r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 62de35a6c8e4efd7633fc5236b5b086f
6a92912a86dfcd0330d040cef06bef36889c76ab
ebb8ca05df5ba73b92174105d54d192a8d9e3e10fba48bf96161b0cb759220ec
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "EBB8CA05DF5BA73B92174105D54D192A8D9E3E10FBA48BF96161B0CB759220EC"
Last-Modified: Tue, 31 Jan 2023 04:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6542
Expires: Thu, 02 Feb 2023 21:12:03 GMT
Date: Thu, 02 Feb 2023 19:23:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash d4e95d0d8982bcd07804baf6fc88231c
5027abda0875bd2529dd4d6691784c74da71a9ee
373799b5749d2cb08b5721699a3e4c6b94b0d41604ac07d4ef7179e47dabc71f
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "373799B5749D2CB08B5721699A3E4C6B94B0D41604AC07D4EF7179E47DABC71F"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=6932
Expires: Thu, 02 Feb 2023 21:18:33 GMT
Date: Thu, 02 Feb 2023 19:23:01 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 9a76feabb767086ae0fa54e0ffbf763f
3655d78994a1e9838340669462728b67c8c12e54
bf215ab858c7785b7c01f7d3d437a918f056f00fe9b065820e1cdd09b7bba8f9
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "BF215AB858C7785B7C01F7D3D437A918F056F00FE9B065820E1CDD09B7BBA8F9"
Last-Modified: Wed, 01 Feb 2023 17:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2956
Expires: Thu, 02 Feb 2023 20:12:17 GMT
Date: Thu, 02 Feb 2023 19:23:01 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
35.241.9.150200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 30db107dcf4380cef05efea409c2e6a3
96e6a306fbc07299aba64e5c14e2bfca35872fa9
b64051a4a8e346e3c72b2aef77f360a5736ab5e16711d8e0bae3876feaa15b6e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Backoff, Retry-After, Content-Length, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Thu, 02 Feb 2023 18:43:31 GMT
content-type: application/json
age: 2370
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: eutVKVhE/6b5O9iUdOAS03W7u+eP76yxWomPDS0zrueS6gIfqmfD/DtasOII1s6nw2Sl0naTv8WXKcsR/stIdw==
x-amz-request-id: PTR992DZ15A2N9W9
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Thu, 02 Feb 2023 18:23:13 GMT
age: 3588
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 19:23:01 GMT
content-type: application/json
content-length: 12
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-credentials: true
access-control-expose-headers: content-type
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
35.241.9.150200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 35.241.9.150:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Pragma, Backoff, Retry-After, Content-Length, Last-Modified, Expires, Cache-Control, ETag, Alert, Content-Type
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Thu, 02 Feb 2023 18:49:05 GMT
age: 2036
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 8913af0be619500295008bb91f506660
a7b8068ba9aa506205a295b24458c2616997a0d1
6a9838d00256431807ca382fc205064b07c08d5054f2895c2ae3cc4e9094179a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6A9838D00256431807CA382FC205064B07C08D5054F2895C2AE3CC4E9094179A"
Last-Modified: Wed, 01 Feb 2023 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=4129
Expires: Thu, 02 Feb 2023 20:31:50 GMT
Date: Thu, 02 Feb 2023 19:23:01 GMT
Connection: keep-alive
www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
192.185.20.87200 OK 27 kB URL HTTP/1.1 www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (21194), with CRLF, LF line terminators
Hash fe26a9c310d5858805d8e7a07625b630
747cd05b1f4701d19fd78fb956be5aa0ce3ef0c6
c0ce582db057525a0c7ae1814e1cd88c88419bf7d7d1c3510bcb509e10ee0a7e
Analyzer Verdict Alert fortinet Phishing
GET /podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/ HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:01 GMT
Server: Apache
Link: <https://www.thecrudelife.com/wp-json/>; rel="https://api.w.org/", <https://www.thecrudelife.com/wp-json/wp/v2/podcast/8608>; rel="alternate"; type="application/json", <https://www.thecrudelife.com/?p=8608>; rel=shortlink
X-TEC-API-VERSION: v1
X-TEC-API-ROOT: https://www.thecrudelife.com/wp-json/tribe/events/v1/
X-TEC-API-ORIGIN: https://www.thecrudelife.com
Content-Encoding: gzip
Vary: Accept-Encoding,Cookie
Set-Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; expires=Thu, 02-Feb-2023 19:53:01 GMT; Max-Age=1800; path=/
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Content-Length: 27105
Keep-Alive: timeout=5, max=75
Content-Type: text/html; charset=UTF-8
www.googletagmanager.com/gtag/js?id=G-HKWV9VKG3L
142.250.74.168302 Found 253 B URL HTTP/1.1 www.googletagmanager.com/gtag/js?id=G-HKWV9VKG3L
IP 142.250.74.168:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash b60e67637a33586c1fb8d5c46c6c9700
f382ccb4307064398e6cc0ad7477d91bde1a8880
1a80d3d1c8fb14d57f1ded4703c36e5cd60db0a0fb7d571290de4cd9c9859617
GET /gtag/js?id=G-HKWV9VKG3L HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtag/js?id=G-HKWV9VKG3L
Cross-Origin-Resource-Policy: cross-origin
Date: Thu, 02 Feb 2023 19:23:01 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 253
X-XSS-Protection: 0
www.thecrudelife.com/wp-content/plugins/wordpress-easy-paypal-payment-or-donation-accept-plugin/wpapp-styles.css?ver=6.1.1
192.185.20.87200 OK 260 B URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/wordpress-easy-paypal-payment-or-donation-accept-plugin/wpapp-styles.css?ver=6.1.1
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with CRLF line terminators
Hash 1b352b21b154bc193b0868d155308a3b
197dc0bde5e1c6d373f7ff5fec7c294b39cf0399
f56415f8c459f404c8c0429c6726dcabf2de77403cd0961ec5f1e6a9bb5f9b23
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wordpress-easy-paypal-payment-or-donation-accept-plugin/wpapp-styles.css?ver=6.1.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:01 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 30 May 2021 14:11:19 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 260
Keep-Alive: timeout=5, max=75
Content-Type: text/css
a.mailmunch.co/app/v1/site.js
143.204.55.3200 OK 8.4 kB URL HTTP/1.1 a.mailmunch.co/app/v1/site.js
IP 143.204.55.3:0
File type ASCII text, with very long lines (26047), with no line terminators
Hash 422e40c7f0150d84846e53d0cc4f6873
8d48e20c982d2e76dba96624f69d847570a576ff
7ea9f680e9f18f0f0698cfe0cfa7811bb281f4f4fbf0d4b530939b865b21169f
GET /app/v1/site.js HTTP/1.1
Host: a.mailmunch.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 8416
Connection: keep-alive
Date: Wed, 01 Feb 2023 03:03:24 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: HEAD, GET, POST, PUT, DELETE
Access-Control-Expose-Headers: ETag
Access-Control-Max-Age: 3000
Last-Modified: Tue, 31 Jan 2023 10:07:29 GMT
ETag: "422e40c7f0150d84846e53d0cc4f6873"
Cache-Control: max-age=172800
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 728cAC-JvWsi-D0IDEKKPN7ycNz_0aohYaCNy7QTlZLRa1dCQwt_fw==
Age: 145178
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.thecrudelife.com/wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/js/select2.min.js?ver=4.0.11
192.185.20.87200 OK 31 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/js/select2.min.js?ver=4.0.11
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type C source, Unicode text, UTF-8 text, with very long lines (32213)
Hash 2e3eb0a8380a016401aae8e268dac75e
6b73625d36b54634b10ec697c48add6ac8b8f389
94561dcbc1ac12a63e628b86edc9acc20ed1485c853f3eb15fb8e1fd9eedb98f
GET /wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/js/select2.min.js?ver=4.0.11 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:01 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:08:49 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googletagmanager.com/gtag/js?id=UA-97173802-1
142.250.74.168200 OK 44 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=UA-97173802-1
IP 142.250.74.168:0
File type ASCII text, with very long lines (1759)
Hash b6ba36a56c8d4173cf2d2a256d1de50e
e4cc5238476e7d4dc89c6319c752ef608068c9c6
30300e71f8fa60633335b8511939227ba2fe74e2fd744e64bed5177bb25e7d1d
GET /gtag/js?id=UA-97173802-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 19:23:02 GMT
expires: Thu, 02 Feb 2023 19:23:02 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 18:21:29 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 43881
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-HKWV9VKG3L
142.250.74.168200 OK 67 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-HKWV9VKG3L
IP 142.250.74.168:0
File type ASCII text, with very long lines (3974)
Hash cae239391d3e1e8706ebe1a794cda8d4
235a16507c474a1967e8d6bc38ca8a519d6295ef
06802d0fe7cf668b0472c5f1e12e953f16e775f61394b5e750196827fd0363a7
GET /gtag/js?id=G-HKWV9VKG3L HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: http://www.thecrudelife.com/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 19:23:02 GMT
expires: Thu, 02 Feb 2023 19:23:02 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 67069
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
push.services.mozilla.com/
52.39.122.167101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.39.122.167:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: uHHpW9kEHKrBKQqzU5hJBA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: oSmolgzWOjQjLs29mSqCejQkgII=
www.thecrudelife.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
192.185.20.87200 OK 3.2 kB URL HTTP/1.1 www.thecrudelife.com/wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11256), with no line terminators
Hash 1054d0d53548e8bae51665b11acc6413
2eea6a05fe18db61fff58c431d34a86b3e0b7ade
cb8b0f0f3f871d9776da32ee6d9e1af9277a211be61e97a831c7f8c98fbebfae
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/mediaelementplayer-legacy.min.css?ver=4.2.17 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 18 Nov 2021 02:18:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3239
Keep-Alive: timeout=5, max=75
Content-Type: text/css
www.thecrudelife.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
192.185.20.87200 OK 1.3 kB URL HTTP/1.1 www.thecrudelife.com/wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4186), with no line terminators
Hash 91bab39b98d7e5c1632717b9ebe349e4
e639a447d06fc7827be5b5b35d603ff16b5f7bb1
47ff151faeb23a5654f6ec58b404e51193f6714849a69de241c2ee79662f74c6
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/mediaelement/wp-mediaelement.min.css?ver=6.1.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Thu, 18 Nov 2021 02:18:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1298
Keep-Alive: timeout=5, max=75
Content-Type: text/css
www.thecrudelife.com/wp-includes/css/classic-themes.min.css?ver=1
192.185.20.87200 OK 189 B URL HTTP/1.1 www.thecrudelife.com/wp-includes/css/classic-themes.min.css?ver=1
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 5a18e16eb01cbaa862eb32e6b77bedb2
3abf9b913cc9f558f02cba7c9b822f8d1812cb96
d2b5af913332941d5ae7786d1fa70e0d009315c4ede6ad5b80d0f663bb54521f
GET /wp-includes/css/classic-themes.min.css?ver=1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Wed, 02 Nov 2022 08:42:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 189
Keep-Alive: timeout=5, max=75
Content-Type: text/css
www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.css?ver=3.2.10
192.185.20.87200 OK 4.1 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.css?ver=3.2.10
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11843)
Hash a2eacc29d4f41073c38be37759e47692
704baf7cd217af03f2023ce63e6a982d292834b3
9e55fa2b980373a7a8f1da010433d0923af916cd6c7c1b8296438632e3fd19ae
GET /wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.css?ver=3.2.10 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:08:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4060
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.css?ver=6.1.1
192.185.20.87200 OK 3.4 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.css?ver=6.1.1
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (14965), with no line terminators
Hash 8be7a878c560f1b146db163966f64d74
0dfdd50b2c3355c62cd7426649e819ba4a652495
7c7f8eb143a56619e051b210fa355e14ff4ff9f8fad982b0c4110c166a2aadca
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-user-avatar/assets/select2/select2.min.css?ver=6.1.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:08:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3356
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
www.thecrudelife.com/wp-content/plugins/add-search-to-menu/public/css/ivory-search.min.css?ver=5.4.5
192.185.20.87200 OK 2.1 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/add-search-to-menu/public/css/ivory-search.min.css?ver=5.4.5
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (6811), with no line terminators
Hash 9fb9af2901fcb5f1b252b8dac48ab0ee
87fc9d5d02cdeb12636d277f0f5c4b31ea29b00c
d6e9a3f3704a91b0e662e91ecd6c596d1e6b7f9e2fe7442844da9ca6609f1827
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/add-search-to-menu/public/css/ivory-search.min.css?ver=5.4.5 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:09:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2087
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
www.thecrudelife.com/wp-content/themes/mh-magazine-lite/includes/font-awesome.min.css
192.185.20.87200 OK 7.1 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/themes/mh-magazine-lite/includes/font-awesome.min.css
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (30837)
Hash 82a55032c4b614390aea6ef6870d3e90
bb21577feea531540a8d4f27ac3730ffac111e1b
4f068500ef9ef0dbffa5b76ac10f1970a7a9de8ff033f84228971a140eb20069
GET /wp-content/themes/mh-magazine-lite/includes/font-awesome.min.css HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Thu, 18 Nov 2021 11:05:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 7114
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/css/frontend.min.css?ver=3.2.10
192.185.20.87200 OK 15 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/css/frontend.min.css?ver=3.2.10
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65536), with no line terminators
Hash 4965d273c665d58ac673952b3299e882
b2175b87388934bfc92ac38640e69a1ba2bf8efb
f20935193b8a3b402938e07226d46436915d48b1e829e6cf6834fa060e6db129
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-user-avatar/assets/css/frontend.min.css?ver=3.2.10 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 01 May 2022 10:08:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 15295
Keep-Alive: timeout=5, max=75
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.thecrudelife.com/wp-content/plugins/youtube-embed-plus/styles/ytprefs.min.css?ver=14.1
192.185.20.87200 OK 2.2 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/youtube-embed-plus/styles/ytprefs.min.css?ver=14.1
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (8261)
Hash 10ccc6ec66b18fecf202cd9f943e0468
be468e95f0afe48e877fc086b81c3a38e51e289b
f7611f2e38a201f09c707c91a61ef1b2963ffa1c6017e0bdbd6fea7a9b7094fa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/youtube-embed-plus/styles/ytprefs.min.css?ver=14.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:09:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2211
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash 2751084b42dd111d0a7f28241a77201b
680a9ac2f4cf451c9a8449c4df3587595ed9cc4c
1c68a770afbcdb5405fe330f2eabefa576ea1d08740719956083d7f6b490ccf8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.thecrudelife.com/wp-content/plugins/jetpack/css/jetpack.css?ver=10.8
192.185.20.87200 OK 24 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/jetpack/css/jetpack.css?ver=10.8
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (18436)
Hash 2882dddd609fa1ddde36a8bb7e369761
aa0e24db63e7c7133d773c4490e3586279193dca
0537b88c779d88f157b7e80af96cfd2165618dab0bdbcae8393258a2bffbe5de
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/jetpack/css/jetpack.css?ver=10.8 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:09:20 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash de49044c9365e16fec3a6d361cb94728
2b7b69c16de6fda1ae5206f92fe781ee07bd182a
6e76887b036544a5da3918116a180876c094cc3b31676abce8d5b7b716b00c30
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:02 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.thecrudelife.com/wp-content/themes/mh-magazine-lite/style.css?ver=2.9.1
192.185.20.87200 OK 14 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/themes/mh-magazine-lite/style.css?ver=2.9.1
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (739)
Hash 43744938769bff2c07714e5e7a411c28
275967079fb78a22fc9dbe1e6ca59c032c92fe7a
2e57c908811e4c696974d11ec38bbc8ae8a959b87f6e5a85837072d0d4fa715c
GET /wp-content/themes/mh-magazine-lite/style.css?ver=2.9.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Thu, 18 Nov 2021 11:05:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 13868
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
www.thecrudelife.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
192.185.20.87200 OK 4.6 kB URL HTTP/1.1 www.thecrudelife.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (11126)
Hash acdb97105af28a7066790c6748ae2e1e
65794d2c5a9d04f747faf370bc8bacd330e69e5a
dc4efbc4b704b142b5313588c32e56ea56648068a01d2bc596a4eee06b379b5e
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Thu, 18 Nov 2021 02:18:31 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 4618
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
www.thecrudelife.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.0
192.185.20.87200 OK 3.9 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.0
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1577)
Hash 0de3f234bf5adf709c64d6a81701e107
ec76e30709d2ac94c86121529768c54b84943872
c67075988b28f06061348cebb275f465c608e141f9a00b50c5e4824f57ed10f3
GET /wp-content/plugins/google-analytics-for-wordpress/assets/js/frontend-gtag.min.js?ver=8.10.0 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Mon, 07 Nov 2022 20:40:17 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3861
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
www.thecrudelife.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
192.185.20.87200 OK 18 kB URL HTTP/1.1 www.thecrudelife.com/wp-includes/css/dist/block-library/style.min.css?ver=6.1.1
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (47826)
Hash 9415c9562591af7a582c29139621505f
0b12eecf36a48b871a3198550f4f65bb4a6d9b1b
06c70d3232c2ae3ed2aa259eb7a1beb329b654926813935fffa8902cd5ebaa4a
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.1.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Tue, 15 Nov 2022 20:42:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
www.thecrudelife.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
192.185.20.87200 OK 5.3 kB URL HTTP/1.1 www.thecrudelife.com/wp-includes/js/wp-emoji-release.min.js?ver=6.1.1
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (15660)
Hash 710f8b142ea44c0682dc2c30f318f065
49144e9b3a76d3d383b1d4359cf7a25e947f4233
708bb5819879a2a2c7670abc20a58cca68a415ffd621011cbc4c3c9d82dddc50
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.1.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Tue, 24 May 2022 20:41:17 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5321
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript
www.thecrudelife.com/wp-content/themes/mh-magazine-lite/js/scripts.js?ver=2.9.1
192.185.20.87200 OK 15 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/themes/mh-magazine-lite/js/scripts.js?ver=2.9.1
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (21960)
Hash 9845fd46cdbab1308b73dd975cb5a525
e36949fb7352d7eb73d653b6f227b4ab4a6f51c2
d139c04a2fe89f3f1555dddc05c272bfe7b1d71eaf87e00d9434a305e334be9c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/mh-magazine-lite/js/scripts.js?ver=2.9.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Thu, 18 Nov 2021 11:05:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 14697
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: application/javascript
www.thecrudelife.com/wp-content/plugins/userswp/assets/js/users-wp.min.js?ver=1.2.3.4
192.185.20.87200 OK 5.6 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/userswp/assets/js/users-wp.min.js?ver=1.2.3.4
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (16646), with no line terminators
Hash 54317246903a9806d9779891c55cc1dd
318e1107e6d4cdf42d99004c5fe2852fae71e2c7
26e736028551307d521b5e5c3d768d5f9e36c7d791fcc748f3f8da4e0300e94d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/userswp/assets/js/users-wp.min.js?ver=1.2.3.4 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 01 May 2022 10:08:49 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5550
Keep-Alive: timeout=5, max=75
Content-Type: application/javascript
www.thecrudelife.com/wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=14.1
192.185.20.87200 OK 5.5 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=14.1
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (13379)
Hash 8cb8f726ac7eca08e7a96880f199af05
7be20b6ad216e9da0003deac9901bb1d19d007c2
0002eae4816d24d526a67b0a12c1a26c37aa2af4b20f4032579ee4a6653a89f0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/youtube-embed-plus/scripts/ytprefs.min.js?ver=14.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:09:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 5527
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.js?ver=6.1.1
192.185.20.87200 OK 26 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/select2/select2.min.js?ver=6.1.1
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Unicode text, UTF-8 text, with very long lines (64131)
Hash 9ff0316108f70718ac014e426f6e4a80
846d1d305fb8f0af37ceb990b10951d5ae12dfe5
e08351d8339f9496957db38e726eaa139d67ebac25bf0f57002d3bcfcc94f981
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-user-avatar/assets/select2/select2.min.js?ver=6.1.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:08:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.js?ver=6.1.1
192.185.20.87200 OK 19 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.js?ver=6.1.1
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (49632)
Hash fc1c32eb49bd31152f0651a3909937d8
784c3a9091866a41cf571939fe5003ae97467e00
24436388bd7f1f102c15e23e313552515a89581f447d8fdb3f2120abcafd7ef4
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/wp-user-avatar/assets/flatpickr/flatpickr.min.js?ver=6.1.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Last-Modified: Sun, 01 May 2022 10:08:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=75
Transfer-Encoding: chunked
Content-Type: application/javascript
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
192.185.20.87200 OK 9.2 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 2b6645c19b50693c7ebb41ec462c54f9
1b1c41de5f782c9d6016dab62f05e64710195e29
c9a374d519bbea2ad0bb5a906f2f238c44564acac335939c9419a0cb10363d9d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 9241
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
www.thecrudelife.com/wp-content/plugins/the-events-calendar/vendor/jquery/smoothness/jquery-ui-1.8.23.custom.css?ver=5.14.2.1
192.185.20.87200 OK 8.4 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/the-events-calendar/vendor/jquery/smoothness/jquery-ui-1.8.23.custom.css?ver=5.14.2.1
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (1399)
Hash 8a9af4d4e747576b7ac7a7faa4b1dba9
8b767a3322f55ce9ea0642e7c2473beaf4ad83af
a0b4ae3f2e7d2056c2b019cd7dea01590ab7aff741718de4919085e16c3e65e6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/the-events-calendar/vendor/jquery/smoothness/jquery-ui-1.8.23.custom.css?ver=5.14.2.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:08:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 8383
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: text/css
www.thecrudelife.com/wp-content/plugins/the-events-calendar/vendor/bootstrap-datepicker/css/bootstrap-datepicker.standalone.min.css?ver=5.14.2.1
192.185.20.87200 OK 3.3 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/the-events-calendar/vendor/bootstrap-datepicker/css/bootstrap-datepicker.standalone.min.css?ver=5.14.2.1
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (16264)
Hash 24ac67afd8262296af14dea981ce0447
97e10e1e31dd79bacffdb3d6288baf6d6f72573f
1daf5fc0c7ea8f29970bc07cc73c81b68ea9e768fd00266e73ac91454bd6734e
GET /wp-content/plugins/the-events-calendar/vendor/bootstrap-datepicker/css/bootstrap-datepicker.standalone.min.css?ver=5.14.2.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:08:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3313
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: text/css
www.thecrudelife.com/wp-content/plugins/the-events-calendar/src/resources/css/tribe-events-theme.min.css?ver=5.14.2.1
192.185.20.87200 OK 2.6 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/the-events-calendar/src/resources/css/tribe-events-theme.min.css?ver=5.14.2.1
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9587), with no line terminators
Hash 5c5cbedcce0568cea000c69953ac1210
a46b1a22fc7016280adf1431b1e1ab7ce22acf42
8714f44ad3daf1c6bb034a38b9c24405f65506e6c48f9ccf7ffb120427162e5f
GET /wp-content/plugins/the-events-calendar/src/resources/css/tribe-events-theme.min.css?ver=5.14.2.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:08:40 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 2552
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: text/css
www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/js/frontend.min.js?ver=3.2.10
192.185.20.87200 OK 3.3 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/wp-user-avatar/assets/js/frontend.min.js?ver=3.2.10
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (9346), with no line terminators
Hash eb89a4b650d11f21e8dfb8723f0beb2a
ed1ca064486e70e34967e35432442ea2759d3bb0
2293eaa848408400905e5673a1a9764e17188ca86bedff223c1664c051df5b38
GET /wp-content/plugins/wp-user-avatar/assets/js/frontend.min.js?ver=3.2.10 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:08:11 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3331
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: application/javascript
www.thecrudelife.com/wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=14.1
192.185.20.87200 OK 1.1 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=14.1
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type HTML document, ASCII text, with very long lines (3102)
Hash 3462b5f527bec4c29ac17c9b51376238
b0de5e6319455fdd548dd7abee817e0c0716dfcc
64c82985ab675c1c58069c612262aa055737f4343f0f1d91837d5f837441ca0c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/youtube-embed-plus/scripts/fitvids.min.js?ver=14.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:09:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1120
Keep-Alive: timeout=5, max=74
Connection: Keep-Alive
Content-Type: application/javascript
www.thecrudelife.com/wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.4.5
192.185.20.87200 OK 1.4 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.4.5
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (4591), with no line terminators
Hash c5481952024b152b24ca808f84a39a34
553aca2f259e29888513440b3c854204808567ae
45ecacaeebb009a877f62825b56edbb58f7d77278f5b44e9b1d74b93aa44badd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/add-search-to-menu/public/js/ivory-search.min.js?ver=5.4.5 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:09:29 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 1397
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/js/castos-player.js?ver=b9288b146baa1f47d55f3de0a140fb15
192.185.20.87200 OK 3.5 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/js/castos-player.js?ver=b9288b146baa1f47d55f3de0a140fb15
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 6cfec6c1da5e6d0ed212705c7e7ce35b
571b28a857c92e9402cb8ea3cb06f68465ba2c66
5bd699bca23969d42b9f36d1c6fcd7401ed6a2665c463d48499301a468209ced
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/js/castos-player.js?ver=b9288b146baa1f47d55f3de0a140fb15 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 3482
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: application/javascript
region1.google-analytics.com/g/collect?v=2&tid=G-HKWV9VKG3L>m=2oe210&_p=1585073673&gdid=dZGIzZG&cid=980602921.1675365810&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675365809&sct=1&seg=0&dl=http%3A%2F%2Fwww.thecrudelife.com%2Fpodcast%2Fthe-crude-life-interview-christopher-cottrell-winston-strawn%2F&dt=The%20Crude%20Life%20Interview%3A%20Christopher%20Cottrell%2C%20Winston%20%26%20Strawn%20-%20The%20Crude%20Life&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.anonymize_ip=true
216.239.32.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-HKWV9VKG3L>m=2oe210&_p=1585073673&gdid=dZGIzZG&cid=980602921.1675365810&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675365809&sct=1&seg=0&dl=http%3A%2F%2Fwww.thecrudelife.com%2Fpodcast%2Fthe-crude-life-interview-christopher-cottrell-winston-strawn%2F&dt=The%20Crude%20Life%20Interview%3A%20Christopher%20Cottrell%2C%20Winston%20%26%20Strawn%20-%20The%20Crude%20Life&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.anonymize_ip=true
IP 216.239.32.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-HKWV9VKG3L>m=2oe210&_p=1585073673&gdid=dZGIzZG&cid=980602921.1675365810&ul=en-us&sr=1280x1024&uaW=1&_s=1&sid=1675365809&sct=1&seg=0&dl=http%3A%2F%2Fwww.thecrudelife.com%2Fpodcast%2Fthe-crude-life-interview-christopher-cottrell-winston-strawn%2F&dt=The%20Crude%20Life%20Interview%3A%20Christopher%20Cottrell%2C%20Winston%20%26%20Strawn%20-%20The%20Crude%20Life&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1&ep.forceSSL=true&ep.anonymize_ip=true HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: http://www.thecrudelife.com
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: http://www.thecrudelife.com
date: Thu, 02 Feb 2023 19:23:02 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.thecrudelife.com/wp-content/plugins/aweber-web-form-widget/src/js/aweber-wpn-script.js
192.185.20.87200 OK 514 B URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/aweber-web-form-widget/src/js/aweber-wpn-script.js
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
Hash 9a7e92b6398301bd296d3ad8b1b51168
3dda23c056c5db1e5c724d949e1e150ed14d43b0
285f3d451fe8893a0a158b218619a072a03649ddcdb844803a627f40dd9c28ea
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/aweber-web-form-widget/src/js/aweber-wpn-script.js HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:09:53 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Content-Length: 514
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Content-Type: application/javascript
www.thecrudelife.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
192.185.20.87200 OK 39 kB URL HTTP/1.1 www.thecrudelife.com/wp-includes/js/jquery/jquery.min.js?ver=3.6.1
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65447)
Hash 32f58a61f7c5a7e10f8b2dcf8e9a8e34
865c25589283ab1debd45bdfa6c4d8c6ecf15ad3
481cb2216fbdb0797af8c61b69c0bda2c10d025f7b11f2cdfac382d35dc45d63
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.1 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Wed, 02 Nov 2022 08:42:14 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
www.thecrudelife.com/wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/js/bootstrap.bundle.min.js?ver=0.1.70
192.185.20.87200 OK 47 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/js/bootstrap.bundle.min.js?ver=0.1.70
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (32016)
Hash 11611f04619f27102990b568b136df3f
abcfafcc684a13934b74db943eb5e7cd8dfae1e6
623a2f66a59b0700733278ff9f00dde735a4b5d29f953253f7236d256726a4f6
GET /wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/js/bootstrap.bundle.min.js?ver=0.1.70 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:08:49 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: application/javascript
www.thecrudelife.com/wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/css/ayecode-ui-compatibility.css?ver=0.1.70
192.185.20.87200 OK 52 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/css/ayecode-ui-compatibility.css?ver=0.1.70
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type ASCII text, with very long lines (65067)
Hash 35ba3727d4e1ddae8e834d652ac58f13
48dac126b56567a0fd67e08ec11c7885a524defd
57542c5a74605a1adb579ef8f630fee05848634a7e6da5e28e9e128d440e410c
GET /wp-content/plugins/userswp/vendor/ayecode/wp-ayecode-ui/assets/css/ayecode-ui-compatibility.css?ver=0.1.70 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:02 GMT
Server: Apache
Last-Modified: Sun, 01 May 2022 10:08:49 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding
Content-Encoding: gzip
Keep-Alive: timeout=5, max=73
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: text/css
www.googletagmanager.com/gtag/js?id=UA-97173802-1&l=dataLayer&cx=c
142.250.74.168302 Found 279 B URL HTTP/1.1 www.googletagmanager.com/gtag/js?id=UA-97173802-1&l=dataLayer&cx=c
IP 142.250.74.168:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF, LF line terminators
Hash 5d4de33d77beea4efdeae65a215b7267
d9385d28504a2e07761d5ffe1447c22dab204cad
43269a4dea3f8786660511746c24e2713c3d5edee13a2e3fb492590c3783d5bc
GET /gtag/js?id=UA-97173802-1&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/
HTTP/1.1 302 Found
Location: https://www.googletagmanager.com/gtag/js?id=UA-97173802-1&l=dataLayer&cx=c
Cross-Origin-Resource-Policy: cross-origin
Date: Thu, 02 Feb 2023 19:23:03 GMT
Content-Type: text/html; charset=UTF-8
Server: Google Tag Manager
Content-Length: 279
X-XSS-Protection: 0
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-loader.svg
192.185.20.87200 OK 1.0 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-loader.svg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (902)
Hash 0b4fe999eeefc8cb7ef352a6ff509826
94e9ce2510755dd570d788197e91aacfd000fc8d
8603d19bda326de2f971d460a26441b2dc7649ca6f1fe9d289b3da0bc44379cb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-loader.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 1005
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/svg+xml
www.thecrudelife.com/wp-content/uploads/2019/11/cropped-TCL_Website_Banner_1080_250_11052019.jpg
192.185.20.87200 OK 59 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/uploads/2019/11/cropped-TCL_Website_Banner_1080_250_11052019.jpg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 1080x250, components 3\012- data
Hash 17fd16b47f96fac0cf555d9369a79bd0
48ad32d9a48233ca98162d56e96d848587bb83de
99dd4bb8819d23da18186ac2862b473a81ac1a25e51d4bbceafd26d473f6853e
GET /wp-content/uploads/2019/11/cropped-TCL_Website_Banner_1080_250_11052019.jpg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/podcast/the-crude-life-interview-christopher-cottrell-winston-strawn/
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Wed, 06 Nov 2019 02:46:01 GMT
Accept-Ranges: bytes
Content-Length: 59029
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/jpeg
pixel.wp.com/g.gif?v=ext&j=1%3A10.8&blog=62769583&post=8608&tz=-6&srv=www.thecrudelife.com&host=www.thecrudelife.com&ref=&fcp=2490&rand=0.009656090698234365
192.0.76.3200 OK 50 B URL HTTP/1.1 pixel.wp.com/g.gif?v=ext&j=1%3A10.8&blog=62769583&post=8608&tz=-6&srv=www.thecrudelife.com&host=www.thecrudelife.com&ref=&fcp=2490&rand=0.009656090698234365
IP 192.0.76.3:0
File type GIF image data, version 89a, 6 x 5\012- data
Hash e4d673a55c5656f19ef81563fb10884c
1f2d8ed221d39329251ad3a6ff1edb20b7219443
f3a8992acb9ab911e0fa4ae12f4b85ef8e61008619f13ee51c7a121ff87f63b1
GET /g.gif?v=ext&j=1%3A10.8&blog=62769583&post=8608&tz=-6&srv=www.thecrudelife.com&host=www.thecrudelife.com&ref=&fcp=2490&rand=0.009656090698234365 HTTP/1.1
Host: pixel.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/
HTTP/1.1 200 OK
Server: nginx
Date: Thu, 02 Feb 2023 19:23:03 GMT
Content-Type: image/gif
Content-Length: 50
Connection: keep-alive
Cache-Control: no-cache
Access-Control-Allow-Origin: *
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-play.svg
192.185.20.87200 OK 335 B URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-play.svg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 151febb3ad1b78747fc9eeb6fbd1c21c
fc60a4fbc2f429c69555dbfd99819964b34224b4
aa6a906063cc68d15471df24de81e7bf63d50a45a18e04bc3a6a75b9deda1c50
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-play.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 335
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/svg+xml
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-rwd.svg
192.185.20.87200 OK 1.8 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-rwd.svg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (918)
Hash 7f8717014a17cb8a81b7e4fc6965b797
469e6bd9e1f530ebd7aa346bd690c1907dfd8f5d
636f99f3e7631c7ef4372f725b76573efa60d6c3d9650b95721b7e2472ac5e9c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-rwd.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 1837
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/svg+xml
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-volume-on.svg
192.185.20.87200 OK 1.2 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-volume-on.svg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1120)
Hash b158a679f464ebed10e97248176182e4
629355273aab11017cb1a9447ac64b86357b6b77
74190bf91d2e2aa7dd21ef20ab1bd552fabfaabcf7662bbf0125328fdd413aa0
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-volume-on.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 1224
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/svg+xml
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-fwd.svg
192.185.20.87200 OK 3.0 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-fwd.svg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2060)
Hash c3532915ad86105c09b2d5844829f28f
c7115720064b8bf8d6eaaf272bcc1804ddc4f498
30c3d97683f2d4cbfecd879484c8c7f8f4c93e1822bc0ec8e605f36904c897b6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-fwd.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 2995
Keep-Alive: timeout=5, max=72
Connection: Keep-Alive
Content-Type: image/svg+xml
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/amazon.svg
192.185.20.87200 OK 3.9 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/amazon.svg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (3801)
Hash 1a3d0d2e4972971c781cdbf966ef0c1f
374e26ac708b6abe83d137e619d83ce0d51d4b5b
4d3fe404745c212f8709e35628eb380ab11c136392d3228635beb1d1f420b17e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/amazon.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 3905
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/svg+xml
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-apple-podcasts.svg
192.185.20.87200 OK 2.0 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-apple-podcasts.svg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1891)
Hash e42d6139d2486ea43ac69b5045b99de7
2ad204a6804b541b06c0f1e6fb37ac52cc160104
912924d40886bad13931a0a4e639f666da1492e182cc1dfdb4de50b19f1b62de
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-apple-podcasts.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 1995
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: image/svg+xml
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20626
Expires: Fri, 03 Feb 2023 01:06:49 GMT
Date: Thu, 02 Feb 2023 19:23:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
34.120.237.76200 OK 15 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6bb5b89e738516f4862491eec286bf6d
8fb46b9ca85f2c578eb2a56d0007859183e12209
7f164a37b675bf39f8473392b07a2a383397da003303965fb190fd4f455bb43b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fdab614ba-4572-4b54-9079-a26b68b1ece7.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15051
x-amzn-requestid: 72a3f2ae-538e-40dc-9496-86c28334ba0d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc6jGTAIAMFy4A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb76-72178ed13a2e70d462785b90;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:54 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: CKTfQzCvXa4oL6Lm2n8Rw_9Uhj69YfgpDTP9s0zoaX5qW1vcqWIXDA==
via: 1.1 5a1753718d8b33365e5f693dd338c510.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:46:26 GMT
age: 77797
etag: "8fb46b9ca85f2c578eb2a56d0007859183e12209"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
34.120.237.76200 OK 8.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 0f85742f336de59ca88f7f964a8b33f4
0fc7177f8cb06421a8807e93989f651bda743567
fbd5fd39c39c218b0fa956f8cb8050cbdbfcb109a92303f6175d73cc8c339526
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F1ff2ba7c-95eb-402b-8e98-e95f8ac322aa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8642
x-amzn-requestid: 79840c68-3e99-428d-9c01-9e4a93a34486
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdUzH1-oAMFiwQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc1e-5bb93c5126aaff474900da63;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:42 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: Mc8C-oesi4njIn2K2f56GKuyt6erRJAqCU-B4InhTD8oIoqo4s5-Fg==
via: 1.1 112c6b3f9aea37a6cb00b7d933e5af6e.cloudfront.net (CloudFront), 1.1 f9d716a351f14a0ac1fac2449734849a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:43 GMT
age: 75860
etag: "0fc7177f8cb06421a8807e93989f651bda743567"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20626
Expires: Fri, 03 Feb 2023 01:06:49 GMT
Date: Thu, 02 Feb 2023 19:23:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
34.120.237.76200 OK 5.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 7c823f1d6bf1c50d58eb263b85e6e37c
a7b74d11494fb3254df907e5cc1eead070d84617
b2706961eb756383e0988dfdb501dc424aea59697aedd1e4a6c294c314a31935
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe18f9e12-0986-423b-911d-6271bb996db4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5356
x-amzn-requestid: fef22c83-35a4-4990-9008-af5853f838d1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frc5BEB6oAMFczg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadb6c-68d3017555c069bc3107d150;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:36:44 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: XyDZc0F-b0rxwoS5wvSXBuBfYE7JljMmuXseBjLOBk4HvxU5gE7Oqg==
via: 1.1 ddd913fbbe7367d44af4ac06097e7a2a.cloudfront.net (CloudFront), 1.1 112d82578d402a38d8d02e8b857617e0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:18:55 GMT
age: 75848
etag: "a7b74d11494fb3254df907e5cc1eead070d84617"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20626
Expires: Fri, 03 Feb 2023 01:06:49 GMT
Date: Thu, 02 Feb 2023 19:23:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20626
Expires: Fri, 03 Feb 2023 01:06:49 GMT
Date: Thu, 02 Feb 2023 19:23:03 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
34.120.237.76200 OK 16 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 4bb3a6fba496d54cdbbccaf2b9600386
8e30002699e9fbf2047f9ac11a36d2175fc9c591
927bf3a04b011b4e3bc8d8772a3d5813507f7f523312d43627767b64615562f3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe2d02739-590e-4a37-9ca5-c27003f9e416.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 15857
x-amzn-requestid: cfe36b9d-34f6-4f3f-896e-e70ec45c4a04
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fmJ2JGGWoAMFSLA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d8bcf3-0dd68dd778b9aba268a129b0;Sampled=0
x-amzn-remapped-date: Tue, 31 Jan 2023 07:02:11 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: C1kqthy0eZop0UZfG3_op5xeBOVGiPLYfia4uS1l4-kchEzV6ccE9w==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Thu, 02 Feb 2023 07:28:37 GMT
age: 42866
etag: "8e30002699e9fbf2047f9ac11a36d2175fc9c591"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e8e0173672ec76c01676a1ba4e1be857
3d01334320c94972440226cfe96c8c7646cae796
c75aea885e434e8bf53e439c4b441e2af4b228f70212001fcc4c8094f534e0f1
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C75AEA885E434E8BF53E439C4B441E2AF4B228F70212001FCC4C8094F534E0F1"
Last-Modified: Tue, 31 Jan 2023 12:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=20626
Expires: Fri, 03 Feb 2023 01:06:49 GMT
Date: Thu, 02 Feb 2023 19:23:03 GMT
Connection: keep-alive
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/google-podcasts.svg
192.185.20.87200 OK 2.2 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/google-podcasts.svg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2050)
Hash df4de26238e81d21657a50b926f9c44e
7af8c4b836fffa1d20ca9d8bd4e2ce8d8ae0f9db
aaefcef9fd2a124b2621f331cdd42bcf25706fb20a9dbf6237c772113081b37b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/google-podcasts.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 2154
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/svg+xml
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
34.120.237.76200 OK 8.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b9af1fd56c0de8f128ddce88d49c1b4d
e3bb3d4950f7c0267f4476eef21872da332831aa
908153182f76362ff329803d9c11c06c66181e85e8e51dabd927f1f1ac630d5c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ffd3cca56-2e75-4efc-8090-c33c65a99f80.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8944
x-amzn-requestid: 07495184-ede8-485c-94e8-5302ec348ea6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: freiLHRPoAMFYbw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dade0d-275437a54eceb40e302a7f55;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:47:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 86qoRJHXcrnBGi3REMF5q3ANzKdqEs5F3yFUBmiIt6SCbBVnhGe2Kw==
via: 1.1 446313511980eb02f28ff5a9a4147c0a.cloudfront.net (CloudFront), 1.1 7022a5bbf9872d4a09d63e6cdb457dfe.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 21:58:57 GMT
age: 77046
etag: "e3bb3d4950f7c0267f4476eef21872da332831aa"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
34.120.237.76200 OK 9.2 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash df4a4906103a8f409c066b1cded71384
22847e3926db3e3d5f6b529297a4abe8b377c3a6
84a14b73b2cc7f4641eaa5539cbee0a109ae2b05cf88d06797a2b00c8d4f0c43
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F88b0e15d-e5be-4197-a382-bf7332128068.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9221
x-amzn-requestid: 209c2ad4-7a1f-4867-bf98-4ca8621111a1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: frdTBFv5IAMFgqQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63dadc13-1627a9d603c69f7760ad013b;Sampled=0
x-amzn-remapped-date: Wed, 01 Feb 2023 21:39:31 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: kAkcQOKAvuq3k-X081MLCqon-cnQJqGryVeE0fwX0a7bcXgJlySIvg==
via: 1.1 a4fe306096165bb1e86e69365dc8fac2.cloudfront.net (CloudFront), 1.1 1b74ccf4cb51eacf97a0e6d60ae46a3e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 01 Feb 2023 22:12:07 GMT
age: 76256
etag: "22847e3926db3e3d5f6b529297a4abe8b377c3a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/fonts/roboto-500-latin.woff2
192.185.20.87200 OK 16 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/fonts/roboto-500-latin.woff2
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 15872, version 1.0\012- data
Hash 020c97dc8e0463259c2f9df929bb0c69
8f956a31154047d1b6527b63db2ecf0f3a463f24
24369e1b2461af9dcefecaf9cc93d64cf22a4c5bac32506100b9e21014507bcf
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/fonts/roboto-500-latin.woff2 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 15872
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: font/woff2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/fonts/poppins-400-latin.woff2
192.185.20.87200 OK 7.9 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/fonts/poppins-400-latin.woff2
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 7900, version 1.0\012- data
Hash 9ed361bba8488aeb2797b82befda20f1
6f80d965a066aff81c0a344d4b7297bd009cc099
41e46faff74c6a77d581689ec35eb040f6c96d17f4d2c5b25dccd42ed498b01c
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/fonts/poppins-400-latin.woff2 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 7900
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: font/woff2
fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
216.58.207.227200 OK 45 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 44856, version 1.0\012- data
Hash 565ce506190ad3af920b40baf1794cec
ad3cba5d06100e09449a864d3b5e58403b478b3d
8778e9af2422858d7052ff9a0f3c12c08ae976bdd6e0316db144cd5579cd97db
GET /s/opensans/v34/memvYaGs126MiZpBA-UvWbX2vVnXBbObj2OVTS-muw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.thecrudelife.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44856
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 18:52:41 GMT
expires: Tue, 30 Jan 2024 18:52:41 GMT
cache-control: public, max-age=31536000
age: 261022
last-modified: Mon, 15 Aug 2022 18:20:18 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2
216.58.207.227200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2
IP 216.58.207.227:0
File type Web Open Font Format (Version 2), TrueType, length 17820, version 1.0\012- data
Hash 3d5107abaf7bf4df5478bd04625c0929
b04d394caabf6ea3e500b74781dc2bfd54f3c18d
9ad0a22b0c58240a7a92b4c01aa31f39a5918dea6a8fdfa77e63042abc4fca31
GET /s/opensans/v34/memQYaGs126MiZpBA-UFUIcVXSCEkx2cmqvXlWq8tWZ0Pw86hd0Rk8ZkWVAewA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.thecrudelife.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17820
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 00:39:14 GMT
expires: Wed, 31 Jan 2024 00:39:14 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 15 Aug 2022 18:13:12 GMT
content-type: font/woff2
age: 240229
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/fonts/roboto-400-latin.woff2
192.185.20.87200 OK 16 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/fonts/roboto-400-latin.woff2
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 15736, version 1.0\012- data
Hash 479970ffb74f2117317f9d24d9e317fe
81c796737cbe44d4a719777f0aff14b73a3efb1e
48c3fa6f86c54f1d9bb519220713d4b0a1f8cd1a589a3c03b9fa82e98ecb13e3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/fonts/roboto-400-latin.woff2 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 15736
Keep-Alive: timeout=5, max=68
Connection: Keep-Alive
Content-Type: font/woff2
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/fonts/poppins-500-latin.woff2
192.185.20.87200 OK 7.8 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/fonts/poppins-500-latin.woff2
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type Web Open Font Format (Version 2), TrueType, length 7776, version 1.0\012- data
Hash 84780596e268aa0cb2be48af2ed5c375
d67ccd32f8c790a746d64d06145882a2f7b06560
d7ba57e3ccc2e3b2bdf8cc9e613194b802607682bf473293c2e3e29de82c9491
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/fonts/poppins-500-latin.woff2 HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 7776
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: font/woff2
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/pandora.svg
192.185.20.87200 OK 592 B URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/pandora.svg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (488)
Hash cd85a0289d0841aa1a427d32e1a0135a
44557c9d8cc3ad3042db0feb31977e21ce9d2242
329fbb29e05d1d5d06fdba939eca5619d63dfcde023cf1bcbf3cce5eada915f3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/pandora.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 592
Keep-Alive: timeout=5, max=71
Connection: Keep-Alive
Content-Type: image/svg+xml
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash e3383a870b280d28b1d924543e6128af
0e9ccaf308e10ae68774fe0d32e10d063f379e7d
093a4523b327faf080d2d200d6e8d9e615abe6e048a72d70c3bc8e9f89cc50bf
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/share.svg
192.185.20.87200 OK 1.9 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/share.svg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1800)
Hash c59fcecfacd255ca33758992f38267bf
bd6abb3224f213cb9aa3df490630543a4f23bed5
e0214de4dcba72e1d9b97e1d5470adf7ae89ebd6a2a217541954b43cca490195
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/share.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 1904
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: image/svg+xml
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/rssradio.svg
192.185.20.87200 OK 1.0 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/rssradio.svg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (911)
Hash 41b4d7da16dc7440431caad4f5b89d3e
1bdaf43d94938180726704104d14878d3e35b791
ff356e35d7d53e58de9a6563eb03679da983b8d21a580f1ba16006e292c65ca3
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/rssradio.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 1015
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/svg+xml
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash df74d0c5bbc711a484e4508808c3357a
304f6b29d37c4f6ae20a4031ec6b3a879f9928c8
14200bd4d7eff065de2b62f1770c31edb357a95390c619867f00660a88e92ae8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/radio-public.svg
192.185.20.87200 OK 1.0 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/radio-public.svg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (934)
Hash 05e97838b28c25234780f273abe12417
2d3ff7cb3088b3cdd008c8eb55ce9588f08122b6
20d0833d7615f62e8775124db8a6919618b4a90972fe6f78fc692a3c614e982e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/radio-public.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 1038
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: image/svg+xml
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-sticher.svg
192.185.20.87200 OK 400 B URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-sticher.svg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 25f2007db0ea4f50b9ed5982cd24edfe
33ee9a506f159f21a2be7abfbe7b699427223878
3de9d29a015186ee8ffd50704a3bdabf6862992925f2a5124bcc60a20665fbcc
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-sticher.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 400
Keep-Alive: timeout=5, max=67
Connection: Keep-Alive
Content-Type: image/svg+xml
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 471 B IP 142.250.74.131:0
Hash 42d54c8c12a2f90c448a11bf42800e86
bb66d35435411c825bfcd0a091f33b7d1708191e
3b67d91fbb38e5c47b6ebff53da366b87af3a308e5c588775ac66a808761dbb1
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/youtube.svg
192.185.20.87200 OK 763 B URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/youtube.svg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (659)
Hash 5599d1dce11ae32f72df9e6e9a5d8a07
63dd3605e543df649af0382299fd60e32ec1051e
206ecf0b053d530bc760d558ac5bff078374fc36fac0dc7b1d0ab22e2cd0d347
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/youtube.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 763
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/svg+xml
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/iheartradio.svg
192.185.20.87200 OK 2.6 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/iheartradio.svg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (2527)
Hash 3f368202b812a2ab65fa5ae66c04942e
c201707469d87ec7def26e316bcb8550d031f30c
9742ebd306bf12ea45f8ca0f85dfbf4849a1dd9a98e2212a96b46cb13a12edb5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/iheartradio.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 2631
Keep-Alive: timeout=5, max=70
Connection: Keep-Alive
Content-Type: image/svg+xml
i.ytimg.com/vi/_5ZUoafC778/maxresdefault.jpg
142.250.74.54200 OK 205 kB URL HTTP/2 i.ytimg.com/vi/_5ZUoafC778/maxresdefault.jpg
IP 142.250.74.54:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 1280x720, components 3\012- data
Size 205 kB (205009 bytes)
Hash 5db9adcb4644651812a6878568628ffc
c6e971a44533d9961fdf4ca4d58d317494bd4edd
181ed7172c72d13fab060d7e06644d5f083ac5c1845faa1ba992d08ccbee8ffe
GET /vi/_5ZUoafC778/maxresdefault.jpg HTTP/1.1
Host: i.ytimg.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-type: image/jpeg
vary: Origin
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy-report-only: same-origin; report-to="youtube"
report-to: {"group":"youtube","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube"}]}
timing-allow-origin: *
content-length: 205009
date: Thu, 02 Feb 2023 19:23:03 GMT
expires: Thu, 02 Feb 2023 21:23:03 GMT
cache-control: public, max-age=7200
etag: "0"
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash df74d0c5bbc711a484e4508808c3357a
304f6b29d37c4f6ae20a4031ec6b3a879f9928c8
14200bd4d7eff065de2b62f1770c31edb357a95390c619867f00660a88e92ae8
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:03 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-copy.svg
192.185.20.87200 OK 649 B URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-copy.svg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (545)
Hash ba5d5c8769f5fbb63df2edbc558ef6cd
2c5540a80a558b185a38d95e3fd1699b38ccd927
ddc851aeeeae858cc9eb3d14a80da754069f771379e39cd8c0ee9c6a9aed3625
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-copy.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 649
Keep-Alive: timeout=5, max=65
Connection: Keep-Alive
Content-Type: image/svg+xml
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-facebook.svg
192.185.20.87200 OK 382 B URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-facebook.svg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text
Hash 5053d037050b2edbece32ec76fdb5646
4d75b838a2ea6e20df6ade4e8cc1c82b0120c1ff
cfb51b55cbe2e7019598caba4810cdc1057759753ff18609b6ec7fcb28fb3477
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-facebook.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 382
Keep-Alive: timeout=5, max=69
Connection: Keep-Alive
Content-Type: image/svg+xml
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc9dee018d827dd583eaa68cf39a1824
1df3cf10296bc2a4f1c34f90601085382fca392e
d6fd1fa8aee0fac8111a67aa076fdc1822bccba77b805100765c30cac1d652b5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D6FD1FA8AEE0FAC8111A67AA076FDC1822BCCBA77B805100765C30CAC1D652B5"
Last-Modified: Tue, 31 Jan 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21568
Expires: Fri, 03 Feb 2023 01:22:31 GMT
Date: Thu, 02 Feb 2023 19:23:03 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc9dee018d827dd583eaa68cf39a1824
1df3cf10296bc2a4f1c34f90601085382fca392e
d6fd1fa8aee0fac8111a67aa076fdc1822bccba77b805100765c30cac1d652b5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D6FD1FA8AEE0FAC8111A67AA076FDC1822BCCBA77B805100765C30CAC1D652B5"
Last-Modified: Tue, 31 Jan 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 03 Feb 2023 01:23:03 GMT
Date: Thu, 02 Feb 2023 19:23:03 GMT
Connection: keep-alive
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-twitter.svg
192.185.20.87200 OK 1.1 kB URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-twitter.svg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (1009)
Hash 8c3d0cc5ed031259abdc4725ad49f11c
ec4e828b00bdfd228c5fa3377f8f372c88b25b73
76e3b893f094bb179314d86ea9b748506c5688d0c23412d1d8a2ad1b02bd88f6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/brands/icon-brand-twitter.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 1113
Keep-Alive: timeout=5, max=64
Connection: Keep-Alive
Content-Type: image/svg+xml
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash fd98d0d26ce285afd8f175540df22cce
edd9b7bbe9f4cf5f57ab07d1983f9d69859322fc
c4354676f931e9bb155b12a02f7f981481eec95f121048b2fdf9341e90fbf665
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "C4354676F931E9BB155B12A02F7F981481EEC95F121048B2FDF9341E90FBF665"
Last-Modified: Thu, 02 Feb 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 03 Feb 2023 01:23:03 GMT
Date: Thu, 02 Feb 2023 19:23:03 GMT
Connection: keep-alive
www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-download.svg
192.185.20.87200 OK 817 B URL HTTP/1.1 www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-download.svg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (713)
Hash a22f0f79b6fb0ec1b9246de63c1f9a60
0dbe597dd7759cc56eb46543a50cd3354d5e46a2
8010b421959acad9e2796bc585190f81b99f78e0e885703a059c00375c987979
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/seriously-simple-podcasting/assets/css/images/player/images/icon-download.svg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/wp-content/plugins/seriously-simple-podcasting/assets/css/castos-player.css?ver=b9288b146baa1f47d55f3de0a140fb15
Cookie: ppwp_wp_session=908a454abb3b94658de7f999300f7c38%7C%7C1675367581%7C%7C1675367221; _ga_HKWV9VKG3L=GS1.1.1675365809.1.1.1675365810.0.0.0; _ga=GA1.1.980602921.1675365810
HTTP/1.1 200 OK
Date: Thu, 02 Feb 2023 19:23:03 GMT
Server: Apache
Last-Modified: Sat, 05 Feb 2022 19:09:07 GMT
Accept-Ranges: bytes
Content-Length: 817
Keep-Alive: timeout=5, max=66
Connection: Keep-Alive
Content-Type: image/svg+xml
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bc9dee018d827dd583eaa68cf39a1824
1df3cf10296bc2a4f1c34f90601085382fca392e
d6fd1fa8aee0fac8111a67aa076fdc1822bccba77b805100765c30cac1d652b5
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D6FD1FA8AEE0FAC8111A67AA076FDC1822BCCBA77B805100765C30CAC1D652B5"
Last-Modified: Tue, 31 Jan 2023 10:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 03 Feb 2023 01:23:03 GMT
Date: Thu, 02 Feb 2023 19:23:03 GMT
Connection: keep-alive
www.thecrudelife.com/wp-content/uploads/2022/09/Stephen-Heins-300x169.jpg
192.185.20.87200 OK 14 kB URL HTTP/2 www.thecrudelife.com/wp-content/uploads/2022/09/Stephen-Heins-300x169.jpg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 300x169, components 3\012- data
Hash b787077758173da77b805d3bfff1991f
eaf91565f3cf00e42f336814f62e76a0a3f54df4
05def5f0ffa3e55b35506eb7380cef33391e997010cde601b4004f5e95f59287
GET /wp-content/uploads/2022/09/Stephen-Heins-300x169.jpg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 06 Sep 2022 07:09:00 GMT
accept-ranges: bytes
content-length: 14356
content-type: image/jpeg
date: Thu, 02 Feb 2023 19:23:03 GMT
server: Apache
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v6.2.1/webfonts/fa-solid-900.woff2
172.64.132.15200 OK 150 kB URL HTTP/2 use.fontawesome.com/releases/v6.2.1/webfonts/fa-solid-900.woff2
IP 172.64.132.15:0
File type Web Open Font Format (Version 2), TrueType, length 150516, version 770.768\012- data
Size 150 kB (150516 bytes)
Hash 328a9d0f59f0ebb55cddac6f39995bea
c0e6e76b4a02c34656ff2a41b671e02f2821829b
8f06540fd77f1effe1e2da8ea10cec4a382dda9cc6ef05d816e1d6de444072f2
GET /releases/v6.2.1/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.thecrudelife.com
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Thu, 02 Feb 2023 19:23:03 GMT
content-type: font/woff2
content-length: 150516
x-amz-id-2: yskxUtaxeKM3gubgKF3M1dcHfE82vZYj/u+ucRO0aFtP/HhMzQdaePx7mSXhgWiepTLUXR2+bdA=
x-amz-request-id: 0WPZ1B9V99XWBR1X
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 14 Nov 2022 16:32:33 GMT
etag: "328a9d0f59f0ebb55cddac6f39995bea"
cache-control: max-age=31556926
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=YW1Zz6fqE3At5qN1vsuXPK5v23%2BOikeGQsHYqKc7f8WET9wPp8tQXSo6V%2FwXG4CUiHZstDPw0yRdZdx1nj%2Fcef3LVS%2FJIslW3e8O7ANCM8BBesdhxRM3BmANvVtJEFe3Apd3bQxP"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79354c93bd9988a3-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v6.2.1/webfonts/fa-brands-400.woff2
172.64.132.15200 OK 108 kB URL HTTP/2 use.fontawesome.com/releases/v6.2.1/webfonts/fa-brands-400.woff2
IP 172.64.132.15:0
File type Web Open Font Format (Version 2), TrueType, length 107656, version 770.768\012- data
Size 108 kB (107656 bytes)
Hash e2f5b365c7d3d4497da73148ddfae997
b99813b3c531d8fe90aed3b75d2ed71f8e0c87f4
c61287c2fa9863b5fb5844c683a168ac6520c94d822bb43d5eae35c3a2a82166
GET /releases/v6.2.1/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: http://www.thecrudelife.com
Connection: keep-alive
Referer: https://use.fontawesome.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 19:23:03 GMT
content-type: font/woff2
content-length: 107656
x-amz-id-2: YY0KkKAGKObBVzVoN7Gt8d/Pr02g8uuTBMasqaF7Z7jtgCvOJf+SVxjJ8aAOjl0A5NHGV9YkIo8=
x-amz-request-id: 0WPS8WTCJMSNX1Y7
access-control-allow-origin: *
access-control-allow-methods: GET
access-control-max-age: 3000
vary: Origin, Access-Control-Request-Headers, Access-Control-Request-Method, Accept-Encoding
last-modified: Mon, 14 Nov 2022 16:32:33 GMT
etag: "e2f5b365c7d3d4497da73148ddfae997"
cache-control: max-age=31556926
cf-cache-status: MISS
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0uHfXZzdchSwMiBMTGnm2Ltx83%2B%2BzGeKs1la0QbPLUHoM5LfkCrKDWo%2BoW5nKxJzxnQ%2ButdpZMW1A4nbLdgs1vqbpb8izF%2BENu56oThu3%2B%2B8RSrBccoIodeWdO509KXAy6JCS2Kx"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 79354c93bd9688a3-LHR
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
www.thecrudelife.com/wp-content/uploads/2020/04/Oil-Rig-Well-3-678x381.jpg
192.185.20.87200 OK 72 kB URL HTTP/2 www.thecrudelife.com/wp-content/uploads/2020/04/Oil-Rig-Well-3-678x381.jpg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 678x381, components 3\012- data
Hash 2d58fa10e851c1cc91382c09861ca744
7c927b955c6acb22ae2c65a6dc55cb631d3970f8
6649b8bbce6951fe0348032d084858a123f29d6a8c9cdbefe11dc994a09b1bba
GET /wp-content/uploads/2020/04/Oil-Rig-Well-3-678x381.jpg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 03 Apr 2020 02:16:55 GMT
accept-ranges: bytes
content-length: 72014
content-type: image/jpeg
date: Thu, 02 Feb 2023 19:23:03 GMT
server: Apache
X-Firefox-Spdy: h2
www.thecrudelife.com/wp-content/uploads/2020/04/red-and-brown-metal-machine-oil-and-gas-80x60.jpg
192.185.20.87200 OK 2.7 kB URL HTTP/2 www.thecrudelife.com/wp-content/uploads/2020/04/red-and-brown-metal-machine-oil-and-gas-80x60.jpg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 80x60, components 3\012- data
Hash ac61edafbd0c8897336cbcac555553a9
3e3a183197e3d406f79cd69523d1d3f348e84f2a
c04462166f766b6a7035b42df29bee676b002f25afcf09daa30d13de3361fb97
GET /wp-content/uploads/2020/04/red-and-brown-metal-machine-oil-and-gas-80x60.jpg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Thu, 02 Apr 2020 10:37:02 GMT
accept-ranges: bytes
content-length: 2688
content-type: image/jpeg
date: Thu, 02 Feb 2023 19:23:03 GMT
server: Apache
X-Firefox-Spdy: h2
www.thecrudelife.com/wp-content/uploads/2021/11/The-Crude-Life-Logo-1500-1-150x150.png
192.185.20.87200 OK 23 kB URL HTTP/2 www.thecrudelife.com/wp-content/uploads/2021/11/The-Crude-Life-Logo-1500-1-150x150.png
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type PNG image data, 150 x 150, 8-bit/color RGBA, non-interlaced\012- data
Hash 4b182b7b50af0ee97f8ee3aef2ac12d9
28af6ff3e93a005c297ad9c59aed31f9ab7ae3ef
1980294812fb34637ee44da7a89ad105666093b8a48057f6c1e4b704152990d9
GET /wp-content/uploads/2021/11/The-Crude-Life-Logo-1500-1-150x150.png HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Sun, 14 Nov 2021 22:33:51 GMT
accept-ranges: bytes
content-length: 22584
content-type: image/png
date: Thu, 02 Feb 2023 19:23:03 GMT
server: Apache
X-Firefox-Spdy: h2
www.thecrudelife.com/wp-content/uploads/2022/12/My-Pillow-TCL-Ad.jpg
192.185.20.87200 OK 106 kB URL HTTP/2 www.thecrudelife.com/wp-content/uploads/2022/12/My-Pillow-TCL-Ad.jpg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 768x1024, components 3\012- data
Size 106 kB (105919 bytes)
Hash c0cd2d3fc3d366055cd06e6f59525a29
f0484ba82dd8b94d9aeaba420feb1efca5656683
dba1b132df474db06a1894b754abb3705eefc5ae8cb781274295106372fdb0d4
GET /wp-content/uploads/2022/12/My-Pillow-TCL-Ad.jpg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 19 Dec 2022 19:00:46 GMT
accept-ranges: bytes
content-length: 105919
content-type: image/jpeg
date: Thu, 02 Feb 2023 19:23:03 GMT
server: Apache
X-Firefox-Spdy: h2
www.thecrudelife.com/wp-content/uploads/2022/12/TCL-Kennel-Club-5-576x1024.jpg
192.185.20.87200 OK 130 kB URL HTTP/2 www.thecrudelife.com/wp-content/uploads/2022/12/TCL-Kennel-Club-5-576x1024.jpg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=0], baseline, precision 8, 576x1024, components 3\012- data
Size 130 kB (130202 bytes)
Hash bfc000971d6b492aa3fc23b9dcde8307
f7ab44e90eed23d2fee50c2afbfd0ac8c57ec8a9
dbd0b80574478b1997051dce3052791ea7e51e1849a38617eac4b208adb6957a
GET /wp-content/uploads/2022/12/TCL-Kennel-Club-5-576x1024.jpg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Tue, 20 Dec 2022 13:52:42 GMT
accept-ranges: bytes
content-length: 130202
content-type: image/jpeg
date: Thu, 02 Feb 2023 19:23:03 GMT
server: Apache
X-Firefox-Spdy: h2
www.google-analytics.com/analytics.js
142.250.74.110200 OK 20 kB URL HTTP/2 www.google-analytics.com/analytics.js
IP 142.250.74.110:0
File type ASCII text, with very long lines (1490)
Hash ca7fbbfd120e3e329633044190bbf134
d17f81e03dd827554ddd207ea081fb46b3415445
847004cefb32f85a9cc16b0b1eb77529ff5753680c145bfcb23f651d214737db
GET /analytics.js HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
strict-transport-security: max-age=10886400; includeSubDomains; preload
x-content-type-options: nosniff
vary: Accept-Encoding
content-encoding: gzip
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 20085
date: Thu, 02 Feb 2023 17:44:08 GMT
expires: Thu, 02 Feb 2023 19:44:08 GMT
cache-control: public, max-age=7200
age: 5936
last-modified: Tue, 10 Jan 2023 21:29:14 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js
142.250.74.170200 OK 34 kB URL HTTP/2 ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js
IP 142.250.74.170:0
File type ASCII text, with very long lines (32038)
Hash 103708790db3586027df27ded660f8ef
d3f58fbe6e02cb4b8b34c6fd510e011cb325bc70
fdba876856bb6c2783df94cacb0f17b53fe33f1907135539272c0127b4270ffe
GET /ajax/libs/jquery/1.11.3/jquery.min.js HTTP/1.1
Host: ajax.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/hosted-libraries-pushers
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="hosted-libraries-pushers"
report-to: {"group":"hosted-libraries-pushers","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/hosted-libraries-pushers"}]}
timing-allow-origin: *
content-length: 33507
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 31 Jan 2023 17:55:49 GMT
expires: Wed, 31 Jan 2024 17:55:49 GMT
cache-control: public, max-age=31536000, stale-while-revalidate=2592000
last-modified: Tue, 03 Mar 2020 19:15:00 GMT
content-type: text/javascript; charset=UTF-8
age: 178035
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
a.mailmunch.co/app/v1/styles.css
143.204.55.3200 OK 2.3 kB URL HTTP/1.1 a.mailmunch.co/app/v1/styles.css
IP 143.204.55.3:0
File type ASCII text, with very long lines (21666), with no line terminators
Hash 5d0df0b3154b3df6994e483e24e9c924
58ca52b3a064c064e768c4860b54d10ec1784fb6
7a26b4761e190fcbe7c0cddd7908f9b0b74d131ab7c62a278bc4ecb834c04e2d
GET /app/v1/styles.css HTTP/1.1
Host: a.mailmunch.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/
HTTP/1.1 200 OK
Content-Type: text/css
Content-Length: 2274
Connection: keep-alive
Date: Thu, 02 Feb 2023 19:03:15 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: HEAD, GET, POST, PUT, DELETE
Access-Control-Expose-Headers: ETag
Access-Control-Max-Age: 3000
Last-Modified: Thu, 02 Feb 2023 07:55:21 GMT
ETag: "5d0df0b3154b3df6994e483e24e9c924"
Cache-Control: max-age=172800
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: -ah2a-MtV6gqKq09JtJvKUMrhiIgUCeJSETuJlcIac0PbkyTn_mARg==
Age: 1190
www.google-analytics.com/gtm/js?id=OPT-PM8NKS4&t=gtag_UA_97173802_1&cid=980602921.1675365810&aip=true
142.250.74.110200 OK 44 kB URL HTTP/2 www.google-analytics.com/gtm/js?id=OPT-PM8NKS4&t=gtag_UA_97173802_1&cid=980602921.1675365810&aip=true
IP 142.250.74.110:0
File type ASCII text, with very long lines (1759)
Hash 7df1c9d244cc5bea88c535288f913fdd
66c3a0fe56045f6154428db6a1e89d01219e8e55
cd8e4be8b0951d574834f5d37159b83e96ca1666407ff84128be074c73d00aa6
GET /gtm/js?id=OPT-PM8NKS4&t=gtag_UA_97173802_1&cid=980602921.1675365810&aip=true HTTP/1.1
Host: www.google-analytics.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Thu, 02 Feb 2023 19:23:04 GMT
expires: Thu, 02 Feb 2023 19:23:04 GMT
cache-control: private, max-age=900
last-modified: Thu, 02 Feb 2023 18:21:29 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 44411
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.thecrudelife.com/wp-content/uploads/2019/04/cropped-TCL_Logo_2018-32x32.jpg
192.185.20.87200 OK 1.2 kB URL HTTP/2 www.thecrudelife.com/wp-content/uploads/2019/04/cropped-TCL_Logo_2018-32x32.jpg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 32x32, components 3\012- data
Hash 754cbb05c3c0de3ec10533739c05f1d3
3517c50e58eb8d1fa7a2cce9191c5da9447360dc
7c794cbe4d70cf6d3c2833881140616fba6be7fe81000c77b8d405c1478216c3
GET /wp-content/uploads/2019/04/cropped-TCL_Logo_2018-32x32.jpg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Sep 2020 12:52:16 GMT
accept-ranges: bytes
content-length: 1220
content-type: image/jpeg
date: Thu, 02 Feb 2023 19:23:04 GMT
server: Apache
X-Firefox-Spdy: h2
www.thecrudelife.com/wp-content/uploads/2019/04/cropped-TCL_Logo_2018-192x192.jpg
192.185.20.87200 OK 10 kB URL HTTP/2 www.thecrudelife.com/wp-content/uploads/2019/04/cropped-TCL_Logo_2018-192x192.jpg
IP 192.185.20.87:0
ASN #46606 UNIFIEDLAYER-AS-1
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 192x192, components 3\012- data
Hash 02f627f47eada66287eb52e8c6daaad2
2f5b51ba9aea659bd20bb37fca7725a375b1b3c9
301f6ab2abd36b7ea09441e8b1fb10a35b838603ae2199b714aa810759db7820
GET /wp-content/uploads/2019/04/cropped-TCL_Logo_2018-192x192.jpg HTTP/1.1
Host: www.thecrudelife.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 09 Sep 2020 12:52:16 GMT
accept-ranges: bytes
content-length: 10101
content-type: image/jpeg
date: Thu, 02 Feb 2023 19:23:04 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.131200 OK 472 B IP 142.250.74.131:0
Hash d06fd066caf4dfa1e21a722a5c468158
acb765577662906ae8e11242bed487ce1051db28
4b45760de269e60345d43ff2da6c5803722f7c052edd0a9f5258ce69b2ffa32f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Thu, 02 Feb 2023 19:23:04 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
forms.mailmunch.co/sites/170369
54.162.128.250200 OK 130 B URL HTTP/1.1 forms.mailmunch.co/sites/170369
IP 54.162.128.250:0
File type JSON data\012- , ASCII text, with no line terminators
Hash bd5eee9d3108700147f42d26d32226e1
b52dd1b78533777426a5a35a183715388de84d74
c56944cbb4ec50e88d3ebf46f597db6b4fbfe370ac1fcd4d6c50c4d02f97b993
GET /sites/170369 HTTP/1.1
Host: forms.mailmunch.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.thecrudelife.com
Connection: keep-alive
Referer: http://www.thecrudelife.com/
HTTP/1.1 200 OK
Server: Cowboy
Connection: keep-alive
X-Powered-By: Express
Access-Control-Allow-Origin: *
Access-Control-Allow-Headers: Origin, X-Requested-With, Content-Type, Accept, X-MM-Form-Tool, X-MM-Coupons
Access-Control-Expose-Headers: X-MM-Comp-Tracking, X-MM-EU-Continent, X-MM-T
Content-Type: application/json; charset=utf-8
Content-Length: 130
Etag: W/"82-tS3Rt4Uzd3QmpaNaGDcVOI3oTXQ"
Vary: Accept-Encoding
Date: Thu, 02 Feb 2023 19:23:04 GMT
Via: 1.1 vegur
a.mailmunch.co/forms-cache/170369/settings-1675355544.json
143.204.55.3200 OK 709 B URL HTTP/1.1 a.mailmunch.co/forms-cache/170369/settings-1675355544.json
IP 143.204.55.3:0
File type JSON data\012- , ASCII text, with very long lines (1350), with no line terminators
Hash 40ec38d87930e5a97a99a7da4c8a402e
2a4cba1c45310117fbd6ed22a4ece0c57b079323
61c973f1df445e88715766926bf81165b9c9596de57f89ff159c3ece4b439f09
GET /forms-cache/170369/settings-1675355544.json HTTP/1.1
Host: a.mailmunch.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.thecrudelife.com
Connection: keep-alive
Referer: http://www.thecrudelife.com/
HTTP/1.1 200 OK
Content-Type: application/json; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Thu, 02 Feb 2023 19:23:05 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: HEAD, GET, POST, PUT, DELETE
Access-Control-Expose-Headers: ETag
Access-Control-Max-Age: 3000
Last-Modified: Thu, 02 Feb 2023 16:32:32 GMT
ETag: W/"43217f4bb6f73fdeb367a0174893576d"
Cache-Control: max-age=31556952
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Miss from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: O12qMONtSzH7ixhUlqmTYa7hzRNL8W1KAjQcf52IaoY1qbUsolp7iQ==
a.mailmunch.co/app/v1/sidebar.js
143.204.55.3200 OK 842 B URL HTTP/1.1 a.mailmunch.co/app/v1/sidebar.js
IP 143.204.55.3:0
File type ASCII text, with very long lines (2731), with no line terminators
Hash 6f08124030f0ee9ed535392ac2d29986
09d3bd1943bef532c8788ae03e15bdc3dade965b
55ca7cc929f8ba3a12bff605aae36a8768e297834857d3f18e2ad4185ab3181d
GET /app/v1/sidebar.js HTTP/1.1
Host: a.mailmunch.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Referer: http://www.thecrudelife.com/
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 842
Connection: keep-alive
Date: Tue, 31 Jan 2023 22:33:39 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: HEAD, GET, POST, PUT, DELETE
Access-Control-Expose-Headers: ETag
Access-Control-Max-Age: 3000
Last-Modified: Tue, 31 Jan 2023 10:07:31 GMT
ETag: "6f08124030f0ee9ed535392ac2d29986"
Cache-Control: max-age=172800
Content-Encoding: gzip
Accept-Ranges: bytes
Server: AmazonS3
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: Fhnoo6UEh_w-Oz6Tly1WByIGhDGWhg2wTAK_ghkabCxdTBnKDB6cKQ==
Age: 161367
a.mailmunch.co/forms-cache/170369/221284/index-1632781080.html
143.204.55.3200 OK 39 kB URL HTTP/1.1 a.mailmunch.co/forms-cache/170369/221284/index-1632781080.html
IP 143.204.55.3:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (32798)
Hash 97cfec66cada0499fa822dd71ea2cc69
c15ad4fe1497e791841947b3e63652bee2c00a60
84c791ccb42f72ae5d8d2b671a03393f9cd3cf256e89bd0244dbf3a96edc63f8
GET /forms-cache/170369/221284/index-1632781080.html HTTP/1.1
Host: a.mailmunch.co
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Origin: http://www.thecrudelife.com
Connection: keep-alive
Referer: http://www.thecrudelife.com/
HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Date: Fri, 20 Jan 2023 05:58:57 GMT
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: HEAD, GET, POST, PUT, DELETE
Access-Control-Expose-Headers: ETag
Access-Control-Max-Age: 3000
Last-Modified: Mon, 27 Sep 2021 22:18:07 GMT
ETag: W/"04da99e5eda2a3e7d85d6df290f125db"
Cache-Control: max-age=31556952
Server: AmazonS3
Content-Encoding: gzip
Vary: Accept-Encoding
X-Cache: Hit from cloudfront
Via: 1.1 a6d89f7e2d55548b941f1ff5d5b3c8d4.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: hfbyfgoXzzIJZeC9UnoUHEMwrmz-bhj_XO3Jd1tNaxa2ZNIPaRpVWQ==
Age: 1171449
fonts.googleapis.com/css?family=Open+Sans:400,400italic,700,600
142.250.74.106200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Open+Sans:400,400italic,700,600
IP 142.250.74.106:0
GET /css?family=Open+Sans:400,400italic,700,600 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Thu, 02 Feb 2023 19:23:02 GMT
date: Thu, 02 Feb 2023 19:23:02 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.youtube.com/iframe_api
142.250.74.46200 OK 0 B URL HTTP/2 www.youtube.com/iframe_api
IP 142.250.74.46:0
GET /iframe_api HTTP/1.1
Host: www.youtube.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/javascript; charset=utf-8
x-content-type-options: nosniff
expires: Thu, 02 Feb 2023 19:23:04 GMT
date: Thu, 02 Feb 2023 19:23:04 GMT
cache-control: private, max-age=0
strict-transport-security: max-age=31536000
x-frame-options: SAMEORIGIN
cross-origin-opener-policy-report-only: same-origin; report-to="youtube_main"
cross-origin-resource-policy: cross-origin
permissions-policy: ch-ua-arch=*, ch-ua-bitness=*, ch-ua-full-version=*, ch-ua-full-version-list=*, ch-ua-model=*, ch-ua-wow64=*, ch-ua-platform=*, ch-ua-platform-version=*
report-to: {"group":"youtube_main","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/youtube_main"}]}
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657?hl=en for more info."
content-encoding: br
server: ESF
x-xss-protection: 0
set-cookie: YSC=Ay87jNb_eRg; Domain=.youtube.com; Path=/; Secure; HttpOnly; SameSite=none
DEVICE_INFO=ChxOekU1TlRZME1USTFNVFl3TmpFNU16YzRPQT09EJib8J4GGJib8J4G; Domain=.youtube.com; Expires=Tue, 01-Aug-2023 19:23:04 GMT; Path=/; Secure; HttpOnly; SameSite=none
VISITOR_INFO1_LIVE=0kHhB4yhPm8; Domain=.youtube.com; Expires=Tue, 01-Aug-2023 19:23:04 GMT; Path=/; Secure; HttpOnly; SameSite=none
CONSENT=PENDING+346; expires=Sat, 01-Feb-2025 19:23:04 GMT; path=/; domain=.youtube.com; Secure
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
use.fontawesome.com/releases/v6.2.1/css/all.css?wpfas=true
172.64.132.15200 OK 0 B URL HTTP/2 use.fontawesome.com/releases/v6.2.1/css/all.css?wpfas=true
IP 172.64.132.15:0
GET /releases/v6.2.1/css/all.css?wpfas=true HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Thu, 02 Feb 2023 19:23:01 GMT
content-type: text/css
x-amz-id-2: A0DGqnvrYDJTvC/QSQ0qYwML2PSmvXkuG6sDePjjVhU/SbqrYNj7UPfMJG+8c3wmnHqjpxBMDh8=
x-amz-request-id: VKRMH03W8KBABJFA
last-modified: Mon, 14 Nov 2022 16:32:10 GMT
etag: W/"8bb6644125ddeee7a27732e86f65fa05"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 1471398
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pm0Q8pRidtDLBVKNZtgl9RWje5DMdwGPbWQVLgPe4Iy1JNj6Bo3sit0Icj4jdbIkzdtmVmNfaaX%2FPbBuhQC6yabhS59FYRWHwrS1%2BZVlkgAmGKDiqVcpXvGlocedCddjhk2Uncfd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 79354c894dc5bc93-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
stats.wp.com/e-202305.js
192.0.76.3200 OK 0 B IP 192.0.76.3:0
GET /e-202305.js HTTP/1.1
Host: stats.wp.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: http://www.thecrudelife.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 02 Feb 2023 19:23:01 GMT
content-type: application/javascript
vary: Accept-Encoding
etag: W/"62f6b688-3508"
content-encoding: br
expires: Wed, 24 Jan 2024 05:54:37 GMT
cache-control: max-age=31536000
access-control-allow-methods: GET, HEAD
access-control-allow-origin: *
x-nc: HIT arn
X-Firefox-Spdy: h2