Report - t.anmdr.link/44542/4204/0/

Report Overview

Submitted URL
t.anmdr.link/44542/4204/0/
IP
54.230.111.50
ASN
#16509 AMAZON-02
Submitted
2022-11-29 08:09:48
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
48

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.sca1b.amazontrust.com	1015	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	350 B	1.0 kB	143.204.42.88
girlsjungle.life	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	11 kB	1.2 MB	194.87.208.72
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.4 kB	2.8 kB	142.250.74.3
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	438 B	2.0 kB	142.250.74.10
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	967 B	64 kB	216.58.207.195
t.anmdr.link	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	812 B	2.3 kB	54.230.111.123
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.9 kB	34.160.144.191
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	34.215.94.42
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.8 kB	53 kB	34.120.237.76
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	23.36.77.32
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.6 kB	93.184.220.29

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-11-29	medium	t.anmdr.link/44542/4204/0/	Phishing
2022-11-29	medium	t.anmdr.link/44542/4204/0/	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed
2022-11-29	medium	girlsjungle.life	Sinkholed

JavaScript (15)

	URL	Size	First Seen	Last Seen
	girlsjungle.life/media/dating/sinder2adult/js/vegas.js	22 kB	2023-03-07	2024-04-24
Pretty URL girlsjungle.life/media/dating/sinder2adult/js/vegas.js IP 194.87.208.72 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:18 Last Seen2024-04-24 23:09:49 Times Seen1933 Hash 1a419deb38ff5a22cb817101bbf1adce 1fda0a3eb1b871a16a900d1132538112dc36a200 d20665d11b6b7b0df9119eb8100bc0623c52f1e719b7673b6c740a99d989bdfd Loading...

	girlsjungle.life/media/dating/sinder2adult/js/wow.min.js	7.1 kB	2023-03-07	2024-04-24
Pretty URL girlsjungle.life/media/dating/sinder2adult/js/wow.min.js IP 194.87.208.72 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:18 Last Seen2024-04-24 23:09:49 Times Seen1463 Hash 40d8385730e212732209b2268ee704c4 8d1fdeeff2d5319719d1ee26ddb49086f532d6ed 914153d308670b304cc3d167b82bed9f7e6a3923e7ae9eda46fe87dac9040c86 Loading...

	girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0	338 B	2023-03-07	2023-04-01
Pretty URL girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0 IP 194.87.208.72 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:18 Last Seen2023-04-01 10:35:28 Times Seen14 Hash 8a7e6e138494a20052f2b427bf30ee9b 8bfbcdeb953e917a13ab9b5b7a6de9e2adddb258 5d53e81e78ca2892dea97e4085cb00a1450acf2053bdc5dc4f7b80fb44cb5b34 Loading...

	girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0	526 B	2023-03-11	2023-03-11
Pretty URL girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0 IP 194.87.208.72 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 22:20:23 Last Seen2023-03-11 22:20:23 Times Seen1 Hash 2d58371a19fa109227613e3f70baef5b a365c0664b90ef3a4e38a37d7f046c8dfe7ce996 3acd6ebc37ee1d43285888df0cb65c29dfe3e234d894ea2678db8cd4b1bb11f5 Loading...

	girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0	1.3 kB	2023-03-07	2023-04-01
Pretty URL girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0 IP 194.87.208.72 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:18 Last Seen2023-04-01 10:35:28 Times Seen15 Hash e1ded0d853af58aae03e7bbd260eb807 4e331c40d1680a7ea890290655d80f20deb2a9ae 30d5712f0c4bed117b067ac2e23a8b087db161797183236c923948ea43b5c1b5 Loading...

	girlsjungle.life/media/dating/sinder2adult/js/timer.js	621 B	2023-03-07	2024-04-25
Pretty URL girlsjungle.life/media/dating/sinder2adult/js/timer.js IP 194.87.208.72 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:18 Last Seen2024-04-25 00:06:49 Times Seen7249 Hash 40fe503eb84093a37b15e39365ffc587 911128043c901314d283fe478477d26e2b3d821a 60b0f0de4c72c1ce9c05b36ba776f12538b1d9b80858b7099068a3e7e0415bc1 Loading...

	girlsjungle.life/media/exit-new/exit1.js	3.5 kB	2023-03-07	2024-04-25
Pretty URL girlsjungle.life/media/exit-new/exit1.js IP 194.87.208.72 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:18 Last Seen2024-04-25 00:32:57 Times Seen13195 Hash 625e5e2950612f771e246beb33c9ea61 e4fc251c6c000496c285f8dc3fa097040b031681 618f345a156a0eda55177a1bf0e8a414104f9b6c6ff5cdbe71966f081ccb8a46 Loading...

	girlsjungle.life/media/dating/sinder2adult/js/jquery.countdown.js	9.6 kB	2023-03-07	2024-04-24
Pretty URL girlsjungle.life/media/dating/sinder2adult/js/jquery.countdown.js IP 194.87.208.72 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:18 Last Seen2024-04-24 23:09:49 Times Seen1732 Hash 6292a39650fa959a1617d42461dd3b9d 72fc3a06ed692b54098979f8bb5f33d5e1e959b4 ff4f2111640943da61697206b422470b7743bcb33b28b048bfc257dfcdb4b860 Loading...

	girlsjungle.life/media/dating/sinder2adult/js/touchswipe.min.js	11 kB	2023-03-07	2024-04-24
Pretty URL girlsjungle.life/media/dating/sinder2adult/js/touchswipe.min.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:23 Last Seen2024-04-24 23:33:31 Times Seen1965 Hash e18a1319eeff8fcb4b6374b3fdda08d8 6b3670f59186923576e343e6b8b8daa645d14dbc 0ab340987711378e8cb5582b1f97f6938037712213396d8e7c7f8fa7b1ab4e5a Loading...

	girlsjungle.life/media/dating/sinder2adult/js/bootstrap.js	58 kB	2023-03-07	2024-04-24
Pretty URL girlsjungle.life/media/dating/sinder2adult/js/bootstrap.js IP 194.87.208.72 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:18 Last Seen2024-04-24 23:09:49 Times Seen2594 Hash cf1cf2fce27179c0de8a71c73b378f07 44a69a91c82f22941f0fd8c9f1c459eca33d8dbe d88949ad637b040b893c651e938b80f8a1aabc350c94c01c28e8a38fadab2df3 Loading...

	girlsjungle.life/media/dating/sinder2adult/js/trls.js	16 kB	2023-03-07	2024-04-24
Pretty URL girlsjungle.life/media/dating/sinder2adult/js/trls.js IP 194.87.208.72 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:18 Last Seen2024-04-24 23:09:49 Times Seen1042 Hash 782c3f17b5192235a8134cde70643267 b2475c26afd90aa51897106d2db5766854d67bef 8b500cfd26b6d4f43bbb21716f6d11c0cda70753a04089e120e8b6126a177ea2 Loading...

	girlsjungle.life/util/utils.js	7.5 kB	2023-03-07	2024-04-25
Pretty URL girlsjungle.life/util/utils.js IP 194.87.208.72 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:18 Last Seen2024-04-25 01:21:19 Times Seen20634 Hash 01816d15ca03032751161a746e2fb7c3 dcc72ea5fa1356490ba473288159df9786b4a3c3 8b3c83a330bf1120a13eff6ef60c1e268b827b7bc49b42a7a1f5d8ad6941f2ea Loading...

	unknown	0 B	2023-03-07	2024-04-25
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-04-25 03:47:20 Times Seen37053545 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0	75 B	2023-03-07	2024-04-24
Pretty URL girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0 IP 194.87.208.72 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:18 Last Seen2024-04-24 09:18:30 Times Seen540 Hash bd4d30b70b543d5719fe8ca0688d062d 38ac976596589395658a6e567aaa214f2e141ff1 2fe9da1e756d85ba1e13044ef14139f26d23c500b63fcefaaa90a685b03fa734 Loading...

	girlsjungle.life/media/bb.js	639 B	2023-03-07	2024-04-25
Pretty URL girlsjungle.life/media/bb.js IP 194.87.208.72 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:18 Last Seen2024-04-25 00:32:57 Times Seen13523 Hash 0d553e4bac91c74bfee2dbabba61e99e 5af71e2377c9c012a7826a695f2724901941b19b 1be1304c675449b1bad38ea8c3da6c1da0763ed2fad339ee1aa461c7bf4e2a68 Loading...

HTTP Transactions (54)

URL IP Response Size

t.anmdr.link/44542/4204/0/

54.230.111.123

301 Moved Permanently

167 B

URL HTTP/1.1
t.anmdr.link/44542/4204/0/
IP
54.230.111.123:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Size
167 B (167 bytes)
Hash
f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /44542/4204/0/ HTTP/1.1
Host: t.anmdr.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Tue, 29 Nov 2022 08:09:36 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://t.anmdr.link/44542/4204/0/
X-Cache: Redirect from cloudfront
Via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: INPG9T7E2Ypp25xpAh9FTLW3V-cACkGFbF_OEL-0POGMqnPHMFVheA==

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2d2e7649ce9e9ba6fc8b68aa89352e3c
0153d1d3d830a457043e16bb40d48a0b9ddef4b8
8eed57c91b42ef7b2d5eff1309e306e23e13c3de21219af24a693cbf3e8977fc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8EED57C91B42EF7B2D5EFF1309E306E23E13C3DE21219AF24A693CBF3E8977FC"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=9394
Expires: Tue, 29 Nov 2022 10:46:10 GMT
Date: Tue, 29 Nov 2022 08:09:36 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
9408cc0694fcbea57966c3a3ba906092
fddcee1fdcf3209298e41a4b1b5560357fa165f0
6ef7120d9463f56e3ddfadd5766d02da8523f34061b13bdba54bf9ab72a1e979

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 4607
Cache-Control: max-age=99512
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:09:36 GMT
Etag: "63848df9-1d7"
Expires: Wed, 30 Nov 2022 11:48:08 GMT
Last-Modified: Mon, 28 Nov 2022 10:31:21 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
6d9d34c96b9a826ae5676640c966469c
8052a16d41a637e420478b7de1ff5a2dc951fccd
f18ac558cb786126bb7efb159e03353d268d5f5796bcfd2691a349dfc68d863c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F18AC558CB786126BB7EFB159E03353D268D5F5796BCFD2691A349DFC68D863C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=5243
Expires: Tue, 29 Nov 2022 09:36:59 GMT
Date: Tue, 29 Nov 2022 08:09:36 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Alert, Retry-After, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Tue, 29 Nov 2022 07:19:36 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 3000
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: bcwWbLiYHSjDatbp0ukyUPDW9GWKQvCn4MBxvdaQYLta+pPOARDB9zNGZlinThksGTR4kBAtAc63r+s6jI7CJg==
x-amz-request-id: 7AH01D692DYK2ZTG
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Tue, 29 Nov 2022 07:45:22 GMT
age: 1454
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.sca1b.amazontrust.com/

143.204.42.88

200 OK

471 B

URL HTTP/1.1
ocsp.sca1b.amazontrust.com/
IP
143.204.42.88:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
ca7b99c8b47d216bcee764e937fd8cc3
9d39cc62902eb00c02cb02af2f3fe5840ad7dde5
6b445e0d805713e3c27914537feee9dc45f2f5a5a15f5807d205ff381fed9c57

HTTP Headers

POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=130712
Date: Tue, 29 Nov 2022 08:09:36 GMT
Etag: "6385081a-1d7"
Expires: Wed, 30 Nov 2022 20:28:08 GMT
Last-Modified: Mon, 28 Nov 2022 19:12:26 GMT
Server: ECS (nyb/1D1E)
X-Cache: Miss from cloudfront
Via: 1.1 a2b4f68a89fc87406bff22c95fc07fba.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Mh7HyFYtAQhLBv_Y48PJsLs4YniLc6rEf9WW-0P-VEKTXug0xSAOrQ==
Age: 4542

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Tue, 29 Nov 2022 08:09:36 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, ETag, Alert, Expires, Cache-Control, Backoff, Content-Length, Content-Type, Pragma, Last-Modified
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Tue, 29 Nov 2022 08:08:56 GMT
cache-control: public,max-age=3600
age: 41
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

t.anmdr.link/44542/4204/0/

54.230.111.123

303 See Other

282 B

URL HTTP/2
t.anmdr.link/44542/4204/0/
IP
54.230.111.123:0
ASN
#16509 AMAZON-02

File type
HTML document, ASCII text, with no line terminators
Size
282 B (282 bytes)
Hash
f3f1478315f98665dc36c9b032e35b8c
5362e21eb35a0a03e756c91e2fccb110c927529a
c92c92c13f1cfb3bac7ce25591e05a1b7517ac59c350073115277cfdf7ec6a6b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /44542/4204/0/ HTTP/1.1
Host: t.anmdr.link
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 303 See Other
content-type: text/html; charset=utf-8
content-length: 282
location: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
server: nginx/1.19.0
date: Tue, 29 Nov 2022 08:09:37 GMT
set-cookie: enc_aff_session_4204=ENC0311a40db734e94232bcc9f4857932959e59b14efd8519164d1e3fec864c6563eee898d4466fcae918a5083a5942bd18dc195babfb86ab6cac0486b0876d3fc46d22baa72a3d0c0eab309f8063fdd132f678a3080127cf553ff4212d53618a94a3b385cbabc6509a964f84e12c5c055bf566be8ef8d21a6ef99d40ba23a9f1cc081a181b36; Path=/; Expires=Tue, 21 May 2030 23:09:37 GMT; Secure
ho_mob=eyJtb2JpbGVfZGV2aWNlX29zIjoiRGVza3RvcCIsIm1vYmlsZV9kZXZpY2VfbW9kZWwiOiJGaXJlZm94IiwibW9iaWxlX2RldmljZV9icmFuZCI6Ik1vemlsbGEiLCJtb2JpbGVfYnJvd3NlciI6IkZpcmVmb3ggRGVza3RvcCIsIm1vYmlsZV9icm93c2VyX3ZlcnNpb24iOiIxMDUuMCIsIm1vYmlsZV9jYXJyaWVyIjoiPyIsInVzZXJfYWdlbnQiOiJNb3ppbGxhLzUuMCAoV2luZG93cyBOVCAxMC4wOyBXaW42NDsgWDY0OyBSdjoxMDUuMCkgR2Vja28vMjAxMDAxMDEgRmlyZWZveC8xMDUuMCIsImNvbm5lY3Rpb25fc3BlZWQiOiJicm9hZGJhbmQifQ%3D%3D; Path=/; Expires=Thu, 23 Oct 2025 18:49:37 GMT; Secure
tracking_id: 102a334f6720ea06f1859f3e75dc96
vary: Accept
strict-transport-security: max-age=15724800; includeSubDomains
x-cache: Miss from cloudfront
via: 1.1 784cb0c259a6d79800d037bda4e7de86.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: XNV93pYMZwXzqzVhG2M2shbcY4S7lgVTAW6s3DSgREuKWFOLv7rQ_g==
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7ab2ef968cb6a3078f4b9cb2dda813d4
e669116047ca058a2c1b2999ff0ea8682719162c
6ddecf0b21c44f3851da8efeb6ecdc6c8e9b83d7681153c31952b4ec8c23c940

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2666
Cache-Control: max-age=92504
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:09:37 GMT
Etag: "63847a2f-1d7"
Expires: Wed, 30 Nov 2022 09:51:21 GMT
Last-Modified: Mon, 28 Nov 2022 09:06:55 GMT
Server: ECS (ska/F710)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
075019f43ffc43704aa31486e79cbd84
ebef3582343d28426079792b6934eb6f33de4a7d
5d32c36daa24f3befb97c4600d9049b33a386c220b399679ba39fdf6de7de94b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "5D32C36DAA24F3BEFB97C4600D9049B33A386C220B399679BA39FDF6DE7DE94B"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21325
Expires: Tue, 29 Nov 2022 14:05:02 GMT
Date: Tue, 29 Nov 2022 08:09:37 GMT
Connection: keep-alive

girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0

194.87.208.72

200 OK

6.9 kB

URL HTTP/1.1
girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
IP
194.87.208.72:0
ASN
#0

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (531), with CRLF line terminators
Size
6.9 kB (6908 bytes)
Hash
76a5909baf59a4ff94e478f05b43b7cc
bffdfe52f719c4495171c98b4304f04cad019d86
04adc3a500934ad3d8d5f1f2226e44028b0d86206ec2ffd0f1db409ba37df3fe

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0 HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:37 GMT
Content-Type: text/html
Content-Length: 6908
Connection: keep-alive
set-cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2; path=/
cache-control: private, no-transform

push.services.mozilla.com/

34.215.94.42

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
34.215.94.42:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: xYrUyYYwOBzxbpOLT5K2cg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: wBwKFUf4fADdbKhiNEMtuiDJGIk=

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
07b8296613be09905e34b09dce4a203f
c97c67e8c4b1247423d089c028c31e05734f124e
c8c7b7cd00d5818bbe4a4ddb1b734a1b766dc6474cce300171bd5a0947adc6b2

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:09:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

girlsjungle.life/media/dating/sinder2adult/css/bootstrap.min.css

194.87.208.72

200 OK

100 kB

URL HTTP/1.1
girlsjungle.life/media/dating/sinder2adult/css/bootstrap.min.css
IP
194.87.208.72:0
ASN
#0

File type
ASCII text, with very long lines (65367), with CRLF line terminators
Size
100 kB (99578 bytes)
Hash
59e18774537c99e2a747caffdbf1499e
8bf8573b1496a490565fca1474063effd5381e16
aea66e66c9609f40f41877444473b430cfe99cc28f294a7c1660767e9db37b8c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/dating/sinder2adult/css/bootstrap.min.css HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:37 GMT
Content-Type: text/css
Content-Length: 99578
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "59e18774537c99e2a747caffdbf1499e"
Last-Modified: Wed, 31 Aug 2022 09:34:15 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 172BFEAF0DC2DA27
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Wed, 29 Nov 2023 08:09:37 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes

girlsjungle.life/media/dating/sinder2adult/css/style.css

194.87.208.72

200 OK

5.4 kB

URL HTTP/1.1
girlsjungle.life/media/dating/sinder2adult/css/style.css
IP
194.87.208.72:0
ASN
#0

File type
ASCII text, with CRLF line terminators
Size
5.4 kB (5395 bytes)
Hash
21addfa06b1e70ced9cb48f7fde7488d
9f1261873a1863725f0a5343f48fdf03173519da
917bbaafab2d22de7ed3c4415bae64cc9a230238840fd2082818f11c438aa5e5

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/dating/sinder2adult/css/style.css HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:37 GMT
Content-Type: text/css
Content-Length: 5395
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "21addfa06b1e70ced9cb48f7fde7488d"
Last-Modified: Wed, 31 Aug 2022 09:34:15 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 172BFEAF0DFB04A1
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Wed, 29 Nov 2023 08:09:37 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes

fonts.googleapis.com/css?family=Roboto:400,300,700|Raleway:400,700&subset=latin,cyrillic

142.250.74.10

200 OK

1.2 kB

URL HTTP/2
fonts.googleapis.com/css?family=Roboto:400,300,700|Raleway:400,700&subset=latin,cyrillic
IP
142.250.74.10:0
ASN
#15169 GOOGLE

File type
data
Size
1.2 kB (1224 bytes)
Hash
05033adb1ac5f9533973649bcc55ef69
5bfd2468cffc783631fe13c72296776dc7b5d7cc
eee10f3ea5e5de4d288ac0f81b26bb5b2c153f9ab198ec2e77f6d86f81ca2a3f

HTTP Headers

GET /css?family=Roboto:400,300,700|Raleway:400,700&subset=latin,cyrillic HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 29 Nov 2022 08:09:37 GMT
date: Tue, 29 Nov 2022 08:09:37 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

girlsjungle.life/media/dating/sinder2adult/js/vegas.js

194.87.208.72

200 OK

22 kB

URL HTTP/1.1
girlsjungle.life/media/dating/sinder2adult/js/vegas.js
IP
194.87.208.72:0
ASN
#0

File type
ASCII text
Size
22 kB (21762 bytes)
Hash
1a419deb38ff5a22cb817101bbf1adce
1fda0a3eb1b871a16a900d1132538112dc36a200
d20665d11b6b7b0df9119eb8100bc0623c52f1e719b7673b6c740a99d989bdfd

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/dating/sinder2adult/js/vegas.js HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:37 GMT
Content-Type: application/javascript
Content-Length: 21762
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "1a419deb38ff5a22cb817101bbf1adce"
Last-Modified: Wed, 31 Aug 2022 09:34:15 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 172BFF51D25CB017
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Wed, 29 Nov 2023 08:09:37 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes

girlsjungle.life/media/dating/sinder2adult/js/jquery.countdown.js

194.87.208.72

200 OK

9.6 kB

URL HTTP/1.1
girlsjungle.life/media/dating/sinder2adult/js/jquery.countdown.js
IP
194.87.208.72:0
ASN
#0

File type
ASCII text
Size
9.6 kB (9550 bytes)
Hash
6292a39650fa959a1617d42461dd3b9d
72fc3a06ed692b54098979f8bb5f33d5e1e959b4
ff4f2111640943da61697206b422470b7743bcb33b28b048bfc257dfcdb4b860

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/dating/sinder2adult/js/jquery.countdown.js HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:37 GMT
Content-Type: application/javascript
Content-Length: 9550
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "6292a39650fa959a1617d42461dd3b9d"
Last-Modified: Wed, 31 Aug 2022 09:34:15 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 172BFF51E1FA9BBA
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Wed, 29 Nov 2023 08:09:37 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes

girlsjungle.life/media/dating/sinder2adult/css/vegas.css

194.87.208.72

200 OK

15 kB

URL HTTP/1.1
girlsjungle.life/media/dating/sinder2adult/css/vegas.css
IP
194.87.208.72:0
ASN
#0

File type
ASCII text, with CRLF line terminators
Size
15 kB (14932 bytes)
Hash
456b6de9f41b67650ef5cfa88ea428a9
bb5ff666b0121a73d1465f6f218a27b8910e072d
fe021b8ac1b62ed1205600c44b1da6db3b4bf10b4d80f3fe080e16f01cf7de79

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/dating/sinder2adult/css/vegas.css HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:37 GMT
Content-Type: text/css
Content-Length: 14932
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "456b6de9f41b67650ef5cfa88ea428a9"
Last-Modified: Wed, 31 Aug 2022 09:34:15 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 172BFF51D1E2DC99
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Wed, 29 Nov 2023 08:09:37 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes

girlsjungle.life/util/flag-icon/css/flag-icon.css

194.87.208.72

200 OK

41 kB

URL HTTP/1.1
girlsjungle.life/util/flag-icon/css/flag-icon.css
IP
194.87.208.72:0
ASN
#0

File type
ASCII text, with CRLF line terminators
Size
41 kB (40627 bytes)
Hash
0a47b937981e7389e3ebe63e4a503066
01b395ad016a1d9d15016d765f7d2c51a6e2809b
d6afd8d9abc2967f29ad396854cd05b1a12dcf9b7084f944c136ca6f540c5a39

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /util/flag-icon/css/flag-icon.css HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:37 GMT
Content-Type: text/css
Content-Length: 40627
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "0a47b937981e7389e3ebe63e4a503066"
Last-Modified: Wed, 31 Aug 2022 09:38:16 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 172BFEAC2F85ABB5
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Wed, 29 Nov 2023 08:09:37 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes

girlsjungle.life/media/dating/sinder2adult/css/animate.css

194.87.208.72

200 OK

61 kB

URL HTTP/1.1
girlsjungle.life/media/dating/sinder2adult/css/animate.css
IP
194.87.208.72:0
ASN
#0

File type
ASCII text, with very long lines (460), with CRLF line terminators
Size
61 kB (61188 bytes)
Hash
1cbfbb2c4ef85880799a74ab2f290f2a
9b6366d6c7ad05010f7070db70fba10754be6e9c
bfdad6766b12a3826bf32024f0fc13fffbcee84f102034b9270da7e538451031

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/dating/sinder2adult/css/animate.css HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:37 GMT
Content-Type: text/css
Content-Length: 61188
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "1cbfbb2c4ef85880799a74ab2f290f2a"
Last-Modified: Wed, 31 Aug 2022 09:34:15 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 172BFF51BDA881A8
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Wed, 29 Nov 2023 08:09:37 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes

girlsjungle.life/util/utils.js

194.87.208.72

200 OK

7.5 kB

URL HTTP/1.1
girlsjungle.life/util/utils.js
IP
194.87.208.72:0
ASN
#0

File type
ASCII text, with very long lines (641), with CRLF line terminators
Size
7.5 kB (7512 bytes)
Hash
01816d15ca03032751161a746e2fb7c3
dcc72ea5fa1356490ba473288159df9786b4a3c3
8b3c83a330bf1120a13eff6ef60c1e268b827b7bc49b42a7a1f5d8ad6941f2ea

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /util/utils.js HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:37 GMT
Content-Type: application/javascript
Content-Length: 7512
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "01816d15ca03032751161a746e2fb7c3"
Last-Modified: Wed, 31 Aug 2022 09:38:20 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 172BFE7F0FDD123D
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Wed, 29 Nov 2023 08:09:37 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes

girlsjungle.life/media/dating/sinder2adult/js/wow.min.js

194.87.208.72

200 OK

7.1 kB

URL HTTP/1.1
girlsjungle.life/media/dating/sinder2adult/js/wow.min.js
IP
194.87.208.72:0
ASN
#0

File type
ASCII text, with very long lines (7033)
Size
7.1 kB (7063 bytes)
Hash
40d8385730e212732209b2268ee704c4
8d1fdeeff2d5319719d1ee26ddb49086f532d6ed
914153d308670b304cc3d167b82bed9f7e6a3923e7ae9eda46fe87dac9040c86

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/dating/sinder2adult/js/wow.min.js HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:37 GMT
Content-Type: application/javascript
Content-Length: 7063
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "40d8385730e212732209b2268ee704c4"
Last-Modified: Wed, 31 Aug 2022 09:34:15 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 172BFF520C87F7CB
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Wed, 29 Nov 2023 08:09:37 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes

girlsjungle.life/media/dating/sinder2adult/js/jquery.js

194.87.208.72

200 OK

93 kB

URL HTTP/1.1
girlsjungle.life/media/dating/sinder2adult/js/jquery.js
IP
194.87.208.72:0
ASN
#0

File type
ASCII text, with very long lines (32072)
Size
93 kB (93107 bytes)
Hash
628072e7212db1e8cdacb22b21752cda
0511abe9863c2ea7084efa7e24d1d86c5b3974f1
0ba081f546084bd5097aa8a73c75931d5aa1fc4d6e846e53c21f98e6a1509988

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/dating/sinder2adult/js/jquery.js HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:37 GMT
Content-Type: application/javascript
Content-Length: 93107
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "628072e7212db1e8cdacb22b21752cda"
Last-Modified: Wed, 31 Aug 2022 09:34:15 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 172BFF51D22E391F
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Wed, 29 Nov 2023 08:09:37 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes

girlsjungle.life/media/dating/sinder2adult/js/timer.js

194.87.208.72

200 OK

621 B

URL HTTP/1.1
girlsjungle.life/media/dating/sinder2adult/js/timer.js
IP
194.87.208.72:0
ASN
#0

File type
ASCII text
Size
621 B (621 bytes)
Hash
40fe503eb84093a37b15e39365ffc587
911128043c901314d283fe478477d26e2b3d821a
60b0f0de4c72c1ce9c05b36ba776f12538b1d9b80858b7099068a3e7e0415bc1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/dating/sinder2adult/js/timer.js HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:37 GMT
Content-Type: application/javascript
Content-Length: 621
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "40fe503eb84093a37b15e39365ffc587"
Last-Modified: Wed, 31 Aug 2022 09:34:15 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 172BFF52121F4898
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Wed, 29 Nov 2023 08:09:37 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes

girlsjungle.life/media/bb.js

194.87.208.72

200 OK

639 B

URL HTTP/1.1
girlsjungle.life/media/bb.js
IP
194.87.208.72:0
ASN
#0

File type
ASCII text, with very long lines (639), with no line terminators
Size
639 B (639 bytes)
Hash
0d553e4bac91c74bfee2dbabba61e99e
5af71e2377c9c012a7826a695f2724901941b19b
1be1304c675449b1bad38ea8c3da6c1da0763ed2fad339ee1aa461c7bf4e2a68

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/bb.js HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:37 GMT
Content-Type: application/javascript
Content-Length: 639
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "0d553e4bac91c74bfee2dbabba61e99e"
Last-Modified: Wed, 31 Aug 2022 09:32:33 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 172BFFD26C3A06CE
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Wed, 29 Nov 2023 08:09:37 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes

girlsjungle.life/media/dating/sinder2adult/js/bootstrap.js

194.87.208.72

200 OK

58 kB

URL HTTP/1.1
girlsjungle.life/media/dating/sinder2adult/js/bootstrap.js
IP
194.87.208.72:0
ASN
#0

File type
ASCII text
Size
58 kB (58533 bytes)
Hash
cf1cf2fce27179c0de8a71c73b378f07
44a69a91c82f22941f0fd8c9f1c459eca33d8dbe
d88949ad637b040b893c651e938b80f8a1aabc350c94c01c28e8a38fadab2df3

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/dating/sinder2adult/js/bootstrap.js HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:37 GMT
Content-Type: application/javascript
Content-Length: 58533
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "cf1cf2fce27179c0de8a71c73b378f07"
Last-Modified: Wed, 31 Aug 2022 09:34:15 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 172BFF5210628D55
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Wed, 29 Nov 2023 08:09:37 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes

girlsjungle.life/media/exit-new/exit1.js

194.87.208.72

200 OK

3.5 kB

URL HTTP/1.1
girlsjungle.life/media/exit-new/exit1.js
IP
194.87.208.72:0
ASN
#0

File type
ASCII text, with very long lines (641), with CRLF line terminators
Size
3.5 kB (3473 bytes)
Hash
625e5e2950612f771e246beb33c9ea61
e4fc251c6c000496c285f8dc3fa097040b031681
618f345a156a0eda55177a1bf0e8a414104f9b6c6ff5cdbe71966f081ccb8a46

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/exit-new/exit1.js HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:37 GMT
Content-Type: application/javascript
Content-Length: 3473
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "625e5e2950612f771e246beb33c9ea61"
Last-Modified: Wed, 31 Aug 2022 09:34:51 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 172BFF1000384B29
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Wed, 29 Nov 2023 08:09:37 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes

girlsjungle.life/media/dating/sinder2adult/js/trls.js

194.87.208.72

200 OK

16 kB

URL HTTP/1.1
girlsjungle.life/media/dating/sinder2adult/js/trls.js
IP
194.87.208.72:0
ASN
#0

File type
Unicode text, UTF-8 text
Size
16 kB (15472 bytes)
Hash
782c3f17b5192235a8134cde70643267
b2475c26afd90aa51897106d2db5766854d67bef
8b500cfd26b6d4f43bbb21716f6d11c0cda70753a04089e120e8b6126a177ea2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/dating/sinder2adult/js/trls.js HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:37 GMT
Content-Type: application/javascript
Content-Length: 15472
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "782c3f17b5192235a8134cde70643267"
Last-Modified: Wed, 31 Aug 2022 09:34:15 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 172BFFD5232D22B9
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Wed, 29 Nov 2023 08:09:37 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes

girlsjungle.life/media/dating/sinder2adult/images/logo.svg

194.87.208.72

200 OK

4.6 kB

URL HTTP/1.1
girlsjungle.life/media/dating/sinder2adult/images/logo.svg
IP
194.87.208.72:0
ASN
#0

File type
SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document text\012- exported SGML document, ASCII text, with CRLF line terminators
Size
4.6 kB (4564 bytes)
Hash
896592d7f2fa3d761c0b767e9399b010
ed1c0502263392938f4cbdd72afb1a8704bf840e
3417f549b6a1018ee687dd84aec136cb7fba2bb5b4c83cf269f9f8e958cc48de

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/dating/sinder2adult/images/logo.svg HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:37 GMT
Content-Type: image/svg+xml
Content-Length: 4564
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "896592d7f2fa3d761c0b767e9399b010"
Last-Modified: Wed, 31 Aug 2022 09:34:15 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 172BFF5226FC9708
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Wed, 29 Nov 2023 08:09:37 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:09:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:09:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

girlsjungle.life/util/flag-icon/flags/4x3/no.svg

194.87.208.72

200 OK

331 B

URL HTTP/1.1
girlsjungle.life/util/flag-icon/flags/4x3/no.svg
IP
194.87.208.72:0
ASN
#0

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with CRLF line terminators
Size
331 B (331 bytes)
Hash
c7ecfe59439b5fd23924fd206cf2fded
056fbd2b17c7f08bfb480d21973a96bf86fbd72a
4027f3320608508754640a6de4cb1cdabdef4654b5a214e875c134802345683f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /util/flag-icon/flags/4x3/no.svg HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/util/flag-icon/css/flag-icon.css
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:37 GMT
Content-Type: image/svg+xml
Content-Length: 331
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "c7ecfe59439b5fd23924fd206cf2fded"
Last-Modified: Wed, 31 Aug 2022 09:38:18 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 172BFF18E931AAFE
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Wed, 29 Nov 2023 08:09:37 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes

fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2

216.58.207.195

200 OK

46 kB

URL HTTP/2
fonts.gstatic.com/s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 46524, version 1.0\012- data
Size
46 kB (46524 bytes)
Hash
c1fd378f54921c75e4ae1821e7b8fff6
2ce96e97783b2f154d07f4464ca6f8eb2469f2c1
405ceee1c2f5c31f1cb94ebc63d49a43fddd1471c2c7401a01c7c11bb1d93826

HTTP Headers

GET /s/raleway/v28/1Ptug8zYS_SKggPNyC0ITw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://girlsjungle.life
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 46524
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 21:13:13 GMT
expires: Tue, 28 Nov 2023 21:13:13 GMT
cache-control: public, max-age=31536000
age: 39384
last-modified: Mon, 18 Jul 2022 19:58:01 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2

216.58.207.195

200 OK

16 kB

URL HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Size
16 kB (15740 bytes)
Hash
b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://girlsjungle.life
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 23 Nov 2022 19:34:21 GMT
expires: Thu, 23 Nov 2023 19:34:21 GMT
cache-control: public, max-age=31536000
age: 477316
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
49eee25f3ccd585a29e34e80cf5bb160
73eca8be91deedd049304862759a3d8084c0b07e
531e5685527861b3ed7e8e3865c5a6a40d3f92f5c9d89df3f385dab72406fb56

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 29 Nov 2022 08:09:37 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

girlsjungle.life/favicon.ico

194.87.208.72

204 No Content

0 B

URL HTTP/1.1
girlsjungle.life/favicon.ico
IP
194.87.208.72:0
ASN
#0

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 204 No Content
Server: nginx
Date: Tue, 29 Nov 2022 08:09:37 GMT
Connection: keep-alive
Cache-Control: no-transform

girlsjungle.life/media/dating/sinder2adult/images/slide2.jpg

194.87.208.72

200 OK

327 kB

URL HTTP/1.1
girlsjungle.life/media/dating/sinder2adult/images/slide2.jpg
IP
194.87.208.72:0
ASN
#0

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1252, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2004], baseline, precision 8, 2004x1252, components 3\012- data
Size
327 kB (326748 bytes)
Hash
553799ee8cb33ead6daa48f4153a4fe6
5c17495bcaa9af37de603bc5139a9de5e7e74531
1d9c47b2e71f7e3a3eee4feede500469d5d7e60ad55e8ebb3e4cc3ef32ac8bd2

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/dating/sinder2adult/images/slide2.jpg HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:37 GMT
Content-Type: image/jpeg
Content-Length: 326748
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "553799ee8cb33ead6daa48f4153a4fe6"
Last-Modified: Wed, 31 Aug 2022 09:34:16 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 172BFEBE58710CEE
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Wed, 29 Nov 2023 08:09:37 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3774
Expires: Tue, 29 Nov 2022 09:12:32 GMT
Date: Tue, 29 Nov 2022 08:09:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3774
Expires: Tue, 29 Nov 2022 09:12:32 GMT
Date: Tue, 29 Nov 2022 08:09:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3774
Expires: Tue, 29 Nov 2022 09:12:32 GMT
Date: Tue, 29 Nov 2022 08:09:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3774
Expires: Tue, 29 Nov 2022 09:12:32 GMT
Date: Tue, 29 Nov 2022 08:09:38 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ac3edd07bb0a4ebdaae6ec26e91d2079
b6efe3811dfa37cdcde1e9d411c171732ac7e12a
c5dbd471d178ae4505b28e30aee1e8eed77fffd81b9f7815ad2bda1a0d09a02c

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C5DBD471D178AE4505B28E30AEE1E8EED77FFFD81B9F7815AD2BDA1A0D09A02C"
Last-Modified: Mon, 28 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3774
Expires: Tue, 29 Nov 2022 09:12:32 GMT
Date: Tue, 29 Nov 2022 08:09:38 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8921 bytes)
Hash
823e92f62ff7b3c2093828817d7f2866
c501de9eaa581a10b0b5fce40b54bb10f57f7c29
7d89669e23682f167b2fe1eff9edc5939112ec66b6b4e6389ef8aec78ccbdfe5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3527eb28-888e-447d-90fd-1226d5b94433.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8921
x-amzn-requestid: 98baf100-c007-4c44-89aa-b9cf55fa3f94
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnwFYToAMFoWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852964-1227b5a9100c206e0c64f4b2;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:28 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ivu6pzZ6dbt3I4tuFMg4oHcuPVdyNS-F3k_lQdmKoXFkdCfSseAEwQ==
via: 1.1 e5af640ced3aa8764b82c4bc3f7af38e.cloudfront.net (CloudFront), 1.1 7e87179efaa9e3c316bd3d3a74cfded8.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:55 GMT
age: 37363
etag: "c501de9eaa581a10b0b5fce40b54bb10f57f7c29"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

3.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
3.9 kB (3944 bytes)
Hash
9cd333c474420e235831d96ed881167e
5008d7344dd85ae61a598c17e7baf427def3e25d
2178a96e120661e43d8e8ed0df1fcf500caf4c58db9e1bedaf0706af0a80b286

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1172c72b-d329-4446-80cb-92b8cf104425.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 3944
x-amzn-requestid: 8a6732c1-72da-4a73-ba51-8533c6a01a9c
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNmfFgeIAMFjLw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6385295c-0c807d93277bfb7f6b13c2ee;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:20 GMT
x-amz-cf-pop: SEA19-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: oW4xFfsPp-Jmf28Uc88iZ2jLgtMRjn2gW0orrJ4K201r6Y6OlHkacQ==
via: 1.1 995664ee945c06fc706b5cb8e0e650dc.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:51 GMT
age: 37367
etag: "5008d7344dd85ae61a598c17e7baf427def3e25d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.4 kB (4417 bytes)
Hash
a2a5c8d4113d282600462749315f2c4f
e2b4d2e15bb7c086333c0da438873e4c139ba931
9b5d0e5dd11d4cbf1c78a71730cd63544170c91ab635bf3cf917827ac84874e6

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fabddece8-6c4f-4cb5-9041-4d427b16b826.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4417
x-amzn-requestid: 01de83c2-51d2-4329-98f6-09a0edf46942
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cVNnGEcRIAMFaXA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63852960-34583b6c588a0e937fcfaa46;Sampled=0
x-amzn-remapped-date: Mon, 28 Nov 2022 21:34:24 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: wqEe45jzMOryT-E-vThc39-cLiZudKF4gn6cS3LBmeaJ2amJF5GPIA==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 ce71f64ad5dca81beca846466f2d5008.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:54 GMT
age: 37364
etag: "e2b4d2e15bb7c086333c0da438873e4c139ba931"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

10 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
10 kB (10176 bytes)
Hash
03014221d7f49b50ffc2d1b0a0e75457
772d86ad983042a728ee3490630a9cf1134ad0dd
81fb954fa569955907952987e9d8efd1dac80e0e4a682826abf3c5d90eb31771

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1c32283b-8309-408e-85df-cad97da6bc80.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 10176
x-amzn-requestid: c2231955-5c78-4073-8399-b8b90f1add78
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cMo3oHpSoAMF5Qw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6381bb63-55a1cb004ac73c8b02f2fb8d;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 07:08:19 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: uGocx-Lv8ieJVvICjnTGQZyzaQzjVdICX2RZaNyBTQvUKeIcNxaCJQ==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 32c16f33c8f5601364fa8229b0d74dc2.cloudfront.net (CloudFront), 1.1 google
date: Tue, 29 Nov 2022 04:49:50 GMT
age: 11988
etag: "772d86ad983042a728ee3490630a9cf1134ad0dd"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.5 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F306bb762-e2a8-4771-9a39-086c46f94b11.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.5 kB (7549 bytes)
Hash
415b1b1d5a29fc17b4114bb3df1d1c22
600859401c885cc2cdd1f199cccc198eb41d6a04
abfbf4ecf2423736a29686859f6a8f2b77204b48f3f60d208f6d491e80611e7f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F306bb762-e2a8-4771-9a39-086c46f94b11.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7549
x-amzn-requestid: bb37235a-8c7d-47fe-abb6-6cc633560165
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cP-7lHmsoAMF9lA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638311e3-1f2a4abc40119f3e026dc393;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 07:29:39 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: ds96jURZ0epaXMg2oTUETRQCpHwlVJrl5hTqvpUAWEGVa5rbDve1FA==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 21:46:42 GMT
age: 37376
etag: "600859401c885cc2cdd1f199cccc198eb41d6a04"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4803 bytes)
Hash
cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: 80f7f1c8-0316-4181-83ac-2787b1ae825f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cOo4iFHoIAMF2-g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63828836-2c0a081b07e0785b4350c10c;Sampled=0
x-amzn-remapped-date: Sat, 26 Nov 2022 21:42:14 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 9fRfgj9_S00P8fI_T-tVt7khJ1kYZux_55K_yLYUsiyVEoiWRM9QAw==
via: 1.1 da5952aa802df39905ceb16592e9698a.cloudfront.net (CloudFront), 1.1 aef00f14752da9aa504d392fd46eff94.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 22:07:26 GMT
age: 36132
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

girlsjungle.life/media/dating/sinder2adult/images/slide1.jpg

194.87.208.72

200 OK

224 kB

URL HTTP/1.1
girlsjungle.life/media/dating/sinder2adult/images/slide1.jpg
IP
194.87.208.72:0
ASN
#0

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1252, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2004], baseline, precision 8, 2004x1252, components 3\012- data
Size
224 kB (223916 bytes)
Hash
6f4928a0680ee3ae69c7102663ef0050
417b7b679103e26e27db16fc86d60746c8947dd2
cc06278c623a4cdf977f69bb9ff8eb0dd9eadd4b6f9183ffd7d825e2efcd0438

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/dating/sinder2adult/images/slide1.jpg HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:40 GMT
Content-Type: image/jpeg
Content-Length: 223916
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "6f4928a0680ee3ae69c7102663ef0050"
Last-Modified: Wed, 31 Aug 2022 09:34:15 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 172BFEAF59F91482
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Wed, 29 Nov 2023 08:09:40 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes

girlsjungle.life/media/dating/sinder2adult/images/slide3.jpg

194.87.208.72

200 OK

227 kB

URL HTTP/1.1
girlsjungle.life/media/dating/sinder2adult/images/slide3.jpg
IP
194.87.208.72:0
ASN
#0

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=1252, bps=0, PhotometricIntepretation=RGB, orientation=upper-left, width=2004], baseline, precision 8, 2004x1252, components 3\012- data
Size
227 kB (227373 bytes)
Hash
3efb35e08cef28949adf7bdcccba78af
e2994c02e12eb80eef850dc55423c057613099d1
c58997426847dc8a4c74158e53bd9b9e888246662e4e0750680eecd0a24d5ab1

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /media/dating/sinder2adult/images/slide3.jpg HTTP/1.1
Host: girlsjungle.life
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://girlsjungle.life/?u=775wwwr&o=e6pp9za&t=44542_&cid=102a334f6720ea06f1859f3e75dc96&p=0&b=0
Cookie: sid=t1~5mjxjcgwmfiynytlovxqf4w2
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Server: nginx
Date: Tue, 29 Nov 2022 08:09:43 GMT
Content-Type: image/jpeg
Content-Length: 227373
Connection: keep-alive
Content-Security-Policy: block-all-mixed-content
ETag: "3efb35e08cef28949adf7bdcccba78af"
Last-Modified: Wed, 31 Aug 2022 09:34:15 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
Vary: Origin, Accept-Encoding
X-Amz-Request-Id: 172BFEC02A739B74
X-Content-Type-Options: nosniff
X-Xss-Protection: 1; mode=block
Expires: Wed, 29 Nov 2023 08:09:43 GMT
Cache-Control: max-age=31536000, no-transform
Accept-Ranges: bytes

34.120.237.76

200 OK

6.0 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b0dcfcd-38d5-4614-ad4e-405d8ad4ee91.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.0 kB (6037 bytes)
Hash
b5e2bc1651b37b8e0467c2a6cb860fb3
3348f081a3357490a704592d105d02e81886df89
751c601e075c9338335c05b0f430ba8065b4e97440e6630993afd943f302b253

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5b0dcfcd-38d5-4614-ad4e-405d8ad4ee91.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
server: nginx
content-length: 6037
x-amzn-requestid: eb17903e-1fd3-4a41-a6d1-8b671d890400
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cPAJjFa3oAMFcLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6382ad70-3db95fcd1aeb9c411c55d173;Sampled=0
x-amzn-remapped-date: Sun, 27 Nov 2022 00:21:04 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: NqtaziEIRl6auIGehos7TAJfBAY3CtGJX0vC-pWhjs377L_rEyM6hg==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Mon, 28 Nov 2022 10:14:18 GMT
age: 78927
etag: "3348f081a3357490a704592d105d02e81886df89"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (15)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations