Report - trk.7a0ltxdy8u0p.xyz/click.php?c=317&key=759rbmbq7hrj6hf2ze5p08rt&clickid=<?php%20echo%20$_GET['clickid']?>&website=<?php%20echo%20$_GET['website']?>&brand=<?php%20echo%20$_GET['brand']?>&cate=<?php%20echo%20$_GET['cate']?>&isp=<?php%20echo%20$_GET['isp']?>&os=<?php%20echo%20$_GET['os']?>&browser=<?php%20echo%20$_GET['browser']?>&country=<?php%20echo%20$_GET['country']?>&lang=<?php%20echo%20$

Report Overview

Submitted URL
trk.7a0ltxdy8u0p.xyz/click.php?c=317&key=759rbmbq7hrj6hf2ze5p08rt&clickid=<?php%20echo%20$_GET['clickid']?>&website=<?php%20echo%20$_GET['website']?>&brand=<?php%20echo%20$_GET['brand']?>&cate=<?php%20echo%20$_GET['cate']?>&isp=<?php%20echo%20$_GET['isp']?>&os=<?php%20echo%20$_GET['os']?>&browser=<?php%20echo%20$_GET['browser']?>&country=<?php%20echo%20$_GET['country']?>&lang=<?php%20echo%20$_GET['lang']?>
IP
104.21.16.234
ASN
#13335 CLOUDFLARENET
Submitted
2022-10-04 08:53:47
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
16

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	93 kB	34.120.237.76
interesteddeterminedeurope.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	5.3 kB	8.5 kB	192.243.61.227
fls-na.amazon-adsystem.com	5951	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	880 B	144 B	52.94.225.95
unseenreport.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	681 B	11 kB	192.243.61.227
pl16926892.highperformancegate.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	400 B	10 kB	192.243.59.20
z-na.amazon-adsystem.com	6326	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	376 B	8.6 kB	54.230.82.193
creepingbrings.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	348 B	30 kB	172.64.199.30
cdn.sb4you1.com	22321	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.8 kB	31 kB	172.64.200.2
static.cloudflareinsights.com	1294	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	443 B	393 B	172.64.156.26
trk.7a0ltxdy8u0p.xyz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	800 B	930 B	172.67.216.215
simplewebanalysis.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.2 kB	1.1 kB	3.66.118.16
cdn.cloudimagesb.com	23099	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	424 B	21 kB	45.133.44.9
cdn.yourwebbars.com	62037	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	456 B	747 B	104.26.7.19
pl17477486.highperformancegate.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	402 B	14 kB	192.243.61.225
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.3 kB	21 kB	142.250.74.3
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	676 B	1.9 kB	143.204.42.158
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	938 B	34 kB	216.58.207.195
e1.o.lencr.org	6159	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.6 kB	3.6 kB	23.36.76.226
superfreetrck.xyz	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	396 B	862 B	172.67.182.247
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	321 B	229 B	34.117.237.239
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	658 B	1.3 kB	93.184.220.29
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	594 B	127 B	44.237.51.86
www.googletagmanager.com	75	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	371 B	76 kB	142.250.74.168
aax-us-east.amazon-adsystem.com	905	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	4.0 kB	145 kB	52.46.155.118
catmiaofans.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	519 B	663 B	104.21.86.182
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	401 B	5.8 kB	143.204.55.110
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.6 kB	39 kB	23.36.76.226
region1.google-analytics.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	768 B	562 B	216.239.34.36
familiarkindlyshuffle.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.2 kB	6.3 kB	192.243.59.20
wms-na.amazon-adsystem.com	17167	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	415 B	4.9 kB	54.230.80.193
m.media-amazon.com	580	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.0 kB	159 kB	151.101.85.16
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	758 B	2.7 kB	143.204.55.36
cdn.adsfcdn.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	361 B	745 B	104.21.44.117
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	402 B	1.9 kB	142.250.74.10

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-10-04	medium	highperformancegate.com	Sinkholed
2022-10-04	medium	highperformancegate.com	Sinkholed
2022-10-04	medium	interesteddeterminedeurope.com	Sinkholed
2022-10-04	medium	interesteddeterminedeurope.com	Sinkholed
2022-10-04	medium	unseenreport.com	Sinkholed
2022-10-04	medium	interesteddeterminedeurope.com	Sinkholed
2022-10-04	medium	interesteddeterminedeurope.com	Sinkholed
2022-10-04	medium	interesteddeterminedeurope.com	Sinkholed

Files detected

URL
interesteddeterminedeurope.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fmessage_redcircle2%2F3%2Fcss%2Fstyle.css&l=3637&fd=224
IP
192.243.61.227
ASN
#39572 DataWeb Global Group B.V.

File type
gzip compressed data, max compression\012- data
Size
660 B (660 bytes)
Hash
5860c780c8e9daa4f852038f02b5bdc2
c75c8b4db36bffe075ce493f06d011f855d5541a
f11b9f8e851e15c0c6abd53a9994c6dcef78ceeebd0f0b8bbde610fec8332c85

Detections

Analyzer	Verdict	Alert
VirusTotal	0/0

JavaScript (30)

	URL	Size	First Seen	Last Seen
	pl16926892.highperformancegate.com/f2088a82fa85b4e1a64389593479f39f/invoke.js	25 kB	2023-03-07	2023-03-08
Pretty URL pl16926892.highperformancegate.com/f2088a82fa85b4e1a64389593479f39f/invoke.js IP 192.243.59.20 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:01:57 Last Seen2023-03-08 05:36:04 Times Seen1 Hash fadec5878346e40609927e9cdb6bcca7 b7a85116bcb100f6c5c9fcc9f726e1ee2dde507e d6c6d155da05aae84b4180fca6941cea6907dc21daa35689c03070e1a0204ee3 Loading...

	catmiaofans.com/wp-content/themes/enjoyvideo/assets/js/jquery.custom.js?ver=20210902	1.7 kB	2023-03-08	2023-11-27
Pretty URL catmiaofans.com/wp-content/themes/enjoyvideo/assets/js/jquery.custom.js?ver=20210902 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:36:04 Last Seen2023-11-27 00:07:38 Times Seen9 Hash ec916f69e6c34a538f88870fb9085101 a54d2559a2d3dc3d7af6e2a19fbb46549352bfe9 859db8a0f799fb49ff228f2cb4b77761506d29a758b3674a6edf6755d82c9934 Loading...

	catmiaofans.com/index.php/get-your-free-cat-food-sample/	109 kB	2023-03-08	2023-03-08
Pretty URL catmiaofans.com/index.php/get-your-free-cat-food-sample/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:36:04 Last Seen2023-03-08 05:36:04 Times Seen1 Hash b8a0b07d71071ee723cbb1b36793d758 b07cc08456dccecb37340f76201e453596b3f7d2 1fec90a96941655f7d2d436c67dd750e607eeb9ddba4fa09d9dfef08736736ff Loading...

	http:blank	601 B	2023-03-07	2023-03-08
Pretty URL http:blank IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:56 Last Seen2023-03-08 05:36:04 Times Seen1 Hash 6f65c93b183f9117d6f5a8667cb7a18a 66d9941480756f349a440944a0f48310adc839a3 b8a31f04bfa53b166422a47a30b8fbd0c850d69f8aa64f1bcff84650208b7c6d Loading...

	catmiaofans.com/wp-content/themes/enjoyvideo/assets/js/theia-sticky-sidebar.js?ver=6.0.2	7.5 kB	2023-03-07	2024-03-16
Pretty URL catmiaofans.com/wp-content/themes/enjoyvideo/assets/js/theia-sticky-sidebar.js?ver=6.0.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:06:33 Last Seen2024-03-16 20:56:05 Times Seen81 Hash 4edd22b288d78ddc0cac461d55b6de6d a5d8a700fd9ac41f7a19ded3ee428905e4475501 1c3f4135ae3d85f96b87f9ecaab5099b1e9249a778b10114f3e53307e25b7a54 Loading...

	catmiaofans.com/wp-content/themes/enjoyvideo/assets/js/index.js?ver=20210902	15 kB	2023-03-08	2024-02-23
Pretty URL catmiaofans.com/wp-content/themes/enjoyvideo/assets/js/index.js?ver=20210902 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:36:04 Last Seen2024-02-23 08:57:20 Times Seen12 Hash e17888577c6a7fb75cc5812b2b50fb72 b21c343e7eb68f59bb556ecb3d07205760c2ddce 05da49eec87bf6782045db4309dda1a9286b777f72f9212e24505a04ccac2172 Loading...

	catmiaofans.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16	158 kB	2023-03-07	2024-04-20
Pretty URL catmiaofans.com/wp-includes/js/mediaelement/mediaelement-and-player.min.js?ver=4.2.16 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:59 Last Seen2024-04-20 20:44:41 Times Seen2401 Hash 6de31d697a1b1b2b0e2a3b29b1fb458b c9b6c996a66918f7c4d49c9b60134ce282c47143 443ba0af7a7ed827223c7fb3c008c02b9ff1d651b6492e9c270378b07d9f6008 Loading...

	catmiaofans.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2	19 kB	2023-03-07	2024-04-25
Pretty URL catmiaofans.com/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-25 01:37:46 Times Seen38039 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	catmiaofans.com/index.php/get-your-free-cat-food-sample/	153 B	2023-03-07	2023-03-10
Pretty URL catmiaofans.com/index.php/get-your-free-cat-food-sample/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:56 Last Seen2023-03-10 09:48:29 Times Seen1 Hash 522f5d80800f1c714dc7ef8c546fc98e 9d574572a1a3fcd7e5befd8bf8a2f6ffb058ce13 570076aef3e6434656104166ca42de3ac87b803e250d754c931d5fcbb5ce24b5 Loading...

	catmiaofans.com/index.php/get-your-free-cat-food-sample/	149 B	2023-03-07	2024-04-25
Pretty URL catmiaofans.com/index.php/get-your-free-cat-food-sample/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:22 Last Seen2024-04-25 01:48:26 Times Seen2860 Hash 931deb2e7bef82d78d1c1b0a3fe4fe32 2a468d77a19124c4bcd1745b7f51eff01b269ade afb2b21f29cd5d7fc5b63a8ea02ece9649603b9e63a2afa55927c508345e1ee7 Loading...

	catmiaofans.com/index.php/get-your-free-cat-food-sample/	190 B	2023-03-07	2023-05-05
Pretty URL catmiaofans.com/index.php/get-your-free-cat-food-sample/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:11:37 Last Seen2023-05-05 10:46:31 Times Seen25 Hash afe34cbf39ba2b96f4b1346cc8c80936 e012d03b3df1c6aab44a92ed3eed5f1bd6a9c139 393ac3e8379fc9faf04a25cd9f6b559c3bde720e0f3ad7b9df7833a1191b0952 Loading...

	catmiaofans.com/index.php/get-your-free-cat-food-sample/	2.2 kB	2023-03-07	2023-03-10
Pretty URL catmiaofans.com/index.php/get-your-free-cat-food-sample/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:56 Last Seen2023-03-10 09:48:29 Times Seen1 Hash db589075b7123384a27d68cb6b544a76 075ed3af7b00b72ee8cc38892917d52e48889d2a ee871f8f248fe7287f2cabdad8e5257b9f29af63f33e0429caf89690df7fe782 Loading...

	catmiaofans.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-25
Pretty URL catmiaofans.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-25 01:37:46 Times Seen68606 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	catmiaofans.com/wp-content/themes/enjoyvideo/assets/js/superfish.js?ver=6.0.2	5.5 kB	2023-03-07	2024-02-09
Pretty URL catmiaofans.com/wp-content/themes/enjoyvideo/assets/js/superfish.js?ver=6.0.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:06:33 Last Seen2024-02-09 11:17:56 Times Seen37 Hash 47a077cf86f328c28b3c43b19a1a1f44 69124b65808668d7bae613a9a50c71ecc6ef3efb d9ecc05c7a6ae6794d682b669ae960b83822e8b57e1a5e675ca8022f366ea0f0 Loading...

	catmiaofans.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.16	6.5 kB	2023-03-07	2024-04-24
Pretty URL catmiaofans.com/wp-includes/js/mediaelement/renderers/vimeo.min.js?ver=4.2.16 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:29 Last Seen2024-04-24 11:16:56 Times Seen1323 Hash 170687433986a4a559fa4f16b1d7c70e 84349b5fb0fcb057ae1768667f480fd607a1da49 722a90d42ef2bd0ea38f0fdac6b4c0523aa4a027e9ffe889972100746e165582 Loading...

	pl17477486.highperformancegate.com/dd/1f/0d/dd1f0d5eb9f5f07d0b8e70df25b25181.js	37 kB	2023-03-08	2023-03-08
Pretty URL pl17477486.highperformancegate.com/dd/1f/0d/dd1f0d5eb9f5f07d0b8e70df25b25181.js IP 192.243.61.225 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:36:04 Last Seen2023-03-08 05:36:04 Times Seen1 Hash 3b00c630d062c9f42f605b9a49daf572 8ff8aa984ad3da55811336174031a0f2559ac016 f0ec609074a664cfeb664122453ad28e8a82e7e2d7193cd643bbf3a7b4d637bc Loading...

	catmiaofans.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.2	1.2 kB	2023-03-07	2024-04-25
Pretty URL catmiaofans.com/wp-includes/js/mediaelement/mediaelement-migrate.min.js?ver=6.0.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:59 Last Seen2024-04-25 01:53:38 Times Seen9177 Hash 51300497928562f8c86c7aaba99237cd e5826832b85c6afc6502b74cbb8ac5394b04c363 6d161e98e47ae150b51211443eef37040fb6269dcf85ad2048548066dca99e6f Loading...

	cdn.adsfcdn.com/js/aG9MM1NBZk54MXM9.js	3.5 kB	2023-03-08	2023-03-08
Pretty URL cdn.adsfcdn.com/js/aG9MM1NBZk54MXM9.js IP 104.21.44.117 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:36:04 Last Seen2023-03-08 05:36:04 Times Seen1 Hash 09b5a15cee3550e347c28289fcfcc4c9 4b731f1d6c3c5314b137a8ac6e5fc13b34c8b9d6 7b0815665eb0b1d1c0b87f071d5cc166ce269a880fc0f19833bfcd99450f7f4b Loading...

	catmiaofans.com/index.php/get-your-free-cat-food-sample/	245 B	2023-03-08	2023-03-08
Pretty URL catmiaofans.com/index.php/get-your-free-cat-food-sample/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:36:04 Last Seen2023-03-08 05:36:04 Times Seen1 Hash 95eb9f44f8de5ab4cd54e747b504cdb3 cf8fe16b38aac373db7cb78960f46ed4487b8d1b e2ffe63a3710110ab1f00c31596bb47c15b33927f7fc073fa6052303dbb09a6e Loading...

	static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194	14 kB	2023-03-07	2024-04-25
Pretty URL static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 IP 172.64.156.26 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:06 Last Seen2024-04-25 01:45:12 Times Seen1632 Hash 19514b1be5ee33b45d32c1fcd4c67ec2 bdeab77b43cafcc638df9d7c26f1aa7f46bf1fd5 fd0a1ac929c11b08e819fe4b0a18c5574012c44f09de8987c6be99a0f055a505 Loading...

	www.googletagmanager.com/gtag/js?id=G-NPCV3LF4M7	214 kB	2023-03-08	2023-03-08
Pretty URL www.googletagmanager.com/gtag/js?id=G-NPCV3LF4M7 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:36:04 Last Seen2023-03-08 05:36:04 Times Seen1 Hash 17a201f4bdacb61da986199fdcab47f8 a96888a8e54e033f6d23ddc8b7d1be9e86ee7c9a 36f376f0b3c79f7a871d3927540f6e301de72a847ac526cfe5da81277610e9c6 Loading...

	catmiaofans.com/index.php/get-your-free-cat-food-sample/	467 B	2023-03-07	2023-03-10
Pretty URL catmiaofans.com/index.php/get-your-free-cat-food-sample/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:56 Last Seen2023-03-10 09:48:29 Times Seen1 Hash eb8081dd6edb12d159027f7d4950253f 0cd2e8ddeae0b7da4dd052da949aa4316902c53c fe2483454bfa316aba613c251f9ce3019791dbefd8ec521711eb3263abf980cb Loading...

	catmiaofans.com/index.php/get-your-free-cat-food-sample/	335 B	2023-03-07	2024-04-23
Pretty URL catmiaofans.com/index.php/get-your-free-cat-food-sample/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:56 Last Seen2024-04-23 05:39:19 Times Seen205 Hash a3a42bfe8ae187a867ceafef41b465b1 103b6ed31d57936e3e15fedea5a555d6cd131184 4090f46eaef2dad76f41be22ae8aa3d7245048219d86258eec947f26a04be883 Loading...

	catmiaofans.com/wp-content/plugins/locker-cat/includes/locker/locker.min.js?ver=1.0.1	1.1 kB	2023-03-07	2023-03-10
Pretty URL catmiaofans.com/wp-content/plugins/locker-cat/includes/locker/locker.min.js?ver=1.0.1 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:27:56 Last Seen2023-03-10 09:48:29 Times Seen1 Hash 2577a92af66b9f214ddba65833774434 46cce882b3214b2e4c1b183cad9cbc7935797e6a c00519652df581a7feaa478a8b8f4515ef41120ad4036db1687173cf1eb1bd36 Loading...

	catmiaofans.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.2	906 B	2023-03-07	2024-04-24
Pretty URL catmiaofans.com/wp-includes/js/mediaelement/wp-mediaelement.min.js?ver=6.0.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:59 Last Seen2024-04-24 20:13:16 Times Seen3865 Hash 2c6d3b562a48e0df5474999dd47e58fb 945220e990eb176c14e53cc663fb01e04e31b59f 3e6131330963c472b950b8aaf544ba3829735b8ccb103d614ba7793e3a786550 Loading...

	z-na.amazon-adsystem.com/widgets/onejs?MarketPlace=US	25 kB	2023-03-08	2023-03-08
Pretty URL z-na.amazon-adsystem.com/widgets/onejs?MarketPlace=US IP 54.230.82.193 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:36:04 Last Seen2023-03-08 05:36:04 Times Seen1 Hash 74888be849b28ef228a3a25afa1c600e 9bf71e11679d2e86049e43277e5e6e0a9175d7c6 1df068fe2dd994d2c8edff4187ae8aba736eb442a87e23658502f2c8bf509470 Loading...

	catmiaofans.com/wp-content/themes/enjoyvideo/assets/js/html5.js?ver=6.0.2	4.4 kB	2023-03-07	2024-02-09
Pretty URL catmiaofans.com/wp-content/themes/enjoyvideo/assets/js/html5.js?ver=6.0.2 IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 14:06:33 Last Seen2024-02-09 11:17:56 Times Seen39 Hash a2cf1989a5b0e284b1e2e167b121577c 9dd9ab7c9ebbd435622bbdbfec1d625927b313c8 1db9c8447699b34c4433d48a6b3a1fc1df74f4258935953c377bda8267144918 Loading...

	catmiaofans.com/index.php/get-your-free-cat-food-sample/	2.4 kB	2023-03-07	2024-04-25
Pretty URL catmiaofans.com/index.php/get-your-free-cat-food-sample/ IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:59 Last Seen2024-04-25 01:53:38 Times Seen3804 Hash 49f89aeeb8e861051ed61fc00d636b9b 9077f9d9ebc3b661bb3a81161c6a4e2de2531231 4190f2c4f25f9a34cbbfdb92f91a25359570d773ef7cff97c924e224ad877759 Loading...

	aax-us-east.amazon-adsystem.com/x/getad?src=330&c=100&sz=1x1&apiVersion=2.0&pj=%7B%22placement%22%3A%22adunit0%22%2C%22search_bar%22%3A%22true%22%2C%22tracking_id%22%3A%22catmiaofans-20%22%2C%22search_bar_position%22%3A%22top%22%2C%22ad_mode%22%3A%22search%22%2C%22ad_type%22%3A%22smart%22%2C%22default_browse_node%22%3A%222619533011%22%2C%22marketplace%22%3A%22amazon%22%2C%22region%22%3A%22US%22%2C%22linkid%22%3A%229c77f5bfc09b78005cf6d8797a21215a%22%2C%22default_search_phrase%22%3A%22cat%20food%22%2C%22default_category%22%3A%22PetSupplies%22%2C%22viewerCountry%22%3A%22NO%22%2C%22textlinks%22%3A%22%22%2C%22debug%22%3A%22false%22%2C%22acap_publisherId%22%3A%22catmiaofans-20%22%2C%22slotNum%22%3A0%2C%22ead%22%3A4%7D&u=https%3A%2F%2Fcatmiaofans.com%2Findex.php%2Fget-your-free-cat-food-sample%2F&jscb=amzn_assoc_jsonp_callback_adunit0_0	143 kB	2023-03-08	2023-03-08
Pretty URL aax-us-east.amazon-adsystem.com/x/getad?src=330&c=100&sz=1x1&apiVersion=2.0&pj=%7B%22placement%22%3A%22adunit0%22%2C%22search_bar%22%3A%22true%22%2C%22tracking_id%22%3A%22catmiaofans-20%22%2C%22search_bar_position%22%3A%22top%22%2C%22ad_mode%22%3A%22search%22%2C%22ad_type%22%3A%22smart%22%2C%22default_browse_node%22%3A%222619533011%22%2C%22marketplace%22%3A%22amazon%22%2C%22region%22%3A%22US%22%2C%22linkid%22%3A%229c77f5bfc09b78005cf6d8797a21215a%22%2C%22default_search_phrase%22%3A%22cat%20food%22%2C%22default_category%22%3A%22PetSupplies%22%2C%22viewerCountry%22%3A%22NO%22%2C%22textlinks%22%3A%22%22%2C%22debug%22%3A%22false%22%2C%22acap_publisherId%22%3A%22catmiaofans-20%22%2C%22slotNum%22%3A0%2C%22ead%22%3A4%7D&u=https%3A%2F%2Fcatmiaofans.com%2Findex.php%2Fget-your-free-cat-food-sample%2F&jscb=amzn_assoc_jsonp_callback_adunit0_0 IP 52.46.155.118 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 05:36:04 Last Seen2023-03-08 05:36:04 Times Seen1 Hash cd115e8b7559cb95a993f38b36c0bddc 6841f1daee96b871e7737e5eb8120946c06c31fb 958dd87e9f37c54469a01bf123db2937138d7f69674d994ce0a6386f98198599 Loading...

		Size	First Seen	Last Seen
	#1 Write - ddb41aa17d3e38745bf5a6983ef63aa5	44 B	2023-03-07	2023-05-04
Pretty Observations First Seen2023-03-07 01:11:38 Last Seen2023-05-04 21:03:44 Times Seen29 Hash ddb41aa17d3e38745bf5a6983ef63aa5 3851cdaa976cadfc6b030bcda2c6ab5076717ec6 5649cdf94f23c755051be556465316bf5c189eb2cec05f091858ad3d9ea38669 Loading...

HTTP Transactions (76)

URL IP Response Size

firefox.settings.services.mozilla.com/v1/

143.204.55.36

200 OK

939 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
1b3053fa528e28810f8a2cc9284cc921
cca9eb471d941881a6b9a1793aecb6c281908f6a
a2427848ba35575dda8a82cf88f104978234c05389deebc3fc8279d9075eff45

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Alert, Content-Type, Backoff, Content-Length, Retry-After
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 04 Oct 2022 08:47:04 GMT
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 96c778ce6156d12f24b8b6cdaa0cbf66.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Cnqzs0S-brteb7dIvtFnrVsfaBxNhSm26hiDPvLdsryNrajK-7hSSw==
Age: 392

trk.7a0ltxdy8u0p.xyz/click.php?c=317&key=759rbmbq7hrj6hf2ze5p08rt&clickid=%3C?php%20echo%20$_GET[%27clickid%27]?%3E&website=%3C?php%20echo%20$_GET[%27website%27]?%3E&brand=%3C?php%20echo%20$_GET[%27brand%27]?%3E&cate=%3C?php%20echo%20$_GET[%27cate%27]?%3E&isp=%3C?php%20echo%20$_GET[%27isp%27]?%3E&os=%3C?php%20echo%20$_GET[%27os%27]?%3E&browser=%3C?php%20echo%20$_GET[%27browser%27]?%3E&country=%3C?php%20echo%20$_GET[%27country%27]?%3E&lang=%3C?php%20echo%20$_GET[%27lang%27]?%3E

172.67.216.215

302 Found

0 B

URL HTTP/1.1
trk.7a0ltxdy8u0p.xyz/click.php?c=317&key=759rbmbq7hrj6hf2ze5p08rt&clickid=%3C?php%20echo%20$_GET[%27clickid%27]?%3E&website=%3C?php%20echo%20$_GET[%27website%27]?%3E&brand=%3C?php%20echo%20$_GET[%27brand%27]?%3E&cate=%3C?php%20echo%20$_GET[%27cate%27]?%3E&isp=%3C?php%20echo%20$_GET[%27isp%27]?%3E&os=%3C?php%20echo%20$_GET[%27os%27]?%3E&browser=%3C?php%20echo%20$_GET[%27browser%27]?%3E&country=%3C?php%20echo%20$_GET[%27country%27]?%3E&lang=%3C?php%20echo%20$_GET[%27lang%27]?%3E
IP
172.67.216.215:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /click.php?c=317&key=759rbmbq7hrj6hf2ze5p08rt&clickid=%3C?php%20echo%20$_GET[%27clickid%27]?%3E&website=%3C?php%20echo%20$_GET[%27website%27]?%3E&brand=%3C?php%20echo%20$_GET[%27brand%27]?%3E&cate=%3C?php%20echo%20$_GET[%27cate%27]?%3E&isp=%3C?php%20echo%20$_GET[%27isp%27]?%3E&os=%3C?php%20echo%20$_GET[%27os%27]?%3E&browser=%3C?php%20echo%20$_GET[%27browser%27]?%3E&country=%3C?php%20echo%20$_GET[%27country%27]?%3E&lang=%3C?php%20echo%20$_GET[%27lang%27]?%3E HTTP/1.1
Host: trk.7a0ltxdy8u0p.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 302 Found
Date: Tue, 04 Oct 2022 08:53:36 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
Set-Cookie: IMT1664873616780=90gEMK6OT6t8UdAY6Jy4ew%3D%3DIrMIOr0hO2GnCdD7oH8lxZkC%2F4ZtAIbw9gNgZ3cFfcI%3D; expires=Wed, 05-Oct-2022 14:53:36 GMT; path=/; domain=superfreetrck.xyz
Location: https://catmiaofans.com/redirect.php/?subid=1206808362&country=%3C%3Fphp+echo+%24_GET%5B%27country%27%5D%3F%3E
Strict-Transport-Security: max-age=31536000
CF-Cache-Status: DYNAMIC
Report-To: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=eOEuBpLxkVaOK6FiH2oqd6Z4XvpJhHI8APTcDx6irh9ZS5Xw8xqv%2B942BBAeEMl7aKzcZGjnrcX8IDIRvNyeZ9BdjFKPTgbYJmexBw8UKa1quEGaLdzw3jbNR47L3CdjMGn2f0NDlw%3D%3D"}],"group":"cf-nel","max_age":604800}
NEL: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
Server: cloudflare
CF-RAY: 754cb0287bfd0af6-OSL
alt-svc: h2=":443"; ma=60

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9955bda9c9ef64bc5700a14af0bae25e
8de7b7469e905af0374bdfcc3006bbb844f13e94
1f611155394fac39439b8ec8217d8cd493d6b588d372d264e0d66c03129c50c6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "1F611155394FAC39439B8EC8217D8CD493D6B588D372D264E0D66C03129C50C6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11226
Expires: Tue, 04 Oct 2022 12:00:42 GMT
Date: Tue, 04 Oct 2022 08:53:36 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain

143.204.55.110

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain
IP
143.204.55.110:0
ASN
#16509 AMAZON-02

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
6113f8408c59aebe188d6af273b90743
7398873bf00f99944eaa77ad3ebc0d43c23dba6b
b6e0cc9ad68306208a160f3835fb8da76acc5a82d8fde1da5a98e1de1c11a770

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-10-30-18-47-44.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 10 Sep 2022 18:47:45 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 04 Oct 2022 05:28:28 GMT
etag: "6113f8408c59aebe188d6af273b90743"
x-cache: Hit from cloudfront
via: 1.1 475d4ecb64796af058573c6f1048e898.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: yiCXa4APM0k3vR5cxnFWlzniC2D1h8yGAZt15YFuDj55WQGvd5AjTg==
age: 12309
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 04 Oct 2022 08:53:37 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.76.226

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
504552fc1b36514a7a9efa071728b745
82871d8db4bdde3e2fbd49b049f7b6e1743e661a
9d3be28fe331515feb68190f0bca28c848497ce6423e073b74e4517fee85d35e

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "9D3BE28FE331515FEB68190F0BCA28C848497CE6423E073B74E4517FEE85D35E"
Last-Modified: Sat, 01 Oct 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10070
Expires: Tue, 04 Oct 2022 11:41:27 GMT
Date: Tue, 04 Oct 2022 08:53:37 GMT
Connection: keep-alive

e1.o.lencr.org/

23.36.76.226

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
504552fc1b36514a7a9efa071728b745
82871d8db4bdde3e2fbd49b049f7b6e1743e661a
9d3be28fe331515feb68190f0bca28c848497ce6423e073b74e4517fee85d35e

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "9D3BE28FE331515FEB68190F0BCA28C848497CE6423E073B74E4517FEE85D35E"
Last-Modified: Sat, 01 Oct 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10070
Expires: Tue, 04 Oct 2022 11:41:27 GMT
Date: Tue, 04 Oct 2022 08:53:37 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

143.204.55.36

200 OK

329 B

URL HTTP/1.1
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
143.204.55.36:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600, max-age=3600
Date: Tue, 04 Oct 2022 08:29:33 GMT
Expires: Tue, 04 Oct 2022 09:26:52 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: X2TOUQPOvYDn4ZmS7nYsOjcWXDPf9RbVx16eqA31tvFFkSV6qkZzmA==
Age: 1444

superfreetrck.xyz/ipx.php?subid=1206808362&amt=0.001

172.67.182.247

200 OK

43 B

URL HTTP/2
superfreetrck.xyz/ipx.php?subid=1206808362&amt=0.001
IP
172.67.182.247:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
df3e567d6f16d040326c7a0ea29a4f41
ea7df583983133b62712b5e73bffbcd45cc53736
548f2d6f4d0d820c6c5ffbeffcbd7f0e73193e2932eefe542accc84762deec87

HTTP Headers

GET /ipx.php?subid=1206808362&amt=0.001 HTTP/1.1
Host: superfreetrck.xyz
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:37 GMT
content-type: image/gif
content-length: 43
expires: Thu, 19 Nov 1981 08:52:00 GMT
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
pragma: no-cache
p3p: CP="This site does not have a p3p policy."
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=iYK5AUOCg4LF8I9ulbYvdXe%2FQ0T4q0gKzPYoOA7dCOLIEH%2B9LcUI8ac%2BcId5QTHnJTTsB6GOnyE5FpTER9%2FNvJD8%2FvhHTjomVF3AkhtwIW9qOjxUTD11RY%2Ffu95KV%2BKU6owT%2FA%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754cb02cfecb1bfa-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
321fa9a78e31dcb66601ac5890bfba73
c325580db79bde6fd00d2d0c7e3f675e4c0046bb
83029b324b4c36522ae47eef9614c124b0ad2994de412d7ea82f990ad8ae9d92

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5061
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:53:37 GMT
Last-Modified: Tue, 04 Oct 2022 07:29:16 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471

push.services.mozilla.com/

44.237.51.86

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
44.237.51.86:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: BRolsM0HPUTlNyB4ZUQ6hg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ycu14V08VDYxIxgsY51SaYSh6lg=

z-na.amazon-adsystem.com/widgets/onejs?MarketPlace=US

54.230.82.193

200 OK

8.0 kB

URL HTTP/2
z-na.amazon-adsystem.com/widgets/onejs?MarketPlace=US
IP
54.230.82.193:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (24793), with no line terminators
Size
8.0 kB (7991 bytes)
Hash
a96b7d36fa1f24989c12ac36c0b3c585
b9ef92806dda12873e5261d9d789912518b41cc3
934d19abc49d6b52a724306e68473e8fab734d25c64a193e9959420e231aa735

HTTP Headers

GET /widgets/onejs?MarketPlace=US HTTP/1.1
Host: z-na.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript;charset=UTF-8
content-length: 7991
date: Tue, 04 Oct 2022 04:20:56 GMT
server: Server
content-encoding: gzip
charset: UTF-8
access-control-allow-origin: *
cache-control: public,max-age=86400,s-maxage=86400,no-transform
expires: Wed, 05 Oct 2022 04:20:56 GMT
pragma: Public
x-cache: Hit from cloudfront
via: 1.1 193a8c13b6e0a6b90db7172f6358335e.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: u1fCptOJPMl3XyhM_QNnsh6x-99fq2gFESIjdDeBkWJ6NuhSBQpKtg==
age: 16361
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

12 kB

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
12 kB (11826 bytes)
Hash
24f004c4537b21532fcb8daddb5b2a59
781fa719cc2e818e4ca81e84089c8d7a52106033
1045758ba216b1e6f574d9b75286f26fabd5089f6a4e43234c5fe1db4fbd5b89

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:53:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
5ba23234dfb31276cc3bf9a347508595
a225d0a9ecf5d7f0032816c6f3d4a5ae1f3b27a3
33558bed4856ac3f2a7267965521b316ccd3ccc669877994c6c590e2d2a1b559

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:53:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=G-NPCV3LF4M7

142.250.74.168

200 OK

75 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-NPCV3LF4M7
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (18966)
Size
75 kB (74968 bytes)
Hash
5523cebfe8c43ca56f92e02a4bcc78e3
84e9c49f0a2c8696e06743cb14d65152aefe8677
6d760730a3745c3dd1ccfcfb37e84f978a17342414905516f7993a65c0bb614c

HTTP Headers

GET /gtag/js?id=G-NPCV3LF4M7 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 04 Oct 2022 08:53:38 GMT
expires: Tue, 04 Oct 2022 08:53:38 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 74968
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
9e40b2c69615f45f2bc898334ab3e343
6a569648ed10564e126d3bbf3f91352e6b3f6d4f
4f1d0982c58b9bbeaa266b99292baa1a00c9e39280f73d5a525722c851e15981

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:53:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

5.3 kB

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
5.3 kB (5346 bytes)
Hash
409f684794bf3cfad8b35dac7630d09d
b2f987ba3799bf1a6eb7253d19d857e0709d1f55
e24f02a7c5eb2e3c2cda84ad17c2240294fafca8a2412dd3700abeb41dd7a299

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:53:38 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9821bf10b5a21590853ad4ca0afb9c10
9695a1bb47aed484e821da4ab8c31f99df952679
fd0b1b65c40e31de36f86109087443e6b5b0166dfc7f828fec723f00489c55a6

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FD0B1B65C40E31DE36F86109087443E6B5B0166DFC7F828FEC723F00489C55A6"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13353
Expires: Tue, 04 Oct 2022 12:36:12 GMT
Date: Tue, 04 Oct 2022 08:53:39 GMT
Connection: keep-alive

pl17477486.highperformancegate.com/dd/1f/0d/dd1f0d5eb9f5f07d0b8e70df25b25181.js

192.243.61.225

200 OK

13 kB

URL HTTP/1.1
pl17477486.highperformancegate.com/dd/1f/0d/dd1f0d5eb9f5f07d0b8e70df25b25181.js
IP
192.243.61.225:0
ASN
#39572 DataWeb Global Group B.V.

File type
ASCII text, with very long lines (37154), with no line terminators
Size
13 kB (13411 bytes)
Hash
456da7f520b0463367e01574afc35614
e8f01ca1dd520f016c77f6240ef5c96219c61be6
1ce2d8c1055c9da91425efae43eabf8fa30ebf0ed67163618fdd75c9f92d769e

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /dd/1f/0d/dd1f0d5eb9f5f07d0b8e70df25b25181.js HTTP/1.1
Host: pl17477486.highperformancegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 04 Oct 2022 08:53:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 131c99e85204ac1cc26df02d617ce23b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ff433c9569a3557d806b1480aeafece9
20bbd46383b85326837f45290ff87df708b3b310
e8e5212b8d90257f23bdb0d1d643b5e7d7528d964056c3a4a269b5e09f409f2d

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18299
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 08:53:39 GMT
Connection: keep-alive

fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap

142.250.74.10

200 OK

1.1 kB

URL HTTP/2
fonts.googleapis.com/css2?family=Roboto:wght@400;700&display=swap
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
1.1 kB (1111 bytes)
Hash
626ef009565c593f4210d2128fcfe21f
a2859758cb3066e56ba8d9093f2d9299b49a33c5
e6e2ff2d2d02f8c9318c43950d8931bc720c8a793af748809904f6d3300cab4e

HTTP Headers

GET /css2?family=Roboto:wght@400;700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 04 Oct 2022 08:53:38 GMT
date: Tue, 04 Oct 2022 08:53:38 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

pl16926892.highperformancegate.com/f2088a82fa85b4e1a64389593479f39f/invoke.js

192.243.59.20

200 OK

9.3 kB

URL HTTP/1.1
pl16926892.highperformancegate.com/f2088a82fa85b4e1a64389593479f39f/invoke.js
IP
192.243.59.20:0
ASN
#39572 DataWeb Global Group B.V.

File type
Unicode text, UTF-8 text, with very long lines (25102), with no line terminators
Size
9.3 kB (9279 bytes)
Hash
74aa79cd7b9244346f2e509971df13e1
a31e0b6887a6697261152bedcdaff867194b2e79
a7027c1c8aa9a61ee3c0c16cfeaf48d0c54f2ec85bc0131fbd08b050074b314a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /f2088a82fa85b4e1a64389593479f39f/invoke.js HTTP/1.1
Host: pl16926892.highperformancegate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 04 Oct 2022 08:53:39 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ebb0eca3e5db63d96a268971ea78a9f0
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

r3.o.lencr.org/

23.36.76.226

200 OK

32 kB

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
32 kB (32462 bytes)
Hash
a782f3e5f41183560428e3080be0d391
a65e99cd448f1e391018f3c55cda35e7b724cbf5
dc433efd37d45c7a35ee91ef9fbd5212294f8f8d315e11a98d5eb27180af20d4

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E8E5212B8D90257F23BDB0D1D643B5E7D7528D964056C3A4A269B5E09F409F2D"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18299
Expires: Tue, 04 Oct 2022 13:58:38 GMT
Date: Tue, 04 Oct 2022 08:53:39 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8287b853-235b-49f5-9b5c-780827ac695b.jpeg

34.120.237.76

200 OK

9.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8287b853-235b-49f5-9b5c-780827ac695b.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.9 kB (9855 bytes)
Hash
7b7345414898d451d930431b46d4bd00
a36475a0ec7d7b92593cadd4aa99ca38550f1cd1
79b541c69c78df0e4a4c26438431fd6b52754b589d80e929a4203063712a540c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8287b853-235b-49f5-9b5c-780827ac695b.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9855
x-amzn-requestid: 15f15a2e-0028-40ac-be8f-8e20c37fd27e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHuGX7oAMFgDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-5fe693f30c91e4c82c8accb1;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: ngoNHOX6fFTGa1Y_-yFOFUYYYqiLJCQOq3NISbmc3gX21YO0TLxx0w==
via: 1.1 b637bd7696854d7acbf96132dcf53200.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 23:37:00 GMT
etag: "a36475a0ec7d7b92593cadd4aa99ca38550f1cd1"
content-type: image/jpeg
age: 33399
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

14 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
data
Size
14 kB (14033 bytes)
Hash
e74e25e212a29356c98994a8ac4827f3
05e7e201e1bdcb23bda798ff3e68fb5616dd45d1
ed612af77ee0e1f0684af9b3801569e5dc5e315147144c3e91a9134886c72a80

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F545190f2-96f3-40f8-bd46-cebe7171aee7.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9917
x-amzn-requestid: 2dff93d9-795d-4885-9b82-610b0d235a82
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTGEnIAMF1zg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-117afa703663ada75627792c;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: p5nOqBojKO6S-c_DxIu8B3p-NK0pzRHkz0DOPeyv7PQt9h0x1jdtoQ==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 1508efc4152aa1778ed4adecb328b374.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:55:54 GMT
age: 39465
etag: "22aab05208a01ae5def4d63dc145085630f57bcb"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
data
Size
6.8 kB (6836 bytes)
Hash
b3e09c5ec97c6ecbfffe85a7352a9460
5a986a6ed1a0474dc11679e20fa6f863ae293150
f6e3edff9db586450f53b5ed2b2fc5313e3d81fbd63d9c247138080fd4f0132a

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F180dee10-1cde-4fbe-8a74-62b7b3bdb1e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6315
x-amzn-requestid: 6aa75b16-32e4-48a7-9fb0-9e3d5528c2d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZWSdsHUnIAMFXtw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6338cabd-742d8a436403683e0cd9368f;Sampled=0
x-amzn-remapped-date: Sat, 01 Oct 2022 23:18:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 5sAzc5Ewv4g6Wqq6JJiLylG3Jyy_nlWrr5Oteeo6ebEgq7Rvss4XaQ==
via: 1.1 f13aef0c4b52f6f681401f232d03eb68.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Tue, 04 Oct 2022 04:42:53 GMT
age: 15046
etag: "58ff0bf8ce7528b303d28bab01a80ad721705569"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

43 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
data
Size
43 kB (43358 bytes)
Hash
cd97d2b5960205fc7d1a5de7b74fd12a
90d7f1f518d3fc35e8e09f4300c629f254c2595b
656b191d7f66a50499eac0c26a57163484378c65dbb058ef6778a171f405fe92

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F9a61745f-0c9b-404a-ba22-0a69cf2f0383.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4858
x-amzn-requestid: fb21c414-2994-444a-a838-e643fd05b171
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpvTEfPoAMFfeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5661-593dd8043b0490e7301cac0d;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:38:41 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: MiSh_FjAciKCaOakY2mM_EHBN1Z6GIDYIP8mwS4ikkrToQN3Ktsv2g==
via: 1.1 773ca14e6bd4bf9244988cb69fc9dca8.cloudfront.net (CloudFront), 1.1 b36bf2c460ac693ce304817aed073112.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 21:56:46 GMT
age: 39413
etag: "585e7146fd24cdc2496b05baafea04091dc541e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.1 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
data
Size
6.1 kB (6055 bytes)
Hash
9568373840bb5ea0928b87221243171e
04026cabdeeb46d085b21bea56dfbbe5f62e05df
908d7a15061d0639468145d6cde3dbbc4393b35bc6417fa2fe5a903c1a184540

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F8641c47a-9aff-4f73-bb07-6770cbbcc8d6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5504
x-amzn-requestid: 37405eb0-5c75-46a9-84c0-e8ed726995d8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpHvHPvoAMF3mg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b5564-77fd550b58af612525e74761;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Ovm2wuk28PygH4EZNEUoPchoHQggWCyXbYHOjMV1tZmfyDrL6PjPZA==
via: 1.1 01c28b52813cd0e82f810c492808b142.cloudfront.net (CloudFront), 1.1 5fe5f2a3903f1378941d92eceaf3fa16.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:29:19 GMT
age: 37460
etag: "20ef861be49c652a938e0145e4ca3a60159367e2"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
data
Size
6.2 kB (6178 bytes)
Hash
e25e79ca4889ddb642ff247f2548b190
f6e5d15596498a4d4aa78a2b096e8aa7a67a37b2
676d5ee4fe30312c6fb848601bcd372c29da824fc997af415b25129eba35befc

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0c459c91-b5cc-492c-9573-3101e5df6b51.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5083
x-amzn-requestid: ed99df03-5d15-4e09-9aea-bbf77a705323
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ZcpI0HT0IAMFxvQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-633b556b-422197147d76caac6e910664;Sampled=0
x-amzn-remapped-date: Mon, 03 Oct 2022 21:34:35 GMT
x-amz-cf-pop: SFO5-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: pddStyEpwVdYKSAUVcpupnWVPw6ALoYCouHQzixF_vTgXdpVF60ElA==
via: 1.1 946b9edb2009c5508a0fbbd636f95014.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 03 Oct 2022 22:10:59 GMT
age: 38560
etag: "f5ce815082043a4efce28fc790ae7d8b3a8531f8"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:53:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:53:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
5051734aa47e871f30936254a98cebee
38ecb55e50d18f22f54e1ebc0bf5d70f6912cc97
45727a8f22a365165d5bfd7b562ee3fe43cb02f918228bcd6441deb4a33bd421

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 08:53:39 GMT
Last-Modified: Tue, 04 Oct 2022 07:13:21 GMT
Server: ECS (bsa/EB20)
X-Cache: Miss from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hvX7gmItBjOlDIBafpFDVtXWJ2jhqq5iy77gbYrcs5rMP2W55I-eVg==
Age: 6018

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:08 GMT
expires: Thu, 28 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 479971
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 28 Sep 2022 19:34:08 GMT
expires: Thu, 28 Sep 2023 19:34:08 GMT
cache-control: public, max-age=31536000
age: 479971
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

simplewebanalysis.com/stats

3.66.118.16

200 OK

40 B

URL HTTP/2
simplewebanalysis.com/stats
IP
3.66.118.16:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
b9cf2b41686a1e06a4b34f32c9e63cb5
acb1cd4c254cd4faa25d5f1b93953ee2fae03fbb
2dddf6f5ef83a87f843112ab321148d29863e346bc0b2c8a24099cecf0c9b507

HTTP Headers

GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:39 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://catmiaofans.com
access-control-allow-credentials: true
set-cookie: uid_id2=75b37b82-a8f8-420c-816c-099f386d4aff:2:1; expires=Fri, 01 Oct 2032 08:53:39 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

simplewebanalysis.com/stats

3.66.118.16

200 OK

40 B

URL HTTP/2
simplewebanalysis.com/stats
IP
3.66.118.16:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
16cddd819026bc735815f18627ae7887
0f9eef8b1d60c65fe111b8484eca5791629c9639
28ecd1485076392a0d38947ac3b56b44bb3bc68291696051a8659976e26f8b7c

HTTP Headers

GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:39 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://catmiaofans.com
access-control-allow-credentials: true
set-cookie: uid_id2=c9b172ec-762f-4723-a15b-1dd234258e75:3:1; expires=Fri, 01 Oct 2032 08:53:39 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
0ac04f7c449093fff4f846a7ae56cd4f
50aeb5664545a0dec4173920a274e906bcbcdf6f
18eff2566317aba7b70ee558e8cba42231eb4eae31e903501dc122c751d6993b

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:53:39 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

region1.google-analytics.com/g/collect?v=2&tid=G-NPCV3LF4M7&gtm=2oe9s0&_p=1990424705&cid=708093711.1664873619&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664873618&sct=1&seg=0&dl=https%3A%2F%2Fcatmiaofans.com%2Findex.php%2Fget-your-free-cat-food-sample%2F&dt=Pick%20up%20your%20free%20pet%20food%20sample%20for%20one%20year!%20%E2%80%93%20Cat%20Miao%20Fans&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1

216.239.34.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-NPCV3LF4M7&gtm=2oe9s0&_p=1990424705&cid=708093711.1664873619&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664873618&sct=1&seg=0&dl=https%3A%2F%2Fcatmiaofans.com%2Findex.php%2Fget-your-free-cat-food-sample%2F&dt=Pick%20up%20your%20free%20pet%20food%20sample%20for%20one%20year!%20%E2%80%93%20Cat%20Miao%20Fans&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP
216.239.34.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-NPCV3LF4M7&gtm=2oe9s0&_p=1990424705&cid=708093711.1664873619&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1664873618&sct=1&seg=0&dl=https%3A%2F%2Fcatmiaofans.com%2Findex.php%2Fget-your-free-cat-food-sample%2F&dt=Pick%20up%20your%20free%20pet%20food%20sample%20for%20one%20year!%20%E2%80%93%20Cat%20Miao%20Fans&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: https://catmiaofans.com
date: Tue, 04 Oct 2022 08:53:39 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6df6d5605d87c6913c1dc6bcb61bebeb
5eef831341346e97b9550589041c8cedf47eaa16
4847241cb1c5e93adf897e27da0793584a74824fefe723b3338e24554af14387

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4847241CB1C5E93ADF897E27DA0793584A74824FEFE723B3338E24554AF14387"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3545
Expires: Tue, 04 Oct 2022 09:52:45 GMT
Date: Tue, 04 Oct 2022 08:53:40 GMT
Connection: keep-alive

familiarkindlyshuffle.com/ntv.json?key=f2088a82fa85b4e1a64389593479f39f&vstc=1

192.243.59.20

200 OK

4.2 kB

URL HTTP/1.1
familiarkindlyshuffle.com/ntv.json?key=f2088a82fa85b4e1a64389593479f39f&vstc=1
IP
192.243.59.20:0
ASN
#39572 DataWeb Global Group B.V.

File type
JSON data\012- , ASCII text, with very long lines (4176), with no line terminators
Size
4.2 kB (4176 bytes)
Hash
1aa09a3f17af5f41973cbd12de534bdd
cac4a551b5e9d66236acdadc120b0429c5c6e2ed
07774c168def9e7800a151baee33fe73403d96a58ae1f32d4ecda4460ee7f158

HTTP Headers

GET /ntv.json?key=f2088a82fa85b4e1a64389593479f39f&vstc=1 HTTP/1.1
Host: familiarkindlyshuffle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 04 Oct 2022 08:53:40 GMT
Content-Type: application/json
Content-Length: 4176
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://catmiaofans.com
Access-Control-Allow-Origin: https://catmiaofans.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=16826393; expires=Wed, 05 Oct 2022 08:53:40 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 05 Oct 2022 08:53:40 GMT; secure; SameSite=None
uncs=1; expires=Wed, 05 Oct 2022 08:53:40 GMT; secure; SameSite=None
pdhtkv49=true; expires=Wed, 05 Oct 2022 08:53:40 GMT; secure; SameSite=None
uncs49=1; expires=Wed, 05 Oct 2022 08:53:40 GMT; secure; SameSite=None
nlecf2088a82fa85b4e1a64389593479f39f=[3254345]; expires=Tue, 04 Oct 2022 08:53:45 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f3e4d8742c8d197667bb299771a42c1b
Strict-Transport-Security: max-age=0; includeSubdomains

r3.o.lencr.org/

23.36.76.226

200 OK

883 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
883 B (883 bytes)
Hash
7057fe1e096d3d7c773a5198c36b14e5
eef54d81f14270751bf09841e80a4919968b3b8a
11d2615e759f7dbec43aeaf21ccabcab892ba53d98fa0fda9cacb92cfacfe271

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "70EFC800ED2F1ACEE19CCC88DBAFA7724C0F00D9B7CDA191D69CF69C1A38A98F"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17275
Expires: Tue, 04 Oct 2022 13:41:35 GMT
Date: Tue, 04 Oct 2022 08:53:40 GMT
Connection: keep-alive

interesteddeterminedeurope.com/sbar.json?key=dd1f0d5eb9f5f07d0b8e70df25b25181

192.243.61.227

200 OK

4.0 kB

URL HTTP/1.1
interesteddeterminedeurope.com/sbar.json?key=dd1f0d5eb9f5f07d0b8e70df25b25181
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

File type
JSON data\012- , ASCII text, with very long lines (5555), with no line terminators
Size
4.0 kB (4029 bytes)
Hash
aef70ac2701313daa250c41f79c25e13
6cbf179015817c479c13354dbfd978ea2acbf56a
719993b764ab9a6ef74f8895b1ca03dad5f75f5fe21c62c64b61532dbc683e9b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /sbar.json?key=dd1f0d5eb9f5f07d0b8e70df25b25181 HTTP/1.1
Host: interesteddeterminedeurope.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 04 Oct 2022 08:53:40 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://catmiaofans.com
Access-Control-Allow-Origin: https://catmiaofans.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=17376987; expires=Wed, 05 Oct 2022 08:53:40 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 05 Oct 2022 08:53:40 GMT; secure; SameSite=None
uncs=1; expires=Wed, 05 Oct 2022 08:53:40 GMT; secure; SameSite=None
pdhtkv29=true; expires=Wed, 05 Oct 2022 08:53:40 GMT; secure; SameSite=None
uncs29=1; expires=Wed, 05 Oct 2022 08:53:40 GMT; secure; SameSite=None
slecdd1f0d5eb9f5f07d0b8e70df25b25181=[3396716]; expires=Tue, 04 Oct 2022 08:53:45 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 1993a4da5295c368b8860043b708e080
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

aax-us-east.amazon-adsystem.com/x/getad?src=330&c=100&sz=1x1&apiVersion=2.0&pj=%7B%22placement%22%3A%22adunit0%22%2C%22search_bar%22%3A%22true%22%2C%22tracking_id%22%3A%22catmiaofans-20%22%2C%22search_bar_position%22%3A%22top%22%2C%22ad_mode%22%3A%22search%22%2C%22ad_type%22%3A%22smart%22%2C%22default_browse_node%22%3A%222619533011%22%2C%22marketplace%22%3A%22amazon%22%2C%22region%22%3A%22US%22%2C%22linkid%22%3A%229c77f5bfc09b78005cf6d8797a21215a%22%2C%22default_search_phrase%22%3A%22cat%20food%22%2C%22default_category%22%3A%22PetSupplies%22%2C%22viewerCountry%22%3A%22NO%22%2C%22textlinks%22%3A%22%22%2C%22debug%22%3A%22false%22%2C%22acap_publisherId%22%3A%22catmiaofans-20%22%2C%22slotNum%22%3A0%2C%22ead%22%3A4%7D&u=https%3A%2F%2Fcatmiaofans.com%2Findex.php%2Fget-your-free-cat-food-sample%2F&jscb=amzn_assoc_jsonp_callback_adunit0_0

52.46.155.118

200 OK

143 kB

URL HTTP/1.1
aax-us-east.amazon-adsystem.com/x/getad?src=330&c=100&sz=1x1&apiVersion=2.0&pj=%7B%22placement%22%3A%22adunit0%22%2C%22search_bar%22%3A%22true%22%2C%22tracking_id%22%3A%22catmiaofans-20%22%2C%22search_bar_position%22%3A%22top%22%2C%22ad_mode%22%3A%22search%22%2C%22ad_type%22%3A%22smart%22%2C%22default_browse_node%22%3A%222619533011%22%2C%22marketplace%22%3A%22amazon%22%2C%22region%22%3A%22US%22%2C%22linkid%22%3A%229c77f5bfc09b78005cf6d8797a21215a%22%2C%22default_search_phrase%22%3A%22cat%20food%22%2C%22default_category%22%3A%22PetSupplies%22%2C%22viewerCountry%22%3A%22NO%22%2C%22textlinks%22%3A%22%22%2C%22debug%22%3A%22false%22%2C%22acap_publisherId%22%3A%22catmiaofans-20%22%2C%22slotNum%22%3A0%2C%22ead%22%3A4%7D&u=https%3A%2F%2Fcatmiaofans.com%2Findex.php%2Fget-your-free-cat-food-sample%2F&jscb=amzn_assoc_jsonp_callback_adunit0_0
IP
52.46.155.118:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text, with very long lines (65536), with no line terminators
Size
143 kB (143362 bytes)
Hash
cd115e8b7559cb95a993f38b36c0bddc
6841f1daee96b871e7737e5eb8120946c06c31fb
958dd87e9f37c54469a01bf123db2937138d7f69674d994ce0a6386f98198599

HTTP Headers

GET /x/getad?src=330&c=100&sz=1x1&apiVersion=2.0&pj=%7B%22placement%22%3A%22adunit0%22%2C%22search_bar%22%3A%22true%22%2C%22tracking_id%22%3A%22catmiaofans-20%22%2C%22search_bar_position%22%3A%22top%22%2C%22ad_mode%22%3A%22search%22%2C%22ad_type%22%3A%22smart%22%2C%22default_browse_node%22%3A%222619533011%22%2C%22marketplace%22%3A%22amazon%22%2C%22region%22%3A%22US%22%2C%22linkid%22%3A%229c77f5bfc09b78005cf6d8797a21215a%22%2C%22default_search_phrase%22%3A%22cat%20food%22%2C%22default_category%22%3A%22PetSupplies%22%2C%22viewerCountry%22%3A%22NO%22%2C%22textlinks%22%3A%22%22%2C%22debug%22%3A%22false%22%2C%22acap_publisherId%22%3A%22catmiaofans-20%22%2C%22slotNum%22%3A0%2C%22ead%22%3A4%7D&u=https%3A%2F%2Fcatmiaofans.com%2Findex.php%2Fget-your-free-cat-food-sample%2F&jscb=amzn_assoc_jsonp_callback_adunit0_0 HTTP/1.1
Host: aax-us-east.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Server
Date: Tue, 04 Oct 2022 08:53:40 GMT
Content-Type: text/javascript;charset=UTF-8
Content-Length: 143362
Connection: keep-alive
x-amz-rid: 2X8H83V051V4DDRE08MC
Set-Cookie: ad-id=A6gdAD57qEtem-ExvhRLV-o; Domain=.amazon-adsystem.com; Expires=Sat, 01-Jul-2023 08:53:40 GMT; Path=/; Secure; HttpOnly; SameSite=None
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload

wms-na.amazon-adsystem.com/panda/20070822/US/img/amzn-nsa-sprite-2x.png

54.230.80.193

200 OK

4.3 kB

URL HTTP/2
wms-na.amazon-adsystem.com/panda/20070822/US/img/amzn-nsa-sprite-2x.png
IP
54.230.80.193:0
ASN
#16509 AMAZON-02

File type
PNG image data, 530 x 150, 8-bit colormap, non-interlaced\012- data
Size
4.3 kB (4335 bytes)
Hash
77716f7d4f54355bbb67e19ab8f24309
34380b3971e6c940da2fadb00a7dbc7f2ca7cbe6
3d363721e733cd455560f59c74cffdb28148623c7c716a23403bd6b85696b4fa

HTTP Headers

GET /panda/20070822/US/img/amzn-nsa-sprite-2x.png HTTP/1.1
Host: wms-na.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/png
content-length: 4335
date: Fri, 23 Sep 2022 02:11:40 GMT
server: Server
last-modified: Sat, 10 Sep 2022 11:50:20 GMT
etag: "10ef-5e851446374d3"
accept-ranges: bytes
cache-control: max-age=2592000
expires: Fri, 30 Sep 2022 02:11:40 GMT
charset: UTF-8
x-cache: Hit from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: WRYDT9vHKOBRA4UTVAGi4JO9HPJMKR0BO550llG5kUBG0YbfSI9kdw==
age: 974521
X-Firefox-Spdy: h2

m.media-amazon.com/images/I/51njJA2dRxL._AC_SL115_.jpg

151.101.85.16

200 OK

3.6 kB

URL HTTP/2
m.media-amazon.com/images/I/51njJA2dRxL._AC_SL115_.jpg
IP
151.101.85.16:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 89x115, components 3\012- data
Size
3.6 kB (3577 bytes)
Hash
951fd1d72dcf8b22519808e978c9f7d4
68b446ecaaf6fc324665f9882d6339eb811e9998
0818dc1d5abc6bcccebad67863389778c7a6ec20717efdde7cfcd5abb794ee47

HTTP Headers

GET /images/I/51njJA2dRxL._AC_SL115_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/jpeg
x-amz-ir-id: 0259e0a7-a7e5-4fe1-8d5a-d48da1dde848
expires: Sun, 10 Aug 2042 03:39:53 GMT
cache-control: max-age=630720000,public
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
access-control-allow-origin: *
last-modified: Wed, 15 Apr 2020 14:44:43 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
date: Tue, 04 Oct 2022 08:53:41 GMT
age: 4222041
x-served-by: cache-iad-kjyo7100031-IAD, cache-bma1643-BMA
x-cache: HIT from fastly, HIT from fastly
server-timing: provider;desc="fy"
content-length: 3577
X-Firefox-Spdy: h2

m.media-amazon.com/images/I/41SOMEFxOFL._AC_SL115_.jpg

151.101.85.16

200 OK

101 kB

URL HTTP/2
m.media-amazon.com/images/I/41SOMEFxOFL._AC_SL115_.jpg
IP
151.101.85.16:0
ASN
#54113 FASTLY

File type
ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size
101 kB (101119 bytes)
Hash
0fd3396305f2dad4d60c08e102ea371f
0008727ffd45f26f6b329248ad370c4bc3c425b5
a52febd5cbcd8547de19478d42e0952307718a9e8150fb3b9ad7a3afc2b5344c

HTTP Headers

GET /images/I/41SOMEFxOFL._AC_SL115_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/jpeg
x-amz-ir-id: 3728b5e7-3837-4cba-b338-aead64d594d8
expires: Mon, 22 Sep 2042 16:55:48 GMT
cache-control: max-age=630720000,public
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
access-control-allow-origin: *
last-modified: Wed, 17 Aug 2022 16:49:45 GMT
x-nginx-cache-status: MISS
accept-ranges: bytes
date: Tue, 04 Oct 2022 08:53:41 GMT
age: 575873
x-served-by: cache-iad-kiad7000118-IAD, cache-bma1643-BMA
x-cache: HIT from fastly, MISS from fastly
server-timing: provider;desc="fy"
content-length: 4266
X-Firefox-Spdy: h2

m.media-amazon.com/images/I/5185zSP0yhL._AC_SL115_.jpg

151.101.85.16

200 OK

42 kB

URL HTTP/2
m.media-amazon.com/images/I/5185zSP0yhL._AC_SL115_.jpg
IP
151.101.85.16:0
ASN
#54113 FASTLY

File type
ISO Media, MP4 v2 [ISO 14496-14]\012- data
Size
42 kB (42547 bytes)
Hash
4786b7089219f982f44b1830d7b5afe0
882e30e9f8c5fc08f13609a02f72f5f872eee8b2
f266eb1aa78ef8263d50ee5d2f5e2c9d8256e700c94b7058633f3c09e93dbaa5

HTTP Headers

GET /images/I/5185zSP0yhL._AC_SL115_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/jpeg
x-amz-ir-id: f558345a-bef0-47e4-b023-0c770d64535a
expires: Sun, 14 Sep 2042 10:56:23 GMT
cache-control: max-age=630720000,public
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
access-control-allow-origin: *
last-modified: Wed, 01 Apr 2020 15:54:26 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
date: Tue, 04 Oct 2022 08:53:41 GMT
age: 1266547
x-served-by: cache-iad-kiad7000165-IAD, cache-bma1643-BMA
x-cache: HIT from fastly, MISS from fastly
server-timing: provider;desc="fy"
content-length: 4553
X-Firefox-Spdy: h2

m.media-amazon.com/images/I/41cxeXro8bL._AC_SL115_.jpg

151.101.85.16

200 OK

3.0 kB

URL HTTP/2
m.media-amazon.com/images/I/41cxeXro8bL._AC_SL115_.jpg
IP
151.101.85.16:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 58x115, components 3\012- data
Size
3.0 kB (3021 bytes)
Hash
b6e1bda2d97a42f4fdaee03254c7b2b8
13ddfb018d8998bc5cf24dba78893e89c03c0084
2229e951dff2797200ebb4e053f6f96ab11670c12f86bb4adf91b70ac5d24093

HTTP Headers

GET /images/I/41cxeXro8bL._AC_SL115_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: image/jpeg
x-amz-ir-id: a51b0336-0164-4880-81b5-a2faa4be31d2
expires: Tue, 02 Sep 2042 10:54:38 GMT
cache-control: max-age=630720000,public
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
access-control-allow-origin: *
last-modified: Tue, 07 Dec 2021 21:47:02 GMT
x-nginx-cache-status: HIT
accept-ranges: bytes
date: Tue, 04 Oct 2022 08:53:41 GMT
age: 2293692
x-served-by: cache-iad-kcgs7200032-IAD, cache-bma1643-BMA
x-cache: HIT from fastly, MISS from fastly
server-timing: provider;desc="fy"
content-length: 3021
X-Firefox-Spdy: h2

aax-us-east.amazon-adsystem.com/x/px/RB8LGLhKAHMWWxGpT8p4xHEAAAGDojNj1QEAAAFKAQBOL0EgICAgICAgICAgICBOL0EgICAgICAgICAgICB2S5Yl/?assoc_payload=%7B%22regionId%22%3A%221%22%2C%22ref%22%3A%22sm_n_se_dkp_NO_%22%2C%22adMode%22%3A%22search%22%2C%22linkCode%22%3A%22w42%22%2C%22trackingId%22%3A%22catmiaofans-20%22%2C%22linkId%22%3A%229c77f5bfc09b78005cf6d8797a21215a%22%2C%22country%22%3A%22NO%22%2C%22deviceType%22%3A%22BROWSER%22%2C%22searchBarPresent%22%3Atrue%2C%22defaultCategory%22%3A%22PetSupplies%22%2C%22defaultSearchPhrase%22%3A%22cat%20food%22%2C%22givenWidth%22%3A%22auto%22%2C%22givenHeight%22%3A%22auto%22%2C%22givenRows%22%3A2%2C%22visibleItemCount%22%3A4%2C%22axfExperiment%22%3A%22%5B%5D%22%2C%22slotNum%22%3A%220%22%2C%22items%22%3A%5B%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B01LZSZ8JF%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A0%2C%22column%22%3A0%2C%22extraInfo%22%3A%7B%7D%7D%2C%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B000R4H2MI%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A0%2C%22column%22%3A1%2C%22extraInfo%22%3A%7B%7D%7D%2C%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B006FTJ0NI%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A1%2C%22column%22%3A0%2C%22extraInfo%22%3A%7B%7D%7D%2C%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B01BKYFR7K%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A1%2C%22column%22%3A1%2C%22extraInfo%22%3A%7B%7D%7D%5D%2C%22logType%22%3A%22smart_impressions%22%2C%22design%22%3A%22grid%22%2C%22ead%22%3A4%2C%22livePoolPCScore%22%3A-1%2C%22livePoolModelVersion%22%3A%22LivePoolV1%22%2C%22contXPCScore%22%3A-1%2C%22contXModelVersion%22%3A%22ContXV1%22%2C%22totalDocHeight%22%3A1592%2C%22totalDocWidth%22%3A1268%2C%22actualWidth%22%3A286.5%2C%22actualHeight%22%3A559%2C%22atfInFirstLoad%22%3Afalse%2C%22posX%22%3A34%2C%22posY%22%3A1301.9666748046875%2C%22refUrl%22%3A%22https%3A%2F%2Fcatmiaofans.com%2Findex.php%2Fget-your-free-cat-food-sample%2F%22%7D

52.46.155.118

200 OK

43 B

URL HTTP/1.1
aax-us-east.amazon-adsystem.com/x/px/RB8LGLhKAHMWWxGpT8p4xHEAAAGDojNj1QEAAAFKAQBOL0EgICAgICAgICAgICBOL0EgICAgICAgICAgICB2S5Yl/?assoc_payload=%7B%22regionId%22%3A%221%22%2C%22ref%22%3A%22sm_n_se_dkp_NO_%22%2C%22adMode%22%3A%22search%22%2C%22linkCode%22%3A%22w42%22%2C%22trackingId%22%3A%22catmiaofans-20%22%2C%22linkId%22%3A%229c77f5bfc09b78005cf6d8797a21215a%22%2C%22country%22%3A%22NO%22%2C%22deviceType%22%3A%22BROWSER%22%2C%22searchBarPresent%22%3Atrue%2C%22defaultCategory%22%3A%22PetSupplies%22%2C%22defaultSearchPhrase%22%3A%22cat%20food%22%2C%22givenWidth%22%3A%22auto%22%2C%22givenHeight%22%3A%22auto%22%2C%22givenRows%22%3A2%2C%22visibleItemCount%22%3A4%2C%22axfExperiment%22%3A%22%5B%5D%22%2C%22slotNum%22%3A%220%22%2C%22items%22%3A%5B%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B01LZSZ8JF%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A0%2C%22column%22%3A0%2C%22extraInfo%22%3A%7B%7D%7D%2C%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B000R4H2MI%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A0%2C%22column%22%3A1%2C%22extraInfo%22%3A%7B%7D%7D%2C%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B006FTJ0NI%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A1%2C%22column%22%3A0%2C%22extraInfo%22%3A%7B%7D%7D%2C%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B01BKYFR7K%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A1%2C%22column%22%3A1%2C%22extraInfo%22%3A%7B%7D%7D%5D%2C%22logType%22%3A%22smart_impressions%22%2C%22design%22%3A%22grid%22%2C%22ead%22%3A4%2C%22livePoolPCScore%22%3A-1%2C%22livePoolModelVersion%22%3A%22LivePoolV1%22%2C%22contXPCScore%22%3A-1%2C%22contXModelVersion%22%3A%22ContXV1%22%2C%22totalDocHeight%22%3A1592%2C%22totalDocWidth%22%3A1268%2C%22actualWidth%22%3A286.5%2C%22actualHeight%22%3A559%2C%22atfInFirstLoad%22%3Afalse%2C%22posX%22%3A34%2C%22posY%22%3A1301.9666748046875%2C%22refUrl%22%3A%22https%3A%2F%2Fcatmiaofans.com%2Findex.php%2Fget-your-free-cat-food-sample%2F%22%7D
IP
52.46.155.118:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7

HTTP Headers

GET /x/px/RB8LGLhKAHMWWxGpT8p4xHEAAAGDojNj1QEAAAFKAQBOL0EgICAgICAgICAgICBOL0EgICAgICAgICAgICB2S5Yl/?assoc_payload=%7B%22regionId%22%3A%221%22%2C%22ref%22%3A%22sm_n_se_dkp_NO_%22%2C%22adMode%22%3A%22search%22%2C%22linkCode%22%3A%22w42%22%2C%22trackingId%22%3A%22catmiaofans-20%22%2C%22linkId%22%3A%229c77f5bfc09b78005cf6d8797a21215a%22%2C%22country%22%3A%22NO%22%2C%22deviceType%22%3A%22BROWSER%22%2C%22searchBarPresent%22%3Atrue%2C%22defaultCategory%22%3A%22PetSupplies%22%2C%22defaultSearchPhrase%22%3A%22cat%20food%22%2C%22givenWidth%22%3A%22auto%22%2C%22givenHeight%22%3A%22auto%22%2C%22givenRows%22%3A2%2C%22visibleItemCount%22%3A4%2C%22axfExperiment%22%3A%22%5B%5D%22%2C%22slotNum%22%3A%220%22%2C%22items%22%3A%5B%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B01LZSZ8JF%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A0%2C%22column%22%3A0%2C%22extraInfo%22%3A%7B%7D%7D%2C%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B000R4H2MI%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A0%2C%22column%22%3A1%2C%22extraInfo%22%3A%7B%7D%7D%2C%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B006FTJ0NI%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A1%2C%22column%22%3A0%2C%22extraInfo%22%3A%7B%7D%7D%2C%7B%22itemType%22%3A%22ASIN%22%2C%22id%22%3A%22B01BKYFR7K%22%2C%22source%22%3A%22Search%22%2C%22row%22%3A1%2C%22column%22%3A1%2C%22extraInfo%22%3A%7B%7D%7D%5D%2C%22logType%22%3A%22smart_impressions%22%2C%22design%22%3A%22grid%22%2C%22ead%22%3A4%2C%22livePoolPCScore%22%3A-1%2C%22livePoolModelVersion%22%3A%22LivePoolV1%22%2C%22contXPCScore%22%3A-1%2C%22contXModelVersion%22%3A%22ContXV1%22%2C%22totalDocHeight%22%3A1592%2C%22totalDocWidth%22%3A1268%2C%22actualWidth%22%3A286.5%2C%22actualHeight%22%3A559%2C%22atfInFirstLoad%22%3Afalse%2C%22posX%22%3A34%2C%22posY%22%3A1301.9666748046875%2C%22refUrl%22%3A%22https%3A%2F%2Fcatmiaofans.com%2Findex.php%2Fget-your-free-cat-food-sample%2F%22%7D HTTP/1.1
Host: aax-us-east.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Server
Date: Tue, 04 Oct 2022 08:53:41 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: T1YBCJ36T4Z171Z3NYW4
Cache-Control: no-cache
Pragma: no-cache
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload

m.media-amazon.com/images/I/5185zSP0yhL._AC_SL126_.jpg

151.101.85.16

200 OK

5.6 kB

URL HTTP/2
m.media-amazon.com/images/I/5185zSP0yhL._AC_SL126_.jpg
IP
151.101.85.16:0
ASN
#54113 FASTLY

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 126x86, components 3\012- data
Size
5.6 kB (5642 bytes)
Hash
1c8ebae9c23e17a6622f72f908e736bd
1eee1a49998a98388dca4f034162981e2f5c1859
66b7f67ccb2a8217a5bbd8264e1ec4431813a85e1e4a10721bdbb9ce7bfd0c23

HTTP Headers

GET /images/I/5185zSP0yhL._AC_SL126_.jpg HTTP/1.1
Host: m.media-amazon.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: image/jpeg
x-amz-ir-id: 23ea0881-dda7-4288-8047-6bf072aa478b
expires: Sun, 28 Sep 2042 21:26:28 GMT
cache-control: max-age=630720000,public
timing-allow-origin: https://www.amazon.in, https://www.amazon.com
access-control-allow-origin: *
last-modified: Wed, 01 Apr 2020 15:54:26 GMT
x-nginx-cache-status: MISS
accept-ranges: bytes
date: Tue, 04 Oct 2022 08:53:41 GMT
age: 41233
x-served-by: cache-iad-kjyo7100167-IAD, cache-bma1643-BMA
x-cache: HIT from fastly, MISS from fastly
server-timing: provider;desc="fy"
content-length: 5642
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.158

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.158:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
ccf50193e7e4b59c660bb192fc24bbbf
bfa0475fee329535669b71a0b03de64ad666eff0
a04dd02a0758122b6044dd19128f75542c79e7c32f5628922ca1cb8f64ccd28a

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Tue, 04 Oct 2022 08:53:41 GMT
Last-Modified: Tue, 04 Oct 2022 08:27:44 GMT
Server: ECS (nyb/1D25)
X-Cache: Miss from cloudfront
Via: 1.1 aa34a836095df9de9d246a53dd63f1d6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: usrBz14Ab8QlK8CfGok50TEF-6mpJ-riOIqQhSD10RZYAULlMl5cOg==
Age: 1557

aax-us-east.amazon-adsystem.com/x/px/RB8LGLhKAHMWWxGpT8p4xHEAAAGDojNj1QEAAAFKAQBOL0EgICAgICAgICAgICBOL0EgICAgICAgICAgICB2S5Yl/%7B%22adViewability%22:[%7B%22above_the_fold%22:false,%22topPos%22:1.3887113951011714,%22leftPos%22:0.028125%7D]%7D&cb=1182418

52.46.155.118

200 OK

43 B

URL HTTP/1.1
aax-us-east.amazon-adsystem.com/x/px/RB8LGLhKAHMWWxGpT8p4xHEAAAGDojNj1QEAAAFKAQBOL0EgICAgICAgICAgICBOL0EgICAgICAgICAgICB2S5Yl/%7B%22adViewability%22:[%7B%22above_the_fold%22:false,%22topPos%22:1.3887113951011714,%22leftPos%22:0.028125%7D]%7D&cb=1182418
IP
52.46.155.118:0
ASN
#16509 AMAZON-02

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
07fff40b5dd495aca2ac4e1c3fbc60aa
e8ac224ba9ee97e87670ed6f3a2f0128b7af9fe4
a065920df8cc4016d67c3a464be90099c9d28ffe7c9e6ee3a18f257efc58cbd7

HTTP Headers

GET /x/px/RB8LGLhKAHMWWxGpT8p4xHEAAAGDojNj1QEAAAFKAQBOL0EgICAgICAgICAgICBOL0EgICAgICAgICAgICB2S5Yl/%7B%22adViewability%22:[%7B%22above_the_fold%22:false,%22topPos%22:1.3887113951011714,%22leftPos%22:0.028125%7D]%7D&cb=1182418 HTTP/1.1
Host: aax-us-east.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: Server
Date: Tue, 04 Oct 2022 08:53:41 GMT
Content-Type: image/gif
Content-Length: 43
Connection: keep-alive
x-amz-rid: KTTRCXXKZWBVZD5WCXT1
Cache-Control: no-cache
Pragma: no-cache
Vary: Content-Type,Accept-Encoding,User-Agent
Strict-Transport-Security: max-age=47474747; includeSubDomains; preload

fls-na.amazon-adsystem.com/1/action-impressions/1/OE/associates-adsystems/action/cm_:onejs_load_evt@v=1821,onejs_exec_time@v=25,aax_load_time@v=1854,aax_load_time_smart@v=1854,wdgt_load_time@v=3805,wdgt_load_time_NO@v=3805,wdgt_load_time_smart@v=3805,wdgt_load_time_invoke@v=1984,wdgt_load_time_invoke_smart@v=1983,wdgt_load_time_invoke_smart_NO@v=1983?marketplace=US&service=AmazonWidgets&method=Widgets_Render_Time&marketplaceId=ATVPDKIKX0DER&requestId=38417e7d-e677-4b1c-a952-7ca157eae78d&session=6b2eec60-101e-4ebe-8609-d8c6fe22204d

52.94.225.95

204 No Content

0 B

URL HTTP/1.1
fls-na.amazon-adsystem.com/1/action-impressions/1/OE/associates-adsystems/action/cm_:onejs_load_evt@v=1821,onejs_exec_time@v=25,aax_load_time@v=1854,aax_load_time_smart@v=1854,wdgt_load_time@v=3805,wdgt_load_time_NO@v=3805,wdgt_load_time_smart@v=3805,wdgt_load_time_invoke@v=1984,wdgt_load_time_invoke_smart@v=1983,wdgt_load_time_invoke_smart_NO@v=1983?marketplace=US&service=AmazonWidgets&method=Widgets_Render_Time&marketplaceId=ATVPDKIKX0DER&requestId=38417e7d-e677-4b1c-a952-7ca157eae78d&session=6b2eec60-101e-4ebe-8609-d8c6fe22204d
IP
52.94.225.95:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /1/action-impressions/1/OE/associates-adsystems/action/cm_:onejs_load_evt@v=1821,onejs_exec_time@v=25,aax_load_time@v=1854,aax_load_time_smart@v=1854,wdgt_load_time@v=3805,wdgt_load_time_NO@v=3805,wdgt_load_time_smart@v=3805,wdgt_load_time_invoke@v=1984,wdgt_load_time_invoke_smart@v=1983,wdgt_load_time_invoke_smart_NO@v=1983?marketplace=US&service=AmazonWidgets&method=Widgets_Render_Time&marketplaceId=ATVPDKIKX0DER&requestId=38417e7d-e677-4b1c-a952-7ca157eae78d&session=6b2eec60-101e-4ebe-8609-d8c6fe22204d HTTP/1.1
Host: fls-na.amazon-adsystem.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 204 No Content
x-amzn-RequestId: d6bfb362-d2a7-4119-a93f-cefbea1b18b5
Content-Type: text/plain
Date: Tue, 04 Oct 2022 08:53:40 GMT

simplewebanalysis.com/stats

3.66.118.16

200 OK

40 B

URL HTTP/2
simplewebanalysis.com/stats
IP
3.66.118.16:0
ASN
#16509 AMAZON-02

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
16cddd819026bc735815f18627ae7887
0f9eef8b1d60c65fe111b8484eca5791629c9639
28ecd1485076392a0d38947ac3b56b44bb3bc68291696051a8659976e26f8b7c

HTTP Headers

GET /stats HTTP/1.1
Host: simplewebanalysis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Cookie: uid_id2=c9b172ec-762f-4723-a15b-1dd234258e75:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:41 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://catmiaofans.com
access-control-allow-credentials: true
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

300 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
gzip compressed data, from Unix\012- data
Size
300 B (300 bytes)
Hash
23d98681a4d38b43a77ef8b5259e46b8
57f1b2935aff6cb913e86b58499c63233693c047
e0512d07ce536392a7dc44032526d698802e0c044985e2af055fcece60a77916

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5878
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 04 Oct 2022 08:53:41 GMT
Last-Modified: Tue, 04 Oct 2022 07:15:43 GMT
Server: ECS (amb/6BA3)
X-Cache: HIT
Content-Length: 280

familiarkindlyshuffle.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bRRidbSNAcALlEk4%2BFgk5u2tnbZNDRQipIkJTWhCcQLMzu86Q2Z1lZmfXMZeIItQbRuICp81z0vCjKvAHUFVOJYQiVYpvORCJvwHUM7JrYfik1ffevnd43%2FfNFwf2griw9Hz9bdUXUtLllbpbu%2FKB563WtkRqe7VeO%2FgoaK7WdPFaJ6i7r9SuRWxXLfuu57qe69U2hI5i1VueiBDZvY5X77j1pl%2F3Vpro6f9zYx0Y6oAXF%2BQlCD5eeOQsQrAR0uTn9cjs5ip79c3ESporjYIfv5fupqpMkcxhrB3E6fHMDWXONh5ApUfTuFDFv8ZQjInz2wOE6fEsJMLicJozlIhShPwFlMUIkRxB0BGYug3BzwjAOK5vI03uXle6pHtPVTpRx2ThyV8Q5Zgs%2FLGINLm%2FJkWvdktJmwuVGvTiCqI3guiOkNkT5P1LEOUJWP4ZBH9Mlp9sIU0Ot41UELyazi7ECCIeQUYDUOPATj7hwMYObOYg4ec15nley%2BWMuu0OYw3eisKAux5txR713KANyybxBsizAZgcgOl9ZHofu2IAbR%2FC7FQw3IHJx8R5Zx8Fr1BGBKUhKClBKQjKnKAsqiMujW%2Bqu1waG3qz7s96oxqqvHtAj1TejVJykF2QFyd7ccjDJexG57XYd9tt2vZj2l4Jm5FHg2aj3VnpNJqtTtzoxDCigjCXpqP2xZi8fOVLZGJMnnl2ESE9gZEnYMIBtR5oOWz5LujOsNl20U9%2FYjRPBFUxTU2dqQRcVcjyBeR7zoG8IEvTE3nfbSJip1c%2F7%2F957f7ip2C6QqYrfCweEXTlneFNVZLDm6o05JftLBeJ6NPJ%2BW7lNI8u%2F%2FBWtFcqzTfXzeD719lEmMB770Ym36IpF2nXkB%2FXBOeR3lCaReTXTfN%2BFN6wZmfN6tRmWzfe2NhMMh0ZI1Q6AhVnHx6BiTF57pPH03e51C8g9AjaVkjsKZkVhDoBy%2FZhsnl6oy5Dy7knzByUthpqP5z%2FlIJARnNOwwrmPzyc4wNzB13tg%2Ba3kSYVCl2hkBWoHMDY54d5pk%2Bv%2Fv7NpL5FKJ1hKLVzGEotv3q6WiPOa61Gw6VBZ8VrtWjUCpt%2BOw48TqnfDPwgoA3kZsxW%2F%2F76HwAAAP%2F%2FAQAA%2F%2F%2F1waoYYgQAAA%3D%3D

192.243.59.20

200 OK

7 B

URL HTTP/1.1
familiarkindlyshuffle.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bRRidbSNAcALlEk4%2BFgk5u2tnbZNDRQipIkJTWhCcQLMzu86Q2Z1lZmfXMZeIItQbRuICp81z0vCjKvAHUFVOJYQiVYpvORCJvwHUM7JrYfik1ffevnd43%2FfNFwf2griw9Hz9bdUXUtLllbpbu%2FKB563WtkRqe7VeO%2FgoaK7WdPFaJ6i7r9SuRWxXLfuu57qe69U2hI5i1VueiBDZvY5X77j1pl%2F3Vpro6f9zYx0Y6oAXF%2BQlCD5eeOQsQrAR0uTn9cjs5ip79c3ESporjYIfv5fupqpMkcxhrB3E6fHMDWXONh5ApUfTuFDFv8ZQjInz2wOE6fEsJMLicJozlIhShPwFlMUIkRxB0BGYug3BzwjAOK5vI03uXle6pHtPVTpRx2ThyV8Q5Zgs%2FLGINLm%2FJkWvdktJmwuVGvTiCqI3guiOkNkT5P1LEOUJWP4ZBH9Mlp9sIU0Ot41UELyazi7ECCIeQUYDUOPATj7hwMYObOYg4ec15nley%2BWMuu0OYw3eisKAux5txR713KANyybxBsizAZgcgOl9ZHofu2IAbR%2FC7FQw3IHJx8R5Zx8Fr1BGBKUhKClBKQjKnKAsqiMujW%2Bqu1waG3qz7s96oxqqvHtAj1TejVJykF2QFyd7ccjDJexG57XYd9tt2vZj2l4Jm5FHg2aj3VnpNJqtTtzoxDCigjCXpqP2xZi8fOVLZGJMnnl2ESE9gZEnYMIBtR5oOWz5LujOsNl20U9%2FYjRPBFUxTU2dqQRcVcjyBeR7zoG8IEvTE3nfbSJip1c%2F7%2F957f7ip2C6QqYrfCweEXTlneFNVZLDm6o05JftLBeJ6NPJ%2BW7lNI8u%2F%2FBWtFcqzTfXzeD719lEmMB770Ym36IpF2nXkB%2FXBOeR3lCaReTXTfN%2BFN6wZmfN6tRmWzfe2NhMMh0ZI1Q6AhVnHx6BiTF57pPH03e51C8g9AjaVkjsKZkVhDoBy%2FZhsnl6oy5Dy7knzByUthpqP5z%2FlIJARnNOwwrmPzyc4wNzB13tg%2Ba3kSYVCl2hkBWoHMDY54d5pk%2Bv%2Fv7NpL5FKJ1hKLVzGEotv3q6WiPOa61Gw6VBZ8VrtWjUCpt%2BOw48TqnfDPwgoA3kZsxW%2F%2F76HwAAAP%2F%2FAQAA%2F%2F%2F1waoYYgQAAA%3D%3D
IP
192.243.59.20:0
ASN
#39572 DataWeb Global Group B.V.

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz28bRRidbSNAcALlEk4%2BFgk5u2tnbZNDRQipIkJTWhCcQLMzu86Q2Z1lZmfXMZeIItQbRuICp81z0vCjKvAHUFVOJYQiVYpvORCJvwHUM7JrYfik1ffevnd43%2FfNFwf2griw9Hz9bdUXUtLllbpbu%2FKB563WtkRqe7VeO%2FgoaK7WdPFaJ6i7r9SuRWxXLfuu57qe69U2hI5i1VueiBDZvY5X77j1pl%2F3Vpro6f9zYx0Y6oAXF%2BQlCD5eeOQsQrAR0uTn9cjs5ip79c3ESporjYIfv5fupqpMkcxhrB3E6fHMDWXONh5ApUfTuFDFv8ZQjInz2wOE6fEsJMLicJozlIhShPwFlMUIkRxB0BGYug3BzwjAOK5vI03uXle6pHtPVTpRx2ThyV8Q5Zgs%2FLGINLm%2FJkWvdktJmwuVGvTiCqI3guiOkNkT5P1LEOUJWP4ZBH9Mlp9sIU0Ot41UELyazi7ECCIeQUYDUOPATj7hwMYObOYg4ec15nley%2BWMuu0OYw3eisKAux5txR713KANyybxBsizAZgcgOl9ZHofu2IAbR%2FC7FQw3IHJx8R5Zx8Fr1BGBKUhKClBKQjKnKAsqiMujW%2Bqu1waG3qz7s96oxqqvHtAj1TejVJykF2QFyd7ccjDJexG57XYd9tt2vZj2l4Jm5FHg2aj3VnpNJqtTtzoxDCigjCXpqP2xZi8fOVLZGJMnnl2ESE9gZEnYMIBtR5oOWz5LujOsNl20U9%2FYjRPBFUxTU2dqQRcVcjyBeR7zoG8IEvTE3nfbSJip1c%2F7%2F957f7ip2C6QqYrfCweEXTlneFNVZLDm6o05JftLBeJ6NPJ%2BW7lNI8u%2F%2FBWtFcqzTfXzeD719lEmMB770Ym36IpF2nXkB%2FXBOeR3lCaReTXTfN%2BFN6wZmfN6tRmWzfe2NhMMh0ZI1Q6AhVnHx6BiTF57pPH03e51C8g9AjaVkjsKZkVhDoBy%2FZhsnl6oy5Dy7knzByUthpqP5z%2FlIJARnNOwwrmPzyc4wNzB13tg%2Ba3kSYVCl2hkBWoHMDY54d5pk%2Bv%2Fv7NpL5FKJ1hKLVzGEotv3q6WiPOa61Gw6VBZ8VrtWjUCpt%2BOw48TqnfDPwgoA3kZsxW%2F%2F76HwAAAP%2F%2FAQAA%2F%2F%2F1waoYYgQAAA%3D%3D HTTP/1.1
Host: familiarkindlyshuffle.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Cookie: u_pl=16826393; pdhtkv=true; uncs=1; pdhtkv49=true; uncs49=1; nlecf2088a82fa85b4e1a64389593479f39f=[3254345]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.17.9
Date: Tue, 04 Oct 2022 08:53:41 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c75bc7f2087ae9d8c9fae7a20d6909c5
Strict-Transport-Security: max-age=0; includeSubdomains

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
5a81efbd7f92e8ab877070b2f9cd6247
389efbc67268d7460da1c041ecd8bd3de503bced
08f20e6c48dc1f16fb405a6e21df212677b34c1dcaf75335d163a3d1e18c40bc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "08F20E6C48DC1F16FB405A6E21DF212677B34C1DCAF75335D163A3D1E18C40BC"
Last-Modified: Sun, 02 Oct 2022 19:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=19949
Expires: Tue, 04 Oct 2022 14:26:11 GMT
Date: Tue, 04 Oct 2022 08:53:42 GMT
Connection: keep-alive

interesteddeterminedeurope.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRitThZ%2F4EnJxYAyJ4kgs909v91DcF1XFjfZmCh60%2Bqq6tlyq7uaqq7p2T0tBiQ3R%2FAP6H2zmyUaNIJXg8wGclgQ0npZ1P0fRMnJg8xkcfSD5nuv3zu87%2Fvqsz13Snw4erJyRe9Ipehiq%2B7XLn0YBEu1dZm6YW3YbX%2FUbi7VzOD1Xrvuv1p7W7AtvRj6ge8HflBblUbEerg4FSGzu72g3vPrzbAetJoYmv9z6zxY6oEPTskLkLxaeOBdgGQTpMm9FWG3cp299lbiFM21wYAfvp9upbpIkcxhbDzE6eGZG9o%2BWr0PnR7M4kIP%2FjVGsiLew%2FuI0sOzkIgG%2B7OckYJIEfHnUAwmEGoCSSdg%2BiYkf0QAxnF1A2ly%2B6o2Bd1%2BotKpWpGFx39CFhVZ%2BP0C0uSbZSWHtRtauVzq1GIYl5DDCWR%2FgswdId85B1kcgeWfQvKfyOLjdaTJ%2FoZVGpKXs9mlnEDGEygxArUe3PSTHlzswWUeEn5SY0EQdHzOqN%2FtMdbgHRG1uR%2FQThzQwG934dg03gh5NgJTIzCzi8zsYkuOYNyPsJslLPdg84p47%2B5iwEsUgqCwBAUlKCRBkRMUg%2FKAKxva8jZX1kXBWQ%2FPeqMc67y%2FRw903hcp2ctOyfPTvXjPvvIrtsRJjfMg9nlLRL24Ffsd7kdd0fF5HLaisBV0A1hZQtpzs1F3ZEUuXvocmazIU09fQESPYNURmPRA3UugxbgT%2BqCb42bXx076LaN5IqmOaWrrTCfgukSWLyDf9vbUKXlxdqLGLwqCHV%2F%2BOLpS%2FXHnbzBTIjMlPpEPCPrq1vi6Lsj%2BdV1Y8t1GlstE7tDp%2BW7kNBfnv3pHbBfa8LUVO7rzBpsKU3j3PWHzdZpymfYt%2BXpZci7MqjZMkB%2FW7Aciuubs5rIzqcvWr725upZkRlgrdToBlRUhD4%2FBZEWe%2Bf5k9jIv%2FnYP0kxgXInEHZOzgtRHYNkubDbPb%2FV5GDX3RJmHwpVjE0bzn0oSKDHnNCph%2F8OjOd6zt9A3L4PmN5EmJQamxECVoGoE686P88wcX%2F65MStEyhtHynj7kTLqiyfLtfKk1mk0fNrutYJOh4pO1Ay7cTvglIbNdthu0wZyW7Glv778BwAA%2F%2F8BAAD%2F%2F%2BJTwApkBAAA

192.243.61.227

200 OK

7 B

URL HTTP/1.1
interesteddeterminedeurope.com/ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRitThZ%2F4EnJxYAyJ4kgs909v91DcF1XFjfZmCh60%2Bqq6tlyq7uaqq7p2T0tBiQ3R%2FAP6H2zmyUaNIJXg8wGclgQ0npZ1P0fRMnJg8xkcfSD5nuv3zu87%2Fvqsz13Snw4erJyRe9Ipehiq%2B7XLn0YBEu1dZm6YW3YbX%2FUbi7VzOD1Xrvuv1p7W7AtvRj6ge8HflBblUbEerg4FSGzu72g3vPrzbAetJoYmv9z6zxY6oEPTskLkLxaeOBdgGQTpMm9FWG3cp299lbiFM21wYAfvp9upbpIkcxhbDzE6eGZG9o%2BWr0PnR7M4kIP%2FjVGsiLew%2FuI0sOzkIgG%2B7OckYJIEfHnUAwmEGoCSSdg%2BiYkf0QAxnF1A2ly%2B6o2Bd1%2BotKpWpGFx39CFhVZ%2BP0C0uSbZSWHtRtauVzq1GIYl5DDCWR%2FgswdId85B1kcgeWfQvKfyOLjdaTJ%2FoZVGpKXs9mlnEDGEygxArUe3PSTHlzswWUeEn5SY0EQdHzOqN%2FtMdbgHRG1uR%2FQThzQwG934dg03gh5NgJTIzCzi8zsYkuOYNyPsJslLPdg84p47%2B5iwEsUgqCwBAUlKCRBkRMUg%2FKAKxva8jZX1kXBWQ%2FPeqMc67y%2FRw903hcp2ctOyfPTvXjPvvIrtsRJjfMg9nlLRL24Ffsd7kdd0fF5HLaisBV0A1hZQtpzs1F3ZEUuXvocmazIU09fQESPYNURmPRA3UugxbgT%2BqCb42bXx076LaN5IqmOaWrrTCfgukSWLyDf9vbUKXlxdqLGLwqCHV%2F%2BOLpS%2FXHnbzBTIjMlPpEPCPrq1vi6Lsj%2BdV1Y8t1GlstE7tDp%2BW7kNBfnv3pHbBfa8LUVO7rzBpsKU3j3PWHzdZpymfYt%2BXpZci7MqjZMkB%2FW7Aciuubs5rIzqcvWr725upZkRlgrdToBlRUhD4%2FBZEWe%2Bf5k9jIv%2FnYP0kxgXInEHZOzgtRHYNkubDbPb%2FV5GDX3RJmHwpVjE0bzn0oSKDHnNCph%2F8OjOd6zt9A3L4PmN5EmJQamxECVoGoE686P88wcX%2F65MStEyhtHynj7kTLqiyfLtfKk1mk0fNrutYJOh4pO1Ay7cTvglIbNdthu0wZyW7Glv778BwAA%2F%2F8BAAD%2F%2F%2BJTwApkBAAA
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RSz4scRRitThZ%2F4EnJxYAyJ4kgs909v91DcF1XFjfZmCh60%2Bqq6tlyq7uaqq7p2T0tBiQ3R%2FAP6H2zmyUaNIJXg8wGclgQ0npZ1P0fRMnJg8xkcfSD5nuv3zu87%2Fvqsz13Snw4erJyRe9Ipehiq%2B7XLn0YBEu1dZm6YW3YbX%2FUbi7VzOD1Xrvuv1p7W7AtvRj6ge8HflBblUbEerg4FSGzu72g3vPrzbAetJoYmv9z6zxY6oEPTskLkLxaeOBdgGQTpMm9FWG3cp299lbiFM21wYAfvp9upbpIkcxhbDzE6eGZG9o%2BWr0PnR7M4kIP%2FjVGsiLew%2FuI0sOzkIgG%2B7OckYJIEfHnUAwmEGoCSSdg%2BiYkf0QAxnF1A2ly%2B6o2Bd1%2BotKpWpGFx39CFhVZ%2BP0C0uSbZSWHtRtauVzq1GIYl5DDCWR%2FgswdId85B1kcgeWfQvKfyOLjdaTJ%2FoZVGpKXs9mlnEDGEygxArUe3PSTHlzswWUeEn5SY0EQdHzOqN%2FtMdbgHRG1uR%2FQThzQwG934dg03gh5NgJTIzCzi8zsYkuOYNyPsJslLPdg84p47%2B5iwEsUgqCwBAUlKCRBkRMUg%2FKAKxva8jZX1kXBWQ%2FPeqMc67y%2FRw903hcp2ctOyfPTvXjPvvIrtsRJjfMg9nlLRL24Ffsd7kdd0fF5HLaisBV0A1hZQtpzs1F3ZEUuXvocmazIU09fQESPYNURmPRA3UugxbgT%2BqCb42bXx076LaN5IqmOaWrrTCfgukSWLyDf9vbUKXlxdqLGLwqCHV%2F%2BOLpS%2FXHnbzBTIjMlPpEPCPrq1vi6Lsj%2BdV1Y8t1GlstE7tDp%2BW7kNBfnv3pHbBfa8LUVO7rzBpsKU3j3PWHzdZpymfYt%2BXpZci7MqjZMkB%2FW7Aciuubs5rIzqcvWr725upZkRlgrdToBlRUhD4%2FBZEWe%2Bf5k9jIv%2FnYP0kxgXInEHZOzgtRHYNkubDbPb%2FV5GDX3RJmHwpVjE0bzn0oSKDHnNCph%2F8OjOd6zt9A3L4PmN5EmJQamxECVoGoE686P88wcX%2F65MStEyhtHynj7kTLqiyfLtfKk1mk0fNrutYJOh4pO1Ay7cTvglIbNdthu0wZyW7Glv778BwAA%2F%2F8BAAD%2F%2F%2BJTwApkBAAA HTTP/1.1
Host: interesteddeterminedeurope.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Cookie: u_pl=17376987; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdd1f0d5eb9f5f07d0b8e70df25b25181=[3396716]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 04 Oct 2022 08:53:42 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3c298ffe6545eb40307e84d0f8c1f6ea
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.cloudimagesb.com/si/c8/d2/75/c8d2755494a79da6a1198b4e843c465e/1645978536.jpg

45.133.44.9

200 OK

21 kB

URL HTTP/2
cdn.cloudimagesb.com/si/c8/d2/75/c8d2755494a79da6a1198b4e843c465e/1645978536.jpg
IP
45.133.44.9:0
ASN
#39572 DataWeb Global Group B.V.

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 320x240, components 3\012- data
Size
21 kB (21046 bytes)
Hash
e76141a73e3867caa30e71f21f24f019
7664dbf096108e45ad2d376514565d1a859bd169
98acf73ddbba7ea1c25ae6edf6ab6817ef442cf1c2343909083b2601ea8b62ca

HTTP Headers

GET /si/c8/d2/75/c8d2755494a79da6a1198b4e843c465e/1645978536.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:42 GMT
content-type: image/jpeg
content-length: 21046
server: nginx/1.17.6
last-modified: Sun, 27 Feb 2022 16:15:46 GMT
etag: "621ba3b2-5236"
expires: Thu, 06 Oct 2022 08:53:42 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
4bd610954d1cad0675c2010a63e9c018
bd7e8708e02d74c5d7534a48221c9314530917f6
3b51bf349c5fc0841b5ee253093aa1dfabb8271f84bbb0eee07836dec331c1cd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3B51BF349C5FC0841B5EE253093AA1DFABB8271F84BBB0EEE07836DEC331C1CD"
Last-Modified: Tue, 04 Oct 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18657
Expires: Tue, 04 Oct 2022 14:04:39 GMT
Date: Tue, 04 Oct 2022 08:53:42 GMT
Connection: keep-alive

unseenreport.com/pxf.gif?uuid=c9b172ec-762f-4723-a15b-1dd234258e75&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.31&b_frame=0&pk=dd1f0d5eb9f5f07d0b8e70df25b25181&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=8

192.243.61.227

200 OK

10 kB

URL HTTP/1.1
unseenreport.com/pxf.gif?uuid=c9b172ec-762f-4723-a15b-1dd234258e75&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.31&b_frame=0&pk=dd1f0d5eb9f5f07d0b8e70df25b25181&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=8
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

File type
data
Size
10 kB (10173 bytes)
Hash
49b95c332c9488eda3ac1695795616c6
55c537c5a911b2c040782d9b0410f9a6910ee484
1aa3f21e83060c98756837177086741705252419b6a08fad249da8425262fa09

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=c9b172ec-762f-4723-a15b-1dd234258e75&eb=afa55bd8bbaeee6cbf2f0b21fb513961&te=9e4947f35751465411fd1a4f5c358c78&ua=Mozilla%2F5.0%20(X11%3B%20Linux%20x86_64%3B%20rv%3A96.0)%20Gecko%2F20100101%20Firefox%2F96.0&dev=r&res=14.31&b_frame=0&pk=dd1f0d5eb9f5f07d0b8e70df25b25181&bl=en-US&sr=1002x1280&sz=1024x1280&hjs=8 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 04 Oct 2022 08:53:42 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 517477a2bb287408281b287587fe855d
Strict-Transport-Security: max-age=0; includeSubdomains

e1.o.lencr.org/

23.36.76.226

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
66909c9078632d44ebf4a15cd12a5595
c11a63fa7f302a0bafc7f20821d0e9ca9328f9d2
b525db57340ac0c9ac960f9e711431b1992008b5b1506d72e8260ad3743b8f3b

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "B525DB57340AC0C9AC960F9E711431B1992008B5B1506D72E8260AD3743B8F3B"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11773
Expires: Tue, 04 Oct 2022 12:09:55 GMT
Date: Tue, 04 Oct 2022 08:53:42 GMT
Connection: keep-alive

creepingbrings.com/sfp.js

172.64.199.30

200 OK

29 kB

URL HTTP/2
creepingbrings.com/sfp.js
IP
172.64.199.30:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (6025), with no line terminators
Size
29 kB (28659 bytes)
Hash
5c34ca2f7689a254dcad220c2809f3f9
6d8c363c5c8cb129badebd6f1a74edc79aa24a42
1d85cf98937b861c6785734e2ff3232701e85a5cf681b3f15029579a54f5d75a

HTTP Headers

GET /sfp.js HTTP/1.1
Host: creepingbrings.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:39 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: f218d9df8a02225e626b3cba27d03ee5
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 04 Oct 2022 08:53:39 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1TqCeISTDIk4RAmAwa172GEQTYABl%2B2Z7KY7uBqRxDxbD3L2nYT7tVtJ3BKgbXdKrOeRy%2FAJuoJ8fYG6Emei8HG0DVHly%2BNgZpT5CCNwbel7ayKy%2BeRhQu%2B98sjSZqpk2CZXsW0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754cb0393b2f71c2-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.76.226

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
66909c9078632d44ebf4a15cd12a5595
c11a63fa7f302a0bafc7f20821d0e9ca9328f9d2
b525db57340ac0c9ac960f9e711431b1992008b5b1506d72e8260ad3743b8f3b

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "B525DB57340AC0C9AC960F9E711431B1992008B5B1506D72E8260AD3743B8F3B"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11773
Expires: Tue, 04 Oct 2022 12:09:55 GMT
Date: Tue, 04 Oct 2022 08:53:42 GMT
Connection: keep-alive

interesteddeterminedeurope.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fmessage_redcircle2%2F3%2Findex.html&l=1559&fd=660

192.243.61.227

200 OK

0 B

URL HTTP/1.1
interesteddeterminedeurope.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fmessage_redcircle2%2F3%2Findex.html&l=1559&fd=660
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.yourwebbars.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fmessage_redcircle2%2F3%2Findex.html&l=1559&fd=660 HTTP/1.1
Host: interesteddeterminedeurope.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Cookie: u_pl=17376987; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdd1f0d5eb9f5f07d0b8e70df25b25181=[3396716]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 04 Oct 2022 08:53:42 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/img/1.jpg

172.64.200.2

200 OK

22 kB

URL HTTP/2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/img/1.jpg
IP
172.64.200.2:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 320x292, components 3\012- data
Size
22 kB (21845 bytes)
Hash
e1f754e6014f2a7636aa19acdf37eaa7
72ded7fb65560b2702630d5208386654f294e8e9
8b9e400d61eb3c28929db8209c3136b14e2112d6eb8b4f504b74f6cca67b50fe

HTTP Headers

GET /sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/img/1.jpg HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:42 GMT
content-type: image/jpeg
content-length: 21845
last-modified: Wed, 03 Aug 2022 08:33:45 GMT
etag: "62ea32e9-5555"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 5352553
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=9UDAuFwwV7y99FxboeN9%2BM4ZXoPm3%2B4N9id6KyetW0ON%2BjHCY15QTBscIUUD6%2FtjXP5REJnJ6Ou78npArXft6PDO2kMSf5ulYQJ79S1du8HO3g4jl7p%2Fxj0j50hj3OD1cwk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754cb04e098375bf-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

e1.o.lencr.org/

23.36.76.226

200 OK

345 B

URL HTTP/1.1
e1.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
345 B (345 bytes)
Hash
66909c9078632d44ebf4a15cd12a5595
c11a63fa7f302a0bafc7f20821d0e9ca9328f9d2
b525db57340ac0c9ac960f9e711431b1992008b5b1506d72e8260ad3743b8f3b

HTTP Headers

POST / HTTP/1.1
Host: e1.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 345
ETag: "B525DB57340AC0C9AC960F9E711431B1992008B5B1506D72E8260AD3743B8F3B"
Last-Modified: Sun, 02 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=11773
Expires: Tue, 04 Oct 2022 12:09:55 GMT
Date: Tue, 04 Oct 2022 08:53:42 GMT
Connection: keep-alive

interesteddeterminedeurope.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fmessage_redcircle2%2F3%2Fcss%2Fstyle.css&l=3637&fd=224

192.243.61.227

200 OK

660 B

URL HTTP/1.1
interesteddeterminedeurope.com/pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fmessage_redcircle2%2F3%2Fcss%2Fstyle.css&l=3637&fd=224
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

File type
gzip compressed data, max compression\012- data
Size
660 B (660 bytes)
Hash
5860c780c8e9daa4f852038f02b5bdc2
c75c8b4db36bffe075ce493f06d011f855d5541a
f11b9f8e851e15c0c6abd53a9994c6dcef78ceeebd0f0b8bbde610fec8332c85

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /pixel/sbls?bv=22.33.5038&tmpl=482&u=https%3A%2F%2Fcdn.sb4you1.com%2Fsb%2Fnotifications%2Futility%2Fdefault%2Fus%2Fblog%2FProgamerage%2Fmessage_redcircle2%2F3%2Fcss%2Fstyle.css&l=3637&fd=224 HTTP/1.1
Host: interesteddeterminedeurope.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Cookie: u_pl=17376987; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdd1f0d5eb9f5f07d0b8e70df25b25181=[3396716]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 04 Oct 2022 08:53:42 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/css/style.css

172.64.200.2

200 OK

1.0 kB

URL HTTP/2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/css/style.css
IP
172.64.200.2:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
1.0 kB (1025 bytes)
Hash
20710b5df582884b3779bc24c1977cdd
58e7736a6a076efdf1e4d7a9fea88bfe4ace2fa7
49592242422c4a7f3bd1d57f6818aaa9c7ae5e236f13fc01939ab9abc3cd74b5

HTTP Headers

GET /sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/css/style.css HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:42 GMT
content-type: text/css
last-modified: Mon, 31 Jan 2022 15:54:46 GMT
etag: W/"61f80646-e35"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=P4h13isozaXz5BLzun0nr9rn6w5afrsJZR%2FHewZT16yS6cUGpt9A8WWUh4vIARVadjw%2FDfoJ4bVBhQhtGzrcTqQr1EI0l%2FOLf8%2BKz7BjqxE4hoS%2BJ8Vhy2XnZCH2ZUNY0ho%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754cb04de94675bf-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

interesteddeterminedeurope.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2tcVRi9rw3%2BwJXSjQVlVlJBJu%2FNj8zELIoxRoJpU1tFd3p%2Fvck19737uPfdeZOsggXpzhH8A17OJA3VohXcWmRS6CIg9OkmqPkfROnKhcw0OPrB4zvnnbM43%2Ffdz%2Fb8KQnh6cnKFbOjtKbz7XpYu%2FRhFC3V1lXqB7VBd%2BGjhdZSzfZfX1yoh6%2FW3pZ8y8w3wigMozCqrSorYzOYn4hQ2d3FqL4Y1luNetRuYWD%2Fz50P4GgA0T8lL0CJau5BcAGKj5Em91ak28pN9tpbidc0NxZ9cfh%2BupWaIkUyg7ENEKeHZ24Y92j1Pkx6MI0L0%2F%2FXyFRFgof3wdLDs5Bg%2Ff1pTqYhUzDxHIr%2BGFKPoegY3NyEEo8IwAWubiBNbl81tqDbT1Q6USsy9%2FhPqKIic79fQJp8s6zVoHbDaJ8rkzoM4hJqMIbqjZH5I%2BQ756CKI%2FD8UyjxE5l%2FvI402d9w2kCJcjq7UmOoeAwth6AugJ98KoCPA%2FgsQCJOajyKok4oOA27i5w3RUeyBRFGtBNHNAoXuvB8Em%2BIPBuC6yG43UVmd7GlhrD%2BR7jNEk4EcHlFgnd30RclCklQOIKCEhSKoMgJin55ILRruPK20M6z6Kw3znqzHJm8t0cPTN6TKdnLTsnzk70Ez77yK7bkSU2IKA5FW7LFuB2HHRGyruyEIm60WaMddSM4VUK5c9NRd1RFLl76HJmqyFNPXwCjR3D6CFwFoP4l0GLUaYSgm6NWN8RO%2Bi2neaKoiWnq6twkEKZEls8h3w729Cl5cXqi5i8akh9f%2Fphdqf648ze4LZHZEp%2BoBwQ9fWt03RRk%2F7opHPluI8tVonbo5Hw3cprL81%2B9I7cLY8XaihveeYNPhAm8%2B550%2BTpNhUp7jny9rISQdtVYLskPa%2B4Dya55t7nsbeqz9Wtvrq4lmZXOKZOOQVVFyMNjcFWRZ74%2Fmb7Mi7%2Fdg7JjWF8i8cfkrKDMEXi2C5fN8jtzHlbPPCwLUPhyZBts9lMrAi1nnLIS7j%2BczfCeu4WefRk0v4k0KdG3Jfq6BNVDOH9%2BlGf2%2BPLPzWmB6WDEtA32mbb6iyfLdeqk1gxFh8lYdphstVux5IK12yzkMWdN0e1y5K7iS399%2BQ8AAAD%2F%2FwEAAP%2F%2FYocV4mQEAAA%3D

192.243.61.227

200 OK

7 B

URL HTTP/1.1
interesteddeterminedeurope.com/impr.gif?sid=H4sIAAAAAAAC%2F1RSz2tcVRi9rw3%2BwJXSjQVlVlJBJu%2FNj8zELIoxRoJpU1tFd3p%2Fvck19737uPfdeZOsggXpzhH8A17OJA3VohXcWmRS6CIg9OkmqPkfROnKhcw0OPrB4zvnnbM43%2Ffdz%2Fb8KQnh6cnKFbOjtKbz7XpYu%2FRhFC3V1lXqB7VBd%2BGjhdZSzfZfX1yoh6%2FW3pZ8y8w3wigMozCqrSorYzOYn4hQ2d3FqL4Y1luNetRuYWD%2Fz50P4GgA0T8lL0CJau5BcAGKj5Em91ak28pN9tpbidc0NxZ9cfh%2BupWaIkUyg7ENEKeHZ24Y92j1Pkx6MI0L0%2F%2FXyFRFgof3wdLDs5Bg%2Ff1pTqYhUzDxHIr%2BGFKPoegY3NyEEo8IwAWubiBNbl81tqDbT1Q6USsy9%2FhPqKIic79fQJp8s6zVoHbDaJ8rkzoM4hJqMIbqjZH5I%2BQ756CKI%2FD8UyjxE5l%2FvI402d9w2kCJcjq7UmOoeAwth6AugJ98KoCPA%2FgsQCJOajyKok4oOA27i5w3RUeyBRFGtBNHNAoXuvB8Em%2BIPBuC6yG43UVmd7GlhrD%2BR7jNEk4EcHlFgnd30RclCklQOIKCEhSKoMgJin55ILRruPK20M6z6Kw3znqzHJm8t0cPTN6TKdnLTsnzk70Ez77yK7bkSU2IKA5FW7LFuB2HHRGyruyEIm60WaMddSM4VUK5c9NRd1RFLl76HJmqyFNPXwCjR3D6CFwFoP4l0GLUaYSgm6NWN8RO%2Bi2neaKoiWnq6twkEKZEls8h3w729Cl5cXqi5i8akh9f%2Fphdqf648ze4LZHZEp%2BoBwQ9fWt03RRk%2F7opHPluI8tVonbo5Hw3cprL81%2B9I7cLY8XaihveeYNPhAm8%2B550%2BTpNhUp7jny9rISQdtVYLskPa%2B4Dya55t7nsbeqz9Wtvrq4lmZXOKZOOQVVFyMNjcFWRZ74%2Fmb7Mi7%2Fdg7JjWF8i8cfkrKDMEXi2C5fN8jtzHlbPPCwLUPhyZBts9lMrAi1nnLIS7j%2BczfCeu4WefRk0v4k0KdG3Jfq6BNVDOH9%2BlGf2%2BPLPzWmB6WDEtA32mbb6iyfLdeqk1gxFh8lYdphstVux5IK12yzkMWdN0e1y5K7iS399%2BQ8AAAD%2F%2FwEAAP%2F%2FYocV4mQEAAA%3D
IP
192.243.61.227:0
ASN
#39572 DataWeb Global Group B.V.

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RSz2tcVRi9rw3%2BwJXSjQVlVlJBJu%2FNj8zELIoxRoJpU1tFd3p%2Fvck19737uPfdeZOsggXpzhH8A17OJA3VohXcWmRS6CIg9OkmqPkfROnKhcw0OPrB4zvnnbM43%2Ffdz%2Fb8KQnh6cnKFbOjtKbz7XpYu%2FRhFC3V1lXqB7VBd%2BGjhdZSzfZfX1yoh6%2FW3pZ8y8w3wigMozCqrSorYzOYn4hQ2d3FqL4Y1luNetRuYWD%2Fz50P4GgA0T8lL0CJau5BcAGKj5Em91ak28pN9tpbidc0NxZ9cfh%2BupWaIkUyg7ENEKeHZ24Y92j1Pkx6MI0L0%2F%2FXyFRFgof3wdLDs5Bg%2Ff1pTqYhUzDxHIr%2BGFKPoegY3NyEEo8IwAWubiBNbl81tqDbT1Q6USsy9%2FhPqKIic79fQJp8s6zVoHbDaJ8rkzoM4hJqMIbqjZH5I%2BQ756CKI%2FD8UyjxE5l%2FvI402d9w2kCJcjq7UmOoeAwth6AugJ98KoCPA%2FgsQCJOajyKok4oOA27i5w3RUeyBRFGtBNHNAoXuvB8Em%2BIPBuC6yG43UVmd7GlhrD%2BR7jNEk4EcHlFgnd30RclCklQOIKCEhSKoMgJin55ILRruPK20M6z6Kw3znqzHJm8t0cPTN6TKdnLTsnzk70Ez77yK7bkSU2IKA5FW7LFuB2HHRGyruyEIm60WaMddSM4VUK5c9NRd1RFLl76HJmqyFNPXwCjR3D6CFwFoP4l0GLUaYSgm6NWN8RO%2Bi2neaKoiWnq6twkEKZEls8h3w729Cl5cXqi5i8akh9f%2Fphdqf648ze4LZHZEp%2BoBwQ9fWt03RRk%2F7opHPluI8tVonbo5Hw3cprL81%2B9I7cLY8XaihveeYNPhAm8%2B550%2BTpNhUp7jny9rISQdtVYLskPa%2B4Dya55t7nsbeqz9Wtvrq4lmZXOKZOOQVVFyMNjcFWRZ74%2Fmb7Mi7%2Fdg7JjWF8i8cfkrKDMEXi2C5fN8jtzHlbPPCwLUPhyZBts9lMrAi1nnLIS7j%2BczfCeu4WefRk0v4k0KdG3Jfq6BNVDOH9%2BlGf2%2BPLPzWmB6WDEtA32mbb6iyfLdeqk1gxFh8lYdphstVux5IK12yzkMWdN0e1y5K7iS399%2BQ8AAAD%2F%2FwEAAP%2F%2FYocV4mQEAAA%3D HTTP/1.1
Host: interesteddeterminedeurope.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Cookie: u_pl=17376987; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1; slecdd1f0d5eb9f5f07d0b8e70df25b25181=[3396716]
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Server: nginx/1.22.0
Date: Tue, 04 Oct 2022 08:53:43 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA-Full-Version-ListSec-CH-UA-MobileSec-CH-UA-Platform,Sec-CH-UA-Mobile,Sec-CH-UA-Platform,Sec-CH-UA-PlatformSec-CH-UA-ModelSec-CH-UA-Mobile,Sec-CH-UA-PlatformSec-CH-UA-Platform-Version,Sec-CH-UASec-CH-UA-MobileSec-CH-UA-Platform,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: f1904d62be85e51da9b9ba239d1adffd
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/css/animate.css

172.64.200.2

200 OK

4.8 kB

URL HTTP/2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/css/animate.css
IP
172.64.200.2:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
4.8 kB (4815 bytes)
Hash
21eb7a65c17a2c22ba104a7ecbf1dc0f
ea8c53be54889c7489aed04e30e3eb83af64dec9
090bd9ceb9a58da038e5ed4a39dfbb63ece49ed4f4f0656ce35f7faa41a3b237

HTTP Headers

GET /sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/css/animate.css HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:42 GMT
content-type: text/css
last-modified: Tue, 17 Aug 2021 13:04:04 GMT
etag: W/"611bb3c4-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=e1sk1TeSGjCQ8xL17KU%2Fp%2BqK5wLCC2i3Z%2FeffbG5N1b0eXbk5dU%2BkRsJMe4kIh01I6AIdBX42BSZBGP2PKuTflTtrqY1E9LXwfxbfByxPwnbW8ypmJm1g0gYf1%2FmY7w%2FhCE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754cb04de94a75bf-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/js/script.js

172.64.200.2

200 OK

189 B

URL HTTP/2
cdn.sb4you1.com/sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/js/script.js
IP
172.64.200.2:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text
Size
189 B (189 bytes)
Hash
e92fccb89580145c885f0359badbd628
bed02f01f78b1f585462796e01527a268ac7f24c
f9fdf22943d31068189a6e1329d6bc9bf9ebc39b5ce4ccbd1d3a2f99f82a0597

HTTP Headers

GET /sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/js/script.js HTTP/1.1
Host: cdn.sb4you1.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:42 GMT
content-type: application/javascript
last-modified: Tue, 17 Aug 2021 13:04:06 GMT
etag: W/"611bb3c6-182"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IcloaVJITqgQLYnG0Ime1QURDq9ShLb%2B48uL%2F8Reu%2FoOLdiBsYSKX024ftsL6IATbSkkleEgYbBDzLWy1HUQBi%2FKV9Z8I5VzWhy6ZW%2BagnTj%2FTRREDdNxiN9V2jgc2RIAoU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754cb04dd92e75bf-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.adsfcdn.com/js/aG9MM1NBZk54MXM9.js

104.21.44.117

200 OK

0 B

URL HTTP/2
cdn.adsfcdn.com/js/aG9MM1NBZk54MXM9.js
IP
104.21.44.117:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /js/aG9MM1NBZk54MXM9.js HTTP/1.1
Host: cdn.adsfcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:39 GMT
content-type: application/javascript
last-modified: Sat, 10 Sep 2022 00:00:19 GMT
vary: Accept-Encoding
etag: W/"631bd393-d7b"
expires: Tue, 04 Oct 2022 20:53:39 GMT
cache-control: max-age=43200
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=sWqG5dtKAoB8WjlCxm%2FN554rW4SKXJuUo1EvbIjiroDIBaCLJsRILpkmlJL5sRwHttWpSX%2BlQqtKhi9gV4oZjZbSYKfGE0Z0X8rOuyZxGgxLjeSB82jDLFJALwL0vkDdFGQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754cb03a0c301bfa-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/index.html

104.26.7.19

200 OK

0 B

URL HTTP/2
cdn.yourwebbars.com/sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/index.html
IP
104.26.7.19:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /sb/notifications/utility/default/us/blog/Progamerage/message_redcircle2/3/index.html HTTP/1.1
Host: cdn.yourwebbars.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:42 GMT
content-type: text/html
last-modified: Tue, 01 Feb 2022 10:33:53 GMT
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=tdTRRoJqu%2FGHIXghDRkSm8SMcM9DFtvDwR4%2BllHo2eYGkRv%2Fm47nJ3%2B9BUM82iCUZyA%2FcCFSN%2Fg2oJbNvWlDRodsnAa81OkZqdNiyf0O1tqSQ3MGkns7BVuoMYlGAcKkSDudkBA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 754cb0498bcbb4f9-OSL
content-encoding: br
X-Firefox-Spdy: h2

catmiaofans.com/redirect.php/?subid=1206808362&country=%3C%3Fphp+echo+%24_GET%5B%27country%27%5D%3F%3E

104.21.86.182

200 OK

0 B

URL HTTP/2
catmiaofans.com/redirect.php/?subid=1206808362&country=%3C%3Fphp+echo+%24_GET%5B%27country%27%5D%3F%3E
IP
104.21.86.182:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /redirect.php/?subid=1206808362&country=%3C%3Fphp+echo+%24_GET%5B%27country%27%5D%3F%3E HTTP/1.1
Host: catmiaofans.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:37 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
strict-transport-security: max-age=31536000
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K5W8l7v31na5P7%2BWtchOgo61FHVZ89Fwr9LW%2Ba%2BmWzigUcyL16T%2FIl8KIr3jeAEn58jtsWksm2AJX9LGbJTB0%2FDo8NcV54rMBaMxCOCB1ZWyWxKMym%2Fl65Eh5XKjXY0O49Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 754cb02b3d11b511-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194

172.64.156.26

200 OK

0 B

URL HTTP/2
static.cloudflareinsights.com/beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194
IP
172.64.156.26:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /beacon.min.js/v652eace1692a40cfa3763df669d7439c1639079717194 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://catmiaofans.com
Connection: keep-alive
Referer: https://catmiaofans.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Tue, 04 Oct 2022 08:53:37 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2021.12.0
last-modified: Thu, 09 Dec 2021 19:55:17 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 754cb02cdedb0b41-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

Files detected

URL

IP

ASN

File type

Size

Hash

Detections

JavaScript (30)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML