Report - youraddictads.com/

Report Overview

Submitted URL
youraddictads.com/
IP
199.79.54.235
ASN
#46309 TONAQUINT-DC
Submitted
2022-12-02 18:26:45
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
34

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
ocsp.pki.goog	175	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.4 kB	4.9 kB	216.58.211.3
push.services.mozilla.com	2140	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	606 B	127 B	35.165.176.211
fonts.gstatic.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	1.5 kB	107 kB	142.250.74.35
img-getpocket.cdn.mozilla.net	1631	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	3.2 kB	53 kB	34.120.237.76
ocsp.digicert.com	86	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	682 B	1.5 kB	93.184.220.29
firefox.settings.services.mozilla.com	867	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	782 B	2.4 kB	34.102.187.140
content-signature-2.cdn.mozilla.net	1152	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	413 B	5.8 kB	34.160.144.191
fonts.googleapis.com	8877	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	488 B	746 B	142.250.74.106
r3.o.lencr.org	344	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	2.7 kB	7.1 kB	23.36.76.226
youraddictads.com	unknown	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	19 kB	1.2 MB	199.79.54.235
contile.services.mozilla.com	1114	0001-01-01T00:00:00Z	0001-01-01T00:00:00Z	333 B	229 B	34.117.237.239

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2022-12-02	medium	youraddictads.com/	Phishing
2022-12-02	medium	youraddictads.com/wp-content/themes/themify-ultra/themify/css/themify.common.min.css?ver=4.6.25	Phishing
2022-12-02	medium	youraddictads.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	Phishing
2022-12-02	medium	youraddictads.com/wp-content/plugins/cookie-notice/js/front.min.js?ver=1.2.44	Phishing
2022-12-02	medium	youraddictads.com/wp-content/themes/themify-ultra/style.min.css?ver=2.0.2	Phishing
2022-12-02	medium	youraddictads.com/assets/js/msdropdown/jquery.dd.min.js	Phishing
2022-12-02	medium	youraddictads.com/wp-includes/js/jquery/jquery.js?ver=1.12.4	Phishing
2022-12-02	medium	youraddictads.com/assets/js/emojionearea.js	Phishing
2022-12-02	medium	youraddictads.com/	Phishing
2022-12-02	medium	youraddictads.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0	Phishing
2022-12-02	medium	youraddictads.com/wp-content/themes/themify-ultra/themify/js/main.min.js?ver=4.0.6	Phishing
2022-12-02	medium	youraddictads.com/wp-content/themes/themify-ultra/themify/js/themify.sidemenu.min.js?ver=2.0.2	Phishing
2022-12-02	medium	youraddictads.com/wp-includes/js/wp-embed.min.js?ver=4.6.25	Phishing
2022-12-02	medium	youraddictads.com/assets/captcha.php?i=1670005595	Phishing
2022-12-02	medium	youraddictads.com/wp-content/themes/themify-ultra/themify/themify-builder/js/themify.builder.script.min.js?ver=4.0.6	Phishing
2022-12-02	medium	youraddictads.com/wp-content/themes/themify-ultra/themify/fontawesome/css/font-awesome.min.css?ver=4.0.6	Phishing
2022-12-02	medium	youraddictads.com/wp-content/themes/themify-ultra/themify/themify-icons/themify-icons.min.css?ver=4.0.6	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

JavaScript (23)

	URL	Size	First Seen	Last Seen
	youraddictads.com/wp-content/themes/themify-ultra/themify/js/themify.sidemenu.min.js?ver=2.0.2	1.7 kB	2023-03-07	2024-01-27
Pretty URL youraddictads.com/wp-content/themes/themify-ultra/themify/js/themify.sidemenu.min.js?ver=2.0.2 IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:40:41 Last Seen2024-01-27 21:29:39 Times Seen32 Hash 29095d9507a0d3f5a5a4cd98bc6dc45c ec8b6a41b582de4442f5ab65a8b84a89bc27b29d c8c7bec2d01fa7a753c5400fa3088833b5333489c282e30f1a76ae6881f07712 Loading...

	youraddictads.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1	10 kB	2023-03-07	2024-04-19
Pretty URL youraddictads.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:37 Last Seen2024-04-19 07:56:09 Times Seen37086 Hash 7121994eec5320fbe6586463bf9651c2 90532aff6d4121954254cdf04994d834f7ec169b 48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d Loading...

	youraddictads.com/assets/js/msdropdown/jquery.dd.min.js	21 kB	2023-03-08	2024-04-14
Pretty URL youraddictads.com/assets/js/msdropdown/jquery.dd.min.js IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:43:34 Last Seen2024-04-14 17:34:56 Times Seen97 Hash 343d2d60b986c216239aacd940ccd1fd 5ffa3817b619400bdf211ee1331ba69b02429e24 00d8d02d3a662722acdf0a4832b4c02c1eaf3011269df3d8d6e22578c627d2f5 Loading...

	youraddictads.com/	461 B	2023-03-07	2024-01-27
Pretty URL youraddictads.com/ IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:08:34 Last Seen2024-01-27 21:29:39 Times Seen9 Hash b3db1ba36924df66ba2af6f0938e8839 e1b1594adf7a7de933adf78dd94f13f3590c3068 8e7825436f1e73d1831a8f35d37d8c7d643381d73bae108a8b2d4b070c641ad8 Loading...

	youraddictads.com/wp-content/themes/themify-ultra/themify/js/main.min.js?ver=4.0.6	14 kB	2023-03-08	2023-03-08
Pretty URL youraddictads.com/wp-content/themes/themify-ultra/themify/js/main.min.js?ver=4.0.6 IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:43:34 Last Seen2023-03-08 14:43:34 Times Seen1 Hash 302ab4371f38b629773726281892acb1 a90b74914f556a7c3bdb99666b289c77e15c3fc7 7841aae065d60f39eda84e495473eef8ec9a58991e5a455e1a322b415f6a15b0 Loading...

	youraddictads.com/	1.8 kB	2023-03-08	2023-03-08
Pretty URL youraddictads.com/ IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:43:34 Last Seen2023-03-08 14:43:34 Times Seen1 Hash d5924ed49428d04d385b7a1e777522cf 5486de360dddb462c6c8cd7382c897a720895328 7bcac35a148c76a03c0ab3265797788f56600437ffc3a668004345c9dd479468 Loading...

	youraddictads.com/wp-includes/js/wp-embed.min.js?ver=4.6.25	1.4 kB	2023-03-07	2024-02-27
Pretty URL youraddictads.com/wp-includes/js/wp-embed.min.js?ver=4.6.25 IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:16:41 Last Seen2024-02-27 20:06:46 Times Seen393 Hash 2a9a2f64687bc94523f4c50c9335cc0f 33c874cafe5df3ea8c8756be8642f675f9cf5289 4114f99c5992bab27f43ae5e3c7c196ce63fac0b4b43915af913c1a30ca1f3da Loading...

	youraddictads.com/wp-content/themes/themify-ultra/themify/themify-builder/js/themify.builder.script.min.js?ver=4.0.6	35 kB	2023-03-08	2023-03-08
Pretty URL youraddictads.com/wp-content/themes/themify-ultra/themify/themify-builder/js/themify.builder.script.min.js?ver=4.0.6 IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:43:34 Last Seen2023-03-08 14:43:34 Times Seen1 Hash 65cc768c2f28983717d8e424c20dd09d b8cb91555866329823ac8f7829be44633c5bd2cd d5e09d06b3f50041ac8f3e7f70bfa35c3b6d4946dd03ef77b48f163f97b3a4ff Loading...

	youraddictads.com/wp-includes/js/jquery/jquery.js?ver=1.12.4	97 kB	2023-03-07	2024-04-18
Pretty URL youraddictads.com/wp-includes/js/jquery/jquery.js?ver=1.12.4 IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:45 Last Seen2024-04-18 21:08:33 Times Seen10179 Hash dc5ba5044fccc0297be7b262ce669a7c f137ff98ae379e35b0702967d3b6866a0a40e3be cf34e1b87bbfd9d9b185dec994924a496e279d8dc9387ad8d35bc0110134c4d3 Loading...

	youraddictads.com/	4.1 kB	2023-03-08	2023-03-08
Pretty URL youraddictads.com/ IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:43:34 Last Seen2023-03-08 14:43:34 Times Seen1 Hash beb77bda170958de39a29086f7d8f6ba 47eac461d893774ffac1a6e2647caf2f49c95f26 66d2aa20a142fefdd609aff8170f8b4b4907818cecaecf31249d383f1849a938 Loading...

	youraddictads.com/	2.1 kB	2023-03-08	2023-03-08
Pretty URL youraddictads.com/ IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:43:34 Last Seen2023-03-08 14:43:34 Times Seen1 Hash 6a9c19f4b4de007089272be3a54dbd66 f99ad52edaf9d5d6014aa692e98f8a388e169bb6 bf7ee0e693ee69a4c1fc8e05f51d3d85efd7c3d9b9ea0c679f5440e158982a53 Loading...

	youraddictads.com/	2.3 kB	2023-03-08	2023-03-08
Pretty URL youraddictads.com/ IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:43:34 Last Seen2023-03-08 14:43:34 Times Seen1 Hash 9969ecf9a5357d88225a0cbc7ccdf63b 9e81200458501b3e8279189f2be5afe0f096f530 7f64d29faef188024c1669a08d516bea09ed03fb159f79cffdaae6c371f2cfff Loading...

	youraddictads.com/wp-content/plugins/cookie-notice/js/front.min.js?ver=1.2.44	5.4 kB	2023-03-07	2024-03-27
Pretty URL youraddictads.com/wp-content/plugins/cookie-notice/js/front.min.js?ver=1.2.44 IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:22 Last Seen2024-03-27 15:50:50 Times Seen186 Hash 92231510d69792ca4a5a9b3784ed9c14 a7748df6a7e2eb5dc54cd42372788b80b2a4e893 b82eefb6a4f332f80cf77897057def50d542447398557c6be322d86a3ebe613b Loading...

	youraddictads.com/	8.4 kB	2023-03-08	2023-03-08
Pretty URL youraddictads.com/ IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:43:34 Last Seen2023-03-08 14:43:34 Times Seen1 Hash c48e6ec140f156bfac505bb74408dae1 2cb81682f3c15d071d887e214ccb2bd85c59f3e8 35efd36cd05ff648557d6b3737b8dfb08b703453b2a56cefd8e7e3098f221c4a Loading...

	youraddictads.com/	618 B	2023-03-08	2023-03-08
Pretty URL youraddictads.com/ IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:43:34 Last Seen2023-03-08 14:43:34 Times Seen1 Hash 495873916fa8be55e6fdcf62ce66e9fb fdd560325907393a8277c5e41099398c198db92b e8535853cba368e2d745fa2a98955fb96eb5be074e42fb87755486f35f185349 Loading...

	youraddictads.com/assets/js/emojionearea.js	94 kB	2023-03-08	2023-03-08
Pretty URL youraddictads.com/assets/js/emojionearea.js IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:43:34 Last Seen2023-03-08 14:43:34 Times Seen1 Hash cf211b3a7650bd259e741b205266414f 57e054e2f1b746ad6c79e504e04baca3c88d8655 a216520e97e2a5da5651bdc3778a50daeee0c271242c54adfa00aba1b6f6e062 Loading...

	youraddictads.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0	7.9 kB	2023-03-07	2024-03-28
Pretty URL youraddictads.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0 IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:41 Last Seen2024-03-28 19:23:41 Times Seen898 Hash f5c25c9c6d60162ba8865649b89e56fc 520fa90c637f9e93f16ec3674136c61a0c1e3d60 337c515e1a749dfe4d3fc568c830b631f7ed4de0a1ee9ba28ed5c8c430ec1f9a Loading...

	youraddictads.com/wp-includes/js/comment-reply.min.js?ver=4.6.25	1.1 kB	2023-03-07	2024-04-19
Pretty URL youraddictads.com/wp-includes/js/comment-reply.min.js?ver=4.6.25 IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:31 Last Seen2024-04-19 06:39:41 Times Seen2159 Hash 9ef21a469fc37e845d6303fcfea70897 a86ec94ec7bee9227bcdf8d6374cabe82ae43e49 6b2e2d56e7b0e80d919bc65dd94f8cd95e57ad9298fc4fecc005301ea8339c9f Loading...

	youraddictads.com/wp-content/themes/themify-ultra/js/themify.script.min.js?ver=2.0.2	38 kB	2023-03-08	2023-03-09
Pretty URL youraddictads.com/wp-content/themes/themify-ultra/js/themify.script.min.js?ver=2.0.2 IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:43:34 Last Seen2023-03-09 05:42:23 Times Seen1 Hash a82686deef90701aba1e58089e634b71 d84962da94e807975953c19e70f26c623de3d442 46a6cdc25e0a6aff4eeb1cfb97b2c581b48492b335994aa3ac3b37b5d8caf03c Loading...

	youraddictads.com/	395 B	2023-03-08	2023-03-08
Pretty URL youraddictads.com/ IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:43:34 Last Seen2023-03-08 14:43:34 Times Seen1 Hash e39af5f150ba27dbd69ffafde8953fc9 32c35e3eb8a76b68399e59c0ec14b2a25dfa20b1 9465d8e13f77e63f3394e568bb7d0ad384eea102a9c7c1f20e4efc516b843c9a Loading...

	youraddictads.com/	44 B	2023-03-07	2024-01-27
Pretty URL youraddictads.com/ IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 13:18:22 Last Seen2024-01-27 21:29:39 Times Seen13 Hash ae6a7db17737a53aa0eba32534100254 53ad9e0b8e58343f431138867d9bf4e0ab74b254 41e2f2e8796b50ba369d64165fb694a512fbb37e000e050d8be1a7d4f39c8540 Loading...

	youraddictads.com/	437 B	2023-03-08	2023-03-08
Pretty URL youraddictads.com/ IP 199.79.54.235 ASN #46309 TONAQUINT-DC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:43:34 Last Seen2023-03-08 14:43:34 Times Seen1 Hash 55cdbafc3aaa30d3c0beb3a2712e4998 c1ff0a239403c5e6883f7c2ecae5189977512cca ea1e05cff5de9e5244dad11bd02e72fb7cae39b569a0387bb36eb5d8d6c568c5 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 7907545e68f617f87fd26a259a5b3f0e	29 kB	2023-03-07	2024-04-18
Pretty Observations First Seen2023-03-07 12:56:08 Last Seen2024-04-18 13:11:43 Times Seen100 Hash 7907545e68f617f87fd26a259a5b3f0e c622592f52dadca1e34df931bcc68642b31b5e37 09997726531b148218f8c09bfae926e9345fbc85907e28df9ef9db7fd0d0081d Loading...

HTTP Transactions (74)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2954
Expires: Fri, 02 Dec 2022 19:15:48 GMT
Date: Fri, 02 Dec 2022 18:26:34 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5670
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 18:26:34 GMT
Last-Modified: Fri, 02 Dec 2022 16:52:04 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8038
Expires: Fri, 02 Dec 2022 20:40:32 GMT
Date: Fri, 02 Dec 2022 18:26:34 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

34.102.187.140

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 18:19:57 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 397
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: 5Hy6hBow7G0XlqFI1t6wLv/WNk+K1AwEu5I3AwPHdnUJh9J2HUCwLnvn7+QqvLIuwBHxr03H/r8=
x-amz-request-id: Q63XGKCF463EGABY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 17:46:12 GMT
age: 2422
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

youraddictads.com/

199.79.54.235

301 Moved Permanently

0 B

URL HTTP/1.1
youraddictads.com/
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Dec 2022 18:26:34 GMT
Server: Apache/2.4.6
X-Powered-By: PHP/7.2.24
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Pingback: http://youraddictads.com/xmlrpc.php
Set-Cookie: PHPSESSID=4ltl8dl1cgcu1e9lqfcvq8un22; path=/
Location: https://youraddictads.com/
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 18:26:34 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

34.102.187.140

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
34.102.187.140:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 18:08:57 GMT
cache-control: public,max-age=3600
age: 1057
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
be2c860effe96a0a1ac92ff66fd6d9a5
476b7892937eae4b8e2a0cf36ec0baabfa7f92d9
73f969d9b1f21dd33a00474b5bd9f1824ca302c1f06bcf86b0f2a3354096e148

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "73F969D9B1F21DD33A00474B5BD9F1824CA302C1F06BCF86B0F2A3354096E148"
Last-Modified: Wed, 30 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 03 Dec 2022 00:26:35 GMT
Date: Fri, 02 Dec 2022 18:26:35 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5671
Cache-Control: max-age=144890
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 18:26:35 GMT
Etag: "6389c02e-1d7"
Expires: Sun, 04 Dec 2022 10:41:25 GMT
Last-Modified: Fri, 02 Dec 2022 09:06:54 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 18:26:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

push.services.mozilla.com/

35.165.176.211

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
35.165.176.211:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: B1aAjcn2B9CCFw8aANtcyg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: CUJKHZwcbhHVesG4Gmt3PEdGFy0=

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 18:26:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

youraddictads.com/wp-content/themes/themify-ultra/themify/css/themify.common.min.css?ver=4.6.25

199.79.54.235

200 OK

4.5 kB

URL HTTP/1.1
youraddictads.com/wp-content/themes/themify-ultra/themify/css/themify.common.min.css?ver=4.6.25
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (4541), with no line terminators
Size
4.5 kB (4541 bytes)
Hash
812b87ed1f50aff879d6736058f95b05
0dfdfe7a18b3e405db84a23e69d7bec1be198b4a
9aa672d5c339349706e71667197546570f3ceef3e844e3537fdb53e3e4e5a79d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/themify-ultra/themify/css/themify.common.min.css?ver=4.6.25 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:35 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "11bd-5b5ce8d2ff3d4"
Accept-Ranges: bytes
Content-Length: 4541
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Content-Type: text/css

youraddictads.com/wp-content/plugins/cookie-notice/css/front.min.css?ver=4.6.25

199.79.54.235

200 OK

2.8 kB

URL HTTP/1.1
youraddictads.com/wp-content/plugins/cookie-notice/css/front.min.css?ver=4.6.25
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (2752), with no line terminators
Size
2.8 kB (2752 bytes)
Hash
93fe20a52b4558c24e1567e4c69e01bf
dfaf1c3fca2324ebbc7ef395d9611dde4e6bb928
1449fa9e433ff2969bbe27d637ce1771846dcc0c95b2ceace9e6bd178dba4580

HTTP Headers

GET /wp-content/plugins/cookie-notice/css/front.min.css?ver=4.6.25 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:35 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:39 GMT
ETag: "ac0-5b5ce8d21af63"
Accept-Ranges: bytes
Content-Length: 2752
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Content-Type: text/css

youraddictads.com/wp-content/uploads/themify-css/themify-builder-2-generated.css?ver=1607273620

199.79.54.235

200 OK

447 B

URL HTTP/1.1
youraddictads.com/wp-content/uploads/themify-css/themify-builder-2-generated.css?ver=1607273620
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text
Size
447 B (447 bytes)
Hash
e1b77f73cd4dfdda64e12e59f20bb3c0
36f6059ce4c495d523390e72137e2df38e9e965a
b3bd2d114ded717aa9585a5a107ea68f9c2ee186523f291648afcd0dbf6f3f9d

HTTP Headers

GET /wp-content/uploads/themify-css/themify-builder-2-generated.css?ver=1607273620 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:35 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "1bf-5b5ce8d365898"
Accept-Ranges: bytes
Content-Length: 447
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Content-Type: text/css

youraddictads.com/wp-content/uploads/themify-customizer.css?ver=18.08.09.00.12.43

199.79.54.235

200 OK

2.2 kB

URL HTTP/1.1
youraddictads.com/wp-content/uploads/themify-customizer.css?ver=18.08.09.00.12.43
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text
Size
2.2 kB (2214 bytes)
Hash
cbb19a07ddf180c3258ac6267c3b20dc
31d850eb341b26dfa4ac1f88cdf1e7c8d75f2c57
c1e4834208f80424752d874a4a6579833c4ce80c2fef07924b36c405770f4f21

HTTP Headers

GET /wp-content/uploads/themify-customizer.css?ver=18.08.09.00.12.43 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:35 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "8a6-5b5ce8d366068"
Accept-Ranges: bytes
Content-Length: 2214
Keep-Alive: timeout=10, max=399
Connection: Keep-Alive
Content-Type: text/css

youraddictads.com/wp-content/themes/themify-ultra/media-queries.min.css?ver=2.0.2

199.79.54.235

200 OK

22 kB

URL HTTP/1.1
youraddictads.com/wp-content/themes/themify-ultra/media-queries.min.css?ver=2.0.2
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (22022), with no line terminators
Size
22 kB (22022 bytes)
Hash
f214871872c930755cb20b2b7dcb2726
0231d0bc98e09cf6a8adf2a3508e50b2a83140be
dc40b8e832b5c01032f2267ada222977f5438acdea92dc016da6f4d3fd7bd3ba

HTTP Headers

GET /wp-content/themes/themify-ultra/media-queries.min.css?ver=2.0.2 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:35 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:39 GMT
ETag: "5606-5b5ce8d298359"
Accept-Ranges: bytes
Content-Length: 22022
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Content-Type: text/css

youraddictads.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1

199.79.54.235

200 OK

10 kB

URL HTTP/1.1
youraddictads.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (9959)
Size
10 kB (10056 bytes)
Hash
7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:35 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "2748-5b5ce8d381203"
Accept-Ranges: bytes
Content-Length: 10056
Keep-Alive: timeout=10, max=399
Connection: Keep-Alive
Content-Type: application/javascript

youraddictads.com/wp-content/plugins/cookie-notice/js/front.min.js?ver=1.2.44

199.79.54.235

200 OK

5.4 kB

URL HTTP/1.1
youraddictads.com/wp-content/plugins/cookie-notice/js/front.min.js?ver=1.2.44
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (5360), with no line terminators
Size
5.4 kB (5360 bytes)
Hash
92231510d69792ca4a5a9b3784ed9c14
a7748df6a7e2eb5dc54cd42372788b80b2a4e893
b82eefb6a4f332f80cf77897057def50d542447398557c6be322d86a3ebe613b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/cookie-notice/js/front.min.js?ver=1.2.44 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:39 GMT
ETag: "14f0-5b5ce8d21b733"
Accept-Ranges: bytes
Content-Length: 5360
Keep-Alive: timeout=10, max=398
Connection: Keep-Alive
Content-Type: application/javascript

youraddictads.com/wp-content/themes/themify-ultra/style.min.css?ver=2.0.2

199.79.54.235

200 OK

93 kB

URL HTTP/1.1
youraddictads.com/wp-content/themes/themify-ultra/style.min.css?ver=2.0.2
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (65536), with no line terminators
Size
93 kB (92970 bytes)
Hash
ba0d955cd470d70c134e067c9de0c018
381ef21cbcdd509c98f9220c454c4e17a0d31de4
85f3f2fa2da891f14253b000ddc2ee667fea9e4d957a0610c955c0a014440825

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/themify-ultra/style.min.css?ver=2.0.2 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:35 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "16b2a-5b5ce8d2e0f71"
Accept-Ranges: bytes
Content-Length: 92970
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Content-Type: text/css

youraddictads.com/assets/css/emojionearea.css

199.79.54.235

200 OK

27 kB

URL HTTP/1.1
youraddictads.com/assets/css/emojionearea.css
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (2695)
Size
27 kB (26635 bytes)
Hash
fafb8b8340530faddcea421acef71167
7c66f634b382ef143789b63b8b61ea580df213fa
34baef81e5e2fb4daaf5a016704c851862487daf065e3e203b42be9c81496930

HTTP Headers

GET /assets/css/emojionearea.css HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:01 GMT
ETag: "680b-5b5ce8ae720cc"
Accept-Ranges: bytes
Content-Length: 26635
Keep-Alive: timeout=10, max=399
Connection: Keep-Alive
Content-Type: text/css

youraddictads.com/assets/css/styles.css

199.79.54.235

200 OK

13 kB

URL HTTP/1.1
youraddictads.com/assets/css/styles.css
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text
Size
13 kB (12657 bytes)
Hash
63ad1dbed4d459c3a649ce17a59aee01
81a6fbbdac6a8a3ac7998a7a01fb175066df5da0
4ea1f6036a1bd1da5b1cd9927f47092706793dba03ae083ff418e86fea45d09b

HTTP Headers

GET /assets/css/styles.css HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:01 GMT
ETag: "3171-5b5ce8ae8c2c7"
Accept-Ranges: bytes
Content-Length: 12657
Keep-Alive: timeout=10, max=398
Connection: Keep-Alive
Content-Type: text/css

youraddictads.com/assets/css/msdropdown/dd.css

199.79.54.235

200 OK

4.4 kB

URL HTTP/1.1
youraddictads.com/assets/css/msdropdown/dd.css
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text
Size
4.4 kB (4398 bytes)
Hash
c7933a20a915d9d2a241c40f567100f1
ce7fae59a88190c8362ec1b8b7223c1267d1205b
7187fe6065df418d6760efdb6b0e3bb9b2db4751ad9c246e2b12cb2308a11062

HTTP Headers

GET /assets/css/msdropdown/dd.css HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:01 GMT
ETag: "112e-5b5ce8ae76334"
Accept-Ranges: bytes
Content-Length: 4398
Keep-Alive: timeout=10, max=397
Connection: Keep-Alive
Content-Type: text/css

youraddictads.com/assets/js/msdropdown/jquery.dd.min.js

199.79.54.235

200 OK

21 kB

URL HTTP/1.1
youraddictads.com/assets/js/msdropdown/jquery.dd.min.js
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (20807)
Size
21 kB (21171 bytes)
Hash
343d2d60b986c216239aacd940ccd1fd
5ffa3817b619400bdf211ee1331ba69b02429e24
00d8d02d3a662722acdf0a4832b4c02c1eaf3011269df3d8d6e22578c627d2f5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/js/msdropdown/jquery.dd.min.js HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:02 GMT
ETag: "52b3-5b5ce8af5ea0e"
Accept-Ranges: bytes
Content-Length: 21171
Keep-Alive: timeout=10, max=399
Connection: Keep-Alive
Content-Type: application/javascript

youraddictads.com/wp-includes/js/jquery/jquery.js?ver=1.12.4

199.79.54.235

200 OK

97 kB

URL HTTP/1.1
youraddictads.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (31997)
Size
97 kB (96874 bytes)
Hash
dc5ba5044fccc0297be7b262ce669a7c
f137ff98ae379e35b0702967d3b6866a0a40e3be
cf34e1b87bbfd9d9b185dec994924a496e279d8dc9387ad8d35bc0110134c4d3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:35 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 17:01:17 GMT
ETag: "17a6a-5b5cea86e3bdd"
Accept-Ranges: bytes
Content-Length: 96874
Keep-Alive: timeout=10, max=399
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 18:26:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 18:26:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2

142.250.74.35

200 OK

48 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Size
48 kB (47952 bytes)
Hash
17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd

HTTP Headers

GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://youraddictads.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:56:13 GMT
expires: Tue, 28 Nov 2023 18:56:13 GMT
cache-control: public, max-age=31536000
age: 343823
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/fugazone/v15/rax_HiWKp9EAITukFsl8Axhf.woff2

142.250.74.35

200 OK

11 kB

URL HTTP/2
fonts.gstatic.com/s/fugazone/v15/rax_HiWKp9EAITukFsl8Axhf.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 11032, version 1.0\012- data
Size
11 kB (11032 bytes)
Hash
a91609409ec13f59af2bb99818a3ea40
3e8580696e2e5d083bbc366f82bfc9e8cf5df194
79e8fb1228cec14f8ec640bfe4a41d30f1ef0f5ed919ae81b8018e54e0296a63

HTTP Headers

GET /s/fugazone/v15/rax_HiWKp9EAITukFsl8Axhf.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://youraddictads.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11032
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 23:26:51 GMT
expires: Wed, 29 Nov 2023 23:26:51 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 17:05:57 GMT
content-type: font/woff2
age: 241185
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

142.250.74.35

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://youraddictads.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:52:41 GMT
expires: Tue, 28 Nov 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 344035
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

youraddictads.com/assets/js/emojionearea.js

199.79.54.235

200 OK

94 kB

URL HTTP/1.1
youraddictads.com/assets/js/emojionearea.js
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text
Size
94 kB (93531 bytes)
Hash
cf211b3a7650bd259e741b205266414f
57e054e2f1b746ad6c79e504e04baca3c88d8655
a216520e97e2a5da5651bdc3778a50daeee0c271242c54adfa00aba1b6f6e062

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/js/emojionearea.js HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:02 GMT
ETag: "16d5b-5b5ce8af4a5d4"
Accept-Ranges: bytes
Content-Length: 93531
Keep-Alive: timeout=10, max=398
Connection: Keep-Alive
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 18:26:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 18:26:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17212
Expires: Fri, 02 Dec 2022 23:13:28 GMT
Date: Fri, 02 Dec 2022 18:26:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17212
Expires: Fri, 02 Dec 2022 23:13:28 GMT
Date: Fri, 02 Dec 2022 18:26:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17212
Expires: Fri, 02 Dec 2022 23:13:28 GMT
Date: Fri, 02 Dec 2022 18:26:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17212
Expires: Fri, 02 Dec 2022 23:13:28 GMT
Date: Fri, 02 Dec 2022 18:26:36 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17212
Expires: Fri, 02 Dec 2022 23:13:28 GMT
Date: Fri, 02 Dec 2022 18:26:36 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg

34.120.237.76

200 OK

4.8 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.8 kB (4803 bytes)
Hash
cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: ad2d9243-5e32-4faf-8ff3-b9abd3af1e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb1_hEJJIAMF4Vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387d063-596f5833509112ee6cbedf54;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:51:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PIC-TIeTFK_Y2AiqowYT4_8tMuzIKO23lAwx18fYepTf4PIWkmLqkQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 05:20:15 GMT
age: 47181
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7722 bytes)
Hash
cd78aa69439c995167f32b8a41a1f4f6
d07d6145182f312f3ed86ecf96b4ffa175416fa0
3b08cf3fad31ee0cf3ee25abc2484fb4283543865a42dfc568b14f9856fd3bb5

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7722
x-amzn-requestid: 8d7c4800-6c06-43ed-afa1-94840d42f591
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGy2Gr1IAMFWeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e78-429ae3135d47e3b020c4c7a1;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Z8thSamrCRejcAcQEGAp4WpSMzMEvstuZtVpKAjiCH4dyJyf1yihBA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:50:11 GMT
age: 74185
etag: "d07d6145182f312f3ed86ecf96b4ffa175416fa0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F937deb9c-e12c-486f-bf82-4833aed00836.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11443 bytes)
Hash
d08081e2dd562ef50e4e98ebc0136698
b5118bca37feda2ada3001199dc1d80ac6d2aacc
5160333e0cfd338b3887972d0a5c0f817ef88b70b7eb78e4e25d153a85e3478f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F937deb9c-e12c-486f-bf82-4833aed00836.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11443
x-amzn-requestid: 21469d81-ee4b-47f3-8877-b6658b3ea8b8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfHDHE4zoAMFvfw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891ee0-5b39eddd703ea04e6a1355f8;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:38:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nPuZoyOu_QAqbZvTUaNy1J3BOqnR2ttrIhv9BwRmWnKeba-e6MZWKA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:55:34 GMT
age: 73862
etag: "b5118bca37feda2ada3001199dc1d80ac6d2aacc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.7 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.7 kB (7732 bytes)
Hash
379a4a1b95d3aa3c5a4f8e7f9abb030f
d45dceb3dc58a07197aa5077582b5b1cd2ff791a
1b92dec5bf90beffbcd9060052b8788f08645dd4ba34219f7ddb2d40bbd2d151

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7732
x-amzn-requestid: 3781c2b7-082a-468a-a186-f7483494e749
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoEq3IAMFnKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-679fe9f905e07abf4e6a812c;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FhCtGsjgnq83-zRNBH-y9BHUh2IRaN0ahO-BCUw7bTWU8jAanBqdlA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:53:35 GMT
age: 73981
etag: "d45dceb3dc58a07197aa5077582b5b1cd2ff791a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

6.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
6.2 kB (6174 bytes)
Hash
b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 06:00:48 GMT
age: 44748
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8863 bytes)
Hash
156e9ea97b774cbd8361072e4041b6c8
fc71ae3cae92ed6011904bb2367f23bf4e69fab4
58d953c19ebbbdfc3965bbe3f52308d4702deaf4d0c029f4674bcb862da138af

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8863
x-amzn-requestid: 798d014b-0f9c-4787-a676-8f5e8fae3d11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdG14HBNIAMFdWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851bf-7549feac6d476a8512676412;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: r_0F64VpyutAOJ9IcTWrs3Sv--fhKiwKsV1FW0fOMSRt1QLLPxvJzg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 10:51:17 GMT
age: 27319
etag: "fc71ae3cae92ed6011904bb2367f23bf4e69fab4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

216.58.211.3

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
216.58.211.3:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 18:26:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

youraddictads.com/

199.79.54.235

200 OK

363 kB

URL HTTP/1.1
youraddictads.com/
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2018)
Size
363 kB (362985 bytes)
Hash
9acf7ab91b67dded29d7ba55bbd8fd32
28acd24321682cea6e41b8dfeadb32584f59f5a0
e44642f1fb44d3c376aea9c73ab5b82ce4203ce7dc33e093b682ecf9c9d2e7f6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET / HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:35 GMT
Server: Apache/2.4.6
X-Powered-By: PHP/7.2.24
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Pingback: https://youraddictads.com/xmlrpc.php
Link: <https://youraddictads.com/wp-json/>; rel="https://api.w.org/", <https://youraddictads.com/>; rel=shortlink
Set-Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l; path=/
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8

youraddictads.com/wp-content/themes/themify-ultra/themify/themify-builder/css/themify-builder-style.min.css?ver=4.0.6

199.79.54.235

200 OK

112 kB

URL HTTP/1.1
youraddictads.com/wp-content/themes/themify-ultra/themify/themify-builder/css/themify-builder-style.min.css?ver=4.0.6
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (65536), with no line terminators
Size
112 kB (112176 bytes)
Hash
8935b0aef2e06c60b6ed4c394b01f290
63afa5db793636f3dfffdc30ccbfeb8bfeb4362b
5a5d0e4e6d99c9d8bee724625787743bf95d717908dcd017f9bb17ddd6acdc18

HTTP Headers

GET /wp-content/themes/themify-ultra/themify/themify-builder/css/themify-builder-style.min.css?ver=4.0.6 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "1b630-5b5ce8d324980"
Accept-Ranges: bytes
Content-Length: 112176
Keep-Alive: timeout=10, max=398
Connection: Keep-Alive
Content-Type: text/css

youraddictads.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0

199.79.54.235

200 OK

7.9 kB

URL HTTP/1.1
youraddictads.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (7855), with no line terminators
Size
7.9 kB (7855 bytes)
Hash
f5c25c9c6d60162ba8865649b89e56fc
520fa90c637f9e93f16ec3674136c61a0c1e3d60
337c515e1a749dfe4d3fc568c830b631f7ed4de0a1ee9ba28ed5c8c430ec1f9a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Thu, 13 May 2021 01:31:15 GMT
ETag: "1eaf-5c22c154af2d3"
Accept-Ranges: bytes
Content-Length: 7855
Keep-Alive: timeout=10, max=397
Connection: Keep-Alive
Content-Type: application/javascript

youraddictads.com/wp-content/themes/themify-ultra/themify/js/main.min.js?ver=4.0.6

199.79.54.235

200 OK

14 kB

URL HTTP/1.1
youraddictads.com/wp-content/themes/themify-ultra/themify/js/main.min.js?ver=4.0.6
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (539)
Size
14 kB (14457 bytes)
Hash
302ab4371f38b629773726281892acb1
a90b74914f556a7c3bdb99666b289c77e15c3fc7
7841aae065d60f39eda84e495473eef8ec9a58991e5a455e1a322b415f6a15b0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/themify-ultra/themify/js/main.min.js?ver=4.0.6 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "3879-5b5ce8d31015e"
Accept-Ranges: bytes
Content-Length: 14457
Keep-Alive: timeout=10, max=399
Connection: Keep-Alive
Content-Type: application/javascript

youraddictads.com/wp-includes/js/comment-reply.min.js?ver=4.6.25

199.79.54.235

200 OK

1.1 kB

URL HTTP/1.1
youraddictads.com/wp-includes/js/comment-reply.min.js?ver=4.6.25
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (1076), with no line terminators
Size
1.1 kB (1076 bytes)
Hash
9ef21a469fc37e845d6303fcfea70897
a86ec94ec7bee9227bcdf8d6374cabe82ae43e49
6b2e2d56e7b0e80d919bc65dd94f8cd95e57ad9298fc4fecc005301ea8339c9f

HTTP Headers

GET /wp-includes/js/comment-reply.min.js?ver=4.6.25 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Thu, 13 May 2021 01:31:15 GMT
ETag: "434-5c22c154ae71b"
Accept-Ranges: bytes
Content-Length: 1076
Keep-Alive: timeout=10, max=396
Connection: Keep-Alive
Content-Type: application/javascript

youraddictads.com/wp-content/themes/themify-ultra/themify/js/themify.sidemenu.min.js?ver=2.0.2

199.79.54.235

200 OK

1.7 kB

URL HTTP/1.1
youraddictads.com/wp-content/themes/themify-ultra/themify/js/themify.sidemenu.min.js?ver=2.0.2
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (522)
Size
1.7 kB (1683 bytes)
Hash
29095d9507a0d3f5a5a4cd98bc6dc45c
ec8b6a41b582de4442f5ab65a8b84a89bc27b29d
c8c7bec2d01fa7a753c5400fa3088833b5333489c282e30f1a76ae6881f07712

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/themify-ultra/themify/js/themify.sidemenu.min.js?ver=2.0.2 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "693-5b5ce8d3114e6"
Accept-Ranges: bytes
Content-Length: 1683
Keep-Alive: timeout=10, max=398
Connection: Keep-Alive
Content-Type: application/javascript

youraddictads.com/wp-includes/js/wp-embed.min.js?ver=4.6.25

199.79.54.235

200 OK

1.4 kB

URL HTTP/1.1
youraddictads.com/wp-includes/js/wp-embed.min.js?ver=4.6.25
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (1384), with no line terminators
Size
1.4 kB (1384 bytes)
Hash
2a9a2f64687bc94523f4c50c9335cc0f
33c874cafe5df3ea8c8756be8642f675f9cf5289
4114f99c5992bab27f43ae5e3c7c196ce63fac0b4b43915af913c1a30ca1f3da

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/wp-embed.min.js?ver=4.6.25 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Thu, 13 May 2021 01:31:15 GMT
ETag: "568-5c22c154b065b"
Accept-Ranges: bytes
Content-Length: 1384
Keep-Alive: timeout=10, max=397
Connection: Keep-Alive
Content-Type: application/javascript

youraddictads.com/wp-content/themes/themify-ultra/js/themify.script.min.js?ver=2.0.2

199.79.54.235

200 OK

38 kB

URL HTTP/1.1
youraddictads.com/wp-content/themes/themify-ultra/js/themify.script.min.js?ver=2.0.2
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (757)
Size
38 kB (38458 bytes)
Hash
a82686deef90701aba1e58089e634b71
d84962da94e807975953c19e70f26c623de3d442
46a6cdc25e0a6aff4eeb1cfb97b2c581b48492b335994aa3ac3b37b5d8caf03c

HTTP Headers

GET /wp-content/themes/themify-ultra/js/themify.script.min.js?ver=2.0.2 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:39 GMT
ETag: "963a-5b5ce8d294ca8"
Accept-Ranges: bytes
Content-Length: 38458
Keep-Alive: timeout=10, max=397
Connection: Keep-Alive
Content-Type: application/javascript

youraddictads.com/assets/captcha.php?i=1670005595

199.79.54.235

200 OK

1.6 kB

URL HTTP/1.1
youraddictads.com/assets/captcha.php?i=1670005595
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 70x30, components 3\012- data
Size
1.6 kB (1627 bytes)
Hash
e0764d081c2db48b93275f4d48538c89
2cffc2db9e71159c189b020efe6a9ca3c6544026
dbb85b316ffad2ec5b2106300f429bf851a41068bc0d97929765baf47e486806

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /assets/captcha.php?i=1670005595 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
X-Powered-By: PHP/7.2.24
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Keep-Alive: timeout=10, max=396
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg

youraddictads.com/favicon.ico

199.79.54.235

200 OK

0 B

URL HTTP/1.1
youraddictads.com/favicon.ico
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
X-Powered-By: PHP/7.2.24
Keep-Alive: timeout=10, max=398
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/vnd.microsoft.icon

youraddictads.com/img/lightgray.jpg

199.79.54.235

200 OK

7.3 kB

URL HTTP/1.1
youraddictads.com/img/lightgray.jpg
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Size
7.3 kB (7338 bytes)
Hash
1765390f37767ba82b57919d8ef9f21d
0fadbaa93fcafb216b083fd3dc59902ff198e84e
bcfe50758f3e1b6872974912d881ba3f28bdb331663e18299e96d5a79aebfa6d

HTTP Headers

GET /img/lightgray.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1caa-5b5ce8b2ac1c5"
Accept-Ranges: bytes
Content-Length: 7338
Keep-Alive: timeout=10, max=396
Connection: Keep-Alive
Content-Type: image/jpeg

youraddictads.com/img/gray.jpg

199.79.54.235

200 OK

4.9 kB

URL HTTP/1.1
youraddictads.com/img/gray.jpg
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Size
4.9 kB (4871 bytes)
Hash
629e847f10043d90c40361bc95bd8c98
514ec3d33099389652d256700c97aeeada9a98b2
8d495f5adbdb20b0a473617caf21307c59ac5937733157024a2a670818a2f3c1

HTTP Headers

GET /img/gray.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1307-5b5ce8b2a1db4"
Accept-Ranges: bytes
Content-Length: 4871
Keep-Alive: timeout=10, max=395
Connection: Keep-Alive
Content-Type: image/jpeg

youraddictads.com/img/lightblue.jpg

199.79.54.235

200 OK

7.3 kB

URL HTTP/1.1
youraddictads.com/img/lightblue.jpg
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Size
7.3 kB (7341 bytes)
Hash
a09c826b65132a7b1b55b341565da7f9
f53376c1750bee0276caabab40a84a42cb3af040
c8e5f51c757b8829d85be8def536f82a50864315764380c02d9dbd46be3484bd

HTTP Headers

GET /img/lightblue.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1cad-5b5ce8b2ac1c5"
Accept-Ranges: bytes
Content-Length: 7341
Keep-Alive: timeout=10, max=395
Connection: Keep-Alive
Content-Type: image/jpeg

youraddictads.com/img/black.jpg

199.79.54.235

200 OK

4.9 kB

URL HTTP/1.1
youraddictads.com/img/black.jpg
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Size
4.9 kB (4872 bytes)
Hash
0eaf126f3e32f57a6a257f058a38c8cd
4b9dc11ee9e6c839db6ba64d568abce6329105f4
cd27bb445311d690f07866b1ec1d125000ddff783582c784a9ba27060629a06e

HTTP Headers

GET /img/black.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1308-5b5ce8b292f6a"
Accept-Ranges: bytes
Content-Length: 4872
Keep-Alive: timeout=10, max=397
Connection: Keep-Alive
Content-Type: image/jpeg

youraddictads.com/img/blue.jpg

199.79.54.235

200 OK

7.7 kB

URL HTTP/1.1
youraddictads.com/img/blue.jpg
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Size
7.7 kB (7724 bytes)
Hash
8da11127b1926547be84f8cb906c8d36
6923e6f0f15531752bbc15475342c3a74416a1fc
6252db88debd2746fd6f7d921e0067096b6efbe23ee2a20ebc94547533567895

HTTP Headers

GET /img/blue.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1e2c-5b5ce8b2a1db4"
Accept-Ranges: bytes
Content-Length: 7724
Keep-Alive: timeout=10, max=396
Connection: Keep-Alive
Content-Type: image/jpeg

youraddictads.com/wp-content/themes/themify-ultra/themify/themify-builder/js/themify.builder.script.min.js?ver=4.0.6

199.79.54.235

200 OK

35 kB

URL HTTP/1.1
youraddictads.com/wp-content/themes/themify-ultra/themify/themify-builder/js/themify.builder.script.min.js?ver=4.0.6
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (556)
Size
35 kB (35282 bytes)
Hash
65cc768c2f28983717d8e424c20dd09d
b8cb91555866329823ac8f7829be44633c5bd2cd
d5e09d06b3f50041ac8f3e7f70bfa35c3b6d4946dd03ef77b48f163f97b3a4ff

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/themify-ultra/themify/themify-builder/js/themify.builder.script.min.js?ver=4.0.6 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "89d2-5b5ce8d34ba85"
Accept-Ranges: bytes
Content-Length: 35282
Keep-Alive: timeout=10, max=397
Connection: Keep-Alive
Content-Type: application/javascript

youraddictads.com/img/green.jpg

199.79.54.235

200 OK

7.3 kB

URL HTTP/1.1
youraddictads.com/img/green.jpg
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Size
7.3 kB (7340 bytes)
Hash
5784bebf693fe7c366aeb7b7f6783e23
2418279ba1e680c4fefb25541157b73263098fc9
700246614918bcba22d645281c622a0e21ce10af481db9e294fb513da20b1411

HTTP Headers

GET /img/green.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1cac-5b5ce8b2a1db4"
Accept-Ranges: bytes
Content-Length: 7340
Keep-Alive: timeout=10, max=394
Connection: Keep-Alive
Content-Type: image/jpeg

youraddictads.com/wp-content/themes/themify-ultra/themify/fontawesome/css/font-awesome.min.css?ver=4.0.6

199.79.54.235

200 OK

30 kB

URL HTTP/1.1
youraddictads.com/wp-content/themes/themify-ultra/themify/fontawesome/css/font-awesome.min.css?ver=4.0.6
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (30026)
Size
30 kB (30186 bytes)
Hash
9618f53449167217df499cf8ce143033
9e3d3db493b40158484647cfc4c5a3247720170d
6e95d9454ed2a0f4aaaf16b09b3591ed5d7392f1d4869c8d77a1a1a93fdcf726

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/themify-ultra/themify/fontawesome/css/font-awesome.min.css?ver=4.0.6 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "75ea-5b5ce8d301ecc"
Accept-Ranges: bytes
Content-Length: 30186
Keep-Alive: timeout=10, max=395
Connection: Keep-Alive
Content-Type: text/css

youraddictads.com/img/lightgreen.jpg

199.79.54.235

200 OK

7.3 kB

URL HTTP/1.1
youraddictads.com/img/lightgreen.jpg
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Size
7.3 kB (7342 bytes)
Hash
9f65a44869636a19c695dc660ede1230
9a39f8661ea1d70768ad180fd9b01ead406459cb
3cfbd9ceb2a1597ee1e63e8bc5298df1598ee5d0169f8453820bc49a4e5778b0

HTTP Headers

GET /img/lightgreen.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1cae-5b5ce8b2ac1c5"
Accept-Ranges: bytes
Content-Length: 7342
Keep-Alive: timeout=10, max=394
Connection: Keep-Alive
Content-Type: image/jpeg

youraddictads.com/img/purple.jpg

199.79.54.235

200 OK

7.3 kB

URL HTTP/1.1
youraddictads.com/img/purple.jpg
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Size
7.3 kB (7340 bytes)
Hash
3b28106ff3c704109f6842a7895710ea
06c7d9018d8f5271fa894f4689fdc827245879b0
e7b570f4ecbc7006a2b9386f6f014c65437d11d1b3ecde6ccf290afa633884ca

HTTP Headers

GET /img/purple.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1cac-5b5ce8b2aecbd"
Accept-Ranges: bytes
Content-Length: 7340
Keep-Alive: timeout=10, max=396
Connection: Keep-Alive
Content-Type: image/jpeg

youraddictads.com/img/lightpurple.jpg

199.79.54.235

200 OK

7.3 kB

URL HTTP/1.1
youraddictads.com/img/lightpurple.jpg
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Size
7.3 kB (7342 bytes)
Hash
1ece9351bdb31a1aabd345e59ef3347b
295b4a06bdd2921862dfa251d833ff4c2aff2172
169490f8bb66d0afd0e0b6f4185fdd3468a5ea85873ea847d5a1efc94d73d4e9

HTTP Headers

GET /img/lightpurple.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1cae-5b5ce8b2ae8d5"
Accept-Ranges: bytes
Content-Length: 7342
Keep-Alive: timeout=10, max=395
Connection: Keep-Alive
Content-Type: image/jpeg

youraddictads.com/img/brown.jpg

199.79.54.235

200 OK

7.3 kB

URL HTTP/1.1
youraddictads.com/img/brown.jpg
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Size
7.3 kB (7341 bytes)
Hash
34560fbdb297b5e536e82b529d43b6c2
907758d9378e11105869fb497fcd8997e001260e
97d9c4e4a2de3dd2d8139f9e99b84850e29220c622e34feaadad35b22de2be08

HTTP Headers

GET /img/brown.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1cad-5b5ce8b2a1db4"
Accept-Ranges: bytes
Content-Length: 7341
Keep-Alive: timeout=10, max=396
Connection: Keep-Alive
Content-Type: image/jpeg

youraddictads.com/img/yellow.jpg

199.79.54.235

200 OK

7.3 kB

URL HTTP/1.1
youraddictads.com/img/yellow.jpg
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Size
7.3 kB (7342 bytes)
Hash
6d1a9d7297995a06085527dac3b7483b
61d5ba2926861165a852677c6e532e04d2f00b61
2e0d91472ba0c6d3f77c0a46a7485a9692f06db0028e8ca0eb8662068414ec80

HTTP Headers

GET /img/yellow.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1cae-5b5ce8b2af0a5"
Accept-Ranges: bytes
Content-Length: 7342
Keep-Alive: timeout=10, max=393
Connection: Keep-Alive
Content-Type: image/jpeg

youraddictads.com/img/red.jpg

199.79.54.235

200 OK

7.3 kB

URL HTTP/1.1
youraddictads.com/img/red.jpg
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Size
7.3 kB (7342 bytes)
Hash
669eae069f71ca43db2533e62f18889d
fc4f2bdfbb1bb4c5297439ed2c298209b80b1d6e
a6009eed3e338b8287232d1ac185be04b380ec314d30068bcdc8ae90e9db25af

HTTP Headers

GET /img/red.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1cae-5b5ce8b2aecbd"
Accept-Ranges: bytes
Content-Length: 7342
Keep-Alive: timeout=10, max=394
Connection: Keep-Alive
Content-Type: image/jpeg

youraddictads.com/img/pink.jpg

199.79.54.235

200 OK

7.3 kB

URL HTTP/1.1
youraddictads.com/img/pink.jpg
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Size
7.3 kB (7342 bytes)
Hash
4610a2f3da0c89d5d41bf88d69e988a2
edb20d37441db03cdfba1038288f43e0ecc8cd5d
844c4e35b1254fe991f916227ad7df36234f28385af632a81847215d66c8781e

HTTP Headers

GET /img/pink.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1cae-5b5ce8b2ae8d5"
Accept-Ranges: bytes
Content-Length: 7342
Keep-Alive: timeout=10, max=393
Connection: Keep-Alive
Content-Type: image/jpeg

youraddictads.com/wp-content/themes/themify-ultra/themify/themify-icons/themify-icons.min.css?ver=4.0.6

199.79.54.235

200 OK

14 kB

URL HTTP/1.1
youraddictads.com/wp-content/themes/themify-ultra/themify/themify-icons/themify-icons.min.css?ver=4.0.6
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
ASCII text, with very long lines (13799), with no line terminators
Size
14 kB (13799 bytes)
Hash
977cdc661cca6130ad46f7f3e7374a22
b92618558e9b13546e828114ff92671d6d4a2de2
79c3035d99f2140aa59ccd65280452325495aa29db96c6c7c3271369731c92e5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/themify-ultra/themify/themify-icons/themify-icons.min.css?ver=4.0.6 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "35e7-5b5ce8d356666"
Accept-Ranges: bytes
Content-Length: 13799
Keep-Alive: timeout=10, max=395
Connection: Keep-Alive
Content-Type: text/css

youraddictads.com/wp-content/themes/themify-ultra/themify/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0

199.79.54.235

200 OK

77 kB

URL HTTP/1.1
youraddictads.com/wp-content/themes/themify-ultra/themify/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP
199.79.54.235:0
ASN
#46309 TONAQUINT-DC

File type
Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Size
77 kB (77160 bytes)
Hash
af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe

HTTP Headers

GET /wp-content/themes/themify-ultra/themify/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://youraddictads.com/wp-content/themes/themify-ultra/themify/fontawesome/css/font-awesome.min.css?ver=4.0.6
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin

HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "12d68-5b5ce8d303255"
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=10, max=395
Connection: Keep-Alive

fonts.googleapis.com/css?family=Open+Sans%3A400italic%2C600italic%2C700italic%2C400%2C300%2C600%2C700%7CFugaz+One&subset=latin&ver=4.6.25

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans%3A400italic%2C600italic%2C700italic%2C400%2C300%2C600%2C700%7CFugaz+One&subset=latin&ver=4.6.25
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Open+Sans%3A400italic%2C600italic%2C700italic%2C400%2C300%2C600%2C700%7CFugaz+One&subset=latin&ver=4.6.25 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 18:26:35 GMT
date: Fri, 02 Dec 2022 18:26:35 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (23)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations