r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 3bbb845b153026fc5332dd4506585b57
3cad200fac28fd00f34ce6ef79373e661e188743
6035871c0de6ff2d120921461207cfa32bc286e1fe78849ce74815ffbb9ff950
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6035871C0DE6FF2D120921461207CFA32BC286E1FE78849CE74815FFBB9FF950"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2954
Expires: Fri, 02 Dec 2022 19:15:48 GMT
Date: Fri, 02 Dec 2022 18:26:34 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7439fb99a444b66db1e68ffbfaa38451
4b7742d7956485906f1c392c478515ff89a46184
636327ce88f733e5a1d39af212f97242717a39ce20edaef330fafea238e3a309
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5670
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 18:26:34 GMT
Last-Modified: Fri, 02 Dec 2022 16:52:04 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 55b4c61a1e99001307750e3647fe1102
7559f9f6770b7d3f45b723167062096312641e08
39f6bb64420bcfc8f0b010168fd35b67732984cd0698409f04d5ae40410422aa
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "39F6BB64420BCFC8F0B010168FD35B67732984CD0698409F04D5AE40410422AA"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8038
Expires: Fri, 02 Dec 2022 20:40:32 GMT
Date: Fri, 02 Dec 2022 18:26:34 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
34.102.187.140200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 14cd9a0afb6ba9a763651d5112760d1e
75d7b104ab9ab11fbb73c3f348b43b0119b5adfa
4e32a117106be587ffcd63239c16a8117eb7840830d4c9decf6527761967532e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Retry-After, Alert, Backoff, Content-Length, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Fri, 02 Dec 2022 18:19:57 GMT
cache-control: public,max-age=3600
content-type: application/json
age: 397
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 9ebddc2b260d081ebbefee47c037cb28
492bad62a7ca6a74738921ef5ae6f0be5edebf39
74bbb7cba16f7d084a08a0907d47d7496e5c148f904707ec6950f8f6a61027e5
GET /chains/remote-settings.content-signature.mozilla.org-2022-12-30-09-21-26.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: 5Hy6hBow7G0XlqFI1t6wLv/WNk+K1AwEu5I3AwPHdnUJh9J2HUCwLnvn7+QqvLIuwBHxr03H/r8=
x-amz-request-id: Q63XGKCF463EGABY
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 02 Dec 2022 17:46:12 GMT
age: 2422
last-modified: Thu, 10 Nov 2022 09:21:27 GMT
etag: "9ebddc2b260d081ebbefee47c037cb28"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
youraddictads.com/
199.79.54.235301 Moved Permanently 0 B IP 199.79.54.235:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 02 Dec 2022 18:26:34 GMT
Server: Apache/2.4.6
X-Powered-By: PHP/7.2.24
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Pingback: http://youraddictads.com/xmlrpc.php
Set-Cookie: PHPSESSID=4ltl8dl1cgcu1e9lqfcvq8un22; path=/
Location: https://youraddictads.com/
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 02 Dec 2022 18:26:34 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
34.102.187.140200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 34.102.187.140:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Length, Pragma, Last-Modified, ETag, Alert, Expires, Retry-After, Cache-Control, Backoff, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Fri, 02 Dec 2022 18:08:57 GMT
cache-control: public,max-age=3600
age: 1057
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash be2c860effe96a0a1ac92ff66fd6d9a5
476b7892937eae4b8e2a0cf36ec0baabfa7f92d9
73f969d9b1f21dd33a00474b5bd9f1824ca302c1f06bcf86b0f2a3354096e148
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "73F969D9B1F21DD33A00474B5BD9F1824CA302C1F06BCF86B0F2A3354096E148"
Last-Modified: Wed, 30 Nov 2022 22:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Sat, 03 Dec 2022 00:26:35 GMT
Date: Fri, 02 Dec 2022 18:26:35 GMT
Connection: keep-alive
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 7f1f8fc556d1f7e0aea3e1208ee2fd1c
09c341a56ff876479cfc8a0505a5fef4a5d110f1
65adcf58887bcc23f73379f74ab19a61cfbb93285c95c64b44a6716eeacc1482
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5671
Cache-Control: max-age=144890
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 18:26:35 GMT
Etag: "6389c02e-1d7"
Expires: Sun, 04 Dec 2022 10:41:25 GMT
Last-Modified: Fri, 02 Dec 2022 09:06:54 GMT
Server: ECS (ska/F71C)
X-Cache: HIT
Content-Length: 471
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 18:26:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
push.services.mozilla.com/
35.165.176.211101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.165.176.211:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: B1aAjcn2B9CCFw8aANtcyg==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: CUJKHZwcbhHVesG4Gmt3PEdGFy0=
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 05917f7542a781275c12d43562be1507
1ea730e7e2b5a84fb0341ef9a64b141a4dd469b3
2f24492a077b583bd9dfe049c16c60b219d950712879f187ff2160214df9bd0e
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 18:26:35 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
youraddictads.com/wp-content/themes/themify-ultra/themify/css/themify.common.min.css?ver=4.6.25
199.79.54.235200 OK 4.5 kB URL HTTP/1.1 youraddictads.com/wp-content/themes/themify-ultra/themify/css/themify.common.min.css?ver=4.6.25
IP 199.79.54.235:0
File type ASCII text, with very long lines (4541), with no line terminators
Hash 812b87ed1f50aff879d6736058f95b05
0dfdfe7a18b3e405db84a23e69d7bec1be198b4a
9aa672d5c339349706e71667197546570f3ceef3e844e3537fdb53e3e4e5a79d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-ultra/themify/css/themify.common.min.css?ver=4.6.25 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:35 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "11bd-5b5ce8d2ff3d4"
Accept-Ranges: bytes
Content-Length: 4541
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Content-Type: text/css
youraddictads.com/wp-content/plugins/cookie-notice/css/front.min.css?ver=4.6.25
199.79.54.235200 OK 2.8 kB URL HTTP/1.1 youraddictads.com/wp-content/plugins/cookie-notice/css/front.min.css?ver=4.6.25
IP 199.79.54.235:0
File type ASCII text, with very long lines (2752), with no line terminators
Hash 93fe20a52b4558c24e1567e4c69e01bf
dfaf1c3fca2324ebbc7ef395d9611dde4e6bb928
1449fa9e433ff2969bbe27d637ce1771846dcc0c95b2ceace9e6bd178dba4580
GET /wp-content/plugins/cookie-notice/css/front.min.css?ver=4.6.25 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:35 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:39 GMT
ETag: "ac0-5b5ce8d21af63"
Accept-Ranges: bytes
Content-Length: 2752
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Content-Type: text/css
youraddictads.com/wp-content/uploads/themify-css/themify-builder-2-generated.css?ver=1607273620
199.79.54.235200 OK 447 B URL HTTP/1.1 youraddictads.com/wp-content/uploads/themify-css/themify-builder-2-generated.css?ver=1607273620
IP 199.79.54.235:0
Hash e1b77f73cd4dfdda64e12e59f20bb3c0
36f6059ce4c495d523390e72137e2df38e9e965a
b3bd2d114ded717aa9585a5a107ea68f9c2ee186523f291648afcd0dbf6f3f9d
GET /wp-content/uploads/themify-css/themify-builder-2-generated.css?ver=1607273620 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:35 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "1bf-5b5ce8d365898"
Accept-Ranges: bytes
Content-Length: 447
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Content-Type: text/css
youraddictads.com/wp-content/uploads/themify-customizer.css?ver=18.08.09.00.12.43
199.79.54.235200 OK 2.2 kB URL HTTP/1.1 youraddictads.com/wp-content/uploads/themify-customizer.css?ver=18.08.09.00.12.43
IP 199.79.54.235:0
Hash cbb19a07ddf180c3258ac6267c3b20dc
31d850eb341b26dfa4ac1f88cdf1e7c8d75f2c57
c1e4834208f80424752d874a4a6579833c4ce80c2fef07924b36c405770f4f21
GET /wp-content/uploads/themify-customizer.css?ver=18.08.09.00.12.43 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:35 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "8a6-5b5ce8d366068"
Accept-Ranges: bytes
Content-Length: 2214
Keep-Alive: timeout=10, max=399
Connection: Keep-Alive
Content-Type: text/css
youraddictads.com/wp-content/themes/themify-ultra/media-queries.min.css?ver=2.0.2
199.79.54.235200 OK 22 kB URL HTTP/1.1 youraddictads.com/wp-content/themes/themify-ultra/media-queries.min.css?ver=2.0.2
IP 199.79.54.235:0
File type ASCII text, with very long lines (22022), with no line terminators
Hash f214871872c930755cb20b2b7dcb2726
0231d0bc98e09cf6a8adf2a3508e50b2a83140be
dc40b8e832b5c01032f2267ada222977f5438acdea92dc016da6f4d3fd7bd3ba
GET /wp-content/themes/themify-ultra/media-queries.min.css?ver=2.0.2 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:35 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:39 GMT
ETag: "5606-5b5ce8d298359"
Accept-Ranges: bytes
Content-Length: 22022
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Content-Type: text/css
youraddictads.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
199.79.54.235200 OK 10 kB URL HTTP/1.1 youraddictads.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1
IP 199.79.54.235:0
File type ASCII text, with very long lines (9959)
Hash 7121994eec5320fbe6586463bf9651c2
90532aff6d4121954254cdf04994d834f7ec169b
48eb8b500ae6a38617b5738d2b3faec481922a7782246e31d2755c034a45cd5d
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=1.4.1 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:35 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "2748-5b5ce8d381203"
Accept-Ranges: bytes
Content-Length: 10056
Keep-Alive: timeout=10, max=399
Connection: Keep-Alive
Content-Type: application/javascript
youraddictads.com/wp-content/plugins/cookie-notice/js/front.min.js?ver=1.2.44
199.79.54.235200 OK 5.4 kB URL HTTP/1.1 youraddictads.com/wp-content/plugins/cookie-notice/js/front.min.js?ver=1.2.44
IP 199.79.54.235:0
File type ASCII text, with very long lines (5360), with no line terminators
Hash 92231510d69792ca4a5a9b3784ed9c14
a7748df6a7e2eb5dc54cd42372788b80b2a4e893
b82eefb6a4f332f80cf77897057def50d542447398557c6be322d86a3ebe613b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/cookie-notice/js/front.min.js?ver=1.2.44 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:39 GMT
ETag: "14f0-5b5ce8d21b733"
Accept-Ranges: bytes
Content-Length: 5360
Keep-Alive: timeout=10, max=398
Connection: Keep-Alive
Content-Type: application/javascript
youraddictads.com/wp-content/themes/themify-ultra/style.min.css?ver=2.0.2
199.79.54.235200 OK 93 kB URL HTTP/1.1 youraddictads.com/wp-content/themes/themify-ultra/style.min.css?ver=2.0.2
IP 199.79.54.235:0
File type ASCII text, with very long lines (65536), with no line terminators
Hash ba0d955cd470d70c134e067c9de0c018
381ef21cbcdd509c98f9220c454c4e17a0d31de4
85f3f2fa2da891f14253b000ddc2ee667fea9e4d957a0610c955c0a014440825
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-ultra/style.min.css?ver=2.0.2 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:35 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "16b2a-5b5ce8d2e0f71"
Accept-Ranges: bytes
Content-Length: 92970
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Content-Type: text/css
youraddictads.com/assets/css/emojionearea.css
199.79.54.235200 OK 27 kB URL HTTP/1.1 youraddictads.com/assets/css/emojionearea.css
IP 199.79.54.235:0
File type ASCII text, with very long lines (2695)
Hash fafb8b8340530faddcea421acef71167
7c66f634b382ef143789b63b8b61ea580df213fa
34baef81e5e2fb4daaf5a016704c851862487daf065e3e203b42be9c81496930
GET /assets/css/emojionearea.css HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:01 GMT
ETag: "680b-5b5ce8ae720cc"
Accept-Ranges: bytes
Content-Length: 26635
Keep-Alive: timeout=10, max=399
Connection: Keep-Alive
Content-Type: text/css
youraddictads.com/assets/css/styles.css
199.79.54.235200 OK 13 kB URL HTTP/1.1 youraddictads.com/assets/css/styles.css
IP 199.79.54.235:0
Hash 63ad1dbed4d459c3a649ce17a59aee01
81a6fbbdac6a8a3ac7998a7a01fb175066df5da0
4ea1f6036a1bd1da5b1cd9927f47092706793dba03ae083ff418e86fea45d09b
GET /assets/css/styles.css HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:01 GMT
ETag: "3171-5b5ce8ae8c2c7"
Accept-Ranges: bytes
Content-Length: 12657
Keep-Alive: timeout=10, max=398
Connection: Keep-Alive
Content-Type: text/css
youraddictads.com/assets/css/msdropdown/dd.css
199.79.54.235200 OK 4.4 kB URL HTTP/1.1 youraddictads.com/assets/css/msdropdown/dd.css
IP 199.79.54.235:0
Hash c7933a20a915d9d2a241c40f567100f1
ce7fae59a88190c8362ec1b8b7223c1267d1205b
7187fe6065df418d6760efdb6b0e3bb9b2db4751ad9c246e2b12cb2308a11062
GET /assets/css/msdropdown/dd.css HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:01 GMT
ETag: "112e-5b5ce8ae76334"
Accept-Ranges: bytes
Content-Length: 4398
Keep-Alive: timeout=10, max=397
Connection: Keep-Alive
Content-Type: text/css
youraddictads.com/assets/js/msdropdown/jquery.dd.min.js
199.79.54.235200 OK 21 kB URL HTTP/1.1 youraddictads.com/assets/js/msdropdown/jquery.dd.min.js
IP 199.79.54.235:0
File type ASCII text, with very long lines (20807)
Hash 343d2d60b986c216239aacd940ccd1fd
5ffa3817b619400bdf211ee1331ba69b02429e24
00d8d02d3a662722acdf0a4832b4c02c1eaf3011269df3d8d6e22578c627d2f5
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/msdropdown/jquery.dd.min.js HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:02 GMT
ETag: "52b3-5b5ce8af5ea0e"
Accept-Ranges: bytes
Content-Length: 21171
Keep-Alive: timeout=10, max=399
Connection: Keep-Alive
Content-Type: application/javascript
youraddictads.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
199.79.54.235200 OK 97 kB URL HTTP/1.1 youraddictads.com/wp-includes/js/jquery/jquery.js?ver=1.12.4
IP 199.79.54.235:0
File type ASCII text, with very long lines (31997)
Hash dc5ba5044fccc0297be7b262ce669a7c
f137ff98ae379e35b0702967d3b6866a0a40e3be
cf34e1b87bbfd9d9b185dec994924a496e279d8dc9387ad8d35bc0110134c4d3
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.js?ver=1.12.4 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:35 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 17:01:17 GMT
ETag: "17a6a-5b5cea86e3bdd"
Accept-Ranges: bytes
Content-Length: 96874
Keep-Alive: timeout=10, max=399
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 18:26:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 18:26:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
142.250.74.35200 OK 48 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 47952, version 1.0\012- data
Hash 17b406b7b8caa297435fa358e194f5a1
e2132f0e97781af56fa966c0fabb49132f2af203
84161c46238fff2c6920ebc28f02cddd7b710cf3d1107853f540b084320f6afd
GET /s/opensans/v34/memtYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWqWuU6F.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://youraddictads.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 47952
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:56:13 GMT
expires: Tue, 28 Nov 2023 18:56:13 GMT
cache-control: public, max-age=31536000
age: 343823
last-modified: Mon, 15 Aug 2022 18:22:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/fugazone/v15/rax_HiWKp9EAITukFsl8Axhf.woff2
142.250.74.35200 OK 11 kB URL HTTP/2 fonts.gstatic.com/s/fugazone/v15/rax_HiWKp9EAITukFsl8Axhf.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 11032, version 1.0\012- data
Hash a91609409ec13f59af2bb99818a3ea40
3e8580696e2e5d083bbc366f82bfc9e8cf5df194
79e8fb1228cec14f8ec640bfe4a41d30f1ef0f5ed919ae81b8018e54e0296a63
GET /s/fugazone/v15/rax_HiWKp9EAITukFsl8Axhf.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://youraddictads.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 11032
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 29 Nov 2022 23:26:51 GMT
expires: Wed, 29 Nov 2023 23:26:51 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 21 Apr 2022 17:05:57 GMT
content-type: font/woff2
age: 241185
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
142.250.74.35200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 142.250.74.35:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://youraddictads.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 28 Nov 2022 18:52:41 GMT
expires: Tue, 28 Nov 2023 18:52:41 GMT
cache-control: public, max-age=31536000
age: 344035
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
youraddictads.com/assets/js/emojionearea.js
199.79.54.235200 OK 94 kB URL HTTP/1.1 youraddictads.com/assets/js/emojionearea.js
IP 199.79.54.235:0
Hash cf211b3a7650bd259e741b205266414f
57e054e2f1b746ad6c79e504e04baca3c88d8655
a216520e97e2a5da5651bdc3778a50daeee0c271242c54adfa00aba1b6f6e062
Analyzer Verdict Alert fortinet Phishing
GET /assets/js/emojionearea.js HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:02 GMT
ETag: "16d5b-5b5ce8af4a5d4"
Accept-Ranges: bytes
Content-Length: 93531
Keep-Alive: timeout=10, max=398
Connection: Keep-Alive
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 18:26:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 18:26:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17212
Expires: Fri, 02 Dec 2022 23:13:28 GMT
Date: Fri, 02 Dec 2022 18:26:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17212
Expires: Fri, 02 Dec 2022 23:13:28 GMT
Date: Fri, 02 Dec 2022 18:26:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17212
Expires: Fri, 02 Dec 2022 23:13:28 GMT
Date: Fri, 02 Dec 2022 18:26:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17212
Expires: Fri, 02 Dec 2022 23:13:28 GMT
Date: Fri, 02 Dec 2022 18:26:36 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash ecab83d593cc540b02689be5be7abc8a
81cda579b7b9b22332b85266b0126585f3d3f73f
d469c5adb69f261084b016f8e24edf8b69b62d9f930ca2d85cf35375e2303ecc
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D469C5ADB69F261084B016F8E24EDF8B69B62D9F930CA2D85CF35375E2303ECC"
Last-Modified: Thu, 01 Dec 2022 09:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17212
Expires: Fri, 02 Dec 2022 23:13:28 GMT
Date: Fri, 02 Dec 2022 18:26:36 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
34.120.237.76200 OK 4.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cc0a257323f882caff067adb86d906e4
cedf2f21be7cd366bd46055b62b5513db3011dfc
c16a9296d5e840a468fef7fb2764b9f7d4b3131d7ade2ce4999de1eead5469e0
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F881a33ae-e81b-4603-85d9-a2242b17be66.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4803
x-amzn-requestid: ad2d9243-5e32-4faf-8ff3-b9abd3af1e89
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cb1_hEJJIAMF4Vg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6387d063-596f5833509112ee6cbedf54;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 21:51:31 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: PIC-TIeTFK_Y2AiqowYT4_8tMuzIKO23lAwx18fYepTf4PIWkmLqkQ==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 82ea95080f526df99896343fb7269b06.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 05:20:15 GMT
age: 47181
etag: "cedf2f21be7cd366bd46055b62b5513db3011dfc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash cd78aa69439c995167f32b8a41a1f4f6
d07d6145182f312f3ed86ecf96b4ffa175416fa0
3b08cf3fad31ee0cf3ee25abc2484fb4283543865a42dfc568b14f9856fd3bb5
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fbb30f254-1327-487b-a297-00361bfd5c02.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7722
x-amzn-requestid: 8d7c4800-6c06-43ed-afa1-94840d42f591
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGy2Gr1IAMFWeQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891e78-429ae3135d47e3b020c4c7a1;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:36:56 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Z8thSamrCRejcAcQEGAp4WpSMzMEvstuZtVpKAjiCH4dyJyf1yihBA==
via: 1.1 4f87745990545c1ac0195c157e1668f8.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:50:11 GMT
age: 74185
etag: "d07d6145182f312f3ed86ecf96b4ffa175416fa0"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F937deb9c-e12c-486f-bf82-4833aed00836.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F937deb9c-e12c-486f-bf82-4833aed00836.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash d08081e2dd562ef50e4e98ebc0136698
b5118bca37feda2ada3001199dc1d80ac6d2aacc
5160333e0cfd338b3887972d0a5c0f817ef88b70b7eb78e4e25d153a85e3478f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F937deb9c-e12c-486f-bf82-4833aed00836.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 11443
x-amzn-requestid: 21469d81-ee4b-47f3-8877-b6658b3ea8b8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfHDHE4zoAMFvfw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891ee0-5b39eddd703ea04e6a1355f8;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:38:40 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: nPuZoyOu_QAqbZvTUaNy1J3BOqnR2ttrIhv9BwRmWnKeba-e6MZWKA==
via: 1.1 cd48ffda04934d18865e47e99ea080bc.cloudfront.net (CloudFront), 1.1 a3bd0eb50c22e4d5fbda56a30b96002c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:55:34 GMT
age: 73862
etag: "b5118bca37feda2ada3001199dc1d80ac6d2aacc"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg
34.120.237.76200 OK 7.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 379a4a1b95d3aa3c5a4f8e7f9abb030f
d45dceb3dc58a07197aa5077582b5b1cd2ff791a
1b92dec5bf90beffbcd9060052b8788f08645dd4ba34219f7ddb2d40bbd2d151
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F864be807-d5f6-42e3-bd58-f7641a256b9a.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7732
x-amzn-requestid: 3781c2b7-082a-468a-a186-f7483494e749
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cfGeoEq3IAMFnKg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63891df7-679fe9f905e07abf4e6a812c;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 21:34:47 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: FhCtGsjgnq83-zRNBH-y9BHUh2IRaN0ahO-BCUw7bTWU8jAanBqdlA==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 2bedbeaa49b4a77447d30097858cb81a.cloudfront.net (CloudFront), 1.1 google
date: Thu, 01 Dec 2022 21:53:35 GMT
age: 73981
etag: "d45dceb3dc58a07197aa5077582b5b1cd2ff791a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
34.120.237.76200 OK 6.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b986f9fcbeca91ed5c8d58fbfaf47d19
6e6c8bd2bce144cc4da1cd7be375b046b60dca79
07a8938d2841f8c13bd646f4e79e41e46acd6463aa019cd70871b3741f12bb4f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F683f066f-699d-4765-8f4f-33c72e1672e2.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6174
x-amzn-requestid: f78f1e9d-8c0c-495d-a862-61838f8297e8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cZ0iyH2WoAMFQdg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63870144-45442a8544259930564f685b;Sampled=0
x-amzn-remapped-date: Wed, 30 Nov 2022 07:07:48 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: QIOz71_Kr08pIIwOm2GUkWr421fO7-UyUI7LYld0JBaGnYQ0j3IDFg==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 d6a002c70d55f415107618b0750d493c.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 06:00:48 GMT
age: 44748
etag: "6e6c8bd2bce144cc4da1cd7be375b046b60dca79"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 156e9ea97b774cbd8361072e4041b6c8
fc71ae3cae92ed6011904bb2367f23bf4e69fab4
58d953c19ebbbdfc3965bbe3f52308d4702deaf4d0c029f4674bcb862da138af
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb582f62c-d1ce-4054-b87e-36be40dadfa4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8863
x-amzn-requestid: 798d014b-0f9c-4787-a676-8f5e8fae3d11
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: cdG14HBNIAMFdWg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-638851bf-7549feac6d476a8512676412;Sampled=0
x-amzn-remapped-date: Thu, 01 Dec 2022 07:03:27 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: r_0F64VpyutAOJ9IcTWrs3Sv--fhKiwKsV1FW0fOMSRt1QLLPxvJzg==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 5565a51537c689d1d16f6b4d41f40082.cloudfront.net (CloudFront), 1.1 google
date: Fri, 02 Dec 2022 10:51:17 GMT
age: 27319
etag: "fc71ae3cae92ed6011904bb2367f23bf4e69fab4"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
216.58.211.3200 OK 472 B IP 216.58.211.3:0
Hash 27002fde234e78c7bde340bc621e933f
1bdbe4f1861601b9300101a1e6b3c143ce077e03
48d453fd9ded729e4775519885c13140e44421fe5a8c07fc464c9a354a04ef8f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 02 Dec 2022 18:26:36 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
youraddictads.com/
199.79.54.235200 OK 363 kB IP 199.79.54.235:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (2018)
Size 363 kB (362985 bytes)
Hash 9acf7ab91b67dded29d7ba55bbd8fd32
28acd24321682cea6e41b8dfeadb32584f59f5a0
e44642f1fb44d3c376aea9c73ab5b82ce4203ce7dc33e093b682ecf9c9d2e7f6
Analyzer Verdict Alert fortinet Phishing
GET / HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:35 GMT
Server: Apache/2.4.6
X-Powered-By: PHP/7.2.24
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
X-Pingback: https://youraddictads.com/xmlrpc.php
Link: <https://youraddictads.com/wp-json/>; rel="https://api.w.org/", <https://youraddictads.com/>; rel=shortlink
Set-Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l; path=/
Keep-Alive: timeout=10, max=400
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/html; charset=UTF-8
youraddictads.com/wp-content/themes/themify-ultra/themify/themify-builder/css/themify-builder-style.min.css?ver=4.0.6
199.79.54.235200 OK 112 kB URL HTTP/1.1 youraddictads.com/wp-content/themes/themify-ultra/themify/themify-builder/css/themify-builder-style.min.css?ver=4.0.6
IP 199.79.54.235:0
File type ASCII text, with very long lines (65536), with no line terminators
Size 112 kB (112176 bytes)
Hash 8935b0aef2e06c60b6ed4c394b01f290
63afa5db793636f3dfffdc30ccbfeb8bfeb4362b
5a5d0e4e6d99c9d8bee724625787743bf95d717908dcd017f9bb17ddd6acdc18
GET /wp-content/themes/themify-ultra/themify/themify-builder/css/themify-builder-style.min.css?ver=4.0.6 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "1b630-5b5ce8d324980"
Accept-Ranges: bytes
Content-Length: 112176
Keep-Alive: timeout=10, max=398
Connection: Keep-Alive
Content-Type: text/css
youraddictads.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0
199.79.54.235200 OK 7.9 kB URL HTTP/1.1 youraddictads.com/wp-includes/js/imagesloaded.min.js?ver=3.2.0
IP 199.79.54.235:0
File type ASCII text, with very long lines (7855), with no line terminators
Hash f5c25c9c6d60162ba8865649b89e56fc
520fa90c637f9e93f16ec3674136c61a0c1e3d60
337c515e1a749dfe4d3fc568c830b631f7ed4de0a1ee9ba28ed5c8c430ec1f9a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/imagesloaded.min.js?ver=3.2.0 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Thu, 13 May 2021 01:31:15 GMT
ETag: "1eaf-5c22c154af2d3"
Accept-Ranges: bytes
Content-Length: 7855
Keep-Alive: timeout=10, max=397
Connection: Keep-Alive
Content-Type: application/javascript
youraddictads.com/wp-content/themes/themify-ultra/themify/js/main.min.js?ver=4.0.6
199.79.54.235200 OK 14 kB URL HTTP/1.1 youraddictads.com/wp-content/themes/themify-ultra/themify/js/main.min.js?ver=4.0.6
IP 199.79.54.235:0
File type ASCII text, with very long lines (539)
Hash 302ab4371f38b629773726281892acb1
a90b74914f556a7c3bdb99666b289c77e15c3fc7
7841aae065d60f39eda84e495473eef8ec9a58991e5a455e1a322b415f6a15b0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-ultra/themify/js/main.min.js?ver=4.0.6 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "3879-5b5ce8d31015e"
Accept-Ranges: bytes
Content-Length: 14457
Keep-Alive: timeout=10, max=399
Connection: Keep-Alive
Content-Type: application/javascript
youraddictads.com/wp-includes/js/comment-reply.min.js?ver=4.6.25
199.79.54.235200 OK 1.1 kB URL HTTP/1.1 youraddictads.com/wp-includes/js/comment-reply.min.js?ver=4.6.25
IP 199.79.54.235:0
File type ASCII text, with very long lines (1076), with no line terminators
Hash 9ef21a469fc37e845d6303fcfea70897
a86ec94ec7bee9227bcdf8d6374cabe82ae43e49
6b2e2d56e7b0e80d919bc65dd94f8cd95e57ad9298fc4fecc005301ea8339c9f
GET /wp-includes/js/comment-reply.min.js?ver=4.6.25 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Thu, 13 May 2021 01:31:15 GMT
ETag: "434-5c22c154ae71b"
Accept-Ranges: bytes
Content-Length: 1076
Keep-Alive: timeout=10, max=396
Connection: Keep-Alive
Content-Type: application/javascript
youraddictads.com/wp-content/themes/themify-ultra/themify/js/themify.sidemenu.min.js?ver=2.0.2
199.79.54.235200 OK 1.7 kB URL HTTP/1.1 youraddictads.com/wp-content/themes/themify-ultra/themify/js/themify.sidemenu.min.js?ver=2.0.2
IP 199.79.54.235:0
File type ASCII text, with very long lines (522)
Hash 29095d9507a0d3f5a5a4cd98bc6dc45c
ec8b6a41b582de4442f5ab65a8b84a89bc27b29d
c8c7bec2d01fa7a753c5400fa3088833b5333489c282e30f1a76ae6881f07712
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-ultra/themify/js/themify.sidemenu.min.js?ver=2.0.2 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "693-5b5ce8d3114e6"
Accept-Ranges: bytes
Content-Length: 1683
Keep-Alive: timeout=10, max=398
Connection: Keep-Alive
Content-Type: application/javascript
youraddictads.com/wp-includes/js/wp-embed.min.js?ver=4.6.25
199.79.54.235200 OK 1.4 kB URL HTTP/1.1 youraddictads.com/wp-includes/js/wp-embed.min.js?ver=4.6.25
IP 199.79.54.235:0
File type ASCII text, with very long lines (1384), with no line terminators
Hash 2a9a2f64687bc94523f4c50c9335cc0f
33c874cafe5df3ea8c8756be8642f675f9cf5289
4114f99c5992bab27f43ae5e3c7c196ce63fac0b4b43915af913c1a30ca1f3da
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-embed.min.js?ver=4.6.25 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Thu, 13 May 2021 01:31:15 GMT
ETag: "568-5c22c154b065b"
Accept-Ranges: bytes
Content-Length: 1384
Keep-Alive: timeout=10, max=397
Connection: Keep-Alive
Content-Type: application/javascript
youraddictads.com/wp-content/themes/themify-ultra/js/themify.script.min.js?ver=2.0.2
199.79.54.235200 OK 38 kB URL HTTP/1.1 youraddictads.com/wp-content/themes/themify-ultra/js/themify.script.min.js?ver=2.0.2
IP 199.79.54.235:0
File type ASCII text, with very long lines (757)
Hash a82686deef90701aba1e58089e634b71
d84962da94e807975953c19e70f26c623de3d442
46a6cdc25e0a6aff4eeb1cfb97b2c581b48492b335994aa3ac3b37b5d8caf03c
GET /wp-content/themes/themify-ultra/js/themify.script.min.js?ver=2.0.2 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:39 GMT
ETag: "963a-5b5ce8d294ca8"
Accept-Ranges: bytes
Content-Length: 38458
Keep-Alive: timeout=10, max=397
Connection: Keep-Alive
Content-Type: application/javascript
youraddictads.com/assets/captcha.php?i=1670005595
199.79.54.235200 OK 1.6 kB URL HTTP/1.1 youraddictads.com/assets/captcha.php?i=1670005595
IP 199.79.54.235:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), default quality", baseline, precision 8, 70x30, components 3\012- data
Hash e0764d081c2db48b93275f4d48538c89
2cffc2db9e71159c189b020efe6a9ca3c6544026
dbb85b316ffad2ec5b2106300f429bf851a41068bc0d97929765baf47e486806
Analyzer Verdict Alert fortinet Phishing
GET /assets/captcha.php?i=1670005595 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:36 GMT
Server: Apache/2.4.6
X-Powered-By: PHP/7.2.24
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate
Pragma: no-cache
Keep-Alive: timeout=10, max=396
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/jpeg
youraddictads.com/favicon.ico
199.79.54.235200 OK 0 B URL HTTP/1.1 youraddictads.com/favicon.ico
IP 199.79.54.235:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /favicon.ico HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
X-Powered-By: PHP/7.2.24
Keep-Alive: timeout=10, max=398
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: image/vnd.microsoft.icon
youraddictads.com/img/lightgray.jpg
199.79.54.235200 OK 7.3 kB URL HTTP/1.1 youraddictads.com/img/lightgray.jpg
IP 199.79.54.235:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Hash 1765390f37767ba82b57919d8ef9f21d
0fadbaa93fcafb216b083fd3dc59902ff198e84e
bcfe50758f3e1b6872974912d881ba3f28bdb331663e18299e96d5a79aebfa6d
GET /img/lightgray.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1caa-5b5ce8b2ac1c5"
Accept-Ranges: bytes
Content-Length: 7338
Keep-Alive: timeout=10, max=396
Connection: Keep-Alive
Content-Type: image/jpeg
youraddictads.com/img/gray.jpg
199.79.54.235200 OK 4.9 kB URL HTTP/1.1 youraddictads.com/img/gray.jpg
IP 199.79.54.235:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Hash 629e847f10043d90c40361bc95bd8c98
514ec3d33099389652d256700c97aeeada9a98b2
8d495f5adbdb20b0a473617caf21307c59ac5937733157024a2a670818a2f3c1
GET /img/gray.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1307-5b5ce8b2a1db4"
Accept-Ranges: bytes
Content-Length: 4871
Keep-Alive: timeout=10, max=395
Connection: Keep-Alive
Content-Type: image/jpeg
youraddictads.com/img/lightblue.jpg
199.79.54.235200 OK 7.3 kB URL HTTP/1.1 youraddictads.com/img/lightblue.jpg
IP 199.79.54.235:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Hash a09c826b65132a7b1b55b341565da7f9
f53376c1750bee0276caabab40a84a42cb3af040
c8e5f51c757b8829d85be8def536f82a50864315764380c02d9dbd46be3484bd
GET /img/lightblue.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1cad-5b5ce8b2ac1c5"
Accept-Ranges: bytes
Content-Length: 7341
Keep-Alive: timeout=10, max=395
Connection: Keep-Alive
Content-Type: image/jpeg
youraddictads.com/img/black.jpg
199.79.54.235200 OK 4.9 kB URL HTTP/1.1 youraddictads.com/img/black.jpg
IP 199.79.54.235:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Hash 0eaf126f3e32f57a6a257f058a38c8cd
4b9dc11ee9e6c839db6ba64d568abce6329105f4
cd27bb445311d690f07866b1ec1d125000ddff783582c784a9ba27060629a06e
GET /img/black.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1308-5b5ce8b292f6a"
Accept-Ranges: bytes
Content-Length: 4872
Keep-Alive: timeout=10, max=397
Connection: Keep-Alive
Content-Type: image/jpeg
youraddictads.com/img/blue.jpg
199.79.54.235200 OK 7.7 kB URL HTTP/1.1 youraddictads.com/img/blue.jpg
IP 199.79.54.235:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Hash 8da11127b1926547be84f8cb906c8d36
6923e6f0f15531752bbc15475342c3a74416a1fc
6252db88debd2746fd6f7d921e0067096b6efbe23ee2a20ebc94547533567895
GET /img/blue.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1e2c-5b5ce8b2a1db4"
Accept-Ranges: bytes
Content-Length: 7724
Keep-Alive: timeout=10, max=396
Connection: Keep-Alive
Content-Type: image/jpeg
youraddictads.com/wp-content/themes/themify-ultra/themify/themify-builder/js/themify.builder.script.min.js?ver=4.0.6
199.79.54.235200 OK 35 kB URL HTTP/1.1 youraddictads.com/wp-content/themes/themify-ultra/themify/themify-builder/js/themify.builder.script.min.js?ver=4.0.6
IP 199.79.54.235:0
File type ASCII text, with very long lines (556)
Hash 65cc768c2f28983717d8e424c20dd09d
b8cb91555866329823ac8f7829be44633c5bd2cd
d5e09d06b3f50041ac8f3e7f70bfa35c3b6d4946dd03ef77b48f163f97b3a4ff
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-ultra/themify/themify-builder/js/themify.builder.script.min.js?ver=4.0.6 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "89d2-5b5ce8d34ba85"
Accept-Ranges: bytes
Content-Length: 35282
Keep-Alive: timeout=10, max=397
Connection: Keep-Alive
Content-Type: application/javascript
youraddictads.com/img/green.jpg
199.79.54.235200 OK 7.3 kB URL HTTP/1.1 youraddictads.com/img/green.jpg
IP 199.79.54.235:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Hash 5784bebf693fe7c366aeb7b7f6783e23
2418279ba1e680c4fefb25541157b73263098fc9
700246614918bcba22d645281c622a0e21ce10af481db9e294fb513da20b1411
GET /img/green.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1cac-5b5ce8b2a1db4"
Accept-Ranges: bytes
Content-Length: 7340
Keep-Alive: timeout=10, max=394
Connection: Keep-Alive
Content-Type: image/jpeg
youraddictads.com/wp-content/themes/themify-ultra/themify/fontawesome/css/font-awesome.min.css?ver=4.0.6
199.79.54.235200 OK 30 kB URL HTTP/1.1 youraddictads.com/wp-content/themes/themify-ultra/themify/fontawesome/css/font-awesome.min.css?ver=4.0.6
IP 199.79.54.235:0
File type ASCII text, with very long lines (30026)
Hash 9618f53449167217df499cf8ce143033
9e3d3db493b40158484647cfc4c5a3247720170d
6e95d9454ed2a0f4aaaf16b09b3591ed5d7392f1d4869c8d77a1a1a93fdcf726
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-ultra/themify/fontawesome/css/font-awesome.min.css?ver=4.0.6 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "75ea-5b5ce8d301ecc"
Accept-Ranges: bytes
Content-Length: 30186
Keep-Alive: timeout=10, max=395
Connection: Keep-Alive
Content-Type: text/css
youraddictads.com/img/lightgreen.jpg
199.79.54.235200 OK 7.3 kB URL HTTP/1.1 youraddictads.com/img/lightgreen.jpg
IP 199.79.54.235:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Hash 9f65a44869636a19c695dc660ede1230
9a39f8661ea1d70768ad180fd9b01ead406459cb
3cfbd9ceb2a1597ee1e63e8bc5298df1598ee5d0169f8453820bc49a4e5778b0
GET /img/lightgreen.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1cae-5b5ce8b2ac1c5"
Accept-Ranges: bytes
Content-Length: 7342
Keep-Alive: timeout=10, max=394
Connection: Keep-Alive
Content-Type: image/jpeg
youraddictads.com/img/purple.jpg
199.79.54.235200 OK 7.3 kB URL HTTP/1.1 youraddictads.com/img/purple.jpg
IP 199.79.54.235:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Hash 3b28106ff3c704109f6842a7895710ea
06c7d9018d8f5271fa894f4689fdc827245879b0
e7b570f4ecbc7006a2b9386f6f014c65437d11d1b3ecde6ccf290afa633884ca
GET /img/purple.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1cac-5b5ce8b2aecbd"
Accept-Ranges: bytes
Content-Length: 7340
Keep-Alive: timeout=10, max=396
Connection: Keep-Alive
Content-Type: image/jpeg
youraddictads.com/img/lightpurple.jpg
199.79.54.235200 OK 7.3 kB URL HTTP/1.1 youraddictads.com/img/lightpurple.jpg
IP 199.79.54.235:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Hash 1ece9351bdb31a1aabd345e59ef3347b
295b4a06bdd2921862dfa251d833ff4c2aff2172
169490f8bb66d0afd0e0b6f4185fdd3468a5ea85873ea847d5a1efc94d73d4e9
GET /img/lightpurple.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1cae-5b5ce8b2ae8d5"
Accept-Ranges: bytes
Content-Length: 7342
Keep-Alive: timeout=10, max=395
Connection: Keep-Alive
Content-Type: image/jpeg
youraddictads.com/img/brown.jpg
199.79.54.235200 OK 7.3 kB URL HTTP/1.1 youraddictads.com/img/brown.jpg
IP 199.79.54.235:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Hash 34560fbdb297b5e536e82b529d43b6c2
907758d9378e11105869fb497fcd8997e001260e
97d9c4e4a2de3dd2d8139f9e99b84850e29220c622e34feaadad35b22de2be08
GET /img/brown.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1cad-5b5ce8b2a1db4"
Accept-Ranges: bytes
Content-Length: 7341
Keep-Alive: timeout=10, max=396
Connection: Keep-Alive
Content-Type: image/jpeg
youraddictads.com/img/yellow.jpg
199.79.54.235200 OK 7.3 kB URL HTTP/1.1 youraddictads.com/img/yellow.jpg
IP 199.79.54.235:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Hash 6d1a9d7297995a06085527dac3b7483b
61d5ba2926861165a852677c6e532e04d2f00b61
2e0d91472ba0c6d3f77c0a46a7485a9692f06db0028e8ca0eb8662068414ec80
GET /img/yellow.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1cae-5b5ce8b2af0a5"
Accept-Ranges: bytes
Content-Length: 7342
Keep-Alive: timeout=10, max=393
Connection: Keep-Alive
Content-Type: image/jpeg
youraddictads.com/img/red.jpg
199.79.54.235200 OK 7.3 kB URL HTTP/1.1 youraddictads.com/img/red.jpg
IP 199.79.54.235:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Hash 669eae069f71ca43db2533e62f18889d
fc4f2bdfbb1bb4c5297439ed2c298209b80b1d6e
a6009eed3e338b8287232d1ac185be04b380ec314d30068bcdc8ae90e9db25af
GET /img/red.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1cae-5b5ce8b2aecbd"
Accept-Ranges: bytes
Content-Length: 7342
Keep-Alive: timeout=10, max=394
Connection: Keep-Alive
Content-Type: image/jpeg
youraddictads.com/img/pink.jpg
199.79.54.235200 OK 7.3 kB URL HTTP/1.1 youraddictads.com/img/pink.jpg
IP 199.79.54.235:0
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 72x72, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=4], progressive, precision 8, 25x25, components 3\012- data
Hash 4610a2f3da0c89d5d41bf88d69e988a2
edb20d37441db03cdfba1038288f43e0ecc8cd5d
844c4e35b1254fe991f916227ad7df36234f28385af632a81847215d66c8781e
GET /img/pink.jpg HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:06 GMT
ETag: "1cae-5b5ce8b2ae8d5"
Accept-Ranges: bytes
Content-Length: 7342
Keep-Alive: timeout=10, max=393
Connection: Keep-Alive
Content-Type: image/jpeg
youraddictads.com/wp-content/themes/themify-ultra/themify/themify-icons/themify-icons.min.css?ver=4.0.6
199.79.54.235200 OK 14 kB URL HTTP/1.1 youraddictads.com/wp-content/themes/themify-ultra/themify/themify-icons/themify-icons.min.css?ver=4.0.6
IP 199.79.54.235:0
File type ASCII text, with very long lines (13799), with no line terminators
Hash 977cdc661cca6130ad46f7f3e7374a22
b92618558e9b13546e828114ff92671d6d4a2de2
79c3035d99f2140aa59ccd65280452325495aa29db96c6c7c3271369731c92e5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-ultra/themify/themify-icons/themify-icons.min.css?ver=4.0.6 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "35e7-5b5ce8d356666"
Accept-Ranges: bytes
Content-Length: 13799
Keep-Alive: timeout=10, max=395
Connection: Keep-Alive
Content-Type: text/css
youraddictads.com/wp-content/themes/themify-ultra/themify/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0
199.79.54.235200 OK 77 kB URL HTTP/1.1 youraddictads.com/wp-content/themes/themify-ultra/themify/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0
IP 199.79.54.235:0
File type Web Open Font Format (Version 2), TrueType, length 77160, version 4.459\012- data
Hash af7ae505a9eed503f8b8e6982036873e
d6f48cba7d076fb6f2fd6ba993a75b9dc1ecbf0c
2adefcbc041e7d18fcf2d417879dc5a09997aa64d675b7a3c4b6ce33da13f3fe
GET /wp-content/themes/themify-ultra/themify/fontawesome/fonts/fontawesome-webfont.woff2?v=4.7.0 HTTP/1.1
Host: youraddictads.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://youraddictads.com/wp-content/themes/themify-ultra/themify/fontawesome/css/font-awesome.min.css?ver=4.0.6
Cookie: PHPSESSID=1crrbsgd01mm6g0k43l3buga3l
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 02 Dec 2022 18:26:37 GMT
Server: Apache/2.4.6
Last-Modified: Sun, 06 Dec 2020 16:53:40 GMT
ETag: "12d68-5b5ce8d303255"
Accept-Ranges: bytes
Content-Length: 77160
Keep-Alive: timeout=10, max=395
Connection: Keep-Alive
fonts.googleapis.com/css?family=Open+Sans%3A400italic%2C600italic%2C700italic%2C400%2C300%2C600%2C700%7CFugaz+One&subset=latin&ver=4.6.25
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans%3A400italic%2C600italic%2C700italic%2C400%2C300%2C600%2C700%7CFugaz+One&subset=latin&ver=4.6.25
IP 142.250.74.106:0
GET /css?family=Open+Sans%3A400italic%2C600italic%2C700italic%2C400%2C300%2C600%2C700%7CFugaz+One&subset=latin&ver=4.6.25 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://youraddictads.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 02 Dec 2022 18:26:35 GMT
date: Fri, 02 Dec 2022 18:26:35 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2