Report - www.menshealthfix.monster/15280-6677-6721-3041336/tammys/tindex1.html

Report Overview

Submitted URL
www.menshealthfix.monster/15280-6677-6721-3041336/tammys/tindex1.html
IP
50.2.36.28
ASN
#49532 Eonix Corporation
Submitted
2023-01-28 14:21:51
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
2
Threat Detection Systems
10

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.sca1b.amazontrust.com	1015	2017-03-03T16:20:51Z	2019-03-27T05:05:54Z	1.1 kB	3.0 kB	54.230.245.100
www.edelixir.com	unknown			900 B	486 B	69.172.200.220
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-13T06:00:13Z	1.7 kB	2.8 kB	93.184.220.29
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	388 B	630 B	142.250.74.106
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	35.165.1.70
edelixir.com	unknown			7.3 kB	468 kB	69.172.200.220
lizswannmiller.com	unknown	2019-07-06T11:58:47Z	2023-03-06T16:55:43Z	762 B	7.0 kB	67.227.198.234
ocsp.sectigo.com	487	2019-11-29T12:50:24Z	2023-03-13T08:22:43Z	680 B	1.9 kB	172.64.155.188
ocsp.godaddy.com	698	2012-05-20T21:28:57Z	2023-03-13T05:12:19Z	340 B	2.3 kB	192.124.249.24
cdn.jsdelivr.net	439	2012-09-30T02:15:09Z	2023-03-13T06:17:54Z	393 B	1.1 kB	104.16.87.20
www.menshealthfix.monster	unknown	2022-12-17T18:29:23Z	2022-12-20T23:07:01Z	1.9 kB	14 kB	50.2.36.28
00b1f3j9uedt6m34hdscc8-l2g.hop.clickbank.net	unknown			641 B	820 B	44.233.250.89
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	48 kB	34.120.237.76
seal-boise.bbb.org	116015	2015-07-24T20:24:24Z	2023-03-13T07:14:36Z	417 B	4.8 kB	82.102.27.18
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	3.4 kB	8.9 kB	23.33.119.27
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	1.4 kB	2.8 kB	142.250.74.131
quick.vidalytics.com	193746	2018-05-11T11:57:53Z	2023-03-09T23:02:46Z	1.3 kB	528 kB	151.101.193.91
code.jquery.com	634	2012-05-21T19:28:02Z	2023-03-13T05:09:57Z	368 B	34 kB	69.16.175.42
licensing.bitmovin.com	19299	2017-01-30T07:23:56Z	2023-03-10T15:37:38Z	919 B	1.0 kB	35.227.229.24
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.8 kB	34.160.144.191
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	480 B	17 kB	216.58.207.227
cbtb.clickbank.net	103233	2015-11-12T09:51:45Z	2023-03-13T07:14:33Z	367 B	1.5 kB	35.83.162.61
analytics-ingress-global.bitmovin.com	47119	2017-08-18T07:30:44Z	2023-03-09T23:46:38Z	2.8 kB	2.4 kB	35.190.27.197
ipapi.co	195030	2017-01-31T10:07:01Z	2023-03-13T05:43:34Z	415 B	1.1 kB	172.67.69.226
stats.vidalytics.com	153185	2017-02-08T03:49:35Z	2023-03-09T23:46:38Z	1.4 kB	813 B	107.178.211.97
ajax.googleapis.com	12905	2013-08-16T11:51:31Z	2023-03-13T08:37:09Z	319 B	34 kB	216.58.207.234
prod.cbstatic.net	108120	2018-07-06T00:30:53Z	2023-03-13T07:14:35Z	1.2 kB	63 kB	54.230.111.9
maxcdn.bootstrapcdn.com	724	2014-06-18T02:37:31Z	2023-03-13T07:25:00Z	820 B	1.8 kB	188.114.99.234

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Timestamp	Severity	Source IP	Destination IP	Alert
2023-01-28 14:21:47	medium	Client IP	Internal IP	ET POLICY External IP Lookup Domain (ipapi .co in DNS lookup)
2023-01-28 14:21:47	medium	Client IP	Internal IP	ET POLICY External IP Lookup Domain (ipapi .co in DNS lookup)

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-01-28	medium	www.menshealthfix.monster/15280-6677-6721-3041336/tammys/tindex1.html	Malware
2023-01-28	medium	www.menshealthfix.monster/ajax/get_js/main/	Malware
2023-01-28	medium	www.menshealthfix.monster/ajax/get_imgl/loading.gif/	Malware
2023-01-28	medium	www.menshealthfix.monster/ajax_m/get_main_page/15280/1/0/3041336/15280-3041336-0-0/6677/6721/	Malware
2023-01-28	medium	edelixir.com/vsl?hop=chetna55	Malware

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (22)

	URL	Size	First Seen	Last Seen
	cbtb.clickbank.net/?vendor=edelixir	934 B	2023-03-07	2024-02-05
Pretty URL cbtb.clickbank.net/?vendor=edelixir IP 35.83.162.61 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:28:56 Last Seen2024-02-05 23:07:59 Times Seen73 Hash 8fd1f25e440f59488c0b83af66cbac5b 157b2dfc49dd094d430772389e40f2d4d7782bb7 f426ae11da854d43ee97f2437e23127c179d478bac0e75e4fff8f3b208e4ef3d Loading...

	lizswannmiller.com/social-proof/social-proof.js	2.4 kB	2023-03-13	2024-02-05
Pretty URL lizswannmiller.com/social-proof/social-proof.js IP 67.227.198.234 ASN #32244 LIQUIDWEB Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:50:26 Last Seen2024-02-05 00:51:10 Times Seen27 Hash b5eb1c617963c1cb5e716f0cd6316e16 9c9a2bcd482953d9caddfb54baf4c918732fb15c fac5133f08500f224d6d1fe1d87cb2eb9fd9629b304a658e5f319413123c6b3e Loading...

	edelixir.com/vsl?hop=chetna55	7.7 kB	2023-03-13	2024-01-20
Pretty URL edelixir.com/vsl?hop=chetna55 IP 69.172.200.220 ASN #19324 DOSARREST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:50:27 Last Seen2024-01-20 23:51:54 Times Seen5 Hash 08447f1d719e07d791780c289c4b83a3 8870840419ec8a2453d11fff7fa9e0bdcac0479e 671b032856aff7e9279ae34e3f3a12f99970b0af1887cb882ba2501ddfc266ba Loading...

	edelixir.com/vsl?hop=chetna55	1.9 kB	2023-03-13	2024-01-20
Pretty URL edelixir.com/vsl?hop=chetna55 IP 69.172.200.220 ASN #19324 DOSARREST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:50:27 Last Seen2024-01-20 23:51:54 Times Seen5 Hash 2c2c4404113de5877960b863f01da958 2f72cd08dcd160c9a722ef01c8748df3e62a2d85 655a6d6786a07eebe764a7fd189f3bb558fe14e7e29a1301d8490f18317b6f27 Loading...

	quick.vidalytics.com/embeds/sBLUNzmU/nkeBKD2LAHyehWAO/loader.min.js	42 kB	2023-03-13	2023-03-13
Pretty URL quick.vidalytics.com/embeds/sBLUNzmU/nkeBKD2LAHyehWAO/loader.min.js IP 151.101.193.91 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:50:27 Last Seen2023-03-13 09:50:27 Times Seen1 Hash 2fdf6094b5d9f99409c3a4a123366ffa b5eff39a37049c1dcac07c64b88387ddf1850b73 c9de66ad0d09a3a636d12b37beaa17cf9d151fc637e48bc320880881353bb92c Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js	93 kB	2023-03-07	2024-04-24
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js IP 216.58.207.234 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-24 11:39:30 Times Seen23315 Hash 397754ba49e9e0cf4e7c190da78dda05 ae49e56999d82802727455f0ba83b63acd90a22b c12f6098e641aaca96c60215800f18f5671039aecf812217fab3c0d152f6adb4 Loading...

	www.menshealthfix.monster/15280-6677-6721-3041336/tammys/tindex1.html	423 B	2023-03-13	2023-03-13
Pretty URL www.menshealthfix.monster/15280-6677-6721-3041336/tammys/tindex1.html IP 50.2.36.28 ASN #49532 Eonix Corporation Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:50:27 Last Seen2023-03-13 09:50:27 Times Seen1 Hash fe9fff33808ed5a21e565d3b182d9d03 49fbcc4096c895ae3b41d6d03cf589a428d4670f 0b92de2cd57bb481088e5693ae98adf8d67569750ed1652d3398c1a4e49ac415 Loading...

	cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/js/bootstrap.min.js	56 kB	2023-03-07	2024-04-23
Pretty URL cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/js/bootstrap.min.js IP 104.16.87.20 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:56 Last Seen2024-04-23 16:57:01 Times Seen2286 Hash 6895e8cd60b62646ce12426015888f58 de908c9ed184d74eb525fa7a30449b67fc3a1c14 eb795deda8983fa5310627c9584cf3f3b95d272567113500059018b3941cb267 Loading...

	edelixir.com/vsl?hop=chetna55	548 B	2023-03-07	2024-03-19
Pretty URL edelixir.com/vsl?hop=chetna55 IP 69.172.200.220 ASN #19324 DOSARREST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:47 Last Seen2024-03-19 11:32:43 Times Seen472 Hash 1ad5c115ba02812a95a81697a1428b9d 1ecfc84ec959361e20ddf31d34a775300e07334e 33c3bb2334c52ccc35e6ad8806ec31a6814413c62d91d6011e5500d5ea820c1c Loading...

	edelixir.com/vsl?hop=chetna55	64 B	2023-03-07	2024-02-05
Pretty URL edelixir.com/vsl?hop=chetna55 IP 69.172.200.220 ASN #19324 DOSARREST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:26:49 Last Seen2024-02-05 00:51:10 Times Seen112 Hash 87b0a08c827101d7afba7c49bb71e689 0b1aa0c15df7e1ee9f2ee942890d50c10a76308b c8b059bf27bec7d51a8695eaebc73563914dca74c9a2ded19b04634bb85470cc Loading...

	edelixir.com/api/visits?page_id=10&page_version=&request_id=4621FD81%3AB986_D197C0D8%3A01BB_63D52F77_273B53%3A36A848&querystring=hop%3Dchetna55&fbclid=&fbp=&fbc=&referrer=http%3A%2F%2Fwww.menshealthfix.monster%2F	558 B	2023-03-13	2023-03-13
Pretty URL edelixir.com/api/visits?page_id=10&page_version=&request_id=4621FD81%3AB986_D197C0D8%3A01BB_63D52F77_273B53%3A36A848&querystring=hop%3Dchetna55&fbclid=&fbp=&fbc=&referrer=http%3A%2F%2Fwww.menshealthfix.monster%2F IP 69.172.200.220 ASN #19324 DOSARREST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:50:27 Last Seen2023-03-13 09:50:27 Times Seen1 Hash 500341b9562ec732215c8437cc704c3b e22b3942906d39eecbccf6c39978578fdb574a15 20841f0c336c9df4f25c0e9e409d5ba9b4ed09ec6752dadaf41096b8cdb4dcaa Loading...

	www.menshealthfix.monster/15280-6677-6721-3041336/tammys/tindex1.html	215 B	2023-03-13	2023-03-13
Pretty URL www.menshealthfix.monster/15280-6677-6721-3041336/tammys/tindex1.html IP 50.2.36.28 ASN #49532 Eonix Corporation Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:50:27 Last Seen2023-03-13 09:50:27 Times Seen1 Hash 700fd3c3fc07f3531f59636ae1968168 7371a526aab82d0fd015c812a4f2f10fd5279d0c 6b3872cb06262409ea5bfc5bea20cd95499c2fbe748204047baf118d7a30357a Loading...

	code.jquery.com/jquery-1.12.4.min.js	97 kB	2023-03-07	2024-04-24
Pretty URL code.jquery.com/jquery-1.12.4.min.js IP 69.16.175.42 ASN #20446 STACKPATH-CDN Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-24 13:56:04 Times Seen118662 Hash 4f252523d4af0b478c810c2547a63e19 5a9dcfbef655a2668e78baebeaa8dc6f41d8dabb 668b046d12db350ccba6728890476b3efee53b2f42dbb84743e5e9f1ae0cc404 Loading...

	edelixir.com/vsl?hop=chetna55	1.4 kB	2023-03-13	2023-03-13
Pretty URL edelixir.com/vsl?hop=chetna55 IP 69.172.200.220 ASN #19324 DOSARREST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:50:27 Last Seen2023-03-13 09:50:27 Times Seen1 Hash ede6907302339826f1aefda182b275f9 b0e272e5b81ad3a34c579d9c7e105e10077e7a50 9766f08387d54f3be938776dba559afd65c1d0296c961d8a632bd1614ef53160 Loading...

	edelixir.com/vsl?hop=chetna55	746 B	2023-03-07	2024-02-05
Pretty URL edelixir.com/vsl?hop=chetna55 IP 69.172.200.220 ASN #19324 DOSARREST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 23:26:49 Last Seen2024-02-05 00:51:10 Times Seen16 Hash ce0804a194c2eeff2cc63122abd644e3 7405db18545862b9b269ac19d3aaecd461a285fc 6cb8d150532d31f243d9331d1e43e5524fcf1e207fd32b543d311291ef2faee1 Loading...

	edelixir.com/js/bounceback.min.js	2.8 kB	2023-03-07	2024-02-29
Pretty URL edelixir.com/js/bounceback.min.js IP 69.172.200.220 ASN #19324 DOSARREST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:31:47 Last Seen2024-02-29 04:29:09 Times Seen186 Hash 928ec014586629db7d8b4ad49c4bc93c b436801b50738cca53b78e5c9e459495f26da5c9 1fbbfbf2aff3f6cb01ac1967abafda6695aa9ee86e28862b0c45f62bffe51282 Loading...

	edelixir.com/vsl?hop=chetna55	738 B	2023-03-13	2024-01-20
Pretty URL edelixir.com/vsl?hop=chetna55 IP 69.172.200.220 ASN #19324 DOSARREST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:50:27 Last Seen2024-01-20 23:51:54 Times Seen9 Hash cdd88b121299ac009797b507a96c71ad 87979b44f607ddef3855dcb548725b4da9a7515f 1b68909921eecd9421eaa5e8a058fdfbd38160db734eafda2ada0717fa9085f2 Loading...

	edelixir.com/vsl?hop=chetna55	2.1 MB	2023-03-13	2023-03-13
Pretty URL edelixir.com/vsl?hop=chetna55 IP 69.172.200.220 ASN #19324 DOSARREST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:50:27 Last Seen2023-03-13 09:50:27 Times Seen1 Hash ca3e485407517437af5ff772185b8027 02de0f6185afbe545a2af20eb47fdab37874c72d b6d4ccc265a79eefde7a6adcc3327bca07d371cb0670cada35e46ec303b39044 Loading...

	prod.cbstatic.net/dist/injectable.js	191 kB	2023-03-07	2024-04-23
Pretty URL prod.cbstatic.net/dist/injectable.js IP 54.230.111.9 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:28 Last Seen2024-04-23 20:33:08 Times Seen897 Hash af651c30e1a69f6f2124e9c1d094a300 4328efe60a0ca51ab455d67ef6b257998cb1cdee f752e24e380963973c86376422b0618658de851a8b2011c69e394b787a1c593f Loading...

	www.menshealthfix.monster/ajax/get_js/main/	2.7 kB	2023-03-07	2024-04-15
Pretty URL www.menshealthfix.monster/ajax/get_js/main/ IP 50.2.36.28 ASN #49532 Eonix Corporation Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:17:29 Last Seen2024-04-15 07:12:28 Times Seen493 Hash 81e3a9098efe30a753f718d510ab5e42 3402a1f50bad4681e0073b07f2dd6d21c9a80bb8 6e81862e7adb1609c3c0d873ecfeff71413ea02e219669d27cd8e6ecd1f774c9 Loading...

	edelixir.com/vsl?hop=chetna55	680 B	2023-03-13	2023-03-13
Pretty URL edelixir.com/vsl?hop=chetna55 IP 69.172.200.220 ASN #19324 DOSARREST Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 09:50:27 Last Seen2023-03-13 09:50:27 Times Seen1 Hash fd9b4192036e904066c6d702d3cccc55 af9fda5e839bb83e447d6dba499573e9c688d620 27a7cf8358f6c61993a8911e6aa310985812b058cdf286a5447b65369389f5af Loading...

		Size	First Seen	Last Seen
	#1 Eval - 4c76b4d9b9fb99962f15f782a9c72c1d	858 B	2023-03-13	2024-01-20
Pretty Observations First Seen2023-03-13 09:50:27 Last Seen2024-01-20 23:51:54 Times Seen5 Hash 4c76b4d9b9fb99962f15f782a9c72c1d 7dd8f74216715b98efda6cf949851f435bea77ba b4ac8ba472590dd71e23d756450a5953219d3cd7c39f5c1e34236e9ee08dc89f Loading...

HTTP Transactions (86)

URL IP Response Size

www.menshealthfix.monster/15280-6677-6721-3041336/tammys/tindex1.html

50.2.36.28

200 OK

2.0 kB

URL HTTP/1.1
www.menshealthfix.monster/15280-6677-6721-3041336/tammys/tindex1.html
IP
50.2.36.28:0
ASN
#49532 Eonix Corporation

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
2.0 kB (2040 bytes)
Hash
3217bc7b910aca62a67411fc6b86a28a
372f5cba28b9e7954dcd54efcdacb780e4eb25c9
cc1df545235246352cbc5a0de33a9ca6d00c8163aa73c2f4febb8402e76ebd24

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /15280-6677-6721-3041336/tammys/tindex1.html HTTP/1.1
Host: www.menshealthfix.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 14:21:40 GMT
Server: Apache
X-Powered-By: PHP/5.3.4
Content-Length: 2040
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Content-Type: text/html

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9fbe85f42e8ae8ae41cc12df5f98b141
949fa36ff0f22f72565fd584bef094dd4de23037
184d3e4df4bce559b4d7c4836372f5fd2de9782a96b04d364230b7d695d737d8

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "184D3E4DF4BCE559B4D7C4836372F5FD2DE9782A96B04D364230B7D695D737D8"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9057
Expires: Sat, 28 Jan 2023 16:52:37 GMT
Date: Sat, 28 Jan 2023 14:21:40 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2405562765b49b2782ebd2e2994851d5
be7ac8e558f7875bb1fb86ab5ec674424a5ff269
422cfa907461cb7b93b9089d600052f9e94951e5e0c93d97651905002e48ad3e

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "422CFA907461CB7B93B9089D600052F9E94951E5E0C93D97651905002E48AD3E"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11468
Expires: Sat, 28 Jan 2023 17:32:48 GMT
Date: Sat, 28 Jan 2023 14:21:40 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
bf0c602d32b3c14606f22a86183b5e3c
6eabd8d83475eba731968abe1a05a8bfd272f160
6c6a7c519a9e950c2445ed874a25211a94dd4d3cf3afb0103af9dcd1dbd5ff9e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Content-Length, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Sat, 28 Jan 2023 13:35:30 GMT
content-type: application/json
age: 2770
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
69f73ac59327cd9ad7d99816ccfcc03e
c54844f82dbee0d5ee4c8ce344eb0139373e6c6b
e81c685b2d8f0e31b89e5cfc911a2c5a99a556646830ac5a8468d991b5e871a3

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E81C685B2D8F0E31B89E5CFC911A2C5A99A556646830AC5A8468D991B5E871A3"
Last-Modified: Thu, 26 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6238
Expires: Sat, 28 Jan 2023 16:05:38 GMT
Date: Sat, 28 Jan 2023 14:21:40 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: bMNlIMGRExAi9dfE5sQQ5cg/bUOjWVzjjkJY66jV1quQ/BKUq2Xw3X1tE8oeeFyk5BM2h/4JCyY=
x-amz-request-id: Q0C0KSWB161E25ER
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Sat, 28 Jan 2023 14:21:00 GMT
age: 40
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Sat, 28 Jan 2023 14:21:40 GMT
content-type: application/json
content-length: 12
access-control-expose-headers: content-type
access-control-allow-credentials: true
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js

216.58.207.234

200 OK

33 kB

URL HTTP/1.1
ajax.googleapis.com/ajax/libs/jquery/1.9.1/jquery.min.js
IP
216.58.207.234:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (32089)
Size
33 kB (33018 bytes)
Hash
bf899cc5ba60c522341e4d712a5246bf
2c92c54c9919c8b81b4e77a97bfd4d8f202e1a6a
4f8b9bf1630c24cf17444ec093052451c370c9371212db74b4bf8b4fd71a2817

HTTP Headers

GET /ajax/libs/jquery/1.9.1/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.menshealthfix.monster/

HTTP/1.1 200 OK
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Access-Control-Allow-Origin: *
Content-Security-Policy-Report-Only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
Cross-Origin-Resource-Policy: cross-origin
Cross-Origin-Opener-Policy: same-origin; report-to="hosted-libraries-pushers"
Report-To: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
Timing-Allow-Origin: *
Content-Length: 33018
X-Content-Type-Options: nosniff
Server: sffe
X-XSS-Protection: 0
Date: Fri, 27 Jan 2023 10:44:50 GMT
Expires: Sat, 27 Jan 2024 10:44:50 GMT
Cache-Control: public, max-age=31536000, stale-while-revalidate=2592000
Age: 99410
Last-Modified: Tue, 03 Mar 2020 19:15:00 GMT
Content-Type: text/javascript; charset=UTF-8

www.menshealthfix.monster/ajax/get_js/main/

50.2.36.28

200 OK

2.7 kB

URL HTTP/1.1
www.menshealthfix.monster/ajax/get_js/main/
IP
50.2.36.28:0
ASN
#49532 Eonix Corporation

File type
ASCII text, with CRLF line terminators
Size
2.7 kB (2738 bytes)
Hash
81e3a9098efe30a753f718d510ab5e42
3402a1f50bad4681e0073b07f2dd6d21c9a80bb8
6e81862e7adb1609c3c0d873ecfeff71413ea02e219669d27cd8e6ecd1f774c9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /ajax/get_js/main/ HTTP/1.1
Host: www.menshealthfix.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.menshealthfix.monster/15280-6677-6721-3041336/tammys/tindex1.html

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 14:21:40 GMT
Server: Apache
X-Powered-By: PHP/5.3.4
Content-Length: 2738
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: text/javascript

www.menshealthfix.monster/ajax/get_imgl/loading.gif/

50.2.36.28

200 OK

8.3 kB

URL HTTP/1.1
www.menshealthfix.monster/ajax/get_imgl/loading.gif/
IP
50.2.36.28:0
ASN
#49532 Eonix Corporation

File type
GIF image data, version 89a, 100 x 100\012- data
Size
8.3 kB (8266 bytes)
Hash
5ca630697891902c87111c0248617eb1
0eafb45eb48b02a558ed8bc0afe9306132234eb9
f5822f713ac663d495c62ecd1dfcdfb1ecc28d694166e8ecc7e6b466f025f154

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /ajax/get_imgl/loading.gif/ HTTP/1.1
Host: www.menshealthfix.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.menshealthfix.monster/15280-6677-6721-3041336/tammys/tindex1.html

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 14:21:40 GMT
Server: Apache
X-Powered-By: PHP/5.3.4
Keep-Alive: timeout=15, max=100
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/gif

www.menshealthfix.monster/ajax_m/get_main_page/15280/1/0/3041336/15280-3041336-0-0/6677/6721/

50.2.36.28

200 OK

71 B

URL HTTP/1.1
www.menshealthfix.monster/ajax_m/get_main_page/15280/1/0/3041336/15280-3041336-0-0/6677/6721/
IP
50.2.36.28:0
ASN
#49532 Eonix Corporation

File type
ASCII text, with no line terminators
Size
71 B (71 bytes)
Hash
0925a1c5c737fedf83f98a1d0b557434
931e15874c596ef7fee0fa697a05195a0fde6f49
f4a935923708b4d758fdbd1b4a9b9acb5089754403c67d93e2fe889d2d16f2d9

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /ajax_m/get_main_page/15280/1/0/3041336/15280-3041336-0-0/6677/6721/ HTTP/1.1
Host: www.menshealthfix.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
X-Requested-With: XMLHttpRequest
Connection: keep-alive
Referer: http://www.menshealthfix.monster/15280-6677-6721-3041336/tammys/tindex1.html

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 14:21:40 GMT
Server: Apache
X-Powered-By: PHP/5.3.4
Content-Length: 71
Keep-Alive: timeout=15, max=99
Connection: Keep-Alive
Content-Type: text/html

www.menshealthfix.monster/favicon.ico

50.2.36.28

404 Not Found

209 B

URL HTTP/1.1
www.menshealthfix.monster/favicon.ico
IP
50.2.36.28:0
ASN
#49532 Eonix Corporation

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Size
209 B (209 bytes)
Hash
18ffb59b61525f781cf9251045be575d
bd7318b00b15b7a1c8a48524419fa2e5c27a5b6d
b6682cab65d3243b5b75efb7279dbf49491957484780f2ba0a87632cc0e25642

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: www.menshealthfix.monster
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.menshealthfix.monster/15280-6677-6721-3041336/tammys/tindex1.html

HTTP/1.1 404 Not Found
Date: Sat, 28 Jan 2023 14:21:40 GMT
Server: Apache
Content-Length: 209
Keep-Alive: timeout=15, max=98
Connection: Keep-Alive
Content-Type: text/html; charset=iso-8859-1

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Pragma, Last-Modified, ETag, Content-Length, Expires, Cache-Control, Retry-After, Content-Type, Alert
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Sat, 28 Jan 2023 13:49:03 GMT
age: 1958
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
16a7b6a7128312e2f985d30df18c4487
6017bff79ffb525d9c7f9f32b999b74b5dc69602
663fd12209627f08e759c2ed1c76278a5da79dae1e0b46082dd1bb44775f7a16

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "663FD12209627F08E759C2ED1C76278A5DA79DAE1E0B46082DD1BB44775F7A16"
Last-Modified: Fri, 27 Jan 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9922
Expires: Sat, 28 Jan 2023 17:07:03 GMT
Date: Sat, 28 Jan 2023 14:21:41 GMT
Connection: keep-alive

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
6a972feaf65966ccaf161e62929e1a7d
25f2fd5f2ebccbc8454567c6c2f796cb07d6e0e3
68805f5b2f6dc0b069184c5cee49c400d6a744badf15ae020e55279ec4f2171d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Sat, 28 Jan 2023 14:21:41 GMT
Etag: "63d43a22-1d7"
Last-Modified: Sat, 28 Jan 2023 12:42:45 GMT
Server: ECS (dcb/7FA7)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Yj6XsjD4_mh14BPOy8lGZ6s_Z3j2C-YXkeWTn9eiyeoNrNn4GHQU_w==
Age: 5936

push.services.mozilla.com/

35.165.1.70

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.165.1.70:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: Pu8QTbjLfQN5SaXo5TXLbA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: g+CEcqzA74aTqsQ+Cf6/1TU5mvI=

00b1f3j9uedt6m34hdscc8-l2g.hop.clickbank.net/?tid=Edelixir17Dec

44.233.250.89

307 Temporary Redirect

0 B

URL HTTP/2
00b1f3j9uedt6m34hdscc8-l2g.hop.clickbank.net/?tid=Edelixir17Dec
IP
44.233.250.89:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /?tid=Edelixir17Dec HTTP/1.1
Host: 00b1f3j9uedt6m34hdscc8-l2g.hop.clickbank.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.menshealthfix.monster/
Cookie: q=01.C24439F0FBC97011E10BB8DF72A81B51A9BD75872C9DFD96801C5AFD06B7E68F2F8D239DD5140A251BC18E3256769EA88BE0C643
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 307 Temporary Redirect
date: Sat, 28 Jan 2023 14:21:41 GMT
content-length: 0
location: http://www.edelixir.com/vsl?hop=chetna55
set-cookie: q=01.C24439F0FBC97011E10BB8DF72A81B51A9BD75872C9DFD96801C5AFD06B7E68F2F8D239DD5140A251BC18E3256769EA88BE0C643; Path=/; Domain=.clickbank.net; Max-Age=31536000; Expires=Sun, 28 Jan 2024 14:21:41 GMT
p=ERNFbGlEkNCSKFDWmK2Oz9S75c-kwSpios_Vb_8IdKyODtV3WpNNIQXYYC6tTCHYVBejwOzsPWCjNiCAKsJoya2_PC7OiBlXMhZ4_IrgMCN_vE_yV7zqf1RY-53un3cwWaT6oFFSE-aIavKPv3G2KKlQ4NSmHHoft-9Ncm7hropeKX-d0q21XZGVdNhi5lF7h-XRuSPPoOIrjf76_ixl4NioDwY%3D; Path=/; Domain=.clickbank.net; Max-Age=15552000; Expires=Thu, 27 Jul 2023 14:21:41 GMT
server-timing: traceparent;desc="00-3fefd3d3dc6f4777d93e3cd4a66c4e43-1227ab6a1a019b10-01"
access-control-expose-headers: Server-Timing
X-Firefox-Spdy: h2

www.edelixir.com/vsl?hop=chetna55

69.172.200.220

301 Moved Permanently

0 B

URL HTTP/1.1
www.edelixir.com/vsl?hop=chetna55
IP
69.172.200.220:0
ASN
#19324 DOSARREST

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /vsl?hop=chetna55 HTTP/1.1
Host: www.edelixir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Referer: http://www.menshealthfix.monster/
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Sat, 28 Jan 2023 14:21:42 GMT
Content-Length: 0
Connection: keep-alive
Keep-Alive: timeout=20
location: https://www.edelixir.com/vsl?hop=chetna55
X-DIS-Request-ID: ffb546483a5ce1cf11a5dac86b67a1da
Server: DOSarrest

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fa29dca04f1433006ef77fcf0eb25928
049394bc90f3eef6320d3bca51ce8708d313f1ea
69ec8a449f15abdf60c405245ec4826c2c3a2fd489d07bedf7de24aed371c755

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "69EC8A449F15ABDF60C405245EC4826C2C3A2FD489D07BEDF7DE24AED371C755"
Last-Modified: Sat, 28 Jan 2023 03:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=339
Expires: Sat, 28 Jan 2023 14:27:21 GMT
Date: Sat, 28 Jan 2023 14:21:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5742
Expires: Sat, 28 Jan 2023 15:57:24 GMT
Date: Sat, 28 Jan 2023 14:21:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5742
Expires: Sat, 28 Jan 2023 15:57:24 GMT
Date: Sat, 28 Jan 2023 14:21:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5742
Expires: Sat, 28 Jan 2023 15:57:24 GMT
Date: Sat, 28 Jan 2023 14:21:42 GMT
Connection: keep-alive

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2e21811f62c077f45a93d7c3b543998d
3e890a73bb51d9dd1021d5339271aa40833ba258
c6b77371a50390fd68d44ff05e080f064c16c3095df8856b330ab0c6685cd3d1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C6B77371A50390FD68D44FF05E080F064C16C3095DF8856B330AB0C6685CD3D1"
Last-Modified: Thu, 26 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5742
Expires: Sat, 28 Jan 2023 15:57:24 GMT
Date: Sat, 28 Jan 2023 14:21:42 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fb39717-4b7d-45c4-b211-c2990bf99811.jpeg

34.120.237.76

200 OK

7.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fb39717-4b7d-45c4-b211-c2990bf99811.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.4 kB (7395 bytes)
Hash
3b5b797e164d0f2c91200829d1ec90f8
15a55176d8e55b6816acabae5c7cc3e4528648c9
16eb29148856512f556b22b86a153e54032caaf98dbf141119f8c126e009591f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5fb39717-4b7d-45c4-b211-c2990bf99811.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7395
x-amzn-requestid: 166e5623-fc91-4b12-80c8-f5e1a762b387
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-ELH3eIAMF56w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443b4-439b5d2b67b9347d4d634d9d;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:48 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: L1BWTWAPsW5tfkJO0UBR4dKoW3_0Le7QhZLjBxtsY0fmf7cwEYWrMQ==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:01:09 GMT
age: 58833
etag: "15a55176d8e55b6816acabae5c7cc3e4528648c9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.5 kB (4475 bytes)
Hash
4205d8106659e00fff1cbe9262918b8c
ab4f6528594a1725934727dc7d834c028a79c609
31f1a28602a194bd0856495d4d81d5c72cd7ff4e5bad6bdd1a31ec3041f4a2cc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5f0097a6-af00-4a1c-8faa-f9516e27b31a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4475
x-amzn-requestid: b7b272d6-3089-4f33-89b5-5cb388640e10
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_e6HsaIAMF5Lg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f8-1789f7f4264270916da323db;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: hAzO-IMqc1CFpiBAlRl8seIYL9UonyrBMATibovyFq5kEuaweY_VyA==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:56:46 GMT
age: 59096
etag: "ab4f6528594a1725934727dc7d834c028a79c609"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.6 kB (7585 bytes)
Hash
ea24bcba583bd8bd139559448a343e68
b9d37c2b14f890d41983a59f352e8f7caa9c94bb
e5ef5975eec964ae1684deb424f00833f2d217bdc7e6c385320ed3adeb6bc1c4

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F22cc3f55-9811-4ec2-a57e-a3e71a3f0554.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7585
x-amzn-requestid: bfb52acb-e0d7-482d-8be9-be5db1c16cac
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_vkE5roAMF0Hw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d44663-2d38d314177e0ac40d4c8240;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:47:15 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 1WE1zQwrCGVy8HLT9_BFkAr6rQE_ROyttMOByR32KeT0w2Hd_ylvYQ==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 6a9b42e38e76b7d4a4044ebe0e0eca08.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:16:00 GMT
age: 57942
etag: "b9d37c2b14f890d41983a59f352e8f7caa9c94bb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7538 bytes)
Hash
131eb343c5abd61939457d69bd371348
ffb2035cf64fc83f01db5c6f26ffa264b6aac95b
8486eb9dc6325018f8721bc6f37408f260b6e652b145280f2d778d860d3ec2d5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fcb781854-72d1-4a71-a095-0416f886f570.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7538
x-amzn-requestid: 113924cc-a196-4dbd-91d9-68c213265afe
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: e3fobF-ZoAMFjjA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63c61302-6b24941a642b22cf21e47dc0;Sampled=0
x-amzn-remapped-date: Tue, 17 Jan 2023 03:16:18 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: 2P09wOtKPDHjxxAuzcLFMQJwmGN1zNJcH9LA6IJpeaGiaPVRF4y-TA==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 caf6806821bc479b28a6f1ce3043b8a6.cloudfront.net (CloudFront), 1.1 google
date: Sat, 28 Jan 2023 05:20:03 GMT
age: 32499
etag: "ffb2035cf64fc83f01db5c6f26ffa264b6aac95b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddac8c39-e94f-40c1-bf35-4a70c575efbe.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.8 kB (7819 bytes)
Hash
6a40be482a56db1e4d48ba4a8cf515ba
da9c7255d5840c025526c6c24354750d9ba3a4ef
fa0bfe56b97ce5cf450e4799db2fe6d5645553b71d1e2bd928df0278a81a33c8

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fddac8c39-e94f-40c1-bf35-4a70c575efbe.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7819
x-amzn-requestid: b9c17e9a-8da5-4736-a8bc-ea430feaef8d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa_diGfbIAMFX2g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d445f0-695dd291002d9cc425df0edc;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:45:20 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: RBvJ-kohSNIneW4uHfp0sGGhpKGkzDWt6RjDTqFkK_UJvH2Bq2N8Rg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 22:00:20 GMT
age: 58882
etag: "da9c7255d5840c025526c6c24354750d9ba3a4ef"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.0 kB (7028 bytes)
Hash
57b73886cbbb719eda5f733c018eedfb
b84ed40973f8a0d3c10529e34f9466746cfdaf0c
4ba11c23e0bbd2aed53b04ad0b3d22161af1971ddcfb75ae55734de9a49af207

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0cadb8fa-5527-46cd-92dd-6316ac84a7d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7028
x-amzn-requestid: c1743fed-205a-431b-8648-474facde6d09
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fa-CwFtboAMF9rg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d443ab-5b94864c707c42fc36fbc63a;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 21:35:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 35sWCIsACAhQvXkJvBn0LGf2m9OTklgDprONw5CDUoXD97TUpJ9j5Q==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 98aedae6661e3904540676966998ed88.cloudfront.net (CloudFront), 1.1 google
date: Fri, 27 Jan 2023 21:55:35 GMT
age: 59167
etag: "b84ed40973f8a0d3c10529e34f9466746cfdaf0c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.edelixir.com/vsl?hop=chetna55

69.172.200.220

301 Moved Permanently

0 B

URL HTTP/2
www.edelixir.com/vsl?hop=chetna55
IP
69.172.200.220:0
ASN
#19324 DOSARREST

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /vsl?hop=chetna55 HTTP/1.1
Host: www.edelixir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.menshealthfix.monster/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 301 Moved Permanently
date: Sat, 28 Jan 2023 14:21:43 GMT
content-length: 0
location: https://edelixir.com/vsl?hop=chetna55
x-dis-request-id: 1437cd3e4ab00424d96b701c6dc00c63
server: DOSarrest
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.33.119.27

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.33.119.27:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
a9249306a3d8eb99d77383542d262543
b81476489372984c62754fad697856f1fcb3bdad
a719e52db2f2e88add2b6142b062f6cb8dd1907d69916afaaf1acad5ff145667

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A719E52DB2F2E88ADD2B6142B062F6CB8DD1907D69916AFAAF1ACAD5FF145667"
Last-Modified: Fri, 27 Jan 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13229
Expires: Sat, 28 Jan 2023 18:02:12 GMT
Date: Sat, 28 Jan 2023 14:21:43 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
e49323565051e208f7cbd172dce8c355
036e42fe97d04b991cb7f9b3bdd3ce34a0860216
d6aa3832c4fd9e9128138a2eab69963e705f2c1dd41e4b9446081b43b08260cf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 685
Cache-Control: max-age=98423
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 14:21:44 GMT
Etag: "63d40a42-118"
Expires: Sun, 29 Jan 2023 17:42:07 GMT
Last-Modified: Fri, 27 Jan 2023 17:30:42 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
839f992874f43406a9e4b3bf78dbf543
5931d414a576be8930236b579aa05e365ad30368
525570fb1fde6295f9149f4ede72a19eddd08c818c5e0b0ca88ddcfb6d3fd42e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4359
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 14:21:44 GMT
Last-Modified: Sat, 28 Jan 2023 13:09:05 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
839f992874f43406a9e4b3bf78dbf543
5931d414a576be8930236b579aa05e365ad30368
525570fb1fde6295f9149f4ede72a19eddd08c818c5e0b0ca88ddcfb6d3fd42e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2923
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 14:21:44 GMT
Last-Modified: Sat, 28 Jan 2023 13:33:01 GMT
Server: ECS (ska/F6FD)
X-Cache: HIT
Content-Length: 280

code.jquery.com/jquery-1.12.4.min.js

69.16.175.42

200 OK

34 kB

URL HTTP/2
code.jquery.com/jquery-1.12.4.min.js
IP
69.16.175.42:0
ASN
#20446 STACKPATH-CDN

File type
ASCII text, with very long lines (32077)
Size
34 kB (33738 bytes)
Hash
fc7624613c4e25843694cdb7fa956f05
7765bb4016ae929e22be579ccde505b94c2a63c1
49c97d70ef48bfdc1d7b96271b5613bb099b2c040ebdf5624962aea92ff428ae

HTTP Headers

GET /jquery-1.12.4.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 28 Jan 2023 14:21:44 GMT
content-encoding: gzip
content-length: 33738
content-type: application/javascript; charset=utf-8
last-modified: Wed, 16 Feb 2022 10:50:39 GMT
accept-ranges: bytes
server: nginx
etag: W/"620cd6ff-17b8b"
cache-control: max-age=315360000, public
access-control-allow-origin: *
vary: Accept-Encoding
x-hw: 1674915704.dop206.sk1.t,1674915704.cds254.sk1.hn,1674915704.cds251.sk1.c
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7da8f9a23d8c05f64f248e4e3427c76e
e2d001c2909cd9403173cbb0e288d55fbc8e4d0a
db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 14:21:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
7da8f9a23d8c05f64f248e4e3427c76e
e2d001c2909cd9403173cbb0e288d55fbc8e4d0a
db8790004124a0eeb0676860170ad9c37250b2ba697a27dee62c99b64c67b4b8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 14:21:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
e49323565051e208f7cbd172dce8c355
036e42fe97d04b991cb7f9b3bdd3ce34a0860216
d6aa3832c4fd9e9128138a2eab69963e705f2c1dd41e4b9446081b43b08260cf

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 685
Cache-Control: max-age=98423
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 14:21:44 GMT
Etag: "63d40a42-118"
Expires: Sun, 29 Jan 2023 17:42:07 GMT
Last-Modified: Fri, 27 Jan 2023 17:30:42 GMT
Server: ECS (ska/F715)
X-Cache: HIT
Content-Length: 280

ocsp.digicert.com/

93.184.220.29

200 OK

280 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
280 B (280 bytes)
Hash
839f992874f43406a9e4b3bf78dbf543
5931d414a576be8930236b579aa05e365ad30368
525570fb1fde6295f9149f4ede72a19eddd08c818c5e0b0ca88ddcfb6d3fd42e

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4359
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 14:21:44 GMT
Last-Modified: Sat, 28 Jan 2023 13:09:05 GMT
Server: ECS (ska/F704)
X-Cache: HIT
Content-Length: 280

edelixir.com/vsl?hop=chetna55

69.172.200.220

200 OK

11 kB

URL HTTP/2
edelixir.com/vsl?hop=chetna55
IP
69.172.200.220:0
ASN
#19324 DOSARREST

File type
data
Size
11 kB (10767 bytes)
Hash
605a1a819ca1d662e8d818e9be449d07
bd0d245af8816c138f9e74d8cce94447bfae082c
211b257678969644781ed6aca8da01cc5d720f52d55b477a769257d6d884b22e

Detections

Analyzer	Verdict	Alert
fortinet	Malware

HTTP Headers

GET /vsl?hop=chetna55 HTTP/1.1
Host: edelixir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.menshealthfix.monster/
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 28 Jan 2023 14:21:44 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: user_id=9cc50c73a10149ecb7447f363390d7b2; path=/; expires=Fri, 28 Jan 2033 14:21:43 GMT; secure
user_id.sig=5rGlY-nHxmyLnriBk53PBJytd94; path=/; expires=Fri, 28 Jan 2033 14:21:43 GMT; secure
persistedParams=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT; secure; httponly
persistedParams.sig=qQIP2OdsTFa87s1ohgL1NB6ingI; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT; secure; httponly
uid=wKhaAWPVL3e9TABGAwdvAg==; expires=Thu, 31-Dec-37 23:55:55 GMT; path=/
cnid=0; path=/
content-security-policy: frame-ancestors 'self'      cbsplit.com     edelixir.com     edelixir-com.cbsplit.com             ;
content-encoding: gzip
cache-control: private
x-dis-request-id: 7176bb47dc31b366873697b40e88984c
server: DOSarrest
X-Firefox-Spdy: h2

lizswannmiller.com/social-proof/social-proof.js

67.227.198.234

200 OK

2.4 kB

URL HTTP/1.1
lizswannmiller.com/social-proof/social-proof.js
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
ASCII text
Size
2.4 kB (2355 bytes)
Hash
b5eb1c617963c1cb5e716f0cd6316e16
9c9a2bcd482953d9caddfb54baf4c918732fb15c
fac5133f08500f224d6d1fe1d87cb2eb9fd9629b304a658e5f319413123c6b3e

HTTP Headers

GET /social-proof/social-proof.js HTTP/1.1
Host: lizswannmiller.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 14:21:43 GMT
Server: Apache/2.4.55 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Fri, 05 Jun 2020 12:28:53 GMT
ETag: "16032f-933-5a75567730ff0"
Accept-Ranges: bytes
Content-Length: 2355
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: application/javascript

lizswannmiller.com/youtube/player.css

67.227.198.234

200 OK

4.0 kB

URL HTTP/1.1
lizswannmiller.com/youtube/player.css
IP
67.227.198.234:0
ASN
#32244 LIQUIDWEB

File type
ASCII text, with CRLF line terminators
Size
4.0 kB (3972 bytes)
Hash
bfd0456597cf95f38bd02969e4f4ce27
bacc2576fa08cb442348af352d02e95c554aeb6b
912a6ccf121291425155760a12f8a13a1122433b075b1e73c2942b8bd9b5cd0a

HTTP Headers

GET /youtube/player.css HTTP/1.1
Host: lizswannmiller.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 14:21:43 GMT
Server: Apache/2.4.55 (cPanel) OpenSSL/1.1.1s mod_bwlimited/1.4 mod_fcgid/2.3.9
Last-Modified: Thu, 11 Nov 2021 07:43:04 GMT
ETag: "12a25b-f84-5d07e7e26a9a8"
Accept-Ranges: bytes
Content-Length: 3972
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css

edelixir.com/assets/money-back-icon.png

69.172.200.220

200 OK

3.7 kB

URL HTTP/2
edelixir.com/assets/money-back-icon.png
IP
69.172.200.220:0
ASN
#19324 DOSARREST

File type
PNG image data, 74 x 73, 8-bit colormap, non-interlaced\012- data
Size
3.7 kB (3738 bytes)
Hash
6ae6c8f8f13e5e3cabe1caf7d132e62e
99cc97ddb5efbe15c2e1571378844c332b00eb72
558f5e422aa7ed66c26848e21ebbdb76867b174f1e77e3823af0885291e79883

HTTP Headers

GET /assets/money-back-icon.png HTTP/1.1
Host: edelixir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/vsl?hop=chetna55
Cookie: user_id=9cc50c73a10149ecb7447f363390d7b2; user_id.sig=5rGlY-nHxmyLnriBk53PBJytd94; uid=wKhaAWPVL3e9TABGAwdvAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 28 Jan 2023 14:21:44 GMT
content-type: image/png
content-length: 3738
last-modified: Fri, 28 Feb 2020 06:10:31 GMT
etag: "5e58aed7-e9a"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 7bc6bd9ce459695572bac236b89d7bbe
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
c21bbf4411fc1e8cfd04652d62e23537
3f9a381f6a2dece703d08836cfe26aed0826e5ac
e8f1ef0ecc2935e86a9400eb827f813707aaee8a83bfe03c3f911a13371994ba

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=167163
Date: Sat, 28 Jan 2023 14:21:44 GMT
Etag: "63d50482-1d7"
Expires: Mon, 30 Jan 2023 12:47:47 GMT
Last-Modified: Sat, 28 Jan 2023 11:18:26 GMT
Server: ECS (nyb/1D04)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: dAttarGk090Oo1ZIDEgBQhORriReN8-EmyrOi-y29KzfBDm7ytFyMg==
Age: 5361

edelixir.com/js/disable-right-click

69.172.200.220

200 OK

64 B

URL HTTP/2
edelixir.com/js/disable-right-click
IP
69.172.200.220:0
ASN
#19324 DOSARREST

File type
ASCII text, with no line terminators
Size
64 B (64 bytes)
Hash
87b0a08c827101d7afba7c49bb71e689
0b1aa0c15df7e1ee9f2ee942890d50c10a76308b
c8b059bf27bec7d51a8695eaebc73563914dca74c9a2ded19b04634bb85470cc

HTTP Headers

GET /js/disable-right-click HTTP/1.1
Host: edelixir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/vsl?hop=chetna55
Cookie: user_id=9cc50c73a10149ecb7447f363390d7b2; user_id.sig=5rGlY-nHxmyLnriBk53PBJytd94; uid=wKhaAWPVL3e9TABGAwdvAg==; cnid=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 28 Jan 2023 14:21:44 GMT
content-type: application/octet-stream
content-length: 64
last-modified: Thu, 27 Feb 2020 09:56:13 GMT
etag: "5e57923d-40"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
accept-ranges: bytes
x-dis-request-id: cae68da9b984a405da0c7f10a565d03a
server: DOSarrest
X-Firefox-Spdy: h2

edelixir.com/images/pack-btn.png

69.172.200.220

200 OK

14 kB

URL HTTP/2
edelixir.com/images/pack-btn.png
IP
69.172.200.220:0
ASN
#19324 DOSARREST

File type
PNG image data, 788 x 138, 8-bit colormap, non-interlaced\012- data
Size
14 kB (14483 bytes)
Hash
3a4d68783294ab5810ad7b2106465c67
1a4d957e12c1d676739b54e84aa9ffae4f11392c
b37a4c91c2b9f3e959550f83453ab8638d69f7a046441a7af7f84df1c9b97f1f

HTTP Headers

GET /images/pack-btn.png HTTP/1.1
Host: edelixir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/vsl?hop=chetna55
Cookie: user_id=9cc50c73a10149ecb7447f363390d7b2; user_id.sig=5rGlY-nHxmyLnriBk53PBJytd94; uid=wKhaAWPVL3e9TABGAwdvAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 28 Jan 2023 14:21:44 GMT
content-type: image/png
content-length: 14483
last-modified: Thu, 12 Dec 2019 11:44:18 GMT
etag: "5df22812-3893"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 54cb7bb339aeef39d7788ca80a705dde
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 14:21:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2

216.58.207.227

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15752, version 1.0\012- data
Size
16 kB (15752 bytes)
Hash
b20371a6daf29d4a1f2e85dbbf40fb20
0355a01c1ccb45cb728e7e07c41c8ebf456f70bb
7e262106f82cc52663e403f5b73795bbeab9ca0630c33c03579354fbcd4fae1e

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://edelixir.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15752
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Fri, 27 Jan 2023 01:49:59 GMT
expires: Sat, 27 Jan 2024 01:49:59 GMT
cache-control: public, max-age=31536000
age: 131505
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
cbe94bc7052911313fffd1cdad964a74
a96a6606f1d20baeeb4040c9ced3ba2f7bd1aada
430d90ac0a39038dbb5336cf29baf6786ac29491c5a8e4dcce04e93d9fceb5e1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Sat, 28 Jan 2023 14:21:44 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

edelixir.com/images/pack-secur.png

69.172.200.220

200 OK

27 kB

URL HTTP/2
edelixir.com/images/pack-secur.png
IP
69.172.200.220:0
ASN
#19324 DOSARREST

File type
PNG image data, 643 x 84, 8-bit/color RGBA, non-interlaced\012- data
Size
27 kB (27171 bytes)
Hash
e1e1ebca2731b3d8dc90d6714e25f4b0
2001452028b675d9c0a6e363f80eece8d03557e3
23ed0f13c10e5bcf7ad7d45615a11360180b30e45610b1134efdee68868769af

HTTP Headers

GET /images/pack-secur.png HTTP/1.1
Host: edelixir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/vsl?hop=chetna55
Cookie: user_id=9cc50c73a10149ecb7447f363390d7b2; user_id.sig=5rGlY-nHxmyLnriBk53PBJytd94; uid=wKhaAWPVL3e9TABGAwdvAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 28 Jan 2023 14:21:44 GMT
content-type: image/png
content-length: 27171
last-modified: Thu, 12 Dec 2019 11:44:18 GMT
etag: "5df22812-6a23"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: d3f228afeea724b430f1a831b87f886f
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2

edelixir.com/assets/Wait-Pop-Up-min.png

69.172.200.220

200 OK

50 kB

URL HTTP/2
edelixir.com/assets/Wait-Pop-Up-min.png
IP
69.172.200.220:0
ASN
#19324 DOSARREST

File type
PNG image data, 850 x 476, 8-bit colormap, non-interlaced\012- data
Size
50 kB (49995 bytes)
Hash
679eed00c803117976611fe728836d2b
6f9e065f307b965246b8c885b7ebceb6b2cf3426
94137beeb934caf0bc7ad2ee60a09a29dca5df7a3896c1fd772d666f7194d3cd

HTTP Headers

GET /assets/Wait-Pop-Up-min.png HTTP/1.1
Host: edelixir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/vsl?hop=chetna55
Cookie: user_id=9cc50c73a10149ecb7447f363390d7b2; user_id.sig=5rGlY-nHxmyLnriBk53PBJytd94; uid=wKhaAWPVL3e9TABGAwdvAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 28 Jan 2023 14:21:44 GMT
content-type: image/png
content-length: 49995
last-modified: Fri, 28 Feb 2020 06:10:33 GMT
etag: "5e58aed9-c34b"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 0d1f5650419af84138910682a1b5dcb7
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2

cbtb.clickbank.net/?vendor=edelixir

35.83.162.61

200 OK

934 B

URL HTTP/2
cbtb.clickbank.net/?vendor=edelixir
IP
35.83.162.61:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (934), with no line terminators
Size
934 B (934 bytes)
Hash
8fd1f25e440f59488c0b83af66cbac5b
157b2dfc49dd094d430772389e40f2d4d7782bb7
f426ae11da854d43ee97f2437e23127c179d478bac0e75e4fff8f3b208e4ef3d

HTTP Headers

GET /?vendor=edelixir HTTP/1.1
Host: cbtb.clickbank.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 28 Jan 2023 14:21:44 GMT
content-type: text/javascript;charset=UTF-8
content-length: 934
set-cookie: AWSALB=p0vKCw9GOUysR3tmncV/4mRo00Akcj+3ng1zSpUDUP7tOUsgXivQ7nZ5j3qLartyTBXrJu1UCsvt1fwgZZm237hM6I5Wki5X4z6X2o9Qp76PA0qcDtLgoB7lmFq7; Expires=Sat, 04 Feb 2023 14:21:44 GMT; Path=/
AWSALBCORS=p0vKCw9GOUysR3tmncV/4mRo00Akcj+3ng1zSpUDUP7tOUsgXivQ7nZ5j3qLartyTBXrJu1UCsvt1fwgZZm237hM6I5Wki5X4z6X2o9Qp76PA0qcDtLgoB7lmFq7; Expires=Sat, 04 Feb 2023 14:21:44 GMT; Path=/; SameSite=None; Secure
server: Apache
cache-control: max-age=900
X-Firefox-Spdy: h2

quick.vidalytics.com/embeds/sBLUNzmU/nkeBKD2LAHyehWAO/loader.min.js

151.101.193.91

200 OK

10 kB

URL HTTP/2
quick.vidalytics.com/embeds/sBLUNzmU/nkeBKD2LAHyehWAO/loader.min.js
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (42307), with CRLF, LF line terminators
Size
10 kB (10531 bytes)
Hash
8d9614f59394af92cafb515daf2b8fb0
5c1c3c364c1923923b22690e99f7788f2e4f0a11
da348c7e5745f8eab4900b6bb6597a1e92ad7e968a0223b1f21dd3702e95cd68

HTTP Headers

GET /embeds/sBLUNzmU/nkeBKD2LAHyehWAO/loader.min.js HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-guploader-uploadid: ADPycduR76zpoQFKtpk8ugIR2xPLJHo5h1Z4Jav9DUo9X5u3LYpuuQWDDop7M-5MXz0W9MWUfkd87JpZrF_cl3qO7fimyA
expires: Sat, 28 Jan 2023 14:21:44 GMT
last-modified: Wed, 11 Jan 2023 13:30:47 GMT
etag: "8d9614f59394af92cafb515daf2b8fb0"
x-goog-generation: 1673443847111838
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 10531
content-type: application/javascript
content-encoding: gzip
x-goog-hash: crc32c=Dddihw==, md5=jZYU9ZOUr5LK+1FdryuPsA==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 28 Jan 2023 14:21:44 GMT
age: 0
x-served-by: cache-iad-kcgs7200158-IAD, cache-bma1677-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1674915705.821891,VS0,VE149
vary: Accept-Encoding
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by
x-cdn: 5
cache-control: public, max-age=180, s-maxage=180
x-cdn-info: loader
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 10531
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
589ae8fae373108543c9b1eb469c7d42
a6d4e0bfe1c46caecedc4f1d823c0d93a51b9c98
873b46fc9fdeb09c6d12e232a6b3ed2f634438c44e15208179527849d767fdc1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 14:21:45 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 12:56:21 GMT
Expires: Wed, 01 Feb 2023 12:56:20 GMT
Etag: "a6d4e0bfe1c46caecedc4f1d823c0d93a51b9c98"
Cache-Control: max-age=339874,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 790a60544b60b4fd-OSL

ocsp.sca1b.amazontrust.com/

54.230.245.100

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
54.230.245.100:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
7351cd54cd5eb1b1e30ec893131a7d05
9d7356ed7a34dd049be5a94d70f8ff966a661216
4a3151928644c2ea9ecbaee409c1beebbe682f2b3238360000d52168f85475df

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=135375
Date: Sat, 28 Jan 2023 14:21:45 GMT
Etag: "63d49c98-1d7"
Expires: Mon, 30 Jan 2023 03:58:00 GMT
Last-Modified: Sat, 28 Jan 2023 03:55:04 GMT
Server: ECS (dcb/7FA4)
X-Cache: Miss from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: Jn3-lZMNz1xGL3x1ePSiykKzeDSfRSwS9gAkd80pynM2kOrTn2ksFg==
Age: 176

edelixir.com/assets/bundle.png

69.172.200.220

200 OK

212 kB

URL HTTP/2
edelixir.com/assets/bundle.png
IP
69.172.200.220:0
ASN
#19324 DOSARREST

File type
PNG image data, 775 x 310, 8-bit/color RGBA, non-interlaced\012- data
Size
212 kB (212322 bytes)
Hash
df6e07a97d9a66c833a444eec6068305
be5cda7428d8d2703c107473a33026475bd4aba8
2fef3b82e608003bec36e60e84b7c88940e9dc263cc8a25623e2d8111b2d4e89

HTTP Headers

GET /assets/bundle.png HTTP/1.1
Host: edelixir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/vsl?hop=chetna55
Cookie: user_id=9cc50c73a10149ecb7447f363390d7b2; user_id.sig=5rGlY-nHxmyLnriBk53PBJytd94; uid=wKhaAWPVL3e9TABGAwdvAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 28 Jan 2023 14:21:44 GMT
content-type: image/png
content-length: 212322
last-modified: Fri, 28 Feb 2020 06:10:40 GMT
etag: "5e58aee0-33d62"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: 076b1ccd4cae845ef109ac8bd777fe7f
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2

quick.vidalytics.com/embeds/sBLUNzmU/nkeBKD2LAHyehWAO/player-dash-mse.min.js?hash=fljxvqkwfv

151.101.193.91

200 OK

510 kB

URL HTTP/2
quick.vidalytics.com/embeds/sBLUNzmU/nkeBKD2LAHyehWAO/player-dash-mse.min.js?hash=fljxvqkwfv
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
Unicode text, UTF-8 text, with very long lines (65399)
Size
510 kB (509565 bytes)
Hash
afc6701577fdb88944a1fc5ac95d01a3
e117eeddd311748997e9aab6d10552cc5472c8b6
30a0e4a3b068656868e0133bdaeb95cc29da0d5ba0077c536b5f36b366114f78

HTTP Headers

GET /embeds/sBLUNzmU/nkeBKD2LAHyehWAO/player-dash-mse.min.js?hash=fljxvqkwfv HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://edelixir.com
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-guploader-uploadid: ADPycdsxCqN450HXJoPUx6rvGc1EAUJ2VEFwaj3Z4BEsAXYQaF4N8q4srqZ0sBft6TAbQ5nV1Tbw7mwDUX44jEUXEMERHV7VUHOD
cache-control: public, max-age=300, s-maxage=2592000
expires: Fri, 10 Feb 2023 13:58:40 GMT
last-modified: Wed, 11 Jan 2023 13:30:47 GMT
etag: "afc6701577fdb88944a1fc5ac95d01a3"
x-goog-generation: 1673443847520010
x-goog-metageneration: 1
x-goog-stored-content-encoding: gzip
x-goog-stored-content-length: 509565
content-type: application/javascript
content-encoding: gzip
x-goog-hash: crc32c=6WY/Mw==, md5=r8ZwFXf9uIlEofxayV0Bow==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 28 Jan 2023 14:21:45 GMT
age: 1470185
x-served-by: cache-iad-kcgs7200056-IAD, cache-bma1655-BMA
x-cache: HIT, MISS
x-cache-hits: 22, 0
x-timer: S1674915705.044485,VS0,VE115
vary: Accept-Encoding
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by
x-cdn: 5
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 509565
X-Firefox-Spdy: h2

ipapi.co/json/

172.67.69.226

200 OK

362 B

URL HTTP/2
ipapi.co/json/
IP
172.67.69.226:0
ASN
#13335 CLOUDFLARENET

File type
JSON data\012- , ASCII text
Size
362 B (362 bytes)
Hash
ab8e1c917fc1ef2a8a6813b8acc685b9
725d787dec151a971267427010a13bb5c159a0db
837017f886ae697f3f621871fdee39cc68a901a5af16eeaa54a5a4227ab6b2f3

HTTP Headers

GET /json/ HTTP/1.1
Host: ipapi.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://edelixir.com
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 28 Jan 2023 14:21:44 GMT
content-type: application/json
allow: GET, OPTIONS, POST, OPTIONS, HEAD
x-frame-options: DENY
vary: Host, Origin
access-control-allow-origin: https://edelixir.com
x-content-type-options: nosniff
referrer-policy: same-origin
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=DSXYJA7jQeHxUnLc7%2FwfjDEYXYP2pZWGLSyl2sqSjt5CsB%2FjfvXBR9FtU%2B4TilirSb3e%2BD2p31eRkQSQ1MHca1N%2FydlcINoVwGA5RPc2ZlmYpLq%2BuZeIfsAb"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790a60525d04b506-OSL
content-encoding: br
X-Firefox-Spdy: h2

edelixir.com/fonts/WorkSans-Regular.ttf

69.172.200.220

200 OK

136 kB

URL HTTP/2
edelixir.com/fonts/WorkSans-Regular.ttf
IP
69.172.200.220:0
ASN
#19324 DOSARREST

File type
TrueType Font data, digitally signed, 18 tables, 1st "DSIG", 13 names, Microsoft, language 0x409, Copyright \251 2015 by Wei Huang. All rights reserved.Work SansRegular1.400;UKWN;WorkSans-Regula\012- data
Size
136 kB (135828 bytes)
Hash
92bbabfda96fb9e73100d90404d5383a
962c129f1129594b40e6fb1132cb597495ce9813
4e8b90b2380c6f73922e90ac611f7d79ed0ace91bbcd5fc73ea6f3b6d7cb3441

HTTP Headers

GET /fonts/WorkSans-Regular.ttf HTTP/1.1
Host: edelixir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/style.css
Cookie: user_id=9cc50c73a10149ecb7447f363390d7b2; user_id.sig=5rGlY-nHxmyLnriBk53PBJytd94; uid=wKhaAWPVL3e9TABGAwdvAg==; cnid=0
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 28 Jan 2023 14:21:45 GMT
content-type: application/octet-stream
content-length: 135828
last-modified: Wed, 08 Jan 2020 10:15:13 GMT
etag: "5e15abb1-21294"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding
x-dis-request-id: c347f6678f37fccba74a40f3f61e223f
server: DOSarrest
accept-ranges: bytes
X-Firefox-Spdy: h2

edelixir.com/js/bounceback.min.js

69.172.200.220

200 OK

3.1 kB

URL HTTP/2
edelixir.com/js/bounceback.min.js
IP
69.172.200.220:0
ASN
#19324 DOSARREST

File type
data
Size
3.1 kB (3126 bytes)
Hash
e93de1b88e347f0526217bc5e2aab9d5
de344a3aa978c3aa69a41e547658c9bd3cf598d9
07c8708ee219c7d44451f7e04ef5f3f8cfa436c50efc6ffdf4e146e7fa5f2b7d

HTTP Headers

GET /js/bounceback.min.js HTTP/1.1
Host: edelixir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/vsl?hop=chetna55
Cookie: user_id=9cc50c73a10149ecb7447f363390d7b2; user_id.sig=5rGlY-nHxmyLnriBk53PBJytd94; uid=wKhaAWPVL3e9TABGAwdvAg==; cnid=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 28 Jan 2023 14:21:44 GMT
content-type: application/javascript
last-modified: Sat, 14 Dec 2019 04:15:09 GMT
etag: W/"5df461cd-b20"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 44ae804a873f4a4751acf2994dc92e7e
server: DOSarrest
X-Firefox-Spdy: h2

edelixir.com/api/visits?page_id=10&page_version=&request_id=4621FD81%3AB986_D197C0D8%3A01BB_63D52F77_273B53%3A36A848&querystring=hop%3Dchetna55&fbclid=&fbp=&fbc=&referrer=http%3A%2F%2Fwww.menshealthfix.monster%2F

69.172.200.220

200 OK

411 B

URL HTTP/2
edelixir.com/api/visits?page_id=10&page_version=&request_id=4621FD81%3AB986_D197C0D8%3A01BB_63D52F77_273B53%3A36A848&querystring=hop%3Dchetna55&fbclid=&fbp=&fbc=&referrer=http%3A%2F%2Fwww.menshealthfix.monster%2F
IP
69.172.200.220:0
ASN
#19324 DOSARREST

File type
data
Size
411 B (411 bytes)
Hash
68be081007824af82ee5ffec571152e4
18e9b12bba6d5bcfd1255d690637abe0c50f0a5c
4af26775feb0cfa96445847b412e76a1cb50feac84e78ef2d9302c51dca7fc93

HTTP Headers

GET /api/visits?page_id=10&page_version=&request_id=4621FD81%3AB986_D197C0D8%3A01BB_63D52F77_273B53%3A36A848&querystring=hop%3Dchetna55&fbclid=&fbp=&fbc=&referrer=http%3A%2F%2Fwww.menshealthfix.monster%2F HTTP/1.1
Host: edelixir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/vsl?hop=chetna55
Cookie: user_id=9cc50c73a10149ecb7447f363390d7b2; user_id.sig=5rGlY-nHxmyLnriBk53PBJytd94; uid=wKhaAWPVL3e9TABGAwdvAg==; cnid=0
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 28 Jan 2023 14:21:45 GMT
content-type: application/javascript; charset=utf-8
vary: Accept-Encoding
set-cookie: affiliate=chetna55; path=/; expires=Sun, 28 Jan 2024 14:21:45 GMT; secure
affiliate.sig=HUH3pMWMAa2ts7-IIqPzs8lHWFM; path=/; expires=Sun, 28 Jan 2024 14:21:45 GMT; secure
content-security-policy: frame-ancestors 'self'      cbsplit.com     edelixir.com     edelixir-com.cbsplit.com             ;
content-encoding: gzip
x-dis-request-id: aa2288104b6d6f92e973d4eb482f4636
server: DOSarrest
X-Firefox-Spdy: h2

seal-boise.bbb.org/seals/blue-seal-153-100-clickbank-5004291.png

82.102.27.18

200 OK

4.4 kB

URL HTTP/2
seal-boise.bbb.org/seals/blue-seal-153-100-clickbank-5004291.png
IP
82.102.27.18:0
ASN
#9009 M247 Ltd

File type
PNG image data, 153 x 100, 8-bit/color RGBA, non-interlaced\012- data
Size
4.4 kB (4380 bytes)
Hash
29b69d407571d2a3b8e14bb01717f962
78a6491be4b9558bde5a02dde73e2a1eaebe44eb
1159a884fa7e78df1f617db9249bf931eff94f7a83c3cf984fd3d39ad12b983b

HTTP Headers

GET /seals/blue-seal-153-100-clickbank-5004291.png HTTP/1.1
Host: seal-boise.bbb.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: keycdn-engine
date: Sat, 28 Jan 2023 14:21:45 GMT
content-type: image/png
content-length: 4380
cache-control: max-age=14400
expires: Sat, 28 Jan 2023 18:21:45 GMT
last-modified: Tue, 24 Jan 2023 08:10:00 GMT
x-aspnet-version: 4.0.30319
x-powered-by: ASP.NET
x-cache: HIT
x-shield: active
x-edge-location: noos
access-control-allow-origin: *
accept-ranges: bytes
X-Firefox-Spdy: h2

analytics-ingress-global.bitmovin.com/analytics

35.190.27.197

204 No Content

0 B

URL HTTP/2
analytics-ingress-global.bitmovin.com/analytics
IP
35.190.27.197:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1245
Origin: https://edelixir.com
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: v1.55.1
date: Sat, 28 Jan 2023 14:21:45 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sectigo.com/

172.64.155.188

200 OK

472 B

URL HTTP/1.1
ocsp.sectigo.com/
IP
172.64.155.188:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
472 B (472 bytes)
Hash
b013fcb46adc4dfc353a34fd455fc8df
6bf169a5e8197ab5a3ce89e1c594dd0a62e9852b
88aa9422cbf717990a4ba82b51e7fef13245fd8e2342481e5ef9c87b27d1a1f1

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sectigo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Date: Sat, 28 Jan 2023 14:21:45 GMT
Content-Type: application/ocsp-response
Content-Length: 472
Connection: keep-alive
Last-Modified: Wed, 25 Jan 2023 12:06:21 GMT
Expires: Wed, 01 Feb 2023 12:06:20 GMT
Etag: "6bf169a5e8197ab5a3ce89e1c594dd0a62e9852b"
Cache-Control: max-age=336874,s-maxage=1800,public,no-transform,must-revalidate
X-CCACDN-Proxy-ID: mcdpinlb3
X-Frame-Options: SAMEORIGIN
CF-Cache-Status: DYNAMIC
Server: cloudflare
CF-RAY: 790a6059ba9bb4fd-OSL

prod.cbstatic.net/dist/assets/logo-tab-white-en.png

54.230.111.9

200 OK

3.8 kB

URL HTTP/2
prod.cbstatic.net/dist/assets/logo-tab-white-en.png
IP
54.230.111.9:0
ASN
#16509 AMAZON-02

File type
PNG image data, 321 x 63, 8-bit/color RGBA, non-interlaced\012- data
Size
3.8 kB (3779 bytes)
Hash
dc81e32fb5cefc7eb584522b0e2b6c2f
e2ed2e7dd6e2d2801ada4fc760b3b84682ec1bfb
2480b0e815e72badeae95b3ea9bc8f83d9c08391fafbe6b87ea756b7f26448ac

HTTP Headers

GET /dist/assets/logo-tab-white-en.png HTTP/1.1
Host: prod.cbstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/png
content-length: 3779
date: Sat, 28 Jan 2023 14:21:46 GMT
last-modified: Mon, 21 Dec 2020 21:57:36 GMT
x-amz-version-id: cNeRH7m7.WywkvAuxfTwU5dXD8BBTjq_
etag: "dc81e32fb5cefc7eb584522b0e2b6c2f"
server: AmazonS3
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: DZgw7baCOi-Z9p2eFDFiyDflmhw3tV4aIUBqqsVoHssoauopR0V9yA==
X-Firefox-Spdy: h2

quick.vidalytics.com/video/sBLUNzmU/X5jGuTPh_Mvv45Vd/16131/11292/stream.mpd

151.101.193.91

200 OK

4.7 kB

URL HTTP/2
quick.vidalytics.com/video/sBLUNzmU/X5jGuTPh_Mvv45Vd/16131/11292/stream.mpd
IP
151.101.193.91:0
ASN
#54113 FASTLY

File type
XML 1.0 document text\012- XML document, ASCII text
Size
4.7 kB (4669 bytes)
Hash
8b20ad8dec7cbdb199264057dc613beb
ce1f5a7f40667f7613c546b14e113d032e8cc8fa
df05f54442085c68157e3ee12a7768ed5724a090624c3b170df2b35f5b99e464

HTTP Headers

GET /video/sBLUNzmU/X5jGuTPh_Mvv45Vd/16131/11292/stream.mpd HTTP/1.1
Host: quick.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://edelixir.com
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
x-guploader-uploadid: ADPycduCqi08Y_mINON8gtVYHwM9aliU11g7xzLcswlp8tY18bRobM1P0FB5sar9HNP2FYv4vddkMjNcLD1eF1eRrcH8BW20d-ku
expires: Sat, 28 Jan 2023 15:21:45 GMT
cache-control: public, max-age=3600
last-modified: Tue, 14 Apr 2020 13:33:26 GMT
etag: "8b20ad8dec7cbdb199264057dc613beb"
x-goog-generation: 1586871206285726
x-goog-metageneration: 1
x-goog-stored-content-encoding: identity
x-goog-stored-content-length: 4669
content-type: application/dash+xml
x-goog-hash: crc32c=QEAtIg==, md5=iyCtjex8vbGZJkBX3GE76w==
x-goog-storage-class: MULTI_REGIONAL
access-control-allow-origin: *
server: UploadServer
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Sat, 28 Jan 2023 14:21:45 GMT
age: 0
x-served-by: cache-iad-kjyo7100040-IAD, cache-bma1655-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1674915706.729337,VS0,VE205
access-control-expose-headers: Content-Type, server, x-hw, x-cdn, x-cdn-info, x-cache, x-cache-hits, x-served-by
x-cdn: 5
alt-svc: h3=":443";ma=86400,h3-29=":443";ma=86400,h3-27=":443";ma=86400
content-length: 4669
X-Firefox-Spdy: h2

prod.cbstatic.net/dist/i18n/app-strings-en.json

54.230.111.9

200 OK

9 B

URL HTTP/2
prod.cbstatic.net/dist/i18n/app-strings-en.json
IP
54.230.111.9:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with no line terminators
Size
9 B (9 bytes)
Hash
cdfca8b09e61ae7324e48f01984c9b34
874b413675711909229ca228efea613383d6a9a4
00c89e0cd4c41144418e06885bb87e962fdb17567bf55adccb1678a1f6beca4c

HTTP Headers

GET /dist/i18n/app-strings-en.json HTTP/1.1
Host: prod.cbstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://edelixir.com
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/json
content-length: 9
date: Sat, 28 Jan 2023 14:21:46 GMT
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
last-modified: Mon, 21 Dec 2020 21:57:36 GMT
x-amz-version-id: ZlnvsWVay.azLO76UGrGFfzKmZRJT9PH
etag: "cdfca8b09e61ae7324e48f01984c9b34"
server: AmazonS3
vary: Origin
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: Ja5znWoM-pGHhgCZLZKkztGcUVajzYhLibXBnHaTiSg_SqG23cQ_qw==
X-Firefox-Spdy: h2

licensing.bitmovin.com/licensing

35.227.229.24

200 OK

165 B

URL HTTP/2
licensing.bitmovin.com/licensing
IP
35.227.229.24:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
165 B (165 bytes)
Hash
bad32d07dc1ad9e3d334785067afbf34
653f8f612c6646daae0122b3b27e2c11486f86a4
41d9103b84690ae5330f1de907c91f6964d58cbb449887cf1bb0e13475dc0638

HTTP Headers

POST /licensing HTTP/1.1
Host: licensing.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 143
Origin: https://edelixir.com
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
content-type: application/json
date: Sat, 28 Jan 2023 14:21:45 GMT
content-length: 165
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

edelixir.com/images/vsl-67-37.svg

69.172.200.220

200 OK

3.8 kB

URL HTTP/2
edelixir.com/images/vsl-67-37.svg
IP
69.172.200.220:0
ASN
#19324 DOSARREST

File type
data
Size
3.8 kB (3784 bytes)
Hash
bf31f3bfee6460d072547017cf32cb14
80ceea49007845bee3a2876aa73a1d920ee8c838
4b5f7fc737535a37cc662a5dfd6b170c92e9eb3aadfb8eafd530a1932fc60e75

HTTP Headers

GET /images/vsl-67-37.svg HTTP/1.1
Host: edelixir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/vsl?hop=chetna55
Cookie: user_id=9cc50c73a10149ecb7447f363390d7b2; user_id.sig=5rGlY-nHxmyLnriBk53PBJytd94; uid=wKhaAWPVL3e9TABGAwdvAg==; cnid=0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 28 Jan 2023 14:21:44 GMT
content-type: image/svg+xml
last-modified: Tue, 01 Dec 2020 04:28:14 GMT
etag: W/"5fc5c65e-9a0"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 479760e46c71ded0303bf61eb353bcd1
server: DOSarrest
X-Firefox-Spdy: h2

ocsp.godaddy.com/

192.124.249.24

200 OK

1.8 kB

URL HTTP/1.1
ocsp.godaddy.com/
IP
192.124.249.24:0
ASN
#30148 SUCURI-SEC

File type
data
Size
1.8 kB (1778 bytes)
Hash
a2545ab60dd5156babcdc6c46b1808e8
ac722c802b2c571408d933c498f90c0df4ee7f34
d5fe88ebf86891546a7c5848652689797bc421b82810656c6c8b5c85dbd35e86

HTTP Headers

POST / HTTP/1.1
Host: ocsp.godaddy.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 76
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: Sucuri/Cloudproxy
Date: Sat, 28 Jan 2023 14:21:45 GMT
Content-Type: application/ocsp-response
Content-Length: 1778
Connection: keep-alive
X-Sucuri-ID: 15024
Content-Transfer-Encoding: Binary
Cache-Control: public, no-transform, must-revalidate
Last-Modified: Sat, 28 Jan 2023 01:53:15 GMT
Expires: Sun, 29 Jan 2023 01:53:15 GMT
ETag: "ac722c802b2c571408d933c498f90c0df4ee7f34"
P3P: CP="IDC DSP COR LAW CUR ADM DEV TAI PSA PSD IVA IVD HIS OUR SAM PUB LEG UNI COM NAV STA"

prod.cbstatic.net/dist/injectable.js

54.230.111.9

200 OK

58 kB

URL HTTP/2
prod.cbstatic.net/dist/injectable.js
IP
54.230.111.9:0
ASN
#16509 AMAZON-02

File type
data
Size
58 kB (57476 bytes)
Hash
17d35772217c1d9db6edfc14080e9d99
ae6bdac12ca15a4e0568b79ea99b300ee8e9098b
fdef31c4f514da07957d797c1d828066cb50eab86bcb61fcad48d345fab940ba

HTTP Headers

GET /dist/injectable.js HTTP/1.1
Host: prod.cbstatic.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript
date: Sat, 28 Jan 2023 14:21:46 GMT
last-modified: Mon, 21 Dec 2020 21:57:37 GMT
x-amz-version-id: RdcimFzJWwtinCAQ.f3F8OeQrj2.m2uJ
etag: W/"af651c30e1a69f6f2124e9c1d094a300"
server: AmazonS3
content-encoding: gzip
vary: Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 9037b7743a833da13439f0d4e2619b52.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: 7BiBSai5a6XmzkdVbTsKCcy78adZAr3QkFCZMUDnhbg7ZkPI1rRJxg==
X-Firefox-Spdy: h2

stats.vidalytics.com/scribe

107.178.211.97

200 OK

16 B

URL HTTP/2
stats.vidalytics.com/scribe
IP
107.178.211.97:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
16 B (16 bytes)
Hash
a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c

HTTP Headers

POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 602
Origin: https://edelixir.com
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Sat, 28 Jan 2023 14:21:46 GMT
content-length: 16
x-envoy-upstream-service-time: 2
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2

stats.vidalytics.com/scribe

107.178.211.97

200 OK

16 B

URL HTTP/2
stats.vidalytics.com/scribe
IP
107.178.211.97:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
16 B (16 bytes)
Hash
a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c

HTTP Headers

POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 710
Origin: https://edelixir.com
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Sat, 28 Jan 2023 14:21:46 GMT
content-length: 16
x-envoy-upstream-service-time: 2
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2

stats.vidalytics.com/scribe

107.178.211.97

200 OK

16 B

URL HTTP/2
stats.vidalytics.com/scribe
IP
107.178.211.97:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
16 B (16 bytes)
Hash
a1cbd35d4488ac8cc6f959d4c633dc37
11844023759429ec785ae1c18e6a9c69803ee2bd
707d4c7f44dd33e874b5a09b6dba4702b12bfd3e19e470d601fcfc1d7009286c

HTTP Headers

POST /scribe HTTP/1.1
Host: stats.vidalytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 259
Origin: https://edelixir.com
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
access-control-allow-methods: POST,OPTIONS
content-type: application/json
date: Sat, 28 Jan 2023 14:21:46 GMT
content-length: 16
x-envoy-upstream-service-time: 2
server: istio-envoy
access-control-allow-origin: *
X-Firefox-Spdy: h2

licensing.bitmovin.com/impression

35.227.229.24

204 No Content

0 B

URL HTTP/2
licensing.bitmovin.com/impression
IP
35.227.229.24:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /impression HTTP/1.1
Host: licensing.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 108
Origin: https://edelixir.com
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
content-type: application/json
date: Sat, 28 Jan 2023 14:21:46 GMT
via: 1.1 google
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

analytics-ingress-global.bitmovin.com/analytics

35.190.27.197

204 No Content

0 B

URL HTTP/2
analytics-ingress-global.bitmovin.com/analytics
IP
35.190.27.197:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1848
Origin: https://edelixir.com
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: v1.55.1
date: Sat, 28 Jan 2023 14:21:46 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

analytics-ingress-global.bitmovin.com/analytics

35.190.27.197

204 No Content

0 B

URL HTTP/2
analytics-ingress-global.bitmovin.com/analytics
IP
35.190.27.197:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1814
Origin: https://edelixir.com
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: v1.55.1
date: Sat, 28 Jan 2023 14:21:46 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

analytics-ingress-global.bitmovin.com/analytics

35.190.27.197

204 No Content

0 B

URL HTTP/2
analytics-ingress-global.bitmovin.com/analytics
IP
35.190.27.197:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain
Content-Length: 1804
Origin: https://edelixir.com
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: v1.55.1
date: Sat, 28 Jan 2023 14:21:46 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

analytics-ingress-global.bitmovin.com/analytics

35.190.27.197

204 No Content

0 B

URL HTTP/2
analytics-ingress-global.bitmovin.com/analytics
IP
35.190.27.197:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1819
Origin: https://edelixir.com
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: v1.55.1
date: Sat, 28 Jan 2023 14:21:48 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

analytics-ingress-global.bitmovin.com/analytics

35.190.27.197

204 No Content

0 B

URL HTTP/2
analytics-ingress-global.bitmovin.com/analytics
IP
35.190.27.197:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /analytics HTTP/1.1
Host: analytics-ingress-global.bitmovin.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1859
Origin: https://edelixir.com
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 204 No Content
server: v1.55.1
date: Sat, 28 Jan 2023 14:21:48 GMT
content-type: application/json
access-control-allow-methods: HEAD,GET,POST,PUT,DELETE,OPTIONS
access-control-allow-origin: *
access-control-allow-headers: Origin, Accept, Content-Type, X-Requested-With, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

fonts.googleapis.com/css?family=Roboto:900

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:900
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Roboto:900 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Sat, 28 Jan 2023 14:21:44 GMT
date: Sat, 28 Jan 2023 14:21:44 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

edelixir.com/favicon.ico

69.172.200.220

404 Not Found

0 B

URL HTTP/2
edelixir.com/favicon.ico
IP
69.172.200.220:0
ASN
#19324 DOSARREST

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: edelixir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/vsl?hop=chetna55
Cookie: user_id=9cc50c73a10149ecb7447f363390d7b2; user_id.sig=5rGlY-nHxmyLnriBk53PBJytd94; uid=wKhaAWPVL3e9TABGAwdvAg==; cnid=0; visitor_name=old; affiliate=chetna55; affiliate.sig=HUH3pMWMAa2ts7-IIqPzs8lHWFM
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 404 Not Found
date: Sat, 28 Jan 2023 14:21:46 GMT
content-type: text/html; charset=utf-8
vary: Accept-Encoding
set-cookie: persistedParams=; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT; secure; httponly
persistedParams.sig=qQIP2OdsTFa87s1ohgL1NB6ingI; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT; secure; httponly
content-encoding: gzip
x-dis-request-id: 6f5572a842c8b1723fe0481ca787f49c
server: DOSarrest
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css

188.114.99.234

200 OK

0 B

URL HTTP/2
maxcdn.bootstrapcdn.com/font-awesome/4.7.0/css/font-awesome.min.css
IP
188.114.99.234:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /font-awesome/4.7.0/css/font-awesome.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 28 Jan 2023 14:21:44 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: DE
access-control-allow-origin: *
cache-control: public, max-age=31919000
etag: W/"269550530cc127b6aa5a35925a7de6ce"
last-modified: Mon, 25 Jan 2021 22:04:55 GMT
cdn-cachedat: 03/12/2022 14:32:07
cdn-proxyver: 1.02
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 723
cdn-status: 200
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
cdn-requestid: d59b1bc690982b057c0e17bb58696d82
cdn-cache: HIT
cf-cache-status: HIT
age: 1367020
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 790a604f3cb4b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

maxcdn.bootstrapcdn.com/bootstrap/4.1.0/css/bootstrap.min.css

188.114.99.234

200 OK

0 B

URL HTTP/2
maxcdn.bootstrapcdn.com/bootstrap/4.1.0/css/bootstrap.min.css
IP
188.114.99.234:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /bootstrap/4.1.0/css/bootstrap.min.css HTTP/1.1
Host: maxcdn.bootstrapcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 28 Jan 2023 14:21:44 GMT
content-type: text/css; charset=utf-8
vary: Accept-Encoding
cdn-pullzone: 252412
cdn-uid: b1941f61-b576-4f40-80de-5677acb38f74
cdn-requestcountrycode: SE
cdn-edgestorageid: 723, 718, 718
last-modified: Mon, 25 Jan 2021 22:04:04 GMT
cdn-cachedat: 2021-04-23 06:51:23
cdn-requestpullsuccess: True
cdn-requestpullcode: 200
cache-control: public, max-age=31919000
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
access-control-allow-origin: *
x-content-type-options: nosniff
cdn-requestid: 330597f128b3dc622b04b8553c9605f2
cdn-cache: HIT
cf-cache-status: HIT
age: 23020490
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 790a604f3cb2b521-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

edelixir.com/style.css

69.172.200.220

200 OK

0 B

URL HTTP/2
edelixir.com/style.css
IP
69.172.200.220:0
ASN
#19324 DOSARREST

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /style.css HTTP/1.1
Host: edelixir.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/vsl?hop=chetna55
Cookie: user_id=9cc50c73a10149ecb7447f363390d7b2; user_id.sig=5rGlY-nHxmyLnriBk53PBJytd94; uid=wKhaAWPVL3e9TABGAwdvAg==; cnid=0
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Sat, 28 Jan 2023 14:21:44 GMT
content-type: text/css
last-modified: Fri, 26 Nov 2021 07:48:18 GMT
etag: W/"61a09142-2b27"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000, public
pragma: public
vary: Accept-Encoding, Accept-Encoding
content-encoding: gzip
x-dis-request-id: 1bc73620c8edcd965c892fa72717b13b
server: DOSarrest
X-Firefox-Spdy: h2

cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/js/bootstrap.min.js

104.16.87.20

200 OK

0 B

URL HTTP/2
cdn.jsdelivr.net/npm/bootstrap@4.2.1/dist/js/bootstrap.min.js
IP
104.16.87.20:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /npm/bootstrap@4.2.1/dist/js/bootstrap.min.js HTTP/1.1
Host: cdn.jsdelivr.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://edelixir.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Sat, 28 Jan 2023 14:21:44 GMT
content-type: application/javascript; charset=utf-8
access-control-allow-origin: *
access-control-expose-headers: *
timing-allow-origin: *
cache-control: public, max-age=31536000, s-maxage=31536000, immutable
cross-origin-resource-policy: cross-origin
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-jsd-version: 4.2.1
x-jsd-version-type: version
etag: W/"d9df-3pCMntGE1061Jfp6MESbZ/w6HBQ"
x-served-by: cache-fra19132-FRA, cache-yyz4529-YYZ
x-cache: HIT, HIT
vary: Accept-Encoding
cf-cache-status: HIT
age: 112897
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=oMAm46Ql1CsWvSq0lqqxfIqSnQxmKmJxu2Tiz4oRJ9LTt2a20STrMN16UycY1YnINJUb7bwmaz%2BO77R5eXxB2gt7%2B6bwYIAm2%2F63hUSqy%2BlYdh%2FTk5uIXETPEUE%2BCrkxNSI%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0.01,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 790a604f3e43b512-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (22)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML