57f89e6e7a4fff2829e9b5f802fd84b3 Loading...

	#6 Write - 84d2b3057651c1e63b5faf3c0c348a5d	251 B	2023-03-07	2023-03-12
Pretty Observations First Seen2023-03-07 12:41:12 Last Seen2023-03-12 18:25:09 Times Seen1 Hash 84d2b3057651c1e63b5faf3c0c348a5d fdc06a17c1f6423f1b5e9a5cd6f4da8df23f2531 f6cb874ef218fd37f6569ec971c4c21ac1a95cb9a5f7f44d5cea6dcf9115c6ae Loading...

	#7 Write - 1db21dd39a436428e174944b84d2bd79	297 B	2023-03-08	2023-05-12
Pretty Observations First Seen2023-03-08 23:09:33 Last Seen2023-05-12 00:21:46 Times Seen28 Hash 1db21dd39a436428e174944b84d2bd79 378d2596240e7dcff135d3b9f23d561e87127ca0 f7ce94dcde4d3e20661477b8cfe99ba5f739cdda33058ff7ea5159bef2c1e07a Loading...

HTTP Transactions (95)

URL IP Response Size

electrocomm.tripod.com/onlinemeds.html

209.202.252.105

302 Moved Temporarily

145 B

URL HTTP/1.1
electrocomm.tripod.com/onlinemeds.html
IP
209.202.252.105:0
ASN
#6354 LYCOS

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
145 B (145 bytes)
Hash
bfe2c1d1b36c62666ce9ba537d324bd4
4d52a7c6d2909a506a4e81559eb24e8af077c741
5216ad883da8fe250db6892c9abca11bae07572d49a4c48a3c42276ffe6a9fb8

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /onlinemeds.html HTTP/1.1
Host: electrocomm.tripod.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Moved Temporarily
Server: nginx/1.18.0
Date: Fri, 25 Nov 2022 03:59:25 GMT
Content-Type: text/html
Content-Length: 145
Connection: keep-alive
Location: https://electrocomm.tripod.com/onlinemeds.html

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
7c60904d097cde276e4e5632cef1b9f1
4f805026462589345d85e8df2d18eafba6237504
12af026999398f4976749e320667d43da3f99b7a2e8254aca7a410a964a106aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "12AF026999398F4976749E320667D43DA3F99B7A2E8254ACA7A410A964A106AA"
Last-Modified: Thu, 24 Nov 2022 06:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3909
Expires: Fri, 25 Nov 2022 05:04:35 GMT
Date: Fri, 25 Nov 2022 03:59:26 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
af40a2fcf8debb90c3608002da6c907a
3c75d6c0b557a3bd8d5db50155b8d896e852c145
555617a51ee3077552545a29a3baf0b43e8a82367e4c08110ee480ebedc8b523

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2485
Cache-Control: max-age=112390
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 03:59:26 GMT
Etag: "637f47ef-1d7"
Expires: Sat, 26 Nov 2022 11:12:36 GMT
Last-Modified: Thu, 24 Nov 2022 10:31:11 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
260e9998c20d831b66f1029c8f47aac9
716d630f647c54dc69a7f9c63a6cac294b3df7f7
c9951a909f354174f0075a01c01c3c3aa6960983040e328bfbbbea81aeb405c2

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C9951A909F354174F0075A01C01C3C3AA6960983040E328BFBBBEA81AEB405C2"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15847
Expires: Fri, 25 Nov 2022 08:23:33 GMT
Date: Fri, 25 Nov 2022 03:59:26 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
567df7db606cf5d0871aa5bc9311b6da
4263faac7cbab2fcaf6661911dcad5091c06be17
e9650e1fdc46fc8678708ddcc37ab369c7a6d50489a004be896f20c7a3a644b0

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Backoff
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 25 Nov 2022 03:19:02 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 2424
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: FojPZJYaxcWy7aWW2Zzo2GhLheewgsHHpN55eyIN0iypZ/3RX5oOmseF1tvVmdzHAVf6RHb7zGQ=
x-amz-request-id: J3KJ3ARVZWVE4G1J
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 25 Nov 2022 03:43:41 GMT
age: 945
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 03:59:26 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
0858f02ecefe772279b9ef7dd86665f6
2105403b6eb6757a33c68c1f703ca6d898624f20
ad0a4b6f23b5dfb90728fd3c71de50e1dcc89d029c8e16044cf1211a685b9c58

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD0A4B6F23B5DFB90728FD3C71DE50E1DCC89D029C8E16044CF1211A685B9C58"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5018
Expires: Fri, 25 Nov 2022 05:23:04 GMT
Date: Fri, 25 Nov 2022 03:59:26 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Retry-After, Content-Length, Alert, Cache-Control, ETag, Pragma, Expires, Backoff, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 25 Nov 2022 03:08:53 GMT
cache-control: public,max-age=3600
age: 3033
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
fb6949e7abaa473393f7c604691de14f
599681bba3947709baa603bbae2dd7afd04059a4
36c5165526ea9d34de14d36655ed494d0cffaa11ca3271ee47824ac11246ba13

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4154
Cache-Control: max-age=108997
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 03:59:26 GMT
Etag: "637f3429-1d7"
Expires: Sat, 26 Nov 2022 10:16:03 GMT
Last-Modified: Thu, 24 Nov 2022 09:06:49 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

electrocomm.tripod.com/onlinemeds.html

209.202.252.105

200 OK

17 kB

URL HTTP/1.1
electrocomm.tripod.com/onlinemeds.html
IP
209.202.252.105:0
ASN
#6354 LYCOS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (358)
Size
17 kB (17141 bytes)
Hash
31c0675e3e4eeffff7e2b0fbf805c143
e8325a432d9af640937385054766a89245d22dec
40c7040efcfc0ca8252b5f57e08f4282cd6859ffbd83e05f8d26d6a786aa180c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /onlinemeds.html HTTP/1.1
Host: electrocomm.tripod.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Server: nginx/1.18.0
Date: Fri, 25 Nov 2022 03:59:26 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: *
X-Server-IP: 209.202.244.209
P3P: policyref="http://www.lycos.com/w3c/p3p.xml", CP="IDC DSP COR CURa ADMa DEVa CUSa PSAa IVAa CONo OUR IND UNI STA"
Set-Cookie: CookieStatus=COOKIE_OK; path=/; domain=.tripod.com; expires=Sat, 25-Nov-2023 03:59:26 GMT
MEMBER_PAGE=electrocomm/onlinemeds.html; path=/; domain=.tripod.com
REFERRER=(null); path=/; domain=.tripod.com
X-Frame-Options: SAMEORIGIN
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Origin: *

electrocomm.tripod.com/aztec_temple.jpg

209.202.252.105

404 Not Found

5.2 kB

URL HTTP/1.1
electrocomm.tripod.com/aztec_temple.jpg
IP
209.202.252.105:0
ASN
#6354 LYCOS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (371)
Size
5.2 kB (5245 bytes)
Hash
a8c2671199c38f37308c75d6a72a8d22
4a97c1a9186f87edbbe8cefdc15d789af480a712
6ac794e708ba973e69639722c6d9b89e26d20e65ee938daca446f7da29097dfd

HTTP Headers

GET /aztec_temple.jpg HTTP/1.1
Host: electrocomm.tripod.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/onlinemeds.html
Cookie: CookieStatus=COOKIE_OK; MEMBER_PAGE=electrocomm/onlinemeds.html; REFERRER=(null)
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Server: nginx/1.18.0
Date: Fri, 25 Nov 2022 03:59:27 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: *
X-Server-IP: 209.202.244.193
P3P: policyref="http://www.lycos.com/w3c/p3p.xml", CP="IDC DSP COR CURa ADMa DEVa CUSa PSAa IVAa CONo OUR IND UNI STA"

push.services.mozilla.com/

34.210.158.59

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.210.158.59:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: onO1k1uIAvPi5ZepaVrPHQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: Z5UiRS8fRWsfc/ELNGU4c4gx0BE=

electrocomm.tripod.com/aztecbanner.jpg

209.202.252.105

404 Not Found

5.2 kB

URL HTTP/1.1
electrocomm.tripod.com/aztecbanner.jpg
IP
209.202.252.105:0
ASN
#6354 LYCOS

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, ASCII text, with very long lines (371)
Size
5.2 kB (5243 bytes)
Hash
efd6c04f9b8aea9592f4cacf019bc263
31091470288297f78e209e2337e137d78b6f663d
b5ba319824c71fd0194c038f8c6f7b53c3c6d2854544965d03b04ea1a25af4a5

HTTP Headers

GET /aztecbanner.jpg HTTP/1.1
Host: electrocomm.tripod.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/onlinemeds.html
Cookie: CookieStatus=COOKIE_OK; MEMBER_PAGE=electrocomm/onlinemeds.html; REFERRER=(null)
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 404 Not Found
Server: nginx/1.18.0
Date: Fri, 25 Nov 2022 03:59:27 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
Vary: *
X-Server-IP: 209.202.244.201
P3P: policyref="http://www.lycos.com/w3c/p3p.xml", CP="IDC DSP COR CURa ADMa DEVa CUSa PSAa IVAa CONo OUR IND UNI STA"

scripts.lycos.com/catman/init.js

209.202.254.12

200 OK

927 B

URL HTTP/1.1
scripts.lycos.com/catman/init.js
IP
209.202.254.12:0
ASN
#6354 LYCOS

File type
ASCII text, with very long lines (905)
Size
927 B (927 bytes)
Hash
56d77e7f9d2fe2b1adc0799dc53c85da
6a948e6fd9e1266241427e3f80046a2f8a02042a
6b837e742dda618f16cd4191659c2a1982633858e40fd96234b9c52c2c3b8487

HTTP Headers

GET /catman/init.js HTTP/1.1
Host: scripts.lycos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 03:59:27 GMT
Server: Apache
Last-Modified: Wed, 01 Sep 2021 17:20:36 GMT
ETag: "9c0-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Cache-Control: max-age=21600
Expires: Fri, 25 Nov 2022 09:59:27 GMT
P3P: policyref="http://www.lycos.com/w3c/p3p.xml", CP="CAO DSP CUR ADM DEV PSA CONo TAI OUR IND DEM PRE PUR NAV UNI"
Content-Length: 927
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

scripts.lycos.com/catman3/code/tripod.lycos.com/memberembedded.js

209.202.254.12

200 OK

833 B

URL HTTP/1.1
scripts.lycos.com/catman3/code/tripod.lycos.com/memberembedded.js
IP
209.202.254.12:0
ASN
#6354 LYCOS

File type
HTML document text\012- exported SGML document, ASCII text, with very long lines (970)
Size
833 B (833 bytes)
Hash
69694be0b5647d17f851173ec1cc41a5
5df320f111972771108430f61d8252c8d6cd220b
0e57834763b9970f0b4711e02988fa1eb1fcc82eea40b9d63379369a809d0d82

HTTP Headers

GET /catman3/code/tripod.lycos.com/memberembedded.js HTTP/1.1
Host: scripts.lycos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 03:59:27 GMT
Server: Apache
Last-Modified: Tue, 22 Nov 2022 16:50:55 GMT
ETag: "72e-gzip"
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Cache-Control: max-age=21600
Expires: Fri, 25 Nov 2022 09:59:27 GMT
P3P: policyref="http://www.lycos.com/w3c/p3p.xml", CP="CAO DSP CUR ADM DEV PSA CONo TAI OUR IND DEM PRE PUR NAV UNI"
Content-Length: 833
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.digicert.com/

93.184.220.29

200 OK

278 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
278 B (278 bytes)
Hash
512b936826dcc032c796f4d0a77a055d
ea943d8944e6eb33c68a2891439a203304480333
258c032548066f66f84e7d482e335bf2043aebe937f7786fb20953bb019fe85a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5538
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 03:59:27 GMT
Etag: "637ef937-116"
Last-Modified: Fri, 25 Nov 2022 02:27:09 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 278

cdn.purpleads.io/agent.js?publisherId=578907b000c053fb8e5d64f2910adc88:3648297a2037798a703a260270c31e5f177137dbb9d66359b21b3a730dfe501c185d3900933e00bbd7a4b9d4fb44ed51472f8275678f64b194e7f85cf6f4dd9d

143.204.55.67

200 OK

14 kB

URL HTTP/2
cdn.purpleads.io/agent.js?publisherId=578907b000c053fb8e5d64f2910adc88:3648297a2037798a703a260270c31e5f177137dbb9d66359b21b3a730dfe501c185d3900933e00bbd7a4b9d4fb44ed51472f8275678f64b194e7f85cf6f4dd9d
IP
143.204.55.67:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (55480), with no line terminators
Size
14 kB (13848 bytes)
Hash
a3bfc94d9e4a8dd2d5b78ad5fa404ae5
e217a54a2287525807532aef1ad9aaff2bba5be1
a2abcf9d6141c7aa9c628e99def49a14b3532ec215015822cdb348cb82da186c

HTTP Headers

GET /agent.js?publisherId=578907b000c053fb8e5d64f2910adc88:3648297a2037798a703a260270c31e5f177137dbb9d66359b21b3a730dfe501c185d3900933e00bbd7a4b9d4fb44ed51472f8275678f64b194e7f85cf6f4dd9d HTTP/1.1
Host: cdn.purpleads.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 13848
date: Thu, 24 Nov 2022 08:42:15 GMT
last-modified: Thu, 24 Nov 2022 08:42:09 GMT
etag: "a3bfc94d9e4a8dd2d5b78ad5fa404ae5"
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yhmUVTkUoCciTnrQvpEN_4OzIUl4xdSlrnKndvKqU436Pb1cwN7Wdw==
age: 69433
X-Firefox-Spdy: h2

cdn.purpleads.io/video-agent.js?publisherId=baa118f88597f78a9da433cfc284ae13:62f5b7fb63a45a5cb18f0f1f46aeab87502d89635f75a80d1d870d1b20d72f0e1ce0119b83feb1a1eebb642d3c7bff478f181e00d56a49a12d903d3eb9df4454

143.204.55.67

200 OK

15 kB

URL HTTP/2
cdn.purpleads.io/video-agent.js?publisherId=baa118f88597f78a9da433cfc284ae13:62f5b7fb63a45a5cb18f0f1f46aeab87502d89635f75a80d1d870d1b20d72f0e1ce0119b83feb1a1eebb642d3c7bff478f181e00d56a49a12d903d3eb9df4454
IP
143.204.55.67:0
ASN
#16509 AMAZON-02

File type
Unicode text, UTF-8 text, with very long lines (43290), with no line terminators
Size
15 kB (14935 bytes)
Hash
7fc0d255881423d2a1fac4caa027bd71
ef65f30cc165b3359e9abae7dcabe14e624a4efc
053acf5077e8aeab1e2277c5f00d9d7936064ca2b1b77e35e25148ea32f07502

HTTP Headers

GET /video-agent.js?publisherId=baa118f88597f78a9da433cfc284ae13:62f5b7fb63a45a5cb18f0f1f46aeab87502d89635f75a80d1d870d1b20d72f0e1ce0119b83feb1a1eebb642d3c7bff478f181e00d56a49a12d903d3eb9df4454 HTTP/1.1
Host: cdn.purpleads.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
content-length: 14935
date: Thu, 24 Nov 2022 08:42:15 GMT
last-modified: Wed, 23 Nov 2022 14:06:42 GMT
etag: "7fc0d255881423d2a1fac4caa027bd71"
content-encoding: gzip
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 095562e8748e634f880ee3c4ada2b6d0.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 5d_ipW2AV1nCGgeB0iyvub1JGn9-14l12Ex0JRO2_oEvd9XBEqfkdA==
age: 69433
X-Firefox-Spdy: h2

platform.bidgear.com/ads.php?domainid=6586&sizeid=2&zoneid=7226

172.67.74.36

200 OK

1.4 kB

URL HTTP/2
platform.bidgear.com/ads.php?domainid=6586&sizeid=2&zoneid=7226
IP
172.67.74.36:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1627), with no line terminators
Size
1.4 kB (1426 bytes)
Hash
a49a5abab01c640e44de9ddd9684424c
fd284363d6d23c602e18bac8e4e09d9511ccee2b
778544e1bcd8a45de7c591cf5086c67d76d941bb752fda5f9d8457c3573703b7

HTTP Headers

GET /ads.php?domainid=6586&sizeid=2&zoneid=7226 HTTP/1.1
Host: platform.bidgear.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 25 Nov 2022 03:59:27 GMT
content-type: application/javascript
vary: Accept-Encoding
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AbzZxtSI%2BEdXrLhS2cbZjewBmHBPvUgULM6Ld3WKrkwybe9oojFACHCczokf6kJ9Pr9F9lrpl7Bv6hP7H7MEbrCw22x1I0GbUPWKmAkVUteXiNrkzj6bO%2FvgC9Hp0SUfaLHUnHSC"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f778c5dc3ab509-OSL
content-encoding: br
X-Firefox-Spdy: h2

sp-log.lycos.com/tp_cm.gif

209.202.254.90

200 OK

45 B

URL HTTP/1.1
sp-log.lycos.com/tp_cm.gif
IP
209.202.254.90:0
ASN
#6354 LYCOS

File type
GIF image data, version 89a, 5 x 5\012- data
Size
45 B (45 bytes)
Hash
c4e3e106fbcc28e9c5b2be2a78018886
fe87fba9c2a6384dfe3827cf6608b0692cb79872
e0f8dceb516151e70891cb4ed02aac4b5800b37c13d8328a35919472efe0f93e

HTTP Headers

GET /tp_cm.gif HTTP/1.1
Host: sp-log.lycos.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 03:59:28 GMT
Server: Apache
Last-Modified: Mon, 06 Aug 2018 18:05:44 GMT
ETag: "2d-572c8204a63ec"
Accept-Ranges: bytes
Content-Length: 45
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: image/gif

cdn.psdn.xyz/prebid-video-7.22.0-2022-10-26.gz.js

205.185.216.10

200 OK

86 kB

URL HTTP/2
cdn.psdn.xyz/prebid-video-7.22.0-2022-10-26.gz.js
IP
205.185.216.10:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (65020)
Size
86 kB (86507 bytes)
Hash
700d1de734b4979c4c3059b613e9d7b1
0a7d2ad10cba258cfc2e0376240852a4ae5f4012
2031fbefbf1b070dcf0ebb746438e628fdd59c7daac6952000ef9056b7294eb6

HTTP Headers

GET /prebid-video-7.22.0-2022-10-26.gz.js HTTP/1.1
Host: cdn.psdn.xyz
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 25 Nov 2022 03:59:28 GMT
content-encoding: gzip
content-length: 86507
content-type: application/javascript
last-modified: Wed, 26 Oct 2022 13:24:00 GMT
accept-ranges: bytes
x-rgw-object-type: Normal
etag: "700d1de734b4979c4c3059b613e9d7b1"
cache-control: max-age=31536000
x-amz-request-id: tx0000000000001178867eb-00635934f6-34c6886a-nyc3b
strict-transport-security: max-age=15552000; includeSubDomains; preload
vary: Access-Control-Request-Headers,Access-Control-Request-Method,Origin
x-hw: 1669348768.dop209.sk1.t,1669348768.cds246.sk1.hn,1669348768.cds218.sk1.c
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3677
Expires: Fri, 25 Nov 2022 05:00:45 GMT
Date: Fri, 25 Nov 2022 03:59:28 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3677
Expires: Fri, 25 Nov 2022 05:00:45 GMT
Date: Fri, 25 Nov 2022 03:59:28 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6827d82f488045e02e40d6a2fdbae4b3
4944139a4b08769511ffc6aa913857d88a0db7bc
0e4ef6ddef97ec03d43df4c0bada61d792b9f030e4d9fab5bd3cf904aeaa3bc9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "0E4EF6DDEF97EC03D43DF4C0BADA61D792B9F030E4D9FAB5BD3CF904AEAA3BC9"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3677
Expires: Fri, 25 Nov 2022 05:00:45 GMT
Date: Fri, 25 Nov 2022 03:59:28 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68dc3a7e-f975-440d-a07f-305243b24788.jpeg

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68dc3a7e-f975-440d-a07f-305243b24788.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10531 bytes)
Hash
c71b83b77af9bb19b3845048a3008b43
050da47a42e16a83c1d59419055961fe9f1f4cc0
cb36e84116edbaa02347bc53611a8318ac8284ac71346006cb95688a6a08f662

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F68dc3a7e-f975-440d-a07f-305243b24788.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10531
x-amzn-requestid: aa926e70-4b20-40ba-849d-50e96cab8bea
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cICPAHoqoAMFXHA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe3f9-28cdb407069866236c99a0c7;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:36:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: vfNXShGI5ZxOg8GVHCvI-6hGwZ-Vh-iVmO9YoCneZU05m8f3fiIl0w==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:54:38 GMT
age: 21890
etag: "050da47a42e16a83c1d59419055961fe9f1f4cc0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.3 kB (4309 bytes)
Hash
841a4b110022a99ddea6f7bf66df0fa1
126771b86638108050cf57c0d12faa27f80f0edb
240fbffc1f9104433297d3ff7afba2d0b58d7f1b13d9a9260a1bad25216665db

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1dd98515-d0af-440a-8f3d-4c9986928081.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4309
x-amzn-requestid: a22b4d7e-e208-4bda-81c2-d13e6463380e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: blE0hGNioAMF_Tg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6371e81c-1b13846866f56a0e47675e56;Sampled=0
x-amzn-remapped-date: Mon, 14 Nov 2022 07:02:52 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0sYKpJWi2Tv9Atz3PYXm5j7kmncAOxjcLcK4hgAkJ5b4pNMDmjdB6g==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 07:14:07 GMT
age: 74721
etag: "126771b86638108050cf57c0d12faa27f80f0edb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2302d358-ba65-4bf0-9d74-b5fb532a1d52.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6590 bytes)
Hash
1adbf0cd373a4c06caa71eac14e1286c
236199a790f16dcf96dba80b9945836b37e3c2eb
767fd66cf0751dd80b2453588f9363fac7d9637da3dc9098d25fb65699ca8c5e

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F2302d358-ba65-4bf0-9d74-b5fb532a1d52.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6590
x-amzn-requestid: 5d8b02c4-673a-4c77-8f24-498d9b8a28ff
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cIB8zGeAIAMF4HA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe384-661ce3991caf87e8558158c3;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:01 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: zrf0qGRu_c3x7ZTku1R-I-z2a_AS1vyjO4tIqja0f9XgGxwv6lWviw==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 9046e5a276a05e60ee34c8475e92b8e6.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:35:01 GMT
etag: "236199a790f16dcf96dba80b9945836b37e3c2eb"
content-type: image/jpeg
age: 23067
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

12 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
12 kB (11743 bytes)
Hash
8784bb7a8b88736a6016f712e3183bf3
b0ddc1555d2506177adcdcea77864d75f1245d07
8e331713b0ad0b5670dd33dfdadde665e076a40ddb80905d4df89876d49803d8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F80e95b58-6cf9-4974-a4ce-f8515ca995ee.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11743
x-amzn-requestid: 9ab0aba7-5cd1-4f6c-8984-dc221e1cbf8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cICD-F7joAMFqmA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-637fe3b2-152ba5f1495a44447356cdab;Sampled=0
x-amzn-remapped-date: Thu, 24 Nov 2022 21:35:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oWSNdsrz59sJC2znLnFqa_Zm3T14_d6j-rjzDQe4yV22Dy2Qc4Swaw==
via: 1.1 26ca01ec7377e425b59b6a08cb1ec342.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Thu, 24 Nov 2022 21:54:45 GMT
age: 21883
etag: "b0ddc1555d2506177adcdcea77864d75f1245d07"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

api.purpleads.io/x/init?ts=1669348767395

52.206.34.100

200 OK

6.6 kB

URL HTTP/2
api.purpleads.io/x/init?ts=1669348767395
IP
52.206.34.100:0
ASN
#14618 AMAZON-AES

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.6 kB (6560 bytes)
Hash
9bc7c4877bfa24d0c1bbb774cd906af1
75d9a14e98ffba5a71a6f710be721b593338ffdc
b0e1d9af095632e6d75bc7606bccfb0c1903f5173696cefb7e36c3d34a98358e

HTTP Headers

OPTIONS /x/init?ts=1669348767395 HTTP/1.1
Host: api.purpleads.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,content-type,x-purpleads-version,x-request-url
Referer: https://electrocomm.tripod.com/
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 25 Nov 2022 03:59:28 GMT
access-control-allow-origin: https://electrocomm.tripod.com
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
access-control-allow-headers: authorization,content-type,x-purpleads-version,x-request-url
x-request-id: b51d1377-4e84-4723-bd53-fa14452672f1
X-Firefox-Spdy: h2

electrocomm.tripod.com/aztecbanner.jpg

209.202.252.105

404 Not Found

14 kB

URL HTTP/2
electrocomm.tripod.com/aztecbanner.jpg
IP
209.202.252.105:0
ASN
#6354 LYCOS

File type
data
Size
14 kB (13520 bytes)
Hash
6d99468662105c7e9d165a09a7059a58
23d1f16d4b0784c686f9e18c296c26941ea89ed0
42ae20a5aa27a4e8a636ec1c80cde7d60d9ccf76195d53bbdc359c63aa494faf

HTTP Headers

GET /aztecbanner.jpg HTTP/1.1
Host: electrocomm.tripod.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/onlinemeds.html
Cookie: CookieStatus=COOKIE_OK; MEMBER_PAGE=electrocomm/onlinemeds.html; REFERRER=(null)
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx/1.18.0
date: Fri, 25 Nov 2022 03:59:27 GMT
content-type: text/html
vary: *
x-server-ip: 209.202.244.197
p3p: policyref="http://www.lycos.com/w3c/p3p.xml", CP="IDC DSP COR CURa ADMa DEVa CUSa PSAa IVAa CONo OUR IND UNI STA"
X-Firefox-Spdy: h2

api.purpleads.io/x/init?ts=1669348767395

52.206.34.100

200 OK

68 B

URL HTTP/2
api.purpleads.io/x/init?ts=1669348767395
IP
52.206.34.100:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text, with no line terminators
Size
68 B (68 bytes)
Hash
f28248b8cdef8ef9e4181ef6e9b11742
3e6e5226ddedd8a23980cbec45ddc657e7714f65
587259314084a04755f0dfb2d0f0e9f07bdf03a575352e366e308d2e19cfc70a

HTTP Headers

GET /x/init?ts=1669348767395 HTTP/1.1
Host: api.purpleads.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://electrocomm.tripod.com/
Content-Type: application/json
x-purpleads-version: 2.2.13
x-request-url: aHR0cHM6Ly9lbGVjdHJvY29tbS50cmlwb2QuY29tL29ubGluZW1lZHMuaHRtbA==
Authorization: Bearer 578907b000c053fb8e5d64f2910adc88:3648297a2037798a703a260270c31e5f177137dbb9d66359b21b3a730dfe501c185d3900933e00bbd7a4b9d4fb44ed51472f8275678f64b194e7f85cf6f4dd9d
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 25 Nov 2022 03:59:28 GMT
content-type: application/json; charset=utf-8
content-length: 68
access-control-allow-origin: https://electrocomm.tripod.com
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
x-request-id: 9522be29-8dda-4896-b0e0-62180ab2c623
etag: W/"44-Pm5SJt3t2KI5gMvsRd3GV+dxT2U"
vary: Accept-Encoding
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 03:59:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
dd0dd96ca622aa07354fabdd0da767bf
a29eaa02a81dabed2c12be20a89d65a5a0417524
6a670e9031ec8c94bdc91c47a2d6a4ca2bd95fe032fec28888a8e6d7dc163cb4

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 03:59:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f86429279e19a89ba7fae87ba2406b4e
abfa5369a7feb4dfebf13f5eb902c3e860976238
76d03c181e150e7e3a61bfa8489231999fb562f6cb0b382c456b9a37da1106a6

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 03:59:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

api.purpleads.io/x/b/?idx=0&pid=658770145b464c60b754d76e90c31de2&sizes=[[300,250],[200,200],[250,250],[300,100]]&slotid=9e433710-a74b-4ae7-8b20-6c83c13b1760&ts=1669348767623

52.206.34.100

200 OK

112 kB

URL HTTP/2
api.purpleads.io/x/b/?idx=0&pid=658770145b464c60b754d76e90c31de2&sizes=[[300,250],[200,200],[250,250],[300,100]]&slotid=9e433710-a74b-4ae7-8b20-6c83c13b1760&ts=1669348767623
IP
52.206.34.100:0
ASN
#14618 AMAZON-AES

File type
gzip compressed data, from Unix\012- data
Size
112 kB (112288 bytes)
Hash
72763d5d868c1d49851045cbcb2871e0
a1149d3bf2a2e33e83bcab02a1c56fafc18b943d
a7fd71b1323003ce9b83c44f350d080ac083a87161147581e62f95618cb1b37c

HTTP Headers

OPTIONS /x/b/?idx=0&pid=658770145b464c60b754d76e90c31de2&sizes=[[300,250],[200,200],[250,250],[300,100]]&slotid=9e433710-a74b-4ae7-8b20-6c83c13b1760&ts=1669348767623 HTTP/1.1
Host: api.purpleads.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,content-type,x-purpleads-version,x-request-url
Referer: https://electrocomm.tripod.com/
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 25 Nov 2022 03:59:28 GMT
access-control-allow-origin: https://electrocomm.tripod.com
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
access-control-allow-headers: authorization,content-type,x-purpleads-version,x-request-url
x-request-id: 4961fb72-426f-42ea-a24b-2dc4b2bb31e0
X-Firefox-Spdy: h2

ssl.google-analytics.com/ga.js

216.58.207.200

200 OK

17 kB

URL HTTP/2
ssl.google-analytics.com/ga.js
IP
216.58.207.200:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1305)
Size
17 kB (17168 bytes)
Hash
01d5892e6e243b52998310c2925b9f3a
58180151b6a6ee4af73583a214b68efb9e8844d4
7e90efb4620a78e8869796d256bcddbde90b853c8c15c5cc116cb11d3d17bc4d

HTTP Headers

GET /ga.js HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 17168
date: Fri, 25 Nov 2022 02:17:12 GMT
expires: Fri, 25 Nov 2022 04:17:12 GMT
cache-control: public, max-age=7200
age: 6136
last-modified: Tue, 27 Sep 2022 22:01:05 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

www.googletagservices.com/tag/js/gpt.js

142.250.74.66

200 OK

27 kB

URL HTTP/2
www.googletagservices.com/tag/js/gpt.js
IP
142.250.74.66:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (40310)
Size
27 kB (27210 bytes)
Hash
3097863d148e6cdfee35da37197a4199
af9c3a80ff613a6a0410ab252f5e2cb06343c85d
59466fd91db19a9c60aa70b5a2b48e21638d0dc554bff4d96a34bf678e174692

HTTP Headers

GET /tag/js/gpt.js HTTP/1.1
Host: www.googletagservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: text/javascript
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 27210
date: Fri, 25 Nov 2022 03:59:28 GMT
expires: Fri, 25 Nov 2022 03:59:28 GMT
cache-control: private, max-age=900, stale-while-revalidate=3600
etag: "1402 / 735 of 1000 / last-modified: 1669244741"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
a0111a2443450172e5d2b48d350a8f57
75e89d4cd001303e66a93880f96d6c47e7d665ab
c9865c82b8f373aeb3a7333b0f65408211d832aba753c35d3544ecb2913f4f64

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 03:59:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
4af780570d49b327d38dc189095448e9
1dd4193a2afeb237c5e475b603b1cbd137f7f97e
f25ef2e65d3c2acbba49b5d36c2fe37f8d404fa3b0ea5cdd6c93ac1685a6129a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 03:59:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d3d2d21ac304813a16da64921ce18ba4
98b1762c675c61eeb18254986461e6b1074ebc92
af00429c189464ddb8df704dc48035421f943444df6ca17390fb97466c2e7e9b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 03:59:28 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ssl.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1874572960&utmhn=electrocomm.tripod.com&utme=8(member_name)9(electrocomm)&utmcs=windows-1252&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Online%20Prescription%20Medications%20Page%201&utmhid=1487170181&utmr=-&utmp=%2Fonlinemeds.html&utmht=1669348768008&utmac=UA-21402695-19&utmcc=__utma%3D31113466.1133155463.1669348768.1669348768.1669348768.1%3B%2B__utmz%3D31113466.1669348768.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=330646686&utmredir=1&utmu=qRAAAAAAAAAAAAAAAAAAAAAE~

216.58.207.200

200 OK

35 B

URL HTTP/2
ssl.google-analytics.com/r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1874572960&utmhn=electrocomm.tripod.com&utme=8(member_name)9(electrocomm)&utmcs=windows-1252&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Online%20Prescription%20Medications%20Page%201&utmhid=1487170181&utmr=-&utmp=%2Fonlinemeds.html&utmht=1669348768008&utmac=UA-21402695-19&utmcc=__utma%3D31113466.1133155463.1669348768.1669348768.1669348768.1%3B%2B__utmz%3D31113466.1669348768.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=330646686&utmredir=1&utmu=qRAAAAAAAAAAAAAAAAAAAAAE~
IP
216.58.207.200:0
ASN
#15169 GOOGLE

File type
GIF image data, version 89a, 1 x 1\012- data
Size
35 B (35 bytes)
Hash
28d6814f309ea289f847c69cf91194c6
0f4e929dd5bb2564f7ab9c76338e04e292a42ace
8337212354871836e6763a41e615916c89bac5b3f1f0adf60ba43c7c806e1015

HTTP Headers

GET /r/__utm.gif?utmwv=5.7.2&utms=1&utmn=1874572960&utmhn=electrocomm.tripod.com&utme=8(member_name)9(electrocomm)&utmcs=windows-1252&utmsr=1280x1024&utmvp=1268x939&utmsc=24-bit&utmul=en-us&utmje=0&utmfl=-&utmdt=Online%20Prescription%20Medications%20Page%201&utmhid=1487170181&utmr=-&utmp=%2Fonlinemeds.html&utmht=1669348768008&utmac=UA-21402695-19&utmcc=__utma%3D31113466.1133155463.1669348768.1669348768.1669348768.1%3B%2B__utmz%3D31113466.1669348768.1.1.utmcsr%3D(direct)%7Cutmccn%3D(direct)%7Cutmcmd%3D(none)%3B&utmjid=330646686&utmredir=1&utmu=qRAAAAAAAAAAAAAAAAAAAAAE~ HTTP/1.1
Host: ssl.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-origin: *
date: Fri, 25 Nov 2022 03:59:28 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
last-modified: Sun, 17 May 1998 03:00:00 GMT
x-content-type-options: nosniff
content-type: image/gif
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 35
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
bc4a93f5beb27638805f2e467f7cf396
07f68c70914f441f137a4e9c509502ed77588eaf
5f6c3e64a7f288cd4f4bda946711806d8064aca1fc37f916c2c13a956988337d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1985
Cache-Control: max-age=155088
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 03:59:28 GMT
Etag: "637ff0af-117"
Expires: Sat, 26 Nov 2022 23:04:16 GMT
Last-Modified: Thu, 24 Nov 2022 22:31:11 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
74efa5f1d3e7bd0ebc11d0105e19467f
f3a9acd1ae54a2cf5be908612c5e9ad8ea3db474
e28198bdf4c6c65dc77e49ecd1e9f795daba5b20933383c572110d7bdc0bf79b

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4060
Cache-Control: max-age=129080
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 03:59:28 GMT
Etag: "637f82fc-117"
Expires: Sat, 26 Nov 2022 15:50:48 GMT
Last-Modified: Thu, 24 Nov 2022 14:43:08 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 279

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bddb9af5f2fa6234f5f4bb97d6f22c81
0d4fc5394c0e2bc234674dd5111cf6dcd303c2a2
db75b73bb809a5e70765d3443944631983e5e05f95134ab0e7c2b5ad0e0ea452

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DB75B73BB809A5E70765D3443944631983E5E05F95134AB0E7C2B5AD0E0EA452"
Last-Modified: Thu, 24 Nov 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4859
Expires: Fri, 25 Nov 2022 05:20:27 GMT
Date: Fri, 25 Nov 2022 03:59:28 GMT
Connection: keep-alive

securepubads.g.doubleclick.net/pagead/ppub_config?ippd=electrocomm.tripod.com

216.58.207.194

200 OK

87 B

URL HTTP/2
securepubads.g.doubleclick.net/pagead/ppub_config?ippd=electrocomm.tripod.com
IP
216.58.207.194:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
87 B (87 bytes)
Hash
1e61f2b0a55364f0e6465e3224c23574
795213e78711fef4dbb973f1825e50e0fd401b78
c336ef744f936b96bb35bdd0445cbdd48bc4ecaf2bfd3774d3161c8002b37a7b

HTTP Headers

GET /pagead/ppub_config?ippd=electrocomm.tripod.com HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
p3p: policyref="https://googleads.g.doubleclick.net/pagead/gcn_p3p_.xml", CP="CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
date: Fri, 25 Nov 2022 03:59:28 GMT
expires: Fri, 25 Nov 2022 03:59:28 GMT
cache-control: private, max-age=3600, stale-while-revalidate=3600
content-type: application/json; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 87
x-xss-protection: 0
set-cookie: test_cookie=CheckForPermission; expires=Fri, 25-Nov-2022 04:14:28 GMT; path=/; domain=.doubleclick.net; Secure; SameSite=none
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

script.4dex.io/localstore.js

104.26.9.169

200 OK

268 B

URL HTTP/2
script.4dex.io/localstore.js
IP
104.26.9.169:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (482)
Size
268 B (268 bytes)
Hash
58fe1f2623397cca72ecea6ee95d76b9
ac4d33ae761cf330574597936273a9c5d82f96d0
7cb0b5944c53bbacc5983fbef96aa0c1f514ec12da81666765610eae562a9020

HTTP Headers

GET /localstore.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 25 Nov 2022 03:59:28 GMT
content-type: application/javascript
cache-control: public, max-age=1800
etag: W/"922cffdd75f7192f75231d92684885aa"
last-modified: Wed, 23 Nov 2022 15:43:18 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 127697
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ad9VIczRR7SWa%2BEseRbiXPtVh7Sz7x9iHMhw8u6lIZTTgCWw0QYLqDH8rdee%2Bhd2HCIhQvMOn1uS05NWerCJfnqNCiFVuIU5zXdtwSRHG%2B1tVQud2fkITqPtrLvHrs2c"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f778cb8d7c0b59-OSL
content-encoding: br
X-Firefox-Spdy: h2

securepubads.g.doubleclick.net/gpt/pubads_impl_2022111501.js

216.58.207.194

200 OK

132 kB

URL HTTP/2
securepubads.g.doubleclick.net/gpt/pubads_impl_2022111501.js
IP
216.58.207.194:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (65395)
Size
132 kB (132177 bytes)
Hash
3308ca8addf332f89a8f9ae5fada3b60
69a0af021add1aa44292528532ef632aff2ab1d0
7c1c9e093bf8e56cf2ba9af1d8cfc092f7a98c4b9472abc3257147aa97ec0ee3

HTTP Headers

GET /gpt/pubads_impl_2022111501.js HTTP/1.1
Host: securepubads.g.doubleclick.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="ads-gpt-scs"
report-to: {"group":"ads-gpt-scs","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/ads-gpt-scs"}]}
timing-allow-origin: *
content-length: 132177
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 24 Nov 2022 10:34:42 GMT
expires: Fri, 24 Nov 2023 10:34:42 GMT
cache-control: public, immutable, max-age=31536000
last-modified: Tue, 15 Nov 2022 09:35:23 GMT
content-type: text/javascript
age: 62686
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

prebid.a-mo.net/a/c

147.75.85.234

204 No Content

0 B

URL HTTP/2
prebid.a-mo.net/a/c
IP
147.75.85.234:0
ASN
#54825 PACKET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 918
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://electrocomm.tripod.com
cache-control: max-age=0, private, must-revalidate
date: Fri, 25 Nov 2022 03:59:28 GMT
server: envoy
vary: origin, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
a22af6cba245c461a2f7ed1d4bc9c657
a71418d7bb29560b0d9d199e82e826caa6f2eb1d
c06b4d099cb46d82a29179ca6fd9e3dcc3c5cc7f8995691012490484c9704ec1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2735
Cache-Control: max-age=169485
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 03:59:28 GMT
Etag: "638025fe-1d7"
Expires: Sun, 27 Nov 2022 03:04:13 GMT
Last-Modified: Fri, 25 Nov 2022 02:18:38 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
98da5c0715320f1f99cd0b12c1d5896c
b10a802bdecef6160255b6dc7821b0bd06e3e6a5
ad0affad7a5437501a970c771c878cb005a987a5b702a87a0e5122d6c7b4826a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4356
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 03:59:28 GMT
Last-Modified: Fri, 25 Nov 2022 02:46:53 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

ocsp.digicert.com/

93.184.220.29

200 OK

314 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
314 B (314 bytes)
Hash
1a3d01dd00438222c7d27d8be747f973
ce5bb8d544c84ee910beb86f47ea1b5e25e871ad
2e54525e82e31b226beb931a3c12aed9ae4ed07c8d0d14ddd273ca3cbe44647f

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 6314
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 03:59:28 GMT
Last-Modified: Fri, 25 Nov 2022 02:14:14 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 314

b1h-euc1.zemanta.com/api/bidder/prebid/bid/

213.227.153.223

204 No Content

0 B

URL HTTP/1.1
b1h-euc1.zemanta.com/api/bidder/prebid/bid/
IP
213.227.153.223:0
ASN
#60781 LeaseWeb Netherlands B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /api/bidder/prebid/bid/ HTTP/1.1
Host: b1h-euc1.zemanta.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 503
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
Connection: keep-alive
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://electrocomm.tripod.com

bidder.criteo.com/cdb?profileId=207&av=34&wv=7.22.0&cb=10316113032&lsavail=1

178.250.0.165

204 No Content

0 B

URL HTTP/2
bidder.criteo.com/cdb?profileId=207&av=34&wv=7.22.0&cb=10316113032&lsavail=1
IP
178.250.0.165:0
ASN
#44788 Criteo SA

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdb?profileId=207&av=34&wv=7.22.0&cb=10316113032&lsavail=1 HTTP/1.1
Host: bidder.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 387
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Fri, 25 Nov 2022 03:59:28 GMT
vary: Origin
server: Finatra
timing-allow-origin: *
access-control-allow-origin: https://electrocomm.tripod.com
cross-origin-resource-policy: cross-origin
access-control-allow-credentials: true
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
d4c8e14018cc466b3549eab195467be3
438597233b7117cbdb57f2ae2bdb8de354539b8d
f2e5374d08bec9232866469d59af87f30faec51db1ecc115bb96c6636d49a390

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2744
Cache-Control: max-age=154776
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 03:59:28 GMT
Etag: "637fec80-1d7"
Expires: Sat, 26 Nov 2022 22:59:04 GMT
Last-Modified: Thu, 24 Nov 2022 22:13:20 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

prebid-eu.creativecdn.com/bidder/prebid/bids

185.184.8.90

204 No Content

0 B

URL HTTP/2
prebid-eu.creativecdn.com/bidder/prebid/bids
IP
185.184.8.90:0
ASN
#204995 Rtb House S.A.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /bidder/prebid/bids HTTP/1.1
Host: prebid-eu.creativecdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 437
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 204 No Content
date: Fri, 25 Nov 2022 03:59:28 GMT
access-control-allow-origin: https://electrocomm.tripod.com
access-control-allow-credentials: true
access-control-allow-methods: POST
access-control-max-age: 3600
vary: Origin
X-Firefox-Spdy: h2

onetag-sys.com/prebid-request

51.75.86.98

200 OK

41 B

URL HTTP/2
onetag-sys.com/prebid-request
IP
51.75.86.98:0
ASN
#16276 OVH SAS

File type
JSON data\012- , ASCII text, with no line terminators
Size
41 B (41 bytes)
Hash
1c15203d1319c02fe2a06d78bc45eccf
40386992654bdda331c8f6eb21ac79de396119ee
cc81a9c5e7147dba347b0ffd34f64e9a7c40f25782569fec5c3fc68b4017badb

HTTP Headers

POST /prebid-request HTTP/1.1
Host: onetag-sys.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1018
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: https://electrocomm.tripod.com
access-control-allow-headers: content-type, origin, referer, user-agent
access-control-allow-credentials: true
p3p: CP='CURa ADMa DEVa TAIo PSAo PSDo OUR IND UNI PUR INT DEM STA PRE COM NAV OTC NOI DSP COR'
cache-control: no-transform, no-cache
content-type: application/json
content-encoding: gzip
content-length: 41
strict-transport-security: max-age=15552000
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
d451e227869c10fecdf35081940bf550
e1ac7b9aec55adc792987e67f4631f800c7a7c56
1471b6fa55f24be2015f7067e94c3a70d3b84ff2a48d7ceab9f634efc38b4e8a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=124937
Date: Fri, 25 Nov 2022 03:59:28 GMT
Etag: "637f6b22-1d7"
Expires: Sat, 26 Nov 2022 14:41:45 GMT
Last-Modified: Thu, 24 Nov 2022 13:01:22 GMT
Server: ECS (dcb/7F82)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: QFOV_yzIZ2oDDh2ivHkeZsKF2TIEd_Os7hgVo1l_2jNOvXc-6PaGVA==
Age: 6023

ib.adnxs.com/ut/v3/prebid

185.83.142.19

200 OK

145 B

URL HTTP/1.1
ib.adnxs.com/ut/v3/prebid
IP
185.83.142.19:0
ASN
#29990 ASN-APPNEX

File type
JSON data\012- , ASCII text, with no line terminators
Size
145 B (145 bytes)
Hash
17387abecff808fd25d6c87b1280cb37
cf30f40838fa8b7e1a82e6dcba8699febabdcf7f
80093b625d88f9008547926cc371a41fbb7ad173012f981d43c8635e4c9ac549

HTTP Headers

POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 639
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Fri, 25 Nov 2022 03:59:28 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 145
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://electrocomm.tripod.com
AN-X-Request-Uuid: b8c10a5f-975c-405f-a13c-de246e4360b8
Set-Cookie: icu=ChkI9c-IARAKGAEgASgBMKD7gJwGOAFAAUgBEKD7gJwGGAA.; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 23-Feb-2023 03:59:28 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=8340168525515990638; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 23-Feb-2023 03:59:28 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 960.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

tlx.3lift.com/header/auction?lib=prebid&v=7.22.0&referrer=https%3A%2F%2Felectrocomm.tripod.com%2Fonlinemeds.html&tmax=3000

18.196.195.252

200 OK

19 B

URL HTTP/2
tlx.3lift.com/header/auction?lib=prebid&v=7.22.0&referrer=https%3A%2F%2Felectrocomm.tripod.com%2Fonlinemeds.html&tmax=3000
IP
18.196.195.252:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
19 B (19 bytes)
Hash
a548f7b55db665b1df71a33a2bee47a7
4f88e5b6a18226d7207f1458b0b83e428dbf9898
0535c3bb3a17e4ac0fb7d29214d2181275662129dc2bdd2a89c35934e9fc5ba5

HTTP Headers

POST /header/auction?lib=prebid&v=7.22.0&referrer=https%3A%2F%2Felectrocomm.tripod.com%2Fonlinemeds.html&tmax=3000 HTTP/1.1
Host: tlx.3lift.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 408
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 25 Nov 2022 03:59:28 GMT
content-type: application/json; charset=utf-8
content-length: 19
cache-control: no-cache, no-store, must-revalidate
expires: Thu, 15 Oct 1992 20:10:00 GMT
pragma: no-cache
x-xss-protection: 0
accept-ch: sec-ch-ua-mobile,sec-ch-downlink,user-agent,sec-ch-ect,sec-ch-width,sec-ch-prefers-color-scheme,sec-ch-ua-bitness,sec-ch-ua,sec-ch-ua-arch,sec-ch-rtt,sec-ch-viewport-height,sec-ch-ua-platform,sec-ch-viewport-width,sec-ch-ua-platform-version,sec-ch-ua-model,sec-ch-ua-full-version,sec-ch-dpr,sec-ch-device-memory,sec-ch-save-data
access-control-allow-origin: https://electrocomm.tripod.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2

ocsp.sectigo.com/

104.18.32.68

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
104.18.32.68:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
785892186a61ef27fd17cd56608ca118
852f68aacaaab2b0086ccd4894d8b3f46bc81641
c5acd65a7f6da5de7452eb7a8d7a3d1bc51c745ddd5b75c66ffcc4f145875fb0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 03:59:28 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Tue, 22 Nov 2022 19:45:31 GMT
Expires: Tue, 29 Nov 2022 19:45:30 GMT
Etag: "852f68aacaaab2b0086ccd4894d8b3f46bc81641"
Cache-Control: max-age=401761,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb1
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 76f778cc0950b51b-OSL

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
8c7365e34cde83d82e1b2a29b0652188
90316ef2f2e8d9650c288b38212c35fbd6198a02
bc9a19d8d1c5f4bc5afc8e907c1140f9c9a55f783b5b008e322a4b840e2decb1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=128822
Date: Fri, 25 Nov 2022 03:59:28 GMT
Etag: "637f7ea1-1d7"
Expires: Sat, 26 Nov 2022 15:46:30 GMT
Last-Modified: Thu, 24 Nov 2022 14:24:33 GMT
Server: ECS (dcb/7F80)
X-Cache: Miss from cloudfront
Via: 1.1 ab09332bca1a3bd382d2e408f65b98d2.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: v30ohby2F5VzP8IpAo005yg7SZcsAgDKCBe5LV3KRgpCfw94CwbIjA==
Age: 4917

script.4dex.io/localstore.js

104.26.9.169

304 Not Modified

0 B

URL HTTP/2
script.4dex.io/localstore.js
IP
104.26.9.169:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /localstore.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
If-Modified-Since: Wed, 23 Nov 2022 15:43:18 GMT
If-None-Match: W/"922cffdd75f7192f75231d92684885aa"
TE: trailers

HTTP/2 304 Not Modified
date: Fri, 25 Nov 2022 03:59:28 GMT
cache-control: public, max-age=1800
etag: W/"922cffdd75f7192f75231d92684885aa"
last-modified: Wed, 23 Nov 2022 15:43:18 GMT
vary: Accept-Encoding
cf-cache-status: HIT
age: 127697
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=3anGaZLDLv3N3yDKxTrc5ztFRzCptUxIglP0AuTSZwsJcfieCMnEkl2U%2FCbtI4rAw7cbb7l0CY0Q3Gk4jWURtP%2BgvFVx4CpwBuvL6acYq0S4XVUmvsGNmJfN%2FCVP7HVt"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f778cdce0a0b59-OSL
X-Firefox-Spdy: h2

prebid.a-mo.net/a/c

147.75.85.234

204 No Content

0 B

URL HTTP/2
prebid.a-mo.net/a/c
IP
147.75.85.234:0
ASN
#54825 PACKET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /a/c HTTP/1.1
Host: prebid.a-mo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1063
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
access-control-allow-credentials: true
access-control-allow-origin: https://electrocomm.tripod.com
cache-control: max-age=0, private, must-revalidate
date: Fri, 25 Nov 2022 03:59:28 GMT
server: envoy
vary: origin, Accept-Encoding
x-nbr: 1
x-envoy-upstream-service-time: 0
X-Firefox-Spdy: h2

mp.4dex.io/prebid

104.18.2.114

204 No Content

0 B

URL HTTP/2
mp.4dex.io/prebid
IP
104.18.2.114:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /prebid HTTP/1.1
Host: mp.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1950
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
date: Fri, 25 Nov 2022 03:59:28 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://electrocomm.tripod.com
cache-control: no-cache, no-store, must-revalidate
expires: 0
pragma: no-cache
vary: Origin, Accept-Encoding
x-err: Parsing the Prebid Request. org/site not found
x-version: 3.0.0-gcp-ams
via: 1.1 google
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 76f778cdd81ab50c-OSL
X-Firefox-Spdy: h2

api.purpleads.io/x/v/?ts=1669348768152

52.206.34.100

200 OK

41 B

URL HTTP/2
api.purpleads.io/x/v/?ts=1669348768152
IP
52.206.34.100:0
ASN
#14618 AMAZON-AES

File type
gzip compressed data, from FAT filesystem (MS-DOS, OS/2, NT)\012- data
Size
41 B (41 bytes)
Hash
1c15203d1319c02fe2a06d78bc45eccf
40386992654bdda331c8f6eb21ac79de396119ee
cc81a9c5e7147dba347b0ffd34f64e9a7c40f25782569fec5c3fc68b4017badb

HTTP Headers

OPTIONS /x/v/?ts=1669348768152 HTTP/1.1
Host: api.purpleads.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,content-type,x-purpleads-version,x-request-url
Referer: https://electrocomm.tripod.com/
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 25 Nov 2022 03:59:28 GMT
access-control-allow-origin: https://electrocomm.tripod.com
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
access-control-allow-headers: authorization,content-type,x-purpleads-version,x-request-url
x-request-id: 2d623f8e-7bb5-4ca8-9d25-800346ab15f7
X-Firefox-Spdy: h2

hb.minutemedia-prebid.com/hb-mm-multi

44.196.183.4

200 OK

105 B

URL HTTP/2
hb.minutemedia-prebid.com/hb-mm-multi
IP
44.196.183.4:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text
Size
105 B (105 bytes)
Hash
caaab8582cebc07fbcec5c2547f9cb06
67e35d165dcd6230a71e3581b246fbe99eec0908
5aac89d508fefef3fcfdb5f207a01a5708456b2a8fddb9dbaa390d01cca8d961

HTTP Headers

POST /hb-mm-multi HTTP/1.1
Host: hb.minutemedia-prebid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 943
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 25 Nov 2022 03:59:28 GMT
content-type: application/json
content-length: 105
access-control-allow-credentials: true
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-WL-CONF, X-Requested-With
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: https://electrocomm.tripod.com
x-reason: gdpr is not applied
X-Firefox-Spdy: h2

hb.minutemedia-prebid.com/hb-mm-multi

44.196.183.4

200 OK

105 B

URL HTTP/2
hb.minutemedia-prebid.com/hb-mm-multi
IP
44.196.183.4:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text
Size
105 B (105 bytes)
Hash
c17cfbd0983bc34cada403a4fa6abda4
b81ce8a8120e9606f75cd509db103e8d16cff041
ac081b6703d921970238c97be19c05f8b0626ef96577f1c14b30b8293fbab668

HTTP Headers

POST /hb-mm-multi HTTP/1.1
Host: hb.minutemedia-prebid.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 939
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 25 Nov 2022 03:59:28 GMT
content-type: application/json
content-length: 105
access-control-allow-credentials: true
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-WL-CONF, X-Requested-With
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: https://electrocomm.tripod.com
x-reason: gdpr is not applied
X-Firefox-Spdy: h2

ib.adnxs.com/ut/v3/prebid

185.83.142.19

200 OK

146 B

URL HTTP/1.1
ib.adnxs.com/ut/v3/prebid
IP
185.83.142.19:0
ASN
#29990 ASN-APPNEX

File type
JSON data\012- , ASCII text, with no line terminators
Size
146 B (146 bytes)
Hash
8512fb0eb0860e43789ada8d8fa51e0a
7f6bb51415930d314ff371323739a9b238cc4bac
d04e6295283c072a753c683ef8f1bf31501bd1a64795f12fac2e937272dc1766

HTTP Headers

POST /ut/v3/prebid HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 533
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Fri, 25 Nov 2022 03:59:29 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 146
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://electrocomm.tripod.com
AN-X-Request-Uuid: 6b515a85-78c5-411a-aabc-b1708c6f933a
Set-Cookie: icu=ChkI9c-IARAKGAEgASgBMKH7gJwGOAFAAUgBEKH7gJwGGAA.; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 23-Feb-2023 03:59:29 GMT; Domain=.adnxs.com; Secure; HttpOnly
uuid2=2814643083961926019; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 23-Feb-2023 03:59:29 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 960.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

udmserve.net/udm/img.fetch?sid=17754;tid=1;dt=6;

68.71.249.118

412 Precondition Failed

1 B

URL HTTP/1.1
udmserve.net/udm/img.fetch?sid=17754;tid=1;dt=6;
IP
68.71.249.118:0
ASN
#20093 ZEROLAG

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
7215ee9c7d9dc229d2921a40e899ec5f
b858cb282617fb0956d960215c8e84d1ccf909c6
36a9e7f1c95b82ffb99743e0c5c4ce95d83c9a430aac59f84ef3cbfab6145068

HTTP Headers

GET /udm/img.fetch?sid=17754;tid=1;dt=6; HTTP/1.1
Host: udmserve.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 412 Precondition Failed
Connection: Keep-Alive
Content-Type: application/x-javascript
P3p: NOI DSP CURa ADMa DEVa PSAa PSDa OUR IND UNI COM NAV INT
Set-Cookie: udmts=1669348768.0; Path=/; Domain=udmserve.net; Expires=Sat, 25 Nov 2023 03:59:28 GMT; Secure; SameSite=None
dt=843C383C-05D3-30E5-AFF3-A56FFF3F0470; Path=/; Domain=udmserve.net; Expires=Sat, 25 Nov 2023 03:59:28 GMT; Secure; SameSite=None
Date: Fri, 25 Nov 2022 03:59:28 GMT
Content-Length: 1

api.purpleads.io/x/v/?ts=1669348768152

52.206.34.100

200 OK

1.3 kB

URL HTTP/2
api.purpleads.io/x/v/?ts=1669348768152
IP
52.206.34.100:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text, with very long lines (2701), with no line terminators
Size
1.3 kB (1264 bytes)
Hash
5d698a61e75b7ae4baf88189454bb31d
f21d272591c1fa56cbdb76e6d275a8ffda182cae
9b877af6d0ff4bf6c70ac5071dd395607582d017b7060c5bbfb295fb25db09db

HTTP Headers

GET /x/v/?ts=1669348768152 HTTP/1.1
Host: api.purpleads.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://electrocomm.tripod.com/
Content-Type: application/json
x-purpleads-version: 2.0.21
x-request-url: aHR0cHM6Ly9lbGVjdHJvY29tbS50cmlwb2QuY29tL29ubGluZW1lZHMuaHRtbA==
Authorization: Bearer baa118f88597f78a9da433cfc284ae13:62f5b7fb63a45a5cb18f0f1f46aeab87502d89635f75a80d1d870d1b20d72f0e1ce0119b83feb1a1eebb642d3c7bff478f181e00d56a49a12d903d3eb9df4454
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 25 Nov 2022 03:59:28 GMT
content-type: application/json; charset=utf-8
access-control-allow-origin: https://electrocomm.tripod.com
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
x-request-id: e68a30c7-e570-409e-a415-cd730257eb69
etag: W/"5c9-SBaZfqvOCo7VhNZ0A3psijz6tBQ"
vary: Accept-Encoding
content-encoding: gzip
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

313 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
313 B (313 bytes)
Hash
9f20542e07df0465c2f191eecaeef84f
72188c3e500f0475798650319cd734341765a569
7fc455be9809ff8e96ea666349b67c8ea62e13c3d1b6b86edc891a16af195e5a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1234
Cache-Control: max-age=151466
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 03:59:31 GMT
Etag: "637fe57b-139"
Expires: Sat, 26 Nov 2022 22:03:57 GMT
Last-Modified: Thu, 24 Nov 2022 21:43:23 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 313

api.purpleads.io/x/b/?idx=1&pid=658770145b464c60b754d76e90c31de2&sizes=[[300,250],[200,200],[250,250],[300,100]]&slotid=9e433710-a74b-4ae7-8b20-6c83c13b1760&demand=unifiedPb&ts=1669348771086

52.206.34.100

200 OK

1.5 kB

URL HTTP/2
api.purpleads.io/x/b/?idx=1&pid=658770145b464c60b754d76e90c31de2&sizes=[[300,250],[200,200],[250,250],[300,100]]&slotid=9e433710-a74b-4ae7-8b20-6c83c13b1760&demand=unifiedPb&ts=1669348771086
IP
52.206.34.100:0
ASN
#14618 AMAZON-AES

File type
gzip compressed data, from Unix\012- data
Size
1.5 kB (1468 bytes)
Hash
bfe3c3c75bf8aa46a478bd1462f8d327
311a5623d4f45282bc753b88fd2c19512010983e
4b730cc045b12cb2400d8c51d71b4da3ceefee2ebc82ec599f3a6951141d6c85

HTTP Headers

OPTIONS /x/b/?idx=1&pid=658770145b464c60b754d76e90c31de2&sizes=[[300,250],[200,200],[250,250],[300,100]]&slotid=9e433710-a74b-4ae7-8b20-6c83c13b1760&demand=unifiedPb&ts=1669348771086 HTTP/1.1
Host: api.purpleads.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: authorization,content-type,x-purpleads-version,x-request-url
Referer: https://electrocomm.tripod.com/
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 25 Nov 2022 03:59:31 GMT
access-control-allow-origin: https://electrocomm.tripod.com
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
access-control-allow-headers: authorization,content-type,x-purpleads-version,x-request-url
x-request-id: 560b40fa-e511-4e04-9716-fb28ac320a56
X-Firefox-Spdy: h2

static.criteo.net/js/ld/publishertag.prebid.130.js

178.250.0.130

200 OK

34 kB

URL HTTP/2
static.criteo.net/js/ld/publishertag.prebid.130.js
IP
178.250.0.130:0
ASN
#44788 Criteo SA

File type
ASCII text, with very long lines (65354)
Size
34 kB (34532 bytes)
Hash
40fac987d38fcacd1e865d20e5b2ea41
9d83d760cecba09e8d8fc907951238c0bd2b0add
3844e330de95965b5c8dbd051f8f01c351a7cd14f1e42699358b050ac18a0676

HTTP Headers

GET /js/ld/publishertag.prebid.130.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 03:59:31 GMT
content-type: text/javascript
last-modified: Sat, 17 Sep 2022 19:59:55 GMT
etag: W/"6326273b-16120"
expires: Sat, 26 Nov 2022 03:59:31 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

images.outbrainimg.com/transform/v3/eyJpdSI6IjQ3NDcxYmY2N2I2MTlmMDA2NTE4M2E1ZDEyMzM2NWI3ODEzN2ViY2YzYjllOWU4YTllYjAyZDAzMWVlZTI5NTciLCJ3Ijo2NDAsImgiOjQ4MCwiZCI6MS4wLCJjcyI6MCwiZiI6MH0.jpg

23.38.201.176

200 OK

73 kB

URL HTTP/2
images.outbrainimg.com/transform/v3/eyJpdSI6IjQ3NDcxYmY2N2I2MTlmMDA2NTE4M2E1ZDEyMzM2NWI3ODEzN2ViY2YzYjllOWU4YTllYjAyZDAzMWVlZTI5NTciLCJ3Ijo2NDAsImgiOjQ4MCwiZCI6MS4wLCJjcyI6MCwiZiI6MH0.jpg
IP
23.38.201.176:0
ASN
#16625 AKAMAI-AS

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 640x480, components 3\012- data
Size
73 kB (72729 bytes)
Hash
6ef435ec07055636cb0afa336bbfc383
73a53898181b30f5cd934509e5107c6cef091b2a
48f5fd7709e69abc7d2880aaaca2284071afc77077e1a6ac2fef4c4805a2972b

HTTP Headers

GET /transform/v3/eyJpdSI6IjQ3NDcxYmY2N2I2MTlmMDA2NTE4M2E1ZDEyMzM2NWI3ODEzN2ViY2YzYjllOWU4YTllYjAyZDAzMWVlZTI5NTciLCJ3Ijo2NDAsImgiOjQ4MCwiZCI6MS4wLCJjcyI6MCwiZiI6MH0.jpg HTTP/1.1
Host: images.outbrainimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/jpeg
content-length: 72729
last-modified: Mon, 14 Nov 2022 08:41:03 GMT
x-traceid: f85661795e0c874c34c29e781e0ba0b8
cache-control: max-age=1788496
date: Fri, 25 Nov 2022 03:59:31 GMT
access-control-allow-credentials: false
access-control-allow-methods: GET,POST
access-control-allow-origin: *
timing-allow-origin: *, *
X-Firefox-Spdy: h2

electrocomm.tripod.com/favicon.ico

209.202.252.105

404 Not Found

5.5 kB

URL HTTP/2
electrocomm.tripod.com/favicon.ico
IP
209.202.252.105:0
ASN
#6354 LYCOS

File type
data
Size
5.5 kB (5549 bytes)
Hash
8975c184c9ef27d0e4b62c9bf71d8cce
25accd3e4b3ab5045472e053b373fb40f665dc3e
330e86fa1b61d18838aeea12eacfecd81bde18c7e3d1e174ddc0370fad07659c

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: electrocomm.tripod.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/onlinemeds.html
Cookie: CookieStatus=COOKIE_OK; MEMBER_PAGE=electrocomm/onlinemeds.html; REFERRER=(null)
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
server: nginx/1.18.0
date: Fri, 25 Nov 2022 03:59:28 GMT
content-type: text/html
vary: *
x-server-ip: 209.202.244.210
p3p: policyref="http://www.lycos.com/w3c/p3p.xml", CP="IDC DSP COR CURa ADMa DEVa CUSa PSAa IVAa CONo OUR IND UNI STA"
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

314 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
314 B (314 bytes)
Hash
1d08f7fbe6aed6d8ba415a8f14d609af
6afb73c7fa74c2f1d99f67c468da8e16e7b9ebec
18e1fed8a1e67f690011be914294e252f800175c4550cb3af93a631fa7eaeff0

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1242
Cache-Control: max-age=109331
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 03:59:32 GMT
Etag: "637f40dd-13a"
Expires: Sat, 26 Nov 2022 10:21:43 GMT
Last-Modified: Thu, 24 Nov 2022 10:01:01 GMT
Server: ECS (ska/F708)
X-Cache: HIT
Content-Length: 314

api.purpleads.io/x/a/b6e81152147836d29c9d2c0cd2771df7:fce3271b80bc20bbdfa8c0265313112a99c8e2a6bb873d6d7aa4f138468b284d096e7eb08b46d9eda8c6050305755d7a4d91860126832219052146f0f31540d5dede4bf418312b8714793ffa367c326a632d9e6b047caab38551053451d59344d9d6ec029d2fdae0d77f03b3d4bf07b78a03432f31380017d16b928b55e1147588c5028f716709fb1fab8ccaf2ef692a/i?id=533a5c9d-aeaa-4b6e-9d9e-c721ec6afd1f

52.206.34.100

204 No Content

0 B

URL HTTP/2
api.purpleads.io/x/a/b6e81152147836d29c9d2c0cd2771df7:fce3271b80bc20bbdfa8c0265313112a99c8e2a6bb873d6d7aa4f138468b284d096e7eb08b46d9eda8c6050305755d7a4d91860126832219052146f0f31540d5dede4bf418312b8714793ffa367c326a632d9e6b047caab38551053451d59344d9d6ec029d2fdae0d77f03b3d4bf07b78a03432f31380017d16b928b55e1147588c5028f716709fb1fab8ccaf2ef692a/i?id=533a5c9d-aeaa-4b6e-9d9e-c721ec6afd1f
IP
52.206.34.100:0
ASN
#14618 AMAZON-AES

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /x/a/b6e81152147836d29c9d2c0cd2771df7:fce3271b80bc20bbdfa8c0265313112a99c8e2a6bb873d6d7aa4f138468b284d096e7eb08b46d9eda8c6050305755d7a4d91860126832219052146f0f31540d5dede4bf418312b8714793ffa367c326a632d9e6b047caab38551053451d59344d9d6ec029d2fdae0d77f03b3d4bf07b78a03432f31380017d16b928b55e1147588c5028f716709fb1fab8ccaf2ef692a/i?id=533a5c9d-aeaa-4b6e-9d9e-c721ec6afd1f HTTP/1.1
Host: api.purpleads.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
date: Fri, 25 Nov 2022 03:59:31 GMT
access-control-allow-origin: api.purpleads.io
access-control-allow-credentials: true
access-control-allow-methods: GET, PUT, POST, DELETE, HEAD, OPTIONS
x-request-id: f32f7a03-1475-4545-840d-011f8b4859e4
X-Firefox-Spdy: h2

gum.criteo.com/sid/json?origin=publishertag&domain=tripod.com&sn=FirefoxSyncframe&so=0&topUrl=electrocomm.tripod.com&info=Qu66J180M0RITmhlJTJCZkMwOUJGQlhaMUN2czUlMkIxNE1QVURQMGdvUXlJWE9BNUc0REpaVHE5TkllJTJGSHF2VUJuajBKYndq&idsd=-1036980388,-684650389&cw=1&lsw=1

178.250.0.157

200 OK

17 kB

URL HTTP/2
gum.criteo.com/sid/json?origin=publishertag&domain=tripod.com&sn=FirefoxSyncframe&so=0&topUrl=electrocomm.tripod.com&info=Qu66J180M0RITmhlJTJCZkMwOUJGQlhaMUN2czUlMkIxNE1QVURQMGdvUXlJWE9BNUc0REpaVHE5TkllJTJGSHF2VUJuajBKYndq&idsd=-1036980388,-684650389&cw=1&lsw=1
IP
178.250.0.157:0
ASN
#44788 Criteo SA

File type
JSON data\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (52990)
Size
17 kB (17376 bytes)
Hash
b821a0308f7ebc951f8f4de03ab3ab3f
cf15628dea94254aa5aebfe11987579035654045
dfc130b2e71771baa34960120d7d30fb496ba9930e723e921379fd465fe66dd4

HTTP Headers

GET /sid/json?origin=publishertag&domain=tripod.com&sn=FirefoxSyncframe&so=0&topUrl=electrocomm.tripod.com&info=Qu66J180M0RITmhlJTJCZkMwOUJGQlhaMUN2czUlMkIxNE1QVURQMGdvUXlJWE9BNUc0REpaVHE5TkllJTJGSHF2VUJuajBKYndq&idsd=-1036980388,-684650389&cw=1&lsw=1 HTTP/1.1
Host: gum.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/syncframe?origin=publishertag&topUrl=electrocomm.tripod.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Fri, 25 Nov 2022 03:59:31 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
server-processing-duration-in-ticks: 1160966
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ee60d39c1d4e873714c022f657621400
797739fd4bb4d1719ca31af6604024193e1e6f5d
048093ecbd78f223c2b971d012ec15f34bf4508c533006bb3d203ec91ffb71d4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5521
Cache-Control: max-age=87657
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 03:59:32 GMT
Etag: "637edb7c-1d7"
Expires: Sat, 26 Nov 2022 04:20:29 GMT
Last-Modified: Thu, 24 Nov 2022 02:48:28 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

gem.gbc.criteo.com/newidsd

178.250.6.104

200 OK

45 B

URL HTTP/2
gem.gbc.criteo.com/newidsd
IP
178.250.6.104:0
ASN
#44788 Criteo SA

File type
JSON data\012- , ASCII text, with no line terminators
Size
45 B (45 bytes)
Hash
698ecef202074ed871a4bdd89a7b3369
954b0e2895b0e17796a6b24b362f32dd296af96b
cea3656cc9beedc7aa40d157488318863da1645467a89c30a69d473226a9a571

HTTP Headers

GET /newidsd HTTP/1.1
Host: gem.gbc.criteo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-site

HTTP/2 200 OK
date: Fri, 25 Nov 2022 03:59:31 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 86199
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2

contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CU2BX48Z&prvid=2034%2C2033%2C2031%2C2030%2C273%2C2028%2C2027%2C236%2C2025%2C2069%2C237%2C117%2C97%2C99%2C3012%2C3011%2C3010%2C201%2C2039%2C3007%2C246%2C4%2C203%2C9%2C2011%2C2055%2C3022%2C3020%2C294%2C251%2C175%2C2009%2C178%2C255%2C3018%2C3017%2C214%2C3014%2C77%2C38%2C182%2C261%2C141%2C222%2C301%2C225%2C10000%2C80%2C108%2C229&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=0&usp_consent=1

23.38.200.22

200 OK

8.2 kB

URL HTTP/2
contextual.media.net/checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CU2BX48Z&prvid=2034%2C2033%2C2031%2C2030%2C273%2C2028%2C2027%2C236%2C2025%2C2069%2C237%2C117%2C97%2C99%2C3012%2C3011%2C3010%2C201%2C2039%2C3007%2C246%2C4%2C203%2C9%2C2011%2C2055%2C3022%2C3020%2C294%2C251%2C175%2C2009%2C178%2C255%2C3018%2C3017%2C214%2C3014%2C77%2C38%2C182%2C261%2C141%2C222%2C301%2C225%2C10000%2C80%2C108%2C229&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=0&usp_consent=1
IP
23.38.200.22:0
ASN
#16625 AKAMAI-AS

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (18979)
Size
8.2 kB (8209 bytes)
Hash
afdbbbf58678a5d787afe7dd1b697eca
1e39091e0ab41dbb8c8d85e0f49d9c4fba5b3148
f6b03b8bf1594d80e14c4795932c701728f5b3debd15f47f4d605b84f72ac162

HTTP Headers

GET /checksync.php?vsSync=1&cs=8&cv=31&https=1&cid=8CU2BX48Z&prvid=2034%2C2033%2C2031%2C2030%2C273%2C2028%2C2027%2C236%2C2025%2C2069%2C237%2C117%2C97%2C99%2C3012%2C3011%2C3010%2C201%2C2039%2C3007%2C246%2C4%2C203%2C9%2C2011%2C2055%2C3022%2C3020%2C294%2C251%2C175%2C2009%2C178%2C255%2C3018%2C3017%2C214%2C3014%2C77%2C38%2C182%2C261%2C141%2C222%2C301%2C225%2C10000%2C80%2C108%2C229&itype=PREBID&purpose1=1&gdprconsent=0&gdpr=1&coppa=0&usp_status=0&usp_consent=1 HTTP/1.1
Host: contextual.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: Apache
content-type: text/html; charset=UTF-8
x-mnet-hl2: E
strict-transport-security: max-age=31536000
vary: Accept-Encoding
content-encoding: gzip
cache-control: max-age=172800
expires: Sun, 27 Nov 2022 03:59:32 GMT
date: Fri, 25 Nov 2022 03:59:32 GMT
content-length: 8209
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
ee60d39c1d4e873714c022f657621400
797739fd4bb4d1719ca31af6604024193e1e6f5d
048093ecbd78f223c2b971d012ec15f34bf4508c533006bb3d203ec91ffb71d4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5521
Cache-Control: max-age=87657
Content-Type: application/ocsp-response
Date: Fri, 25 Nov 2022 03:59:32 GMT
Etag: "637edb7c-1d7"
Expires: Sat, 26 Nov 2022 04:20:29 GMT
Last-Modified: Thu, 24 Nov 2022 02:48:28 GMT
Server: ECS (ska/F70B)
X-Cache: HIT
Content-Length: 471

ib.adnxs.com/async_usersync?cbfn=queuePixels

185.83.142.19

307 Redirection

0 B

URL HTTP/1.1
ib.adnxs.com/async_usersync?cbfn=queuePixels
IP
185.83.142.19:0
ASN
#29990 ASN-APPNEX

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /async_usersync?cbfn=queuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acdn.adnxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Fri, 25 Nov 2022 03:59:32 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Location: https://ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
AN-X-Request-Uuid: f1741a82-8408-4dbb-86e9-f4e42c3d89fe
Set-Cookie: uuid2=6096481252837705965; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 23-Feb-2023 03:59:32 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 960.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels

185.83.142.19

200 OK

0 B

URL HTTP/1.1
ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
IP
185.83.142.19:0
ASN
#29990 ASN-APPNEX

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Fri, 25 Nov 2022 03:59:32 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: 325783c5-2b75-4ef8-ab23-b7122a1318ae
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 960.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

log.outbrainimg.com/loggerServices/log-viewability?requestId=d6cb4f8d3da67de54c31a02c6fb67c7c&position=0

70.42.32.95

200 OK

4 B

URL HTTP/1.1
log.outbrainimg.com/loggerServices/log-viewability?requestId=d6cb4f8d3da67de54c31a02c6fb67c7c&position=0
IP
70.42.32.95:0
ASN
#22075 AS-OUTBRAIN

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
b326b5062b2f0e69046810717534cb09
5ffe533b830f08a0326348a9160afafc8ada44db
b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b

HTTP Headers

GET /loggerServices/log-viewability?requestId=d6cb4f8d3da67de54c31a02c6fb67c7c&position=0 HTTP/1.1
Host: log.outbrainimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 03:59:32 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 4
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST
X-TraceId: fe43c5c040e66bbfc56c48b00cfaf33b

log.outbrainimg.com/loggerServices/widgetGlobalEvent?rId=d6cb4f8d3da67de54c31a02c6fb67c7c&pvId=d6cb4f8d3da67de54c31a02c6fb67c7c&sid=9696580&pid=45718&idx=1&wId=171&pad=1&org=0&tm=0&eT=3&cnsnt=no_consent

70.42.32.95

200 OK

4 B

URL HTTP/1.1
log.outbrainimg.com/loggerServices/widgetGlobalEvent?rId=d6cb4f8d3da67de54c31a02c6fb67c7c&pvId=d6cb4f8d3da67de54c31a02c6fb67c7c&sid=9696580&pid=45718&idx=1&wId=171&pad=1&org=0&tm=0&eT=3&cnsnt=no_consent
IP
70.42.32.95:0
ASN
#22075 AS-OUTBRAIN

File type
ASCII text, with no line terminators
Size
4 B (4 bytes)
Hash
b326b5062b2f0e69046810717534cb09
5ffe533b830f08a0326348a9160afafc8ada44db
b5bea41b6c623f7c09f1bf24dcae58ebab3c0cdd90ad966bc43a45b44867e12b

HTTP Headers

GET /loggerServices/widgetGlobalEvent?rId=d6cb4f8d3da67de54c31a02c6fb67c7c&pvId=d6cb4f8d3da67de54c31a02c6fb67c7c&sid=9696580&pid=45718&idx=1&wId=171&pad=1&org=0&tm=0&eT=3&cnsnt=no_consent HTTP/1.1
Host: log.outbrainimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Fri, 25 Nov 2022 03:59:32 GMT
Content-Type: application/json; charset=UTF-8
Content-Length: 4
Cache-Control: no-cache, no-store, must-revalidate
Pragma: no-cache
Expires: 0
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET,POST
X-TraceId: f21acdd1c17041d248216c3d36439062

ib.adnxs.com/async_usersync?cbfn=queuePixels

185.83.142.19

307 Redirection

0 B

URL HTTP/1.1
ib.adnxs.com/async_usersync?cbfn=queuePixels
IP
185.83.142.19:0
ASN
#29990 ASN-APPNEX

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /async_usersync?cbfn=queuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://acdn.adnxs.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 307 Redirection
Server: nginx/1.21.3
Date: Fri, 25 Nov 2022 03:59:33 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Location: https://ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
AN-X-Request-Uuid: 04d01282-99a7-40b5-b3aa-b9994af2709e
Set-Cookie: uuid2=2137907651481478680; SameSite=None; Path=/; Max-Age=7776000; Expires=Thu, 23-Feb-2023 03:59:33 GMT; Domain=.adnxs.com; Secure; HttpOnly
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 960.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels

185.83.142.19

200 OK

0 B

URL HTTP/1.1
ib.adnxs.com/bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels
IP
185.83.142.19:0
ASN
#29990 ASN-APPNEX

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /bounce?%2Fasync_usersync%3Fcbfn%3DqueuePixels HTTP/1.1
Host: ib.adnxs.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://acdn.adnxs.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site

HTTP/1.1 200 OK
Server: nginx/1.21.3
Date: Fri, 25 Nov 2022 03:59:33 GMT
Content-Type: text/html; charset=utf-8
Content-Length: 0
Connection: keep-alive
Cache-Control: no-store, no-cache, private
Pragma: no-cache
Expires: Sat, 15 Nov 2008 16:00:00 GMT
P3P: policyref="http://cdn.adnxs-simple.com/w3c/policy/p3p.xml", CP="NOI DSP COR ADM PSAo PSDo OURo SAMo UNRo OTRo BUS COM NAV DEM STA PRE"
X-XSS-Protection: 0
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: *
AN-X-Request-Uuid: 16793b90-0018-4de6-a4a6-9c1f30ce4cad
X-Proxy-Origin: 91.90.42.154; 91.90.42.154; 960.bm-nginx-loadbalancer.mgmt.ams3.adnexus.net; adnxs.com

script.4dex.io/adagio.js

104.26.9.169

200 OK

0 B

URL HTTP/2
script.4dex.io/adagio.js
IP
104.26.9.169:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /adagio.js HTTP/1.1
Host: script.4dex.io
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://electrocomm.tripod.com/
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Fri, 25 Nov 2022 03:59:28 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: public, max-age=1800
etag: W/"c56b6332dacf72f135afcd153ae22448"
last-modified: Wed, 23 Nov 2022 15:43:17 GMT
vary: Origin, Accept-Encoding
access-control-expose-headers: 
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=6WZrBpiaOXnidANOTzhVsG82i%2F2eRVTHz3MCtVbwgPCtgSD6KAFOD0n2tK3RTu79vYtTWM9fMDJKccAXYCJ9U7nMWamLwn6qhBDmqL%2Fy%2BDZ40raRU%2FpMJmmqEqdba6lv"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 76f778cbee810b06-OSL
content-encoding: br
X-Firefox-Spdy: h2

electrocomm.tripod.com/adm/ad/footerAd.iframe.html

209.202.252.105

200 OK

0 B

URL HTTP/2
electrocomm.tripod.com/adm/ad/footerAd.iframe.html
IP
209.202.252.105:0
ASN
#6354 LYCOS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /adm/ad/footerAd.iframe.html HTTP/1.1
Host: electrocomm.tripod.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/onlinemeds.html
Cookie: CookieStatus=COOKIE_OK; MEMBER_PAGE=electrocomm/onlinemeds.html; REFERRER=(null); __utma=31113466.1133155463.1669348768.1669348768.1669348768.1; __utmb=31113466.1.10.1669348768; __utmc=31113466; __utmz=31113466.1669348768.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0
date: Fri, 25 Nov 2022 03:59:29 GMT
content-type: text/html
vary: *
x-server-ip: 209.202.244.208
p3p: policyref="http://www.lycos.com/w3c/p3p.xml", CP="IDC DSP COR CURa ADMa DEVa CUSa PSAa IVAa CONo OUR IND UNI STA"
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
X-Firefox-Spdy: h2

electrocomm.tripod.com/adm/ad/injectAd.iframe.html

209.202.252.105

200 OK

0 B

URL HTTP/2
electrocomm.tripod.com/adm/ad/injectAd.iframe.html
IP
209.202.252.105:0
ASN
#6354 LYCOS

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /adm/ad/injectAd.iframe.html HTTP/1.1
Host: electrocomm.tripod.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://electrocomm.tripod.com/onlinemeds.html
Cookie: CookieStatus=COOKIE_OK; MEMBER_PAGE=electrocomm/onlinemeds.html; REFERRER=(null); __utma=31113466.1133155463.1669348768.1669348768.1669348768.1; __utmb=31113466.1.10.1669348768; __utmc=31113466; __utmz=31113466.1669348768.1.1.utmcsr=(direct)|utmccn=(direct)|utmcmd=(none); __utmt=1
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
server: nginx/1.18.0
date: Fri, 25 Nov 2022 03:59:29 GMT
content-type: text/html
vary: *
x-server-ip: 209.202.244.195
p3p: policyref="http://www.lycos.com/w3c/p3p.xml", CP="IDC DSP COR CURa ADMa DEVa CUSa PSAa IVAa CONo OUR IND UNI STA"
access-control-allow-headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
X-Firefox-Spdy: h2

static.criteo.net/js/ld/publishertag.prebid.js

178.250.0.130

200 OK

0 B

URL HTTP/2
static.criteo.net/js/ld/publishertag.prebid.js
IP
178.250.0.130:0
ASN
#44788 Criteo SA

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/ld/publishertag.prebid.js HTTP/1.1
Host: static.criteo.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 03:59:31 GMT
content-type: text/javascript
last-modified: Mon, 24 Oct 2022 11:21:19 GMT
etag: W/"6356752f-16294"
expires: Sat, 26 Nov 2022 03:59:31 GMT
cross-origin-resource-policy: cross-origin
cache-control: max-age=86400, public
timing-allow-origin: *
access-control-allow-origin: *
content-encoding: gzip
strict-transport-security: max-age=31536000; preload;
X-Firefox-Spdy: h2

prebid.media.net/rtb/prebid?cid=8CU2BX48Z

34.107.148.139

200 OK

0 B

URL HTTP/2
prebid.media.net/rtb/prebid?cid=8CU2BX48Z
IP
34.107.148.139:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

POST /rtb/prebid?cid=8CU2BX48Z HTTP/1.1
Host: prebid.media.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1063
Origin: https://electrocomm.tripod.com
Connection: keep-alive
Referer: https://electrocomm.tripod.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 25 Nov 2022 03:59:29 GMT
content-type: application/json;charset=UTF-8
cache-control: max-age=0, no-cache, no-store, must-revalidate
pragma: no-cache
accept-ch: Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,Sec-CH-UA-Arch,Sec-CH-UA-Bitness,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Model
expires: Fri, 25 Nov 2022 03:59:28 GMT
access-control-allow-origin: https://electrocomm.tripod.com
access-control-allow-credentials: true
content-encoding: gzip
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

dnacdn.net/dna

178.250.2.146

200 OK

0 B

URL HTTP/2
dnacdn.net/dna
IP
178.250.2.146:0
ASN
#44788 Criteo SA

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /dna HTTP/1.1
Host: dnacdn.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://gum.criteo.com/
Origin: https://gum.criteo.com
Connection: keep-alive
Cookie: browser_data=mxpvk180M0RITmhlJTJCZkMwOUJGQlhaMUN2czUlMkIxNE1QVURQMGdvUXlJWE9BNUc0QUNRQ3lhbGdxc1BrTDhMZjJTT280cA
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Fri, 25 Nov 2022 03:59:31 GMT
content-type: application/json; charset=utf-8
server: Kestrel
cache-control: no-cache, no-store, must-revalidate
pragma: no-cache
expires: 0
set-cookie: browser_data=Qu66J180M0RITmhlJTJCZkMwOUJGQlhaMUN2czUlMkIxNE1QVURQMGdvUXlJWE9BNUc0REpaVHE5TkllJTJGSHF2VUJuajBKYndq; expires=Wed, 20 Dec 2023 03:59:31 GMT; domain=dnacdn.net; path=/; secure; samesite=none
access-control-allow-credentials: true
access-control-allow-methods: GET
access-control-allow-origin: https://gum.criteo.com
server-processing-duration-in-ticks: 322973
strict-transport-security: max-age=31536000; preload;
content-encoding: gzip
vary: Accept-Encoding
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (35)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations