Report - www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/

Report Overview

Submitted URL
www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
IP
192.185.20.87
ASN
#46606 UNIFIEDLAYER-AS-1
Submitted
2023-02-02 19:23:12
Access
Website Title
Final URL
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
90

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-13T05:09:13Z	333 B	391 B	34.117.237.239
a.mailmunch.co	13220	2016-05-18T13:12:47Z	2023-03-13T08:19:10Z	1.6 kB	55 kB	143.204.55.3
use.fontawesome.com	942	2017-01-30T05:43:25Z	2023-03-13T05:09:17Z	1.4 kB	261 kB	172.64.132.15
www.googletagmanager.com	75	2013-05-22T04:07:37Z	2023-03-13T08:28:24Z	1.4 kB	113 kB	142.250.74.168
region1.google-analytics.com	unknown	2022-03-17T12:26:33Z	2023-03-13T05:09:18Z	881 B	450 B	216.239.32.36
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-13T08:44:36Z	1.1 kB	64 kB	216.58.207.227
stats.wp.com	2711	2017-01-30T06:06:59Z	2023-03-13T05:11:02Z	363 B	356 B	192.0.76.3
www.youtube.com	90	2013-04-13T09:43:20Z	2023-03-13T05:09:12Z	365 B	1.4 kB	142.250.74.46
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-13T05:09:07Z	4.4 kB	12 kB	23.36.76.226
firefox.settings.services.mozilla.com	867	2020-06-04T22:08:41Z	2023-03-13T05:09:10Z	782 B	2.4 kB	35.241.9.150
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-13T05:09:35Z	413 B	5.9 kB	34.160.144.191
www.thecrudelife.com	unknown	2019-07-09T11:57:05Z	2023-01-26T18:31:33Z	38 kB	919 kB	192.185.20.87
pixel.wp.com	2545	2017-01-30T06:31:40Z	2023-03-13T05:11:03Z	436 B	245 B	192.0.76.3
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-13T05:09:16Z	3.2 kB	69 kB	34.120.237.76
fonts.googleapis.com	8877	2013-06-10T22:14:26Z	2023-03-13T08:14:31Z	416 B	630 B	142.250.74.106
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-13T05:09:47Z	4.8 kB	9.8 kB	142.250.74.131
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-13T05:09:14Z	606 B	127 B	52.39.122.167
i.ytimg.com	109	2012-10-03T19:11:04Z	2023-03-13T08:43:01Z	418 B	206 kB	142.250.74.54
www.google-analytics.com	40	2012-10-03T03:04:21Z	2023-03-13T07:36:03Z	830 B	66 kB	142.250.74.110
ajax.googleapis.com	12905	2013-08-16T11:51:31Z	2023-03-13T08:37:09Z	396 B	34 kB	142.250.74.170
forms.mailmunch.co	13451	2015-02-25T06:11:26Z	2023-03-13T08:09:26Z	326 B	614 B	54.162.128.250

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

Scan Date	Severity	Indicator	Alert
2023-02-02	medium	www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/wordpress-easy-paypal-payment-or-donation-accept-plugin/wpapp-styles.css?ver=6.1.1	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.css?ver=6.1.1	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/add-search-to-menu/public/css/ivory-search.min.css?ver=5.4.5	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/css/frontend.min.css?ver=3.2.10	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/youtube-embed-plus/styles/ytprefs.min.css?ver=14.1	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/jetpack/css/jetpack.css?ver=10.8	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/themes/mh-magazine-lite/js/scripts.js?ver=2.9.1	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/userswp/assets/js/users-wp.min.js?ver=1.2.3.4	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=14.1	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.js?ver=6.1.1	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.js?ver=6.1.1	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/the-events-calendar/vendor/jquery/smoothness/jquery-ui-1.8.23.custom.css?ver=5.14.2.1	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=14.1	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.4.5	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/js/castos-player.js?ver=b9288b146baa1f47d55f3de0a140fb15	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/aweber-web-form-widget/src/js/aweber-wpn-script.js	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-loader.svg	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-play.svg	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-rwd.svg	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-volume-on.svg	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-fwd.svg	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/amazon.svg	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-apple-podcasts.svg	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/google-podcasts.svg	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/fonts/roboto-500-latin.woff2	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/fonts/poppins-400-latin.woff2	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/fonts/roboto-400-latin.woff2	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/fonts/poppins-500-latin.woff2	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/pandora.svg	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/share.svg	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/rssradio.svg	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/radio-public.svg	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-sticher.svg	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/youtube.svg	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/iheartradio.svg	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-copy.svg	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-facebook.svg	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-twitter.svg	Phishing
2023-02-02	medium	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-download.svg	Phishing

mnemonic secure dns

No alerts detected

Quad9 DNS

No alerts detected

ThreatFox

No alerts detected

JavaScript (45)

	URL	Size	First Seen	Last Seen
	www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/	286 B	2023-03-13	2023-03-13
Pretty URL www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/ IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:13:54 Last Seen2023-03-13 15:13:54 Times Seen1 Hash d27d9a40cb193f89556daa175202cf1d 045f6e704305445bd547f608930528d748bce337 78558b457cec4e35de4d88f7c63ece5a295514aef398f7f3d3b54aa699779791 Loading...

	www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/	6.0 kB	2023-03-13	2023-03-13
Pretty URL www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/ IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:13:54 Last Seen2023-03-13 15:13:54 Times Seen1 Hash 8b214d45080bfe7f8862c6b9736abbbb b0bc4154c25742f1f75f8d05745d993f5bfaa0d4 32b4de56b72ba6c9a3dfbd56b5ffcafe0593b79418886d2f680ebd29abfd7b04 Loading...

	www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/	2.2 kB	2023-03-13	2023-03-13
Pretty URL www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/ IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:13:54 Last Seen2023-03-13 15:13:54 Times Seen1 Hash 04e8ef11c99979b7adf02d8f9b9d090f cb66a53438e4227db7624c15b3c32cf1b56414c5 3392a36c434ef60b6afc7ad6774bd5e08e82bfe306aa22f44abfc9b2544e4f03 Loading...

	www.thecrudelife.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.0	12 kB	2023-03-07	2024-04-18
Pretty URL www.thecrudelife.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.0 IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:14:48 Last Seen2024-04-18 02:50:18 Times Seen5597 Hash a76f61318af036823b08d73536486be6 31ff9b215dcef9151b9f4fc50ea91a9df1962102 abc9faa4970e07db7d506d6b2a98e4c86223be305c7541ced54ea2e15f99a76e Loading...

	www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/	477 B	2023-03-13	2023-03-13
Pretty URL www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/ IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:13:54 Last Seen2023-03-13 15:13:54 Times Seen1 Hash c207104b6e2ecae4ee218717fb0aa37b dbdfceb161b6eec6b2a07454020639647232bf14 eebc2cc141acb3a09d6991026950531ec5ce9de3290554b15036ee5a9408946d Loading...

	www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/	4.0 kB	2023-03-13	2023-03-13
Pretty URL www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/ IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:13:54 Last Seen2023-03-13 15:13:54 Times Seen1 Hash 2a6f5d467957132a60c6d59573b36874 ddf37b3fc203d30252f26d4aee5adbbf3316211b 8c04caef09e750dbe5772cddef294c8c168cddbac9ea9d6dbe63a8da1f83fa91 Loading...

	www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/	91 B	2023-03-13	2023-03-13
Pretty URL www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/ IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:13:54 Last Seen2023-03-13 15:13:54 Times Seen1 Hash 552f164aedc4cc77a072b248d5c8df1e b68be6688bc7630a9b2173ecca3025848656e3da 155a467b805f274fa63549b97b00ccb1bad1ba8c56253b0e84c47e9f45481cd3 Loading...

	a.mailmunch.co/app/v1/site.js	26 kB	2023-03-07	2024-04-19
Pretty URL a.mailmunch.co/app/v1/site.js IP 143.204.55.3 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:36:02 Last Seen2024-04-19 16:36:11 Times Seen2095 Hash 433929c53828317eb14efdd800f5d81d 768d300703653fbb597486138f897aa4756a5a30 159043fcb16dd5c9a4b6a80581f7a91dc5987665ea5f7851da6c29fba0615a64 Loading...

	www.thecrudelife.com/wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=14.1	3.1 kB	2023-03-07	2024-04-02
Pretty URL www.thecrudelife.com/wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=14.1 IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:05 Last Seen2024-04-02 13:57:14 Times Seen1354 Hash eb4b89beeb46187d0fe50838c2cfdc4d 784d1bf5af84c22ef434ce64ed4c20a9ad19929b d8be3a402a3b2ad808402cea111ba3d286239d88e06c8e2969c84f46050dc88a Loading...

	a.mailmunch.co/app/v1/sidebar.js	2.7 kB	2023-03-07	2024-04-19
Pretty URL a.mailmunch.co/app/v1/sidebar.js IP 143.204.55.3 ASN #16509 AMAZON-02 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:38:51 Last Seen2024-04-19 16:36:11 Times Seen388 Hash 2cd4a80c1c8f8fd5bbcf763b9b94a1de 81e4b67b939c516fdf8e19bf76371b1c09443927 03b91cc6b7b75f6aa9e1015ded5196298213496512857cbba8ac41a23ae06c13 Loading...

	www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/js/frontend.min.js?ver=3.2.10	9.3 kB	2023-03-07	2024-03-27
Pretty URL www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/js/frontend.min.js?ver=3.2.10 IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:10:44 Last Seen2024-03-27 20:23:12 Times Seen157 Hash ae8ec95b67c1762c8ab0f83067bb1f02 971a5fe6ab8fc8fec07600027d89ce914cfbff7f 0818610c65fd1ca125b6f560e6cb6e6c8c299e461c2ce91ed197972623cdaf3f Loading...

	www.thecrudelife.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1	90 kB	2023-03-08	2024-04-19
Pretty URL www.thecrudelife.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1 IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:21:46 Last Seen2024-04-19 20:39:51 Times Seen31782 Hash 17738318d61d394f1de8890d589afaec f6d0c4dc1399cf02d53f5753ad46573a8bbc2ac3 cc7403bab52ed166e24ea9324241045af370be482f5b594468f4a6ac6e7e7981 Loading...

	www.thecrudelife.com/wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/js/bootstrap.bundle.min.js?ver=0.1.70	137 kB	2023-03-07	2023-12-05
Pretty URL www.thecrudelife.com/wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/js/bootstrap.bundle.min.js?ver=0.1.70 IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:04:47 Last Seen2023-12-05 07:49:33 Times Seen9 Hash 899b13361897fafec0ac0d1c3b320c9e d6d29115f7f967763033f0de97248b0c6b63b718 0c3bc1ecf45b41e93b73d178514e252cf08d026e6260ec08150f42abba6178ea Loading...

	www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/	79 B	2023-03-07	2024-04-18
Pretty URL www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/ IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:29 Last Seen2024-04-18 14:13:45 Times Seen642 Hash ab1b0ef42311479d7559bffd29ef8d7d ba1509057a5f82563a2b55a7379f4825fe35bcab 37bf8b4db5288941c20c28fd7c0b201d2270201a94739d64462744ffe6b52f79 Loading...

	www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/	193 B	2023-03-13	2023-03-13
Pretty URL www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/ IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:13:54 Last Seen2023-03-13 15:13:54 Times Seen1 Hash e4586b0d5dca87dfa37c2207d27c1711 993c34ad2e54b81684a5059e9d0108be39709870 7a93f8bffe2705643efb2cceedee67e6e2b9a5a8b765a00609760c73001fa8fd Loading...

	www.google-analytics.com/gtm/js?id=OPT-PM8NKS4&t=gtag_UA_97173802_1&cid=980602921.1675365810&aip=true	113 kB	2023-03-13	2023-03-13
Pretty URL www.google-analytics.com/gtm/js?id=OPT-PM8NKS4&t=gtag_UA_97173802_1&cid=980602921.1675365810&aip=true IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:13:54 Last Seen2023-03-13 15:13:54 Times Seen1 Hash b40118ec12c638fe8b3c516b8def4f15 d1e7f12b0e1c79fd6a3f556f7d6a2f442db9bc43 e6a8c17b99d35ae56d35c96713f95ec54b173ba0c775e8ecde73f631e1bc114f Loading...

	stats.wp.com/e-202305.js	9.0 kB	2023-03-07	2024-01-05
Pretty URL stats.wp.com/e-202305.js IP 192.0.76.3 ASN #2635 AUTOMATTIC Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:19 Last Seen2024-01-05 09:08:33 Times Seen3233 Hash 9152c169155daa333287728cb8e4ae93 1e45a9ea1464acf983f022567cb9f669f4c77f65 82d0aae1e7b8cfc0574d6548d1f35096f5e4310321aa964ff3fdb46c4d12e302 Loading...

	www.thecrudelife.com/wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/js/select2.min.js?ver=4.0.11	96 kB	2023-03-07	2024-04-18
Pretty URL www.thecrudelife.com/wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/js/select2.min.js?ver=4.0.11 IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:04:46 Last Seen2024-04-18 19:01:09 Times Seen124 Hash ae9f1d9c13d056b16f27f82bede8e761 00097d0da8214acf68577ed22248d3629d9aec8c 598edc095d8b16594dd07092b063e0774c981305ae71d2f67d57b4244b435d79 Loading...

	www.thecrudelife.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1	19 kB	2023-03-07	2024-04-19
Pretty URL www.thecrudelife.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:08 Last Seen2024-04-19 20:39:52 Times Seen37996 Hash 32beb68a374e3aeac00abdf9e12b84ea b5d18aa625e8696dd9d07cd0869337717b211ae0 5aad5fbd4238981a9ff5e2772ff1353dfe1a801fb49542fe157418c1438f7782 Loading...

	www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/	440 B	2023-03-13	2023-03-13
Pretty URL www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/ IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:13:54 Last Seen2023-03-13 15:13:54 Times Seen1 Hash 868f8812a1e8aae947f0ed97190f384a b6027db3d50c8b6030c43f561ef85e27e3787f55 fe90fd773f89a3f04752bb53b745850a743e0c0b109c3608ad56bc73c1f0a8a3 Loading...

	www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/	1.4 kB	2023-03-07	2024-04-19
Pretty URL www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/ IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:10:33 Last Seen2024-04-19 12:57:47 Times Seen1939 Hash baa52dd43e0e29340348ae52a88fdcfd a85cd8502fafa4fb5cb0786c1ab1e6c0c957093e 49117ca60d8aeb4aa478d3541e09db31ce6fe2608ff7f96e9409239390e6b1bc Loading...

	www.googletagmanager.com/gtag/js?id=UA-97173802-1	112 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=UA-97173802-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:13:54 Last Seen2023-03-13 15:13:54 Times Seen1 Hash 70aa34d76c3afa3dbea3d1aa96da72b7 6dbe2ca7512cd1c56cdfa4e396fba1dfa93aac61 46a0827af76e80adc3b101a41d19919627cdd65316f8ed66bc5506a85ac8dab3 Loading...

	www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/	224 B	2023-03-13	2023-03-13
Pretty URL www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/ IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:13:54 Last Seen2023-03-13 15:13:54 Times Seen1 Hash 1a0bc4ba4686548303999c0876a2ea04 ba5b2a0449088c531259f6b6a64296359d088b54 d72b46e62a6b30f03891e12fc6ae743a64af86061b92afb2c73e1a1fa98b5ff7 Loading...

	www.thecrudelife.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2	11 kB	2023-03-07	2024-04-19
Pretty URL www.thecrudelife.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:02 Last Seen2024-04-19 20:39:51 Times Seen68499 Hash 79b4956b7ec478ec10244b5e2d33ac7d a46025b9d05e3df30d610a8aef14f392c7058dc9 029e0a2e809fd6b5dbe76abe8b7a74936be306c9a8c27c814c4d44aa54623300 Loading...

	www.thecrudelife.com/wp-content/plugins/aweber-web-form-widget/src/js/aweber-wpn-script.js	1.5 kB	2023-03-07	2024-03-07
Pretty URL www.thecrudelife.com/wp-content/plugins/aweber-web-form-widget/src/js/aweber-wpn-script.js IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:43 Last Seen2024-03-07 23:07:33 Times Seen136 Hash fa04be3ac228858cd2a10ef21c26a86a 145fec16636ccd40ca2c6fd560a6b7f49d426d04 a5385fad206aedf1e99bd8ad6e05d2d6098b6c4b78e1fe9cabf528cdedc61b19 Loading...

	www.googletagmanager.com/gtag/js?id=UA-97173802-1&l=dataLayer&cx=c	112 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=UA-97173802-1&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:13:54 Last Seen2023-03-13 15:13:54 Times Seen1 Hash 1e49b32cc2410ab5369a1b180e2ead52 9446e7a71392c7664abb50265969fa533f8ff527 76eab6dd93a5ca959624cae8056f97440c5323a358efaf73f4dacc6779a800f5 Loading...

	ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js	96 kB	2023-03-07	2024-04-19
Pretty URL ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js IP 142.250.74.170 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:11 Last Seen2024-04-19 16:36:11 Times Seen15255 Hash f03e5a3bf534f4a738bc350631fd05bd 37b1db88b57438f1072a8ebc7559c909c9d3a682 aec3d419d50f05781a96f223e18289aeb52598b5db39be82a7b71dc67d6a7947 Loading...

	www.googletagmanager.com/gtm.js?id=GTM-KKPRHHV	97 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtm.js?id=GTM-KKPRHHV IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:13:54 Last Seen2023-03-13 15:13:54 Times Seen1 Hash 7b7e756a25f74de10daa3310a9cfef16 cc9d27f5cf34e188aaaeb1a71c30a8173d455f29 789c29fa2845ecb1a00a12f558f3ea10f131d4691c98671d22b31e19a7f039af Loading...

	www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.js?ver=6.1.1	50 kB	2023-03-07	2024-04-02
Pretty URL www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.js?ver=6.1.1 IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:06:36 Last Seen2024-04-02 10:04:30 Times Seen199 Hash bfd750b2d71cf47075756355e5f2f5a4 bb5a8a5ae251eba6ecfc54a7058acf6865a73cf8 587e022b442a0d7013a27f5fd2db035e28a74318d44dac1ac431f124c615bb37 Loading...

	www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/js/castos-player.js?ver=b9288b146baa1f47d55f3de0a140fb15	11 kB	2023-03-08	2023-05-17
Pretty URL www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/js/castos-player.js?ver=b9288b146baa1f47d55f3de0a140fb15 IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 01:44:44 Last Seen2023-05-17 19:04:35 Times Seen3 Hash 27d77d20d59296db20e0f84f9439ecc1 8b18361fa0f575b4a763c0afbd7be6a82b370171 aeaaaf9500f021bf78d1759d9356a229150fc0bf2f8ec6c4546e713e831ca823 Loading...

	www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/	21 kB	2023-03-07	2023-03-13
Pretty URL www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/ IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 16:04:46 Last Seen2023-03-13 15:13:54 Times Seen1 Hash 2fb853e78718445ca2fb9ad4c10ac6d5 4ba8ee74512a87c1ada1967b9def1e7157a7c4d2 7ec2031bec56152e96834b1e1037259657294251a1db274c6fe578355f88a734 Loading...

	www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/	266 B	2023-03-13	2023-03-13
Pretty URL www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/ IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:13:54 Last Seen2023-03-13 15:13:54 Times Seen1 Hash f07d6c36244fe90d1421f06a29f4c851 182b45474683b22179f2e7add4a53730e0997900 eb49cceaec4bd6d45894ae8879607fc3ad36042c22f736bf99a8822d37519531 Loading...

	www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/	332 B	2023-03-13	2023-03-13
Pretty URL www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/ IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:13:54 Last Seen2023-03-13 15:13:54 Times Seen1 Hash 858a9d3d0bb163aa7b8968580532765e d87e450f1c2f457d3e09125fb049cf24ee0a2e3d a6e98777e0710d78e4e993ee5d32ca08c36aa732d74ac793f2424cbd2d32711b Loading...

	www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/	913 B	2023-03-13	2023-03-13
Pretty URL www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/ IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:13:54 Last Seen2023-03-13 15:13:54 Times Seen1 Hash d3bf883cbaff2d194bfef0a006822f02 54ef532c7c2596d4d9128fbedf1283f1180d7eb6 ca2372d248703dc77a60bd88caa202772b59d2b0283cf72b6c3e6229c2c00a5c Loading...

	www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/	158 B	2023-03-07	2024-04-11
Pretty URL www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/ IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:53 Last Seen2024-04-11 21:26:43 Times Seen294 Hash 70ca739bdb000a9a1d2cff48d51e4704 cdc874e9b6d5a6a07cf405960b42f6d674230145 69ef44c52b462722da3f52f1837559def3afa4065ed509f3558f4919314c6603 Loading...

	www.thecrudelife.com/wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.4.5	4.6 kB	2023-03-07	2024-04-17
Pretty URL www.thecrudelife.com/wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.4.5 IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:07:29 Last Seen2024-04-17 04:06:23 Times Seen887 Hash 3940eede2b6841663dddd9e946dec11e ccb59e18338a06a5f0168be0bd1677710f6d7bd4 b0fadf75681475e975bd2bdaceac6c08e8f5ef06f9a1c7fe9f3f7a571f5bc935 Loading...

	www.google-analytics.com/analytics.js	50 kB	2023-03-12	2024-04-15
Pretty URL www.google-analytics.com/analytics.js IP 142.250.74.110 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-12 21:46:21 Last Seen2024-04-15 18:54:35 Times Seen35101 Hash 54e51056211dda674100cc5b323a58ad 26dc5034cb6c7f3bbe061edd37c7fc6006cb835b 5971b095cff574a66d35ada016d4c077c86e2dea62e9c0f14cf7c94b258619de Loading...

	www.youtube.com/iframe_api	992 B	2023-03-13	2023-03-13
Pretty URL www.youtube.com/iframe_api IP 142.250.74.46 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:10:15 Last Seen2023-03-13 15:13:57 Times Seen1 Hash 20d9cb0e588e33fd90eb91d69c998d08 1462c6d19219a9c2ac4341c540209e25fede5248 e5845618ddb23db0a8e1112df9469177d5d500da23de75c6602f27f0dc957415 Loading...

	www.youtube.com/s/player/dac945fd/www-widgetapi.vflset/www-widgetapi.js	188 kB	2023-03-13	2023-03-13
Pretty URL www.youtube.com/s/player/dac945fd/www-widgetapi.vflset/www-widgetapi.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 13:10:15 Last Seen2023-03-13 15:13:54 Times Seen1 Hash 9a5b1d22b3e01c1e2cd5448b8b51688b 1b208ff7573549c1bc983f97936a340f1ee2e381 f67b964c69b2fb7a5a3aae00a4f7061c4af3d84ff31bf3ad2730143f151c3655 Loading...

	www.googletagmanager.com/gtag/js?id=G-HKWV9VKG3L	182 kB	2023-03-13	2023-03-13
Pretty URL www.googletagmanager.com/gtag/js?id=G-HKWV9VKG3L IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:13:54 Last Seen2023-03-13 15:13:54 Times Seen1 Hash c2387bab350832eb0fc211ad94166cd2 5a36759d8494a9629b154e5185dc331f010876ca 2e59688cf920a98d58b93e6cd19713a084ab7023ede8607f8bfad011664cfdbc Loading...

	www.thecrudelife.com/wp-content/plugins/userswp/assets/js/users-wp.min.js?ver=1.2.3.4	17 kB	2023-03-13	2023-03-13
Pretty URL www.thecrudelife.com/wp-content/plugins/userswp/assets/js/users-wp.min.js?ver=1.2.3.4 IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-13 15:13:54 Last Seen2023-03-13 15:13:54 Times Seen1 Hash a1f2f5e704cc19bf8fa9d171f127f999 388717add72a7bbad88506e22970e4856957db2e 5809272046f1f752718fc755361e78986d3cdeba35c117d66c70835f13b0ae0f Loading...

	www.thecrudelife.com/wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=14.1	13 kB	2023-03-07	2024-01-02
Pretty URL www.thecrudelife.com/wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=14.1 IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:22:05 Last Seen2024-01-02 14:30:57 Times Seen48 Hash 00eb29958ddb9806ed70197bfc5e8ad9 5147c21919eaee457c1d4cf0ea91ee64991caa9c 959b78a0b590c28bddf91777ce957587bf6c163ee8a841319b72d8a4e9885269 Loading...

	www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/	145 B	2023-03-07	2024-04-19
Pretty URL www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/ IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:22 Last Seen2024-04-19 12:57:47 Times Seen3475 Hash 09c7a3dbfcd65973e5cbdb48c5460c07 086b7a4ac6632ec06f2f0e68f4ff3fcfc9a1c71c d81a9dc0c33559bfacc014a5216f454c40183312addc9623d3da987650cd56f3 Loading...

	www.thecrudelife.com/wp-content/themes/mh-magazine-lite/js/scripts.js?ver=2.9.1	37 kB	2023-03-07	2024-04-05
Pretty URL www.thecrudelife.com/wp-content/themes/mh-magazine-lite/js/scripts.js?ver=2.9.1 IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:25:46 Last Seen2024-04-05 21:22:00 Times Seen370 Hash e6dc1776b411890b7c8d91a0f64573df 9a62d6beef54462c393b94140a9320858121508e 07a442bcbe2faa41bf1f585c7c772be2a8918f9afd0f5526eb4956562d5e6f8c Loading...

	www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.js?ver=6.1.1	71 kB	2023-03-07	2024-04-18
Pretty URL www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.js?ver=6.1.1 IP 192.185.20.87 ASN #46606 UNIFIEDLAYER-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:06:39 Last Seen2024-04-18 22:11:32 Times Seen4263 Hash 0f64f3a3a0c620a6756d36abaff1b4a6 4738d7f9885db2cb9370766974c8f6b22e9ec29d 00501810e93307a8882a74d864e7547fd1458deea539361dc1124ac133799a4b Loading...

HTTP Transactions (129)

URL IP Response Size

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6542
Expires: Thu, 02 Feb 2023 21:12:03 GMT
Date: Thu, 02 Feb 2023 19:23:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6932
Expires: Thu, 02 Feb 2023 21:18:33 GMT
Date: Thu, 02 Feb 2023 19:23:01 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2956
Expires: Thu, 02 Feb 2023 20:12:17 GMT
Date: Thu, 02 Feb 2023 19:23:01 GMT
Connection: keep-alive

firefox.settings.services.mozilla.com/v1/

35.241.9.150

200 OK

939 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Size
939 B (939 bytes)
Hash
30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e

HTTP Headers

GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 18:43:31 GMT
content-type: application/json
age: 2370
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: eutVKVhE/6b5O9iUdOAS03W7u+eP76yxWomPDS0zrueS6gIfqmfD/DtasOII1s6nw2Sl0naTv8WXKcsR/stIdw==
x-amz-request-id: PTR992DZ15A2N9W9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 18:23:13 GMT
age: 3588
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 19:23:01 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US

35.241.9.150

200 OK

329 B

URL HTTP/2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
35.241.9.150:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Size
329 B (329 bytes)
Hash
0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300

HTTP Headers

GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 18:49:05 GMT
age: 2036
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4129
Expires: Thu, 02 Feb 2023 20:31:50 GMT
Date: Thu, 02 Feb 2023 19:23:01 GMT
Connection: keep-alive

www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/

192.185.20.87

200 OK

27 kB

URL HTTP/1.1
www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (21194), with CRLF, LF line terminators
Size
27 kB (27105 bytes)
Hash
fe26a9c310d5858805d8e7a07625b630
747cd05b1f4701d19fd78fb956be5aa0ce3ef0c6
c0ce582db057525a0c7ae1814e1cd88c88419bf7d7d1c3510bcb509e10ee0a7e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/ HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:01 GMT
Server: Apache
Link: <https://www.thecrudelife.com/wp-json/>; rel="https://api.w.org/", <https://www.thecrudelife.com/wp-json/wp/v2/podcast/8608>; rel="alternate"; type="application/json", <https://www.thecrudelife.com/?p=8608>; rel=shortlink
X-TEC-API-VERSION: v1
X-TEC-API-ROOT: https://www.thecrudelife.com/wp-json/tribe/events/v1/
X-TEC-API-ORIGIN: https://www.thecrudelife.com
Content-Encoding: gzip
Vary: Accept-Encoding,Cookie
Set-Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; expires=Thu, 02-Feb-2023 19:53:01 GMT; Max-Age=1800; path=/
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Content-Length: 27105
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8

www.googletagmanager.com/gtag/js?id=G-HKWV9VKG3L

142.250.74.168

302 Found

253 B

URL HTTP/1.1
www.googletagmanager.com/gtag/js?id=G-HKWV9VKG3L
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
253 B (253 bytes)
Hash
b60e67637a33586c1fb8d5c46c6c9700
f382ccb4307064398e6cc0ad7477d91bde1a8880
1a80d3d1c8fb14d57f1ded4703c36e5cd60db0a0fb7d571290de4cd9c9859617

HTTP Headers

GET /gtag/js?id=G-HKWV9VKG3L HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/

HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtag/js?id=G-HKWV9VKG3L
Cross-Origin-Resource-Policy: cross-origin
Date: Thu, 02 Feb 2023 19:23:01 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 253
X-XSS-Protection: 0

www.thecrudelife.com/wp-content/plugins/wordpress-easy-paypal-payment-or-donation-accept-plugin/wpapp-styles.css?ver=6.1.1

192.185.20.87

200 OK

260 B

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/wordpress-easy-paypal-payment-or-donation-accept-plugin/wpapp-styles.css?ver=6.1.1
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with CRLF line terminators
Size
260 B (260 bytes)
Hash
1b352b21b154bc193b0868d155308a3b
197dc0bde5e1c6d373f7ff5fec7c294b39cf0399
f56415f8c459f404c8c0429c6726dcabf2de77403cd0961ec5f1e6a9bb5f9b23

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/wordpress-easy-paypal-payment-or-donation-accept-plugin/wpapp-styles.css?ver=6.1.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:01 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 30 May 2021 14:11:19 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 260
Keep-Alive: timeout=5, max=75
Content-Type: text/css

a.mailmunch.co/app/v1/site.js

143.204.55.3

200 OK

8.4 kB

URL HTTP/1.1
a.mailmunch.co/app/v1/site.js
IP
143.204.55.3:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (26047), with no line terminators
Size
8.4 kB (8416 bytes)
Hash
422e40c7f0150d84846e53d0cc4f6873
8d48e20c982d2e76dba96624f69d847570a576ff
7ea9f680e9f18f0f0698cfe0cfa7811bb281f4f4fbf0d4b530939b865b21169f

HTTP Headers

GET /app/v1/site.js HTTP/1.1
Host: a.mailmunch.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/

HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 8416
Connection: keep-alive
Date: Wed, 01 Feb 2023 03:03:24 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: HEAD, GET, POST, PUT, DELETE
Access-Control-Expose-Headers: ETag
Access-Control-Max-Age: 3000
Last-Modified: Tue, 31 Jan 2023 10:07:29 GMT
ETag: "422e40c7f0150d84846e53d0cc4f6873"
Cache-Control: max-age=172800
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 728cAC-JvWsi-D0IDEKKPN7ycNz_0aohYaCNy7QTlZLRa1dCQwt_fw==
Age: 145178

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.thecrudelife.com/wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/js/select2.min.js?ver=4.0.11

192.185.20.87

200 OK

31 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/js/select2.min.js?ver=4.0.11
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
C source, Unicode text, UTF-8 text, with very long lines (32213)
Size
31 kB (31185 bytes)
Hash
2e3eb0a8380a016401aae8e268dac75e
6b73625d36b54634b10ec697c48add6ac8b8f389
94561dcbc1ac12a63e628b86edc9acc20ed1485c853f3eb15fb8e1fd9eedb98f

HTTP Headers

GET /wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/js/select2.min.js?ver=4.0.11 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:01 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:08:49 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.googletagmanager.com/gtag/js?id=UA-97173802-1

142.250.74.168

200 OK

44 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=UA-97173802-1
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1759)
Size
44 kB (43881 bytes)
Hash
b6ba36a56c8d4173cf2d2a256d1de50e
e4cc5238476e7d4dc89c6319c752ef608068c9c6
30300e71f8fa60633335b8511939227ba2fe74e2fd744e64bed5177bb25e7d1d

HTTP Headers

GET /gtag/js?id=UA-97173802-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 19:23:02 GMT
expires: Thu, 02 Feb 2023 19:23:02 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 18:21:29 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43881
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-HKWV9VKG3L

142.250.74.168

200 OK

67 kB

URL HTTP/2
www.googletagmanager.com/gtag/js?id=G-HKWV9VKG3L
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (3974)
Size
67 kB (67069 bytes)
Hash
cae239391d3e1e8706ebe1a794cda8d4
235a16507c474a1967e8d6bc38ca8a519d6295ef
06802d0fe7cf668b0472c5f1e12e953f16e775f61394b5e750196827fd0363a7

HTTP Headers

GET /gtag/js?id=G-HKWV9VKG3L HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.thecrudelife.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 19:23:02 GMT
expires: Thu, 02 Feb 2023 19:23:02 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 67069
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.39.122.167

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.39.122.167:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uHHpW9kEHKrBKQqzU5hJBA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: oSmolgzWOjQjLs29mSqCejQkgII=

www.thecrudelife.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17

192.185.20.87

200 OK

3.2 kB

URL HTTP/1.1
www.thecrudelife.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (11256), with no line terminators
Size
3.2 kB (3239 bytes)
Hash
1054d0d53548e8bae51665b11acc6413
2eea6a05fe18db61fff58c431d34a86b3e0b7ade
cb8b0f0f3f871d9776da32ee6d9e1af9277a211be61e97a831c7f8c98fbebfae

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 18 Nov 2021 02:18:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3239
Keep-Alive: timeout=5, max=75
Content-Type: text/css

www.thecrudelife.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1

192.185.20.87

200 OK

1.3 kB

URL HTTP/1.1
www.thecrudelife.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (4186), with no line terminators
Size
1.3 kB (1298 bytes)
Hash
91bab39b98d7e5c1632717b9ebe349e4
e639a447d06fc7827be5b5b35d603ff16b5f7bb1
47ff151faeb23a5654f6ec58b404e51193f6714849a69de241c2ee79662f74c6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 18 Nov 2021 02:18:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1298
Keep-Alive: timeout=5, max=75
Content-Type: text/css

www.thecrudelife.com/wp-includes/css/classic-themes.min.css?ver=1

192.185.20.87

200 OK

189 B

URL HTTP/1.1
www.thecrudelife.com/wp-includes/css/classic-themes.min.css?ver=1
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
189 B (189 bytes)
Hash
5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f

HTTP Headers

GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 02 Nov 2022 08:42:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 189
Keep-Alive: timeout=5, max=75
Content-Type: text/css

www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.css?ver=3.2.10

192.185.20.87

200 OK

4.1 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.css?ver=3.2.10
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (11843)
Size
4.1 kB (4060 bytes)
Hash
a2eacc29d4f41073c38be37759e47692
704baf7cd217af03f2023ce63e6a982d292834b3
9e55fa2b980373a7a8f1da010433d0923af916cd6c7c1b8296438632e3fd19ae

HTTP Headers

GET /wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.css?ver=3.2.10 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:08:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4060
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.css?ver=6.1.1

192.185.20.87

200 OK

3.4 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.css?ver=6.1.1
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (14965), with no line terminators
Size
3.4 kB (3356 bytes)
Hash
8be7a878c560f1b146db163966f64d74
0dfdd50b2c3355c62cd7426649e819ba4a652495
7c7f8eb143a56619e051b210fa355e14ff4ff9f8fad982b0c4110c166a2aadca

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/wp-user-avatar/assets/select2/select2.min.css?ver=6.1.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:08:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3356
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css

www.thecrudelife.com/wp-content/plugins/add-search-to-menu/public/css/ivory-search.min.css?ver=5.4.5

192.185.20.87

200 OK

2.1 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/add-search-to-menu/public/css/ivory-search.min.css?ver=5.4.5
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (6811), with no line terminators
Size
2.1 kB (2087 bytes)
Hash
9fb9af2901fcb5f1b252b8dac48ab0ee
87fc9d5d02cdeb12636d277f0f5c4b31ea29b00c
d6e9a3f3704a91b0e662e91ecd6c596d1e6b7f9e2fe7442844da9ca6609f1827

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/add-search-to-menu/public/css/ivory-search.min.css?ver=5.4.5 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:09:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2087
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

www.thecrudelife.com/wp-content/themes/mh-magazine-lite/includes/font-awesome.min.css

192.185.20.87

200 OK

7.1 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/themes/mh-magazine-lite/includes/font-awesome.min.css
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (30837)
Size
7.1 kB (7114 bytes)
Hash
82a55032c4b614390aea6ef6870d3e90
bb21577feea531540a8d4f27ac3730ffac111e1b
4f068500ef9ef0dbffa5b76ac10f1970a7a9de8ff033f84228971a140eb20069

HTTP Headers

GET /wp-content/themes/mh-magazine-lite/includes/font-awesome.min.css HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Thu, 18 Nov 2021 11:05:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7114
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/css/frontend.min.css?ver=3.2.10

192.185.20.87

200 OK

15 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/css/frontend.min.css?ver=3.2.10
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65536), with no line terminators
Size
15 kB (15295 bytes)
Hash
4965d273c665d58ac673952b3299e882
b2175b87388934bfc92ac38640e69a1ba2bf8efb
f20935193b8a3b402938e07226d46436915d48b1e829e6cf6834fa060e6db129

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/wp-user-avatar/assets/css/frontend.min.css?ver=3.2.10 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 01 May 2022 10:08:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 15295
Keep-Alive: timeout=5, max=75
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.thecrudelife.com/wp-content/plugins/youtube-embed-plus/styles/ytprefs.min.css?ver=14.1

192.185.20.87

200 OK

2.2 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/youtube-embed-plus/styles/ytprefs.min.css?ver=14.1
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (8261)
Size
2.2 kB (2211 bytes)
Hash
10ccc6ec66b18fecf202cd9f943e0468
be468e95f0afe48e877fc086b81c3a38e51e289b
f7611f2e38a201f09c707c91a61ef1b2963ffa1c6017e0bdbd6fea7a9b7094fa

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/youtube-embed-plus/styles/ytprefs.min.css?ver=14.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:09:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2211
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.thecrudelife.com/wp-content/plugins/jetpack/css/jetpack.css?ver=10.8

192.185.20.87

200 OK

24 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/jetpack/css/jetpack.css?ver=10.8
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (18436)
Size
24 kB (24346 bytes)
Hash
2882dddd609fa1ddde36a8bb7e369761
aa0e24db63e7c7133d773c4490e3586279193dca
0537b88c779d88f157b7e80af96cfd2165618dab0bdbcae8393258a2bffbe5de

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/jetpack/css/jetpack.css?ver=10.8 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:09:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.thecrudelife.com/wp-content/themes/mh-magazine-lite/style.css?ver=2.9.1

192.185.20.87

200 OK

14 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/themes/mh-magazine-lite/style.css?ver=2.9.1
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (739)
Size
14 kB (13868 bytes)
Hash
43744938769bff2c07714e5e7a411c28
275967079fb78a22fc9dbe1e6ca59c032c92fe7a
2e57c908811e4c696974d11ec38bbc8ae8a959b87f6e5a85837072d0d4fa715c

HTTP Headers

GET /wp-content/themes/mh-magazine-lite/style.css?ver=2.9.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Thu, 18 Nov 2021 11:05:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13868
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

www.thecrudelife.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2

192.185.20.87

200 OK

4.6 kB

URL HTTP/1.1
www.thecrudelife.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (11126)
Size
4.6 kB (4618 bytes)
Hash
acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Thu, 18 Nov 2021 02:18:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4618
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript

www.thecrudelife.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.0

192.185.20.87

200 OK

3.9 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.0
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1577)
Size
3.9 kB (3861 bytes)
Hash
0de3f234bf5adf709c64d6a81701e107
ec76e30709d2ac94c86121529768c54b84943872
c67075988b28f06061348cebb275f465c608e141f9a00b50c5e4824f57ed10f3

HTTP Headers

GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.0 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Mon, 07 Nov 2022 20:40:17 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3861
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript

www.thecrudelife.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1

192.185.20.87

200 OK

18 kB

URL HTTP/1.1
www.thecrudelife.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (47826)
Size
18 kB (17667 bytes)
Hash
9415c9562591af7a582c29139621505f
0b12eecf36a48b871a3198550f4f65bb4a6d9b1b
06c70d3232c2ae3ed2aa259eb7a1beb329b654926813935fffa8902cd5ebaa4a

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 20:42:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css

www.thecrudelife.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1

192.185.20.87

200 OK

5.3 kB

URL HTTP/1.1
www.thecrudelife.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (15660)
Size
5.3 kB (5321 bytes)
Hash
710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50

HTTP Headers

GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 24 May 2022 20:41:17 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5321
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript

www.thecrudelife.com/wp-content/themes/mh-magazine-lite/js/scripts.js?ver=2.9.1

192.185.20.87

200 OK

15 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/themes/mh-magazine-lite/js/scripts.js?ver=2.9.1
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (21960)
Size
15 kB (14697 bytes)
Hash
9845fd46cdbab1308b73dd975cb5a525
e36949fb7352d7eb73d653b6f227b4ab4a6f51c2
d139c04a2fe89f3f1555dddc05c272bfe7b1d71eaf87e00d9434a305e334be9c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/themes/mh-magazine-lite/js/scripts.js?ver=2.9.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Thu, 18 Nov 2021 11:05:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14697
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript

www.thecrudelife.com/wp-content/plugins/userswp/assets/js/users-wp.min.js?ver=1.2.3.4

192.185.20.87

200 OK

5.6 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/userswp/assets/js/users-wp.min.js?ver=1.2.3.4
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (16646), with no line terminators
Size
5.6 kB (5550 bytes)
Hash
54317246903a9806d9779891c55cc1dd
318e1107e6d4cdf42d99004c5fe2852fae71e2c7
26e736028551307d521b5e5c3d768d5f9e36c7d791fcc748f3f8da4e0300e94d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/userswp/assets/js/users-wp.min.js?ver=1.2.3.4 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 01 May 2022 10:08:49 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5550
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript

www.thecrudelife.com/wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=14.1

192.185.20.87

200 OK

5.5 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=14.1
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (13379)
Size
5.5 kB (5527 bytes)
Hash
8cb8f726ac7eca08e7a96880f199af05
7be20b6ad216e9da0003deac9901bb1d19d007c2
0002eae4816d24d526a67b0a12c1a26c37aa2af4b20f4032579ee4a6653a89f0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=14.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:09:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5527
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript

www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.js?ver=6.1.1

192.185.20.87

200 OK

26 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.js?ver=6.1.1
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text, with very long lines (64131)
Size
26 kB (25813 bytes)
Hash
9ff0316108f70718ac014e426f6e4a80
846d1d305fb8f0af37ceb990b10951d5ae12dfe5
e08351d8339f9496957db38e726eaa139d67ebac25bf0f57002d3bcfcc94f981

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/wp-user-avatar/assets/select2/select2.min.js?ver=6.1.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:08:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.js?ver=6.1.1

192.185.20.87

200 OK

19 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.js?ver=6.1.1
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (49632)
Size
19 kB (18913 bytes)
Hash
fc1c32eb49bd31152f0651a3909937d8
784c3a9091866a41cf571939fe5003ae97467e00
24436388bd7f1f102c15e23e313552515a89581f447d8fdb3f2120abcafd7ef4

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.js?ver=6.1.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 01 May 2022 10:08:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: application/javascript

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15

192.185.20.87

200 OK

9.2 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
9.2 kB (9241 bytes)
Hash
2b6645c19b50693c7ebb41ec462c54f9
1b1c41de5f782c9d6016dab62f05e64710195e29
c9a374d519bbea2ad0bb5a906f2f238c44564acac335939c9419a0cb10363d9d

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9241
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

www.thecrudelife.com/wp-content/plugins/the-events-calendar/vendor/jquery/smoothness/jquery-ui-1.8.23.custom.css?ver=5.14.2.1

192.185.20.87

200 OK

8.4 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/the-events-calendar/vendor/jquery/smoothness/jquery-ui-1.8.23.custom.css?ver=5.14.2.1
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (1399)
Size
8.4 kB (8383 bytes)
Hash
8a9af4d4e747576b7ac7a7faa4b1dba9
8b767a3322f55ce9ea0642e7c2473beaf4ad83af
a0b4ae3f2e7d2056c2b019cd7dea01590ab7aff741718de4919085e16c3e65e6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/the-events-calendar/vendor/jquery/smoothness/jquery-ui-1.8.23.custom.css?ver=5.14.2.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:08:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8383
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/css

www.thecrudelife.com/wp-content/plugins/the-events-calendar/vendor/bootstrap-datepicker/css/bootstrap-datepicker.standalone.min.css?ver=5.14.2.1

192.185.20.87

200 OK

3.3 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/the-events-calendar/vendor/bootstrap-datepicker/css/bootstrap-datepicker.standalone.min.css?ver=5.14.2.1
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (16264)
Size
3.3 kB (3313 bytes)
Hash
24ac67afd8262296af14dea981ce0447
97e10e1e31dd79bacffdb3d6288baf6d6f72573f
1daf5fc0c7ea8f29970bc07cc73c81b68ea9e768fd00266e73ac91454bd6734e

HTTP Headers

GET /wp-content/plugins/the-events-calendar/vendor/bootstrap-datepicker/css/bootstrap-datepicker.standalone.min.css?ver=5.14.2.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:08:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3313
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css

www.thecrudelife.com/wp-content/plugins/the-events-calendar/src/resources/css/tribe-events-theme.min.css?ver=5.14.2.1

192.185.20.87

200 OK

2.6 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/the-events-calendar/src/resources/css/tribe-events-theme.min.css?ver=5.14.2.1
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (9587), with no line terminators
Size
2.6 kB (2552 bytes)
Hash
5c5cbedcce0568cea000c69953ac1210
a46b1a22fc7016280adf1431b1e1ab7ce22acf42
8714f44ad3daf1c6bb034a38b9c24405f65506e6c48f9ccf7ffb120427162e5f

HTTP Headers

GET /wp-content/plugins/the-events-calendar/src/resources/css/tribe-events-theme.min.css?ver=5.14.2.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:08:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2552
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/css

www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/js/frontend.min.js?ver=3.2.10

192.185.20.87

200 OK

3.3 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/js/frontend.min.js?ver=3.2.10
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (9346), with no line terminators
Size
3.3 kB (3331 bytes)
Hash
eb89a4b650d11f21e8dfb8723f0beb2a
ed1ca064486e70e34967e35432442ea2759d3bb0
2293eaa848408400905e5673a1a9764e17188ca86bedff223c1664c051df5b38

HTTP Headers

GET /wp-content/plugins/wp-user-avatar/assets/js/frontend.min.js?ver=3.2.10 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:08:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3331
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript

www.thecrudelife.com/wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=14.1

192.185.20.87

200 OK

1.1 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=14.1
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
HTML document, ASCII text, with very long lines (3102)
Size
1.1 kB (1120 bytes)
Hash
3462b5f527bec4c29ac17c9b51376238
b0de5e6319455fdd548dd7abee817e0c0716dfcc
64c82985ab675c1c58069c612262aa055737f4343f0f1d91837d5f837441ca0c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=14.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:09:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1120
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript

www.thecrudelife.com/wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.4.5

192.185.20.87

200 OK

1.4 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.4.5
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (4591), with no line terminators
Size
1.4 kB (1397 bytes)
Hash
c5481952024b152b24ca808f84a39a34
553aca2f259e29888513440b3c854204808567ae
45ecacaeebb009a877f62825b56edbb58f7d77278f5b44e9b1d74b93aa44badd

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.4.5 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:09:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1397
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/js/castos-player.js?ver=b9288b146baa1f47d55f3de0a140fb15

192.185.20.87

200 OK

3.5 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/js/castos-player.js?ver=b9288b146baa1f47d55f3de0a140fb15
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Unicode text, UTF-8 text
Size
3.5 kB (3482 bytes)
Hash
6cfec6c1da5e6d0ed212705c7e7ce35b
571b28a857c92e9402cb8ea3cb06f68465ba2c66
5bd699bca23969d42b9f36d1c6fcd7401ed6a2665c463d48499301a468209ced

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/js/castos-player.js?ver=b9288b146baa1f47d55f3de0a140fb15 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3482
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript

region1.google-analytics.com/g/collect?v=2&tid=G-HKWV9VKG3L&gtm=2oe210&_p=1585073673&gdid=dZGIzZG&cid=980602921.1675365810&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675365809&sct=1&seg=0&dl=http%3A%2F%2Fwww.thecrudelife.com%2Fpodcast%2Fthe-crude-life-interview-christopher-cottrell-winston-strawn%2F&dt=The%20Crude%20Life%20Interview%3A%20Christopher%20Cottrell%2C%20Winston%20%26%20Strawn%20-%20The%20Crude%20Life&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.anonymize_ip=true

216.239.32.36

204 No Content

0 B

URL HTTP/2
region1.google-analytics.com/g/collect?v=2&tid=G-HKWV9VKG3L&gtm=2oe210&_p=1585073673&gdid=dZGIzZG&cid=980602921.1675365810&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675365809&sct=1&seg=0&dl=http%3A%2F%2Fwww.thecrudelife.com%2Fpodcast%2Fthe-crude-life-interview-christopher-cottrell-winston-strawn%2F&dt=The%20Crude%20Life%20Interview%3A%20Christopher%20Cottrell%2C%20Winston%20%26%20Strawn%20-%20The%20Crude%20Life&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.anonymize_ip=true
IP
216.239.32.36:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /g/collect?v=2&tid=G-HKWV9VKG3L&gtm=2oe210&_p=1585073673&gdid=dZGIzZG&cid=980602921.1675365810&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675365809&sct=1&seg=0&dl=http%3A%2F%2Fwww.thecrudelife.com%2Fpodcast%2Fthe-crude-life-interview-christopher-cottrell-winston-strawn%2F&dt=The%20Crude%20Life%20Interview%3A%20Christopher%20Cottrell%2C%20Winston%20%26%20Strawn%20-%20The%20Crude%20Life&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.anonymize_ip=true HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.thecrudelife.com
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0

HTTP/2 204 No Content
access-control-allow-origin: http://www.thecrudelife.com
date: Thu, 02 Feb 2023 19:23:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.thecrudelife.com/wp-content/plugins/aweber-web-form-widget/src/js/aweber-wpn-script.js

192.185.20.87

200 OK

514 B

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/aweber-web-form-widget/src/js/aweber-wpn-script.js
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text
Size
514 B (514 bytes)
Hash
9a7e92b6398301bd296d3ad8b1b51168
3dda23c056c5db1e5c724d949e1e150ed14d43b0
285f3d451fe8893a0a158b218619a072a03649ddcdb844803a627f40dd9c28ea

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/aweber-web-form-widget/src/js/aweber-wpn-script.js HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:09:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 514
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript

www.thecrudelife.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1

192.185.20.87

200 OK

39 kB

URL HTTP/1.1
www.thecrudelife.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65447)
Size
39 kB (39153 bytes)
Hash
32f58a61f7c5a7e10f8b2dcf8e9a8e34
865c25589283ab1debd45bdfa6c4d8c6ecf15ad3
481cb2216fbdb0797af8c61b69c0bda2c10d025f7b11f2cdfac382d35dc45d63

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 08:42:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

www.thecrudelife.com/wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/js/bootstrap.bundle.min.js?ver=0.1.70

192.185.20.87

200 OK

47 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/js/bootstrap.bundle.min.js?ver=0.1.70
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (32016)
Size
47 kB (46775 bytes)
Hash
11611f04619f27102990b568b136df3f
abcfafcc684a13934b74db943eb5e7cd8dfae1e6
623a2f66a59b0700733278ff9f00dde735a4b5d29f953253f7236d256726a4f6

HTTP Headers

GET /wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/js/bootstrap.bundle.min.js?ver=0.1.70 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:08:49 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript

www.thecrudelife.com/wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/css/ayecode-ui-compatibility.css?ver=0.1.70

192.185.20.87

200 OK

52 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/css/ayecode-ui-compatibility.css?ver=0.1.70
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
ASCII text, with very long lines (65067)
Size
52 kB (51833 bytes)
Hash
35ba3727d4e1ddae8e834d652ac58f13
48dac126b56567a0fd67e08ec11c7885a524defd
57542c5a74605a1adb579ef8f630fee05848634a7e6da5e28e9e128d440e410c

HTTP Headers

GET /wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/css/ayecode-ui-compatibility.css?ver=0.1.70 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:08:49 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css

www.googletagmanager.com/gtag/js?id=UA-97173802-1&l=dataLayer&cx=c

142.250.74.168

302 Found

279 B

URL HTTP/1.1
www.googletagmanager.com/gtag/js?id=UA-97173802-1&l=dataLayer&cx=c
IP
142.250.74.168:0
ASN
#15169 GOOGLE

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Size
279 B (279 bytes)
Hash
5d4de33d77beea4efdeae65a215b7267
d9385d28504a2e07761d5ffe1447c22dab204cad
43269a4dea3f8786660511746c24e2713c3d5edee13a2e3fb492590c3783d5bc

HTTP Headers

GET /gtag/js?id=UA-97173802-1&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/

HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtag/js?id=UA-97173802-1&l=dataLayer&cx=c
Cross-Origin-Resource-Policy: cross-origin
Date: Thu, 02 Feb 2023 19:23:03 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 279
X-XSS-Protection: 0

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-loader.svg

192.185.20.87

200 OK

1.0 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-loader.svg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (902)
Size
1.0 kB (1005 bytes)
Hash
0b4fe999eeefc8cb7ef352a6ff509826
94e9ce2510755dd570d788197e91aacfd000fc8d
8603d19bda326de2f971d460a26441b2dc7649ca6f1fe9d289b3da0bc44379cb

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-loader.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 1005
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/svg+xml

www.thecrudelife.com/wp-content/uploads/2019/11/cropped-TCL_Website_Banner_1080_250_11052019.jpg

192.185.20.87

200 OK

59 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/uploads/2019/11/cropped-TCL_Website_Banner_1080_250_11052019.jpg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1080x250, components 3\012- data
Size
59 kB (59029 bytes)
Hash
17fd16b47f96fac0cf555d9369a79bd0
48ad32d9a48233ca98162d56e96d848587bb83de
99dd4bb8819d23da18186ac2862b473a81ac1a25e51d4bbceafd26d473f6853e

HTTP Headers

GET /wp-content/uploads/2019/11/cropped-TCL_Website_Banner_1080_250_11052019.jpg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Wed, 06 Nov 2019 02:46:01 GMT
Accept-Ranges: bytes
Content-Length: 59029
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/jpeg

pixel.wp.com/g.gif?v=ext&j=1%3A10.8&blog=62769583&post=8608&tz=-6&srv=www.thecrudelife.com&host=www.thecrudelife.com&ref=&fcp=2490&rand=0.009656090698234365

192.0.76.3

200 OK

50 B

URL HTTP/1.1
pixel.wp.com/g.gif?v=ext&j=1%3A10.8&blog=62769583&post=8608&tz=-6&srv=www.thecrudelife.com&host=www.thecrudelife.com&ref=&fcp=2490&rand=0.009656090698234365
IP
192.0.76.3:0
ASN
#2635 AUTOMATTIC

File type
GIF image data, version 89a, 6 x 5\012- data
Size
50 B (50 bytes)
Hash
e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1

HTTP Headers

GET /g.gif?v=ext&j=1%3A10.8&blog=62769583&post=8608&tz=-6&srv=www.thecrudelife.com&host=www.thecrudelife.com&ref=&fcp=2490&rand=0.009656090698234365 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/

HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 19:23:03 GMT
Content-Type: image/gif
Content-Length: 50
Connection: keep-alive
Cache-Control: no-cache
Access-Control-Allow-Origin: *

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-play.svg

192.185.20.87

200 OK

335 B

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-play.svg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
335 B (335 bytes)
Hash
151febb3ad1b78747fc9eeb6fbd1c21c
fc60a4fbc2f429c69555dbfd99819964b34224b4
aa6a906063cc68d15471df24de81e7bf63d50a45a18e04bc3a6a75b9deda1c50

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-play.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 335
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/svg+xml

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-rwd.svg

192.185.20.87

200 OK

1.8 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-rwd.svg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (918)
Size
1.8 kB (1837 bytes)
Hash
7f8717014a17cb8a81b7e4fc6965b797
469e6bd9e1f530ebd7aa346bd690c1907dfd8f5d
636f99f3e7631c7ef4372f725b76573efa60d6c3d9650b95721b7e2472ac5e9c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-rwd.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 1837
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/svg+xml

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-volume-on.svg

192.185.20.87

200 OK

1.2 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-volume-on.svg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1120)
Size
1.2 kB (1224 bytes)
Hash
b158a679f464ebed10e97248176182e4
629355273aab11017cb1a9447ac64b86357b6b77
74190bf91d2e2aa7dd21ef20ab1bd552fabfaabcf7662bbf0125328fdd413aa0

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-volume-on.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 1224
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/svg+xml

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-fwd.svg

192.185.20.87

200 OK

3.0 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-fwd.svg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2060)
Size
3.0 kB (2995 bytes)
Hash
c3532915ad86105c09b2d5844829f28f
c7115720064b8bf8d6eaaf272bcc1804ddc4f498
30c3d97683f2d4cbfecd879484c8c7f8f4c93e1822bc0ec8e605f36904c897b6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-fwd.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 2995
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/svg+xml

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/amazon.svg

192.185.20.87

200 OK

3.9 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/amazon.svg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3801)
Size
3.9 kB (3905 bytes)
Hash
1a3d0d2e4972971c781cdbf966ef0c1f
374e26ac708b6abe83d137e619d83ce0d51d4b5b
4d3fe404745c212f8709e35628eb380ab11c136392d3228635beb1d1f420b17e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/amazon.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 3905
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/svg+xml

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-apple-podcasts.svg

192.185.20.87

200 OK

2.0 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-apple-podcasts.svg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1891)
Size
2.0 kB (1995 bytes)
Hash
e42d6139d2486ea43ac69b5045b99de7
2ad204a6804b541b06c0f1e6fb37ac52cc160104
912924d40886bad13931a0a4e639f666da1492e182cc1dfdb4de50b19f1b62de

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-apple-podcasts.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 1995
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/svg+xml

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20626
Expires: Fri, 03 Feb 2023 01:06:49 GMT
Date: Thu, 02 Feb 2023 19:23:03 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg

34.120.237.76

200 OK

15 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
15 kB (15051 bytes)
Hash
6bb5b89e738516f4862491eec286bf6d
8fb46b9ca85f2c578eb2a56d0007859183e12209
7f164a37b675bf39f8473392b07a2a383397da003303965fb190fd4f455bb43b

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15051
x-amzn-requestid: 72a3f2ae-538e-40dc-9496-86c28334ba0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc6jGTAIAMFy4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb76-72178ed13a2e70d462785b90;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CKTfQzCvXa4oL6Lm2n8Rw_9Uhj69YfgpDTP9s0zoaX5qW1vcqWIXDA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:46:26 GMT
age: 77797
etag: "8fb46b9ca85f2c578eb2a56d0007859183e12209"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.6 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.6 kB (8642 bytes)
Hash
0f85742f336de59ca88f7f964a8b33f4
0fc7177f8cb06421a8807e93989f651bda743567
fbd5fd39c39c218b0fa956f8cb8050cbdbfcb109a92303f6175d73cc8c339526

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8642
x-amzn-requestid: 79840c68-3e99-428d-9c01-9e4a93a34486
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdUzH1-oAMFiwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc1e-5bb93c5126aaff474900da63;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Mc8C-oesi4njIn2K2f56GKuyt6erRJAqCU-B4InhTD8oIoqo4s5-Fg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:43 GMT
age: 75860
etag: "0fc7177f8cb06421a8807e93989f651bda743567"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20626
Expires: Fri, 03 Feb 2023 01:06:49 GMT
Date: Thu, 02 Feb 2023 19:23:03 GMT
Connection: keep-alive

34.120.237.76

200 OK

5.4 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.4 kB (5356 bytes)
Hash
7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XyDZc0F-b0rxwoS5wvSXBuBfYE7JljMmuXseBjLOBk4HvxU5gE7Oqg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:55 GMT
age: 75848
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20626
Expires: Fri, 03 Feb 2023 01:06:49 GMT
Date: Thu, 02 Feb 2023 19:23:03 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20626
Expires: Fri, 03 Feb 2023 01:06:49 GMT
Date: Thu, 02 Feb 2023 19:23:03 GMT
Connection: keep-alive

34.120.237.76

200 OK

16 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
16 kB (15857 bytes)
Hash
4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:28:37 GMT
age: 42866
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20626
Expires: Fri, 03 Feb 2023 01:06:49 GMT
Date: Thu, 02 Feb 2023 19:23:03 GMT
Connection: keep-alive

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/google-podcasts.svg

192.185.20.87

200 OK

2.2 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/google-podcasts.svg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2050)
Size
2.2 kB (2154 bytes)
Hash
df4de26238e81d21657a50b926f9c44e
7af8c4b836fffa1d20ca9d8bd4e2ce8d8ae0f9db
aaefcef9fd2a124b2621f331cdd42bcf25706fb20a9dbf6237c772113081b37b

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/google-podcasts.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 2154
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/svg+xml

34.120.237.76

200 OK

8.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.9 kB (8944 bytes)
Hash
b9af1fd56c0de8f128ddce88d49c1b4d
e3bb3d4950f7c0267f4476eef21872da332831aa
908153182f76362ff329803d9c11c06c66181e85e8e51dabd927f1f1ac630d5c

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 86qoRJHXcrnBGi3REMF5q3ANzKdqEs5F3yFUBmiIt6SCbBVnhGe2Kw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:58:57 GMT
age: 77046
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

9.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
9.2 kB (9221 bytes)
Hash
df4a4906103a8f409c066b1cded71384
22847e3926db3e3d5f6b529297a4abe8b377c3a6
84a14b73b2cc7f4641eaa5539cbee0a109ae2b05cf88d06797a2b00c8d4f0c43

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: 209c2ad4-7a1f-4867-bf98-4ca8621111a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTBFv5IAMFgqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-1627a9d603c69f7760ad013b;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kAkcQOKAvuq3k-X081MLCqon-cnQJqGryVeE0fwX0a7bcXgJlySIvg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:12:07 GMT
age: 76256
etag: "22847e3926db3e3d5f6b529297a4abe8b377c3a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/fonts/roboto-500-latin.woff2

192.185.20.87

200 OK

16 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/fonts/roboto-500-latin.woff2
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 15872, version 1.0\012- data
Size
16 kB (15872 bytes)
Hash
020c97dc8e0463259c2f9df929bb0c69
8f956a31154047d1b6527b63db2ecf0f3a463f24
24369e1b2461af9dcefecaf9cc93d64cf22a4c5bac32506100b9e21014507bcf

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/fonts/roboto-500-latin.woff2 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 15872
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: font/woff2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/fonts/poppins-400-latin.woff2

192.185.20.87

200 OK

7.9 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/fonts/poppins-400-latin.woff2
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 7900, version 1.0\012- data
Size
7.9 kB (7900 bytes)
Hash
9ed361bba8488aeb2797b82befda20f1
6f80d965a066aff81c0a344d4b7297bd009cc099
41e46faff74c6a77d581689ec35eb040f6c96d17f4d2c5b25dccd42ed498b01c

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/fonts/poppins-400-latin.woff2 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 7900
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: font/woff2

fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2

216.58.207.227

200 OK

45 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Size
45 kB (44856 bytes)
Hash
565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db

HTTP Headers

GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.thecrudelife.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:52:41 GMT
expires: Tue, 30 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 261022
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2

216.58.207.227

200 OK

18 kB

URL HTTP/2
fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2
IP
216.58.207.227:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 17820, version 1.0\012- data
Size
18 kB (17820 bytes)
Hash
3d5107abaf7bf4df5478bd04625c0929
b04d394caabf6ea3e500b74781dc2bfd54f3c18d
9ad0a22b0c58240a7a92b4c01aa31f39a5918dea6a8fdfa77e63042abc4fca31

HTTP Headers

GET /s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.thecrudelife.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17820
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 00:39:14 GMT
expires: Wed, 31 Jan 2024 00:39:14 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:13:12 GMT
content-type: font/woff2
age: 240229
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/fonts/roboto-400-latin.woff2

192.185.20.87

200 OK

16 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/fonts/roboto-400-latin.woff2
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 15736, version 1.0\012- data
Size
16 kB (15736 bytes)
Hash
479970ffb74f2117317f9d24d9e317fe
81c796737cbe44d4a719777f0aff14b73a3efb1e
48c3fa6f86c54f1d9bb519220713d4b0a1f8cd1a589a3c03b9fa82e98ecb13e3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/fonts/roboto-400-latin.woff2 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 15736
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: font/woff2

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/fonts/poppins-500-latin.woff2

192.185.20.87

200 OK

7.8 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/fonts/poppins-500-latin.woff2
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
Web Open Font Format (Version 2), TrueType, length 7776, version 1.0\012- data
Size
7.8 kB (7776 bytes)
Hash
84780596e268aa0cb2be48af2ed5c375
d67ccd32f8c790a746d64d06145882a2f7b06560
d7ba57e3ccc2e3b2bdf8cc9e613194b802607682bf473293c2e3e29de82c9491

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/fonts/poppins-500-latin.woff2 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 7776
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: font/woff2

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/pandora.svg

192.185.20.87

200 OK

592 B

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/pandora.svg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (488)
Size
592 B (592 bytes)
Hash
cd85a0289d0841aa1a427d32e1a0135a
44557c9d8cc3ad3042db0feb31977e21ce9d2242
329fbb29e05d1d5d06fdba939eca5619d63dfcde023cf1bcbf3cce5eada915f3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/pandora.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 592
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/svg+xml

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/share.svg

192.185.20.87

200 OK

1.9 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/share.svg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1800)
Size
1.9 kB (1904 bytes)
Hash
c59fcecfacd255ca33758992f38267bf
bd6abb3224f213cb9aa3df490630543a4f23bed5
e0214de4dcba72e1d9b97e1d5470adf7ae89ebd6a2a217541954b43cca490195

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/share.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 1904
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: image/svg+xml

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/rssradio.svg

192.185.20.87

200 OK

1.0 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/rssradio.svg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (911)
Size
1.0 kB (1015 bytes)
Hash
41b4d7da16dc7440431caad4f5b89d3e
1bdaf43d94938180726704104d14878d3e35b791
ff356e35d7d53e58de9a6563eb03679da983b8d21a580f1ba16006e292c65ca3

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/rssradio.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 1015
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/svg+xml

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
df74d0c5bbc711a484e4508808c3357a
304f6b29d37c4f6ae20a4031ec6b3a879f9928c8
14200bd4d7eff065de2b62f1770c31edb357a95390c619867f00660a88e92ae8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/radio-public.svg

192.185.20.87

200 OK

1.0 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/radio-public.svg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (934)
Size
1.0 kB (1038 bytes)
Hash
05e97838b28c25234780f273abe12417
2d3ff7cb3088b3cdd008c8eb55ce9588f08122b6
20d0833d7615f62e8775124db8a6919618b4a90972fe6f78fc692a3c614e982e

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/radio-public.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 1038
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: image/svg+xml

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-sticher.svg

192.185.20.87

200 OK

400 B

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-sticher.svg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
400 B (400 bytes)
Hash
25f2007db0ea4f50b9ed5982cd24edfe
33ee9a506f159f21a2be7abfbe7b699427223878
3de9d29a015186ee8ffd50704a3bdabf6862992925f2a5124bcc60a20665fbcc

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-sticher.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 400
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/svg+xml

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

471 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
471 B (471 bytes)
Hash
42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/youtube.svg

192.185.20.87

200 OK

763 B

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/youtube.svg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (659)
Size
763 B (763 bytes)
Hash
5599d1dce11ae32f72df9e6e9a5d8a07
63dd3605e543df649af0382299fd60e32ec1051e
206ecf0b053d530bc760d558ac5bff078374fc36fac0dc7b1d0ab22e2cd0d347

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/youtube.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 763
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/svg+xml

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/iheartradio.svg

192.185.20.87

200 OK

2.6 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/iheartradio.svg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2527)
Size
2.6 kB (2631 bytes)
Hash
3f368202b812a2ab65fa5ae66c04942e
c201707469d87ec7def26e316bcb8550d031f30c
9742ebd306bf12ea45f8ca0f85dfbf4849a1dd9a98e2212a96b46cb13a12edb5

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/iheartradio.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 2631
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/svg+xml

i.ytimg.com/vi/_5ZUoafC778/maxresdefault.jpg

142.250.74.54

200 OK

205 kB

URL HTTP/2
i.ytimg.com/vi/_5ZUoafC778/maxresdefault.jpg
IP
142.250.74.54:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Size
205 kB (205009 bytes)
Hash
5db9adcb4644651812a6878568628ffc
c6e971a44533d9961fdf4ca4d58d317494bd4edd
181ed7172c72d13fab060d7e06644d5f083ac5c1845faa1ba992d08ccbee8ffe

HTTP Headers

GET /vi/_5ZUoafC778/maxresdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 205009
date: Thu, 02 Feb 2023 19:23:03 GMT
expires: Thu, 02 Feb 2023 21:23:03 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
df74d0c5bbc711a484e4508808c3357a
304f6b29d37c4f6ae20a4031ec6b3a879f9928c8
14200bd4d7eff065de2b62f1770c31edb357a95390c619867f00660a88e92ae8

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-copy.svg

192.185.20.87

200 OK

649 B

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-copy.svg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (545)
Size
649 B (649 bytes)
Hash
ba5d5c8769f5fbb63df2edbc558ef6cd
2c5540a80a558b185a38d95e3fd1699b38ccd927
ddc851aeeeae858cc9eb3d14a80da754069f771379e39cd8c0ee9c6a9aed3625

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-copy.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 649
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: image/svg+xml

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-facebook.svg

192.185.20.87

200 OK

382 B

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-facebook.svg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text
Size
382 B (382 bytes)
Hash
5053d037050b2edbece32ec76fdb5646
4d75b838a2ea6e20df6ade4e8cc1c82b0120c1ff
cfb51b55cbe2e7019598caba4810cdc1057759753ff18609b6ec7fcb28fb3477

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-facebook.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 382
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/svg+xml

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc9dee018d827dd583eaa68cf39a1824
1df3cf10296bc2a4f1c34f90601085382fca392e
d6fd1fa8aee0fac8111a67aa076fdc1822bccba77b805100765c30cac1d652b5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D6FD1FA8AEE0FAC8111A67AA076FDC1822BCCBA77B805100765C30CAC1D652B5"
Last-Modified: Tue, 31 Jan 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21568
Expires: Fri, 03 Feb 2023 01:22:31 GMT
Date: Thu, 02 Feb 2023 19:23:03 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc9dee018d827dd583eaa68cf39a1824
1df3cf10296bc2a4f1c34f90601085382fca392e
d6fd1fa8aee0fac8111a67aa076fdc1822bccba77b805100765c30cac1d652b5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D6FD1FA8AEE0FAC8111A67AA076FDC1822BCCBA77B805100765C30CAC1D652B5"
Last-Modified: Tue, 31 Jan 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 03 Feb 2023 01:23:03 GMT
Date: Thu, 02 Feb 2023 19:23:03 GMT
Connection: keep-alive

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-twitter.svg

192.185.20.87

200 OK

1.1 kB

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-twitter.svg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1009)
Size
1.1 kB (1113 bytes)
Hash
8c3d0cc5ed031259abdc4725ad49f11c
ec4e828b00bdfd228c5fa3377f8f372c88b25b73
76e3b893f094bb179314d86ea9b748506c5688d0c23412d1d8a2ad1b02bd88f6

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-twitter.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 1113
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: image/svg+xml

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
fd98d0d26ce285afd8f175540df22cce
edd9b7bbe9f4cf5f57ab07d1983f9d69859322fc
c4354676f931e9bb155b12a02f7f981481eec95f121048b2fdf9341e90fbf665

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C4354676F931E9BB155B12A02F7F981481EEC95F121048B2FDF9341E90FBF665"
Last-Modified: Thu, 02 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 03 Feb 2023 01:23:03 GMT
Date: Thu, 02 Feb 2023 19:23:03 GMT
Connection: keep-alive

www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-download.svg

192.185.20.87

200 OK

817 B

URL HTTP/1.1
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-download.svg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (713)
Size
817 B (817 bytes)
Hash
a22f0f79b6fb0ec1b9246de63c1f9a60
0dbe597dd7759cc56eb46543a50cd3354d5e46a2
8010b421959acad9e2796bc585190f81b99f78e0e885703a059c00375c987979

Detections

Analyzer	Verdict	Alert
fortinet	Phishing

HTTP Headers

GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-download.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810

HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 817
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: image/svg+xml

r3.o.lencr.org/

23.36.76.226

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.76.226:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
bc9dee018d827dd583eaa68cf39a1824
1df3cf10296bc2a4f1c34f90601085382fca392e
d6fd1fa8aee0fac8111a67aa076fdc1822bccba77b805100765c30cac1d652b5

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D6FD1FA8AEE0FAC8111A67AA076FDC1822BCCBA77B805100765C30CAC1D652B5"
Last-Modified: Tue, 31 Jan 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 03 Feb 2023 01:23:03 GMT
Date: Thu, 02 Feb 2023 19:23:03 GMT
Connection: keep-alive

www.thecrudelife.com/wp-content/uploads/2022/09/Stephen-Heins-300x169.jpg

192.185.20.87

200 OK

14 kB

URL HTTP/2
www.thecrudelife.com/wp-content/uploads/2022/09/Stephen-Heins-300x169.jpg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x169, components 3\012- data
Size
14 kB (14356 bytes)
Hash
b787077758173da77b805d3bfff1991f
eaf91565f3cf00e42f336814f62e76a0a3f54df4
05def5f0ffa3e55b35506eb7380cef33391e997010cde601b4004f5e95f59287

HTTP Headers

GET /wp-content/uploads/2022/09/Stephen-Heins-300x169.jpg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Tue, 06 Sep 2022 07:09:00 GMT
accept-ranges: bytes
content-length: 14356
content-type: image/jpeg
date: Thu, 02 Feb 2023 19:23:03 GMT
server: Apache
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v6.2.1/webfonts/fa-solid-900.woff2

172.64.132.15

200 OK

150 kB

URL HTTP/2
use.fontawesome.com/releases/v6.2.1/webfonts/fa-solid-900.woff2
IP
172.64.132.15:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 150516, version 770.768\012- data
Size
150 kB (150516 bytes)
Hash
328a9d0f59f0ebb55cddac6f39995bea
c0e6e76b4a02c34656ff2a41b671e02f2821829b
8f06540fd77f1effe1e2da8ea10cec4a382dda9cc6ef05d816e1d6de444072f2

HTTP Headers

GET /releases/v6.2.1/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.thecrudelife.com
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
date: Thu, 02 Feb 2023 19:23:03 GMT
content-type: font/woff2
content-length: 150516
x-amz-id-2: yskxUtaxeKM3gubgKF3M1dcHfE82vZYj/u+ucRO0aFtP/HhMzQdaePx7mSXhgWiepTLUXR2+bdA=
x-amz-request-id: 0WPZ1B9V99XWBR1X
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 14 Nov 2022 16:32:33 GMT
etag: "328a9d0f59f0ebb55cddac6f39995bea"
cache-control: max-age=31556926
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YW1Zz6fqE3At5qN1vsuXPK5v23%2BOikeGQsHYqKc7f8WET9wPp8tQXSo6V%2FwXG4CUiHZstDPw0yRdZdx1nj%2Fcef3LVS%2FJIslW3e8O7ANCM8BBesdhxRM3BmANvVtJEFe3Apd3bQxP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79354c93bd9988a3-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v6.2.1/webfonts/fa-brands-400.woff2

172.64.132.15

200 OK

108 kB

URL HTTP/2
use.fontawesome.com/releases/v6.2.1/webfonts/fa-brands-400.woff2
IP
172.64.132.15:0
ASN
#13335 CLOUDFLARENET

File type
Web Open Font Format (Version 2), TrueType, length 107656, version 770.768\012- data
Size
108 kB (107656 bytes)
Hash
e2f5b365c7d3d4497da73148ddfae997
b99813b3c531d8fe90aed3b75d2ed71f8e0c87f4
c61287c2fa9863b5fb5844c683a168ac6520c94d822bb43d5eae35c3a2a82166

HTTP Headers

GET /releases/v6.2.1/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.thecrudelife.com
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 02 Feb 2023 19:23:03 GMT
content-type: font/woff2
content-length: 107656
x-amz-id-2: YY0KkKAGKObBVzVoN7Gt8d/Pr02g8uuTBMasqaF7Z7jtgCvOJf+SVxjJ8aAOjl0A5NHGV9YkIo8=
x-amz-request-id: 0WPS8WTCJMSNX1Y7
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 14 Nov 2022 16:32:33 GMT
etag: "e2f5b365c7d3d4497da73148ddfae997"
cache-control: max-age=31556926
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0uHfXZzdchSwMiBMTGnm2Ltx83%2B%2BzGeKs1la0QbPLUHoM5LfkCrKDWo%2BoW5nKxJzxnQ%2ButdpZMW1A4nbLdgs1vqbpb8izF%2BENu56oThu3%2B%2B8RSrBccoIodeWdO509KXAy6JCS2Kx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79354c93bd9688a3-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

www.thecrudelife.com/wp-content/uploads/2020/04/Oil-Rig-Well-3-678x381.jpg

192.185.20.87

200 OK

72 kB

URL HTTP/2
www.thecrudelife.com/wp-content/uploads/2020/04/Oil-Rig-Well-3-678x381.jpg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 678x381, components 3\012- data
Size
72 kB (72014 bytes)
Hash
2d58fa10e851c1cc91382c09861ca744
7c927b955c6acb22ae2c65a6dc55cb631d3970f8
6649b8bbce6951fe0348032d084858a123f29d6a8c9cdbefe11dc994a09b1bba

HTTP Headers

GET /wp-content/uploads/2020/04/Oil-Rig-Well-3-678x381.jpg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Fri, 03 Apr 2020 02:16:55 GMT
accept-ranges: bytes
content-length: 72014
content-type: image/jpeg
date: Thu, 02 Feb 2023 19:23:03 GMT
server: Apache
X-Firefox-Spdy: h2

www.thecrudelife.com/wp-content/uploads/2020/04/red-and-brown-metal-machine-oil-and-gas-80x60.jpg

192.185.20.87

200 OK

2.7 kB

URL HTTP/2
www.thecrudelife.com/wp-content/uploads/2020/04/red-and-brown-metal-machine-oil-and-gas-80x60.jpg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 80x60, components 3\012- data
Size
2.7 kB (2688 bytes)
Hash
ac61edafbd0c8897336cbcac555553a9
3e3a183197e3d406f79cd69523d1d3f348e84f2a
c04462166f766b6a7035b42df29bee676b002f25afcf09daa30d13de3361fb97

HTTP Headers

GET /wp-content/uploads/2020/04/red-and-brown-metal-machine-oil-and-gas-80x60.jpg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Thu, 02 Apr 2020 10:37:02 GMT
accept-ranges: bytes
content-length: 2688
content-type: image/jpeg
date: Thu, 02 Feb 2023 19:23:03 GMT
server: Apache
X-Firefox-Spdy: h2

www.thecrudelife.com/wp-content/uploads/2021/11/The-Crude-Life-Logo-1500-1-150x150.png

192.185.20.87

200 OK

23 kB

URL HTTP/2
www.thecrudelife.com/wp-content/uploads/2021/11/The-Crude-Life-Logo-1500-1-150x150.png
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Size
23 kB (22584 bytes)
Hash
4b182b7b50af0ee97f8ee3aef2ac12d9
28af6ff3e93a005c297ad9c59aed31f9ab7ae3ef
1980294812fb34637ee44da7a89ad105666093b8a48057f6c1e4b704152990d9

HTTP Headers

GET /wp-content/uploads/2021/11/The-Crude-Life-Logo-1500-1-150x150.png HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Sun, 14 Nov 2021 22:33:51 GMT
accept-ranges: bytes
content-length: 22584
content-type: image/png
date: Thu, 02 Feb 2023 19:23:03 GMT
server: Apache
X-Firefox-Spdy: h2

www.thecrudelife.com/wp-content/uploads/2022/12/My-Pillow-TCL-Ad.jpg

192.185.20.87

200 OK

106 kB

URL HTTP/2
www.thecrudelife.com/wp-content/uploads/2022/12/My-Pillow-TCL-Ad.jpg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 768x1024, components 3\012- data
Size
106 kB (105919 bytes)
Hash
c0cd2d3fc3d366055cd06e6f59525a29
f0484ba82dd8b94d9aeaba420feb1efca5656683
dba1b132df474db06a1894b754abb3705eefc5ae8cb781274295106372fdb0d4

HTTP Headers

GET /wp-content/uploads/2022/12/My-Pillow-TCL-Ad.jpg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Mon, 19 Dec 2022 19:00:46 GMT
accept-ranges: bytes
content-length: 105919
content-type: image/jpeg
date: Thu, 02 Feb 2023 19:23:03 GMT
server: Apache
X-Firefox-Spdy: h2

www.thecrudelife.com/wp-content/uploads/2022/12/TCL-Kennel-Club-5-576x1024.jpg

192.185.20.87

200 OK

130 kB

URL HTTP/2
www.thecrudelife.com/wp-content/uploads/2022/12/TCL-Kennel-Club-5-576x1024.jpg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 576x1024, components 3\012- data
Size
130 kB (130202 bytes)
Hash
bfc000971d6b492aa3fc23b9dcde8307
f7ab44e90eed23d2fee50c2afbfd0ac8c57ec8a9
dbd0b80574478b1997051dce3052791ea7e51e1849a38617eac4b208adb6957a

HTTP Headers

GET /wp-content/uploads/2022/12/TCL-Kennel-Club-5-576x1024.jpg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
last-modified: Tue, 20 Dec 2022 13:52:42 GMT
accept-ranges: bytes
content-length: 130202
content-type: image/jpeg
date: Thu, 02 Feb 2023 19:23:03 GMT
server: Apache
X-Firefox-Spdy: h2

www.google-analytics.com/analytics.js

142.250.74.110

200 OK

20 kB

URL HTTP/2
www.google-analytics.com/analytics.js
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1490)
Size
20 kB (20085 bytes)
Hash
ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db

HTTP Headers

GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 02 Feb 2023 17:44:08 GMT
expires: Thu, 02 Feb 2023 19:44:08 GMT
cache-control: public, max-age=7200
age: 5936
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js

142.250.74.170

200 OK

34 kB

URL HTTP/2
ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js
IP
142.250.74.170:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (32038)
Size
34 kB (33507 bytes)
Hash
103708790db3586027df27ded660f8ef
d3f58fbe6e02cb4b8b34c6fd510e011cb325bc70
fdba876856bb6c2783df94cacb0f17b53fe33f1907135539272c0127b4270ffe

HTTP Headers

GET /ajax/libs/jquery/1.11.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33507
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 17:55:49 GMT
expires: Wed, 31 Jan 2024 17:55:49 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 178035
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

a.mailmunch.co/app/v1/styles.css

143.204.55.3

200 OK

2.3 kB

URL HTTP/1.1
a.mailmunch.co/app/v1/styles.css
IP
143.204.55.3:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (21666), with no line terminators
Size
2.3 kB (2274 bytes)
Hash
5d0df0b3154b3df6994e483e24e9c924
58ca52b3a064c064e768c4860b54d10ec1784fb6
7a26b4761e190fcbe7c0cddd7908f9b0b74d131ab7c62a278bc4ecb834c04e2d

HTTP Headers

GET /app/v1/styles.css HTTP/1.1
Host: a.mailmunch.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/

HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2274
Connection: keep-alive
Date: Thu, 02 Feb 2023 19:03:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: HEAD, GET, POST, PUT, DELETE
Access-Control-Expose-Headers: ETag
Access-Control-Max-Age: 3000
Last-Modified: Thu, 02 Feb 2023 07:55:21 GMT
ETag: "5d0df0b3154b3df6994e483e24e9c924"
Cache-Control: max-age=172800
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -ah2a-MtV6gqKq09JtJvKUMrhiIgUCeJSETuJlcIac0PbkyTn_mARg==
Age: 1190

www.google-analytics.com/gtm/js?id=OPT-PM8NKS4&t=gtag_UA_97173802_1&cid=980602921.1675365810&aip=true

142.250.74.110

200 OK

44 kB

URL HTTP/2
www.google-analytics.com/gtm/js?id=OPT-PM8NKS4&t=gtag_UA_97173802_1&cid=980602921.1675365810&aip=true
IP
142.250.74.110:0
ASN
#15169 GOOGLE

File type
ASCII text, with very long lines (1759)
Size
44 kB (44411 bytes)
Hash
7df1c9d244cc5bea88c535288f913fdd
66c3a0fe56045f6154428db6a1e89d01219e8e55
cd8e4be8b0951d574834f5d37159b83e96ca1666407ff84128be074c73d00aa6

HTTP Headers

GET /gtm/js?id=OPT-PM8NKS4&t=gtag_UA_97173802_1&cid=980602921.1675365810&aip=true HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 19:23:04 GMT
expires: Thu, 02 Feb 2023 19:23:04 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 18:21:29 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44411
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.thecrudelife.com/wp-content/uploads/2019/04/cropped-TCL_Logo_2018-32x32.jpg

192.185.20.87

200 OK

1.2 kB

URL HTTP/2
www.thecrudelife.com/wp-content/uploads/2019/04/cropped-TCL_Logo_2018-32x32.jpg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 32x32, components 3\012- data
Size
1.2 kB (1220 bytes)
Hash
754cbb05c3c0de3ec10533739c05f1d3
3517c50e58eb8d1fa7a2cce9191c5da9447360dc
7c794cbe4d70cf6d3c2833881140616fba6be7fe81000c77b8d405c1478216c3

HTTP Headers

GET /wp-content/uploads/2019/04/cropped-TCL_Logo_2018-32x32.jpg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Sep 2020 12:52:16 GMT
accept-ranges: bytes
content-length: 1220
content-type: image/jpeg
date: Thu, 02 Feb 2023 19:23:04 GMT
server: Apache
X-Firefox-Spdy: h2

www.thecrudelife.com/wp-content/uploads/2019/04/cropped-TCL_Logo_2018-192x192.jpg

192.185.20.87

200 OK

10 kB

URL HTTP/2
www.thecrudelife.com/wp-content/uploads/2019/04/cropped-TCL_Logo_2018-192x192.jpg
IP
192.185.20.87:0
ASN
#46606 UNIFIEDLAYER-AS-1

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 192x192, components 3\012- data
Size
10 kB (10101 bytes)
Hash
02f627f47eada66287eb52e8c6daaad2
2f5b51ba9aea659bd20bb37fca7725a375b1b3c9
301f6ab2abd36b7ea09441e8b1fb10a35b838603ae2199b714aa810759db7820

HTTP Headers

GET /wp-content/uploads/2019/04/cropped-TCL_Logo_2018-192x192.jpg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers

HTTP/2 200 OK
last-modified: Wed, 09 Sep 2020 12:52:16 GMT
accept-ranges: bytes
content-length: 10101
content-type: image/jpeg
date: Thu, 02 Feb 2023 19:23:04 GMT
server: Apache
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.131

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.131:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

forms.mailmunch.co/sites/170369

54.162.128.250

200 OK

130 B

URL HTTP/1.1
forms.mailmunch.co/sites/170369
IP
54.162.128.250:0
ASN
#14618 AMAZON-AES

File type
JSON data\012- , ASCII text, with no line terminators
Size
130 B (130 bytes)
Hash
bd5eee9d3108700147f42d26d32226e1
b52dd1b78533777426a5a35a183715388de84d74
c56944cbb4ec50e88d3ebf46f597db6b4fbfe370ac1fcd4d6c50c4d02f97b993

HTTP Headers

GET /sites/170369 HTTP/1.1
Host: forms.mailmunch.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.thecrudelife.com
Connection: keep-alive
Referer: http://www.thecrudelife.com/

HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, X-MM-Form-Tool, X-MM-Coupons
Access-Control-Expose-Headers: X-MM-Comp-Tracking, X-MM-EU-Continent, X-MM-T
Content-Type: application/json; charset=utf-8
Content-Length: 130
Etag: W/"82-tS3Rt4Uzd3QmpaNaGDcVOI3oTXQ"
Vary: Accept-Encoding
Date: Thu, 02 Feb 2023 19:23:04 GMT
Via: 1.1 vegur

a.mailmunch.co/forms-cache/170369/settings-1675355544.json

143.204.55.3

200 OK

709 B

URL HTTP/1.1
a.mailmunch.co/forms-cache/170369/settings-1675355544.json
IP
143.204.55.3:0
ASN
#16509 AMAZON-02

File type
JSON data\012- , ASCII text, with very long lines (1350), with no line terminators
Size
709 B (709 bytes)
Hash
40ec38d87930e5a97a99a7da4c8a402e
2a4cba1c45310117fbd6ed22a4ece0c57b079323
61c973f1df445e88715766926bf81165b9c9596de57f89ff159c3ece4b439f09

HTTP Headers

GET /forms-cache/170369/settings-1675355544.json HTTP/1.1
Host: a.mailmunch.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.thecrudelife.com
Connection: keep-alive
Referer: http://www.thecrudelife.com/

HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Thu, 02 Feb 2023 19:23:05 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: HEAD, GET, POST, PUT, DELETE
Access-Control-Expose-Headers: ETag
Access-Control-Max-Age: 3000
Last-Modified: Thu, 02 Feb 2023 16:32:32 GMT
ETag: W/"43217f4bb6f73fdeb367a0174893576d"
Cache-Control: max-age=31556952
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Miss from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: O12qMONtSzH7ixhUlqmTYa7hzRNL8W1KAjQcf52IaoY1qbUsolp7iQ==

a.mailmunch.co/app/v1/sidebar.js

143.204.55.3

200 OK

842 B

URL HTTP/1.1
a.mailmunch.co/app/v1/sidebar.js
IP
143.204.55.3:0
ASN
#16509 AMAZON-02

File type
ASCII text, with very long lines (2731), with no line terminators
Size
842 B (842 bytes)
Hash
6f08124030f0ee9ed535392ac2d29986
09d3bd1943bef532c8788ae03e15bdc3dade965b
55ca7cc929f8ba3a12bff605aae36a8768e297834857d3f18e2ad4185ab3181d

HTTP Headers

GET /app/v1/sidebar.js HTTP/1.1
Host: a.mailmunch.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/

HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 842
Connection: keep-alive
Date: Tue, 31 Jan 2023 22:33:39 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: HEAD, GET, POST, PUT, DELETE
Access-Control-Expose-Headers: ETag
Access-Control-Max-Age: 3000
Last-Modified: Tue, 31 Jan 2023 10:07:31 GMT
ETag: "6f08124030f0ee9ed535392ac2d29986"
Cache-Control: max-age=172800
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Fhnoo6UEh_w-Oz6Tly1WByIGhDGWhg2wTAK_ghkabCxdTBnKDB6cKQ==
Age: 161367

a.mailmunch.co/forms-cache/170369/221284/index-1632781080.html

143.204.55.3

200 OK

39 kB

URL HTTP/1.1
a.mailmunch.co/forms-cache/170369/221284/index-1632781080.html
IP
143.204.55.3:0
ASN
#16509 AMAZON-02

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32798)
Size
39 kB (39136 bytes)
Hash
97cfec66cada0499fa822dd71ea2cc69
c15ad4fe1497e791841947b3e63652bee2c00a60
84c791ccb42f72ae5d8d2b671a03393f9cd3cf256e89bd0244dbf3a96edc63f8

HTTP Headers

GET /forms-cache/170369/221284/index-1632781080.html HTTP/1.1
Host: a.mailmunch.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.thecrudelife.com
Connection: keep-alive
Referer: http://www.thecrudelife.com/

HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Fri, 20 Jan 2023 05:58:57 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: HEAD, GET, POST, PUT, DELETE
Access-Control-Expose-Headers: ETag
Access-Control-Max-Age: 3000
Last-Modified: Mon, 27 Sep 2021 22:18:07 GMT
ETag: W/"04da99e5eda2a3e7d85d6df290f125db"
Cache-Control: max-age=31556952
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hfbyfgoXzzIJZeC9UnoUHEMwrmz-bhj_XO3Jd1tNaxa2ZNIPaRpVWQ==
Age: 1171449

fonts.googleapis.com/css?family=Open+Sans:400,400italic,700,600

142.250.74.106

200 OK

0 B

URL HTTP/2
fonts.googleapis.com/css?family=Open+Sans:400,400italic,700,600
IP
142.250.74.106:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /css?family=Open+Sans:400,400italic,700,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 19:23:02 GMT
date: Thu, 02 Feb 2023 19:23:02 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.youtube.com/iframe_api

142.250.74.46

200 OK

0 B

URL HTTP/2
www.youtube.com/iframe_api
IP
142.250.74.46:0
ASN
#15169 GOOGLE

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Thu, 02 Feb 2023 19:23:04 GMT
date: Thu, 02 Feb 2023 19:23:04 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=Ay87jNb_eRg; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TlRZME1USTFNVFl3TmpFNU16YzRPQT09EJib8J4GGJib8J4G; Domain=.youtube.com; Expires=Tue, 01-Aug-2023 19:23:04 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=0kHhB4yhPm8; Domain=.youtube.com; Expires=Tue, 01-Aug-2023 19:23:04 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+346; expires=Sat, 01-Feb-2025 19:23:04 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

use.fontawesome.com/releases/v6.2.1/css/all.css?wpfas=true

172.64.132.15

200 OK

0 B

URL HTTP/2
use.fontawesome.com/releases/v6.2.1/css/all.css?wpfas=true
IP
172.64.132.15:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /releases/v6.2.1/css/all.css?wpfas=true HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Thu, 02 Feb 2023 19:23:01 GMT
content-type: text/css
x-amz-id-2: A0DGqnvrYDJTvC/QSQ0qYwML2PSmvXkuG6sDePjjVhU/SbqrYNj7UPfMJG+8c3wmnHqjpxBMDh8=
x-amz-request-id: VKRMH03W8KBABJFA
last-modified: Mon, 14 Nov 2022 16:32:10 GMT
etag: W/"8bb6644125ddeee7a27732e86f65fa05"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 1471398
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pm0Q8pRidtDLBVKNZtgl9RWje5DMdwGPbWQVLgPe4Iy1JNj6Bo3sit0Icj4jdbIkzdtmVmNfaaX%2FPbBuhQC6yabhS59FYRWHwrS1%2BZVlkgAmGKDiqVcpXvGlocedCddjhk2Uncfd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79354c894dc5bc93-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

stats.wp.com/e-202305.js

192.0.76.3

200 OK

0 B

URL HTTP/2
stats.wp.com/e-202305.js
IP
192.0.76.3:0
ASN
#2635 AUTOMATTIC

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /e-202305.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 19:23:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-3508"
content-encoding: br
expires: Wed, 24 Jan 2024 05:54:37 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (45)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML