Report - us-septifix.com/buy-septifix

Report Overview

Submitted URL
us-septifix.com/buy-septifix
IP
104.16.14.194
ASN
#13335 CLOUDFLARENET
Submitted
2022-11-09 23:36:12
Access
Website Title
Final URL
Tags
None
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
54

Domain Summary

Domain / FQDN	Rank	First Seen	Last Seen	Sent	Received	IP
app.clickfunnels.com	34727	2015-03-12T09:40:23Z	2023-03-10T08:52:40Z	4.0 kB	63 kB	104.16.13.194
content-signature-2.cdn.mozilla.net	1152	2020-11-03T13:26:46Z	2023-03-10T05:12:35Z	413 B	5.8 kB	34.160.144.191
assets.clickfunnels.com	64830	2014-10-08T22:00:20Z	2023-03-10T14:23:44Z	401 B	1.8 kB	104.16.14.194
r3.o.lencr.org	344	2020-12-02T09:52:13Z	2023-03-10T05:09:10Z	1.7 kB	4.4 kB	23.36.77.32
us-septifix.com	unknown			23 kB	614 kB	104.16.12.194
ocsp.pki.goog	175	2018-07-01T08:43:07Z	2023-03-10T05:11:10Z	2.4 kB	4.9 kB	142.250.74.35
use.fontawesome.com	942	2017-01-30T05:43:25Z	2023-03-10T11:05:46Z	797 B	19 kB	172.64.132.15
fonts.gstatic.com	unknown	2014-09-09T02:40:21Z	2023-03-10T14:37:36Z	2.4 kB	116 kB	216.58.207.195
static.cloudflareinsights.com	1294	2019-09-24T16:34:56Z	2023-03-10T13:32:49Z	455 B	39 kB	104.16.57.101
img-getpocket.cdn.mozilla.net	1631	2018-06-22T01:36:00Z	2023-03-10T05:10:04Z	3.2 kB	56 kB	34.120.237.76
js-agent.newrelic.com	378	2018-06-22T06:15:37Z	2023-03-10T05:27:57Z	371 B	15 kB	151.101.86.137
bam.nr-data.net	630	2015-02-10T01:06:27Z	2023-03-10T09:26:43Z	870 B	602 B	162.247.241.14
ocsp.digicert.com	86	2012-05-21T09:02:23Z	2023-03-10T13:49:44Z	1.4 kB	3.0 kB	93.184.220.29
contile.services.mozilla.com	1114	2021-05-27T20:32:35Z	2023-03-10T05:10:00Z	333 B	229 B	34.117.237.239
push.services.mozilla.com	2140	2014-10-24T10:27:06Z	2023-03-10T05:10:02Z	606 B	127 B	52.35.74.102

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed
2022-11-09	medium	us-septifix.com	Sinkholed

JavaScript (20)

	URL	Size	First Seen	Last Seen
	us-septifix.com/buy-septifix	395 B	2023-03-07	2024-05-04
Pretty URL us-septifix.com/buy-septifix IP 104.16.12.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:18 Last Seen2024-05-04 18:00:12 Times Seen1087 Hash b2c93212afb38693d023d97f822acd42 a971c75819436a7c7d9c3b388b8be10f1286fdcb dbde09f9e5cc2ecdeffe30752eac8756ca637e0c524bdbd5b1c7e5704aae004f Loading...

	us-septifix.com/buy-septifix	104 B	2023-03-07	2024-05-04
Pretty URL us-septifix.com/buy-septifix IP 104.16.12.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:18 Last Seen2024-05-04 18:00:12 Times Seen1190 Hash 00b5ba65cbf82b44301e01048b806055 3be24afc94edb8de2099ccafa2bfcdbfbef301cd 699e1188e23d8be696d8ca3b45d7eba8c1c97f6ce4e9da4051cce63907ea8442 Loading...

	us-septifix.com/buy-septifix	271 B	2023-03-07	2024-05-04
Pretty URL us-septifix.com/buy-septifix IP 104.16.12.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:18 Last Seen2024-05-04 18:00:12 Times Seen1083 Hash c0d8faa83b4d63e92f56614251d001d4 4377d94b43b83ca010c78aa4c482d86ca19a9593 1d35b00811c224b9c83537f23634d9e7b07f75841c3d99e6ded3c759571f45a7 Loading...

	us-septifix.com/buy-septifix	1.6 kB	2023-03-07	2024-05-04
Pretty URL us-septifix.com/buy-septifix IP 104.16.12.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:18 Last Seen2024-05-04 18:00:12 Times Seen1076 Hash 9695240da93eaffb74ee6d46ae6ea5da f545f6cec4b5da6fb0a50a17ee0bc878030c5047 88533b116813899d4cf0751961b7568763677a97033cfb35180d523e2cf2cfd1 Loading...

	us-septifix.com/buy-septifix	280 B	2023-03-11	2023-03-11
Pretty URL us-septifix.com/buy-septifix IP 104.16.12.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:59:02 Last Seen2023-03-11 09:59:02 Times Seen1 Hash 067a6e8aa594167d77145fa29d73342b a1de3242a6e59bb4943a96e7fa668294522a137e 26004df8cd4e816b0cfeb98213c83f8ce5bfc70f9792e5b7275b5e023137fce1 Loading...

	us-septifix.com/buy-septifix	10 kB	2023-03-07	2023-03-17
Pretty URL us-septifix.com/buy-septifix IP 104.16.12.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:18 Last Seen2023-03-17 12:27:39 Times Seen1 Hash 61abdb73cf60f39fa1f99dbd202754ac 8d0f53cfd61600543702b775cccfdb6cff316a83 42f0f6e0965f466635a6785e94642889e31ade69c5d6c892182d03c91abd6082 Loading...

	unknown	0 B	2023-03-07	2024-05-04
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:01:59 Last Seen2024-05-04 20:56:52 Times Seen37346074 Hash d41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855 Loading...

	us-septifix.com/buy-septifix	101 B	2023-03-07	2024-05-04
Pretty URL us-septifix.com/buy-septifix IP 104.16.12.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:18 Last Seen2024-05-04 18:00:12 Times Seen1076 Hash 58d9451139b4d777d43d7c3e074a944a 58dbf64854e67993dd579ecc78d1a32fea9266ed 85f043b5d0590f154a02cf29f549340485f0e6dd78c70ab8746555092fc9d493 Loading...

	js-agent.newrelic.com/nr-1216.min.js	39 kB	2023-03-07	2023-12-02
Pretty URL js-agent.newrelic.com/nr-1216.min.js IP 151.101.86.137 ASN #54113 FASTLY Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:59 Last Seen2023-12-02 09:02:29 Times Seen204 Hash 9f533d8cd24b2c5e3b4dc886ecbd43e8 4aaad79f222fbcf885679bb30ac0cb6c14ec06eb 6f973e7d75a7e6f6e59708f19631c8890034db5debb4d04f189deb53c114e708 Loading...

	bam.nr-data.net/1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=2840&ck=1&ref=https://us-septifix.com/buy-septifix&ap=565&be=934&fe=1869&dc=1654&perf=%7B%22timing%22:%7B%22of%22:1668036956802,%22n%22:0,%22f%22:635,%22dn%22:637,%22dne%22:640,%22c%22:640,%22s%22:645,%22ce%22:662,%22rq%22:663,%22rp%22:891,%22rpe%22:891,%22dl%22:917,%22di%22:1621,%22ds%22:1653,%22de%22:1811,%22dc%22:1868,%22l%22:1868,%22le%22:1982%7D,%22navigation%22:%7B%7D%7D&fcp=1621&jsonp=NREUM.setToken	49 B	2023-03-07	2024-03-22
Pretty URL bam.nr-data.net/1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=2840&ck=1&ref=https://us-septifix.com/buy-septifix&ap=565&be=934&fe=1869&dc=1654&perf=%7B%22timing%22:%7B%22of%22:1668036956802,%22n%22:0,%22f%22:635,%22dn%22:637,%22dne%22:640,%22c%22:640,%22s%22:645,%22ce%22:662,%22rq%22:663,%22rp%22:891,%22rpe%22:891,%22dl%22:917,%22di%22:1621,%22ds%22:1653,%22de%22:1811,%22dc%22:1868,%22l%22:1868,%22le%22:1982%7D,%22navigation%22:%7B%7D%7D&fcp=1621&jsonp=NREUM.setToken IP 162.247.241.14 ASN #23467 NEWRELIC-AS-1 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:02:54 Last Seen2024-03-22 06:11:42 Times Seen2776 Hash ada33e5b8877e743ff658bf4bfa1867c 5a78662243dac43c0ee48bcb7e05a536b84c2e38 dac715f087720dd7ff7067f5d2ec1988851fa93140ae8a9cbfaa15659dd7fd82 Loading...

	static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993	17 kB	2023-03-08	2024-02-28
Pretty URL static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 IP 104.16.57.101 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:00 Last Seen2024-02-28 12:44:37 Times Seen1362 Hash 33100f2355611b2375f05486299abf05 0b2d1b75f6695e67b884bee2eb72165d6e881a26 0f48c5678ce459a596423b0e55344e7ad8eb3d3b1b27c54cd76a9d4cee7dd6c3 Loading...

	us-septifix.com/buy-septifix	403 B	2023-03-11	2023-03-11
Pretty URL us-septifix.com/buy-septifix IP 104.16.12.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:59:02 Last Seen2023-03-11 09:59:02 Times Seen1 Hash 81c89a5240fd6e9297e7234d7a648197 9392999d041f2876cebc8220b69eac056dc0267c 4ff878ab77e753fa82be084c907a753bc9c6b9b60f9b6c9815bc202f761169d1 Loading...

	us-septifix.com/buy-septifix	1.0 kB	2023-03-07	2024-05-04
Pretty URL us-septifix.com/buy-septifix IP 104.16.12.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:18 Last Seen2024-05-04 18:00:12 Times Seen1077 Hash 7e04d8a0aac6ab1ec08163bd215a5711 f425cd8bab39529985cf2a9cf866a877b4fca17a 4e3d5220213c311337410362a4654f5ea226e71707a85229385cec6d871cc05a Loading...

	us-septifix.com/vendor.js	18 kB	2023-03-07	2024-05-04
Pretty URL us-septifix.com/vendor.js IP 104.16.14.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:18 Last Seen2024-05-04 18:00:12 Times Seen1315 Hash bf2a8a168c0be1544c34f363c276586e 581e49c9b7bdd06dab54c00931f4256b223e620e 7422e50efbaea439fda7ef3b0eb54ee1a9fe73ea2f919d78a33bf6fb9e3e059d Loading...

	us-septifix.com/assets/userevents/application.js	5.2 kB	2023-03-08	2024-05-04
Pretty URL us-septifix.com/assets/userevents/application.js IP 104.16.14.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:28:42 Last Seen2024-05-04 18:00:13 Times Seen1328 Hash 4849819314b7c1be4146a39b52c5c502 3e09f90cb42c04ff19f66dbbd83e3dbb544b50bf a696b734193371073510c87df68430499c2f424ad3f7be42f586dc6aff78567b Loading...

	us-septifix.com/buy-septifix	65 B	2023-03-07	2024-03-18
Pretty URL us-septifix.com/buy-septifix IP 104.16.12.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:03:26 Last Seen2024-03-18 15:34:47 Times Seen305 Hash fd58a4b54ab146df950e11f1c456d75d e7838ec007afb3db8ba2f719f3abdaba531bc554 f83c7974af97a55f1ac8034a88f07f1ab1c45ccb34071de2962dfa6d969fe303 Loading...

	us-septifix.com/buy-septifix	586 B	2023-03-11	2023-03-11
Pretty URL us-septifix.com/buy-septifix IP 104.16.12.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 09:59:02 Last Seen2023-03-11 09:59:02 Times Seen1 Hash 65ed817ae03e5afffac4c487e7007fa3 3f951bc8e804547585d04c72f3a0cb51bbd1c4a4 01b7d3f5009de59388fc97297c5016248ef56e96e382345d1a7bfe1b22288653 Loading...

	us-septifix.com/assets/pushcrew.js	637 B	2023-03-07	2024-05-04
Pretty URL us-septifix.com/assets/pushcrew.js IP 104.16.14.194 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:29:18 Last Seen2024-05-04 18:00:12 Times Seen1409 Hash 0a67c27615e7d2202f261dcc0a82d744 0fa0a8ca56efded583bd4201821015a63c623d44 f7464960133d530dfa52ce0ab9a5c33f0a709a946ad16298b000a7560738f422 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 2aa74ac3a264c3e10ae463a262aaf72c	20 kB	2023-03-07	2024-05-04
Pretty Observations First Seen2023-03-07 01:29:18 Last Seen2024-05-04 18:00:13 Times Seen1096 Hash 2aa74ac3a264c3e10ae463a262aaf72c c5ff579cf0cc2ba1d98711b366ec148152abbaf5 9c1ea695852f01d2fc6027d572b126b740a9c4634540fb0d39ea3656377eef77 Loading...

	#2 Eval - 894b9ddca83c22b5f1df9e9ea97cbbe1	119 B	2023-03-11	2023-03-11
Pretty Observations First Seen2023-03-11 09:59:02 Last Seen2023-03-11 09:59:02 Times Seen1 Hash 894b9ddca83c22b5f1df9e9ea97cbbe1 15234af8b3510f59c05710535ee5c2ae7d89963f f9af27439530a6fc49c0eb17a0e66130a004c33f0ba02679ceebeb3f185e1c9f Loading...

HTTP Transactions (66)

URL IP Response Size

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
aabe410b4bbe4d8beb0e4561d3aa158e
e1788632902ddea62cdd9e7ad6009a75ffb69788
ad535e27b201e92670770b2b868c58f7c05633ec66490a41ef4592f062834c1f

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "AD535E27B201E92670770B2B868C58F7C05633EC66490A41EF4592F062834C1F"
Last-Modified: Wed, 09 Nov 2022 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3728
Expires: Thu, 10 Nov 2022 00:38:08 GMT
Date: Wed, 09 Nov 2022 23:36:00 GMT
Connection: keep-alive

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
4c6e4047ec266b87485610e26a85bb6f
cd543757597609d7309d02652318359078a965c2
d8aff7a24f3274782b4f41d6dbd181ba817f5a562d992a3a82966481c91f8a90

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2951
Cache-Control: max-age=128654
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 23:36:00 GMT
Etag: "636b8168-1d7"
Expires: Fri, 11 Nov 2022 11:20:14 GMT
Last-Modified: Wed, 09 Nov 2022 10:31:04 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
2b57492bf85f4ae6abbd1641b17dc9ab
008e71ec05d47bf025ca64e17da2ea1bd8e71111
17894427c471f7fa02ca274795dc55df1bfc99d7bd83f9ee36249394035110fd

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "17894427C471F7FA02CA274795DC55DF1BFC99D7BD83F9EE36249394035110FD"
Last-Modified: Wed, 09 Nov 2022 02:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3577
Expires: Thu, 10 Nov 2022 00:35:37 GMT
Date: Wed, 09 Nov 2022 23:36:00 GMT
Connection: keep-alive

content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain

34.160.144.191

200 OK

5.3 kB

URL HTTP/2
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP
34.160.144.191:0
ASN
#15169 GOOGLE

File type
PEM certificate\012- , ASCII text
Size
5.3 kB (5348 bytes)
Hash
67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78

HTTP Headers

GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: BhRSZoZXmkcVrIEwFRm3GJ4N3+2Syph1OHBc2/qKV9oi4XMVzoS7ASz3PVWkiuTp2/zYG28EXc8=
x-amz-request-id: 6RYASCSHG75H4BGW
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Wed, 09 Nov 2022 23:11:54 GMT
age: 1446
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2

contile.services.mozilla.com/v1/tiles

34.117.237.239

200 OK

12 B

URL HTTP/2
contile.services.mozilla.com/v1/tiles
IP
34.117.237.239:0
ASN
#15169 GOOGLE

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3

HTTP Headers

GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
date: Wed, 09 Nov 2022 23:36:00 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

us-septifix.com/buy-septifix

104.16.12.194

301 Moved Permanently

483 B

URL HTTP/1.1
us-septifix.com/buy-septifix
IP
104.16.12.194:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document, ASCII text, with very long lines (468)
Size
483 B (483 bytes)
Hash
5fcff5862618eb644ff99362d7cd8bc6
443f714fbb6007f5e3c4fef75ef16be823498155
0deddae74ed949a745976e6cdd0980c04842113dcb3373f36b5e5670d10d321c

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /buy-septifix HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1

HTTP/1.1 301 Moved Permanently
Date: Wed, 09 Nov 2022 23:36:01 GMT
Content-Type: text/html; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
Location: https://us-septifix.com/buy-septifix
CF-Ray: 767a5e3b1a5cb4f3-OSL
Access-Control-Allow-Origin: *
Cache-Control: max-age=60, public, s-maxage=600, r-maxage=10
Last-Modified: Thu, 03 Nov 2022 17:47:35 GMT
Vary: Accept-Encoding
CF-Cache-Status: MISS
Access-Control-Allow-Credentials: true
Access-Control-Allow-Headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
Access-Control-Allow-Methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
Status: 301 Moved Permanently
X-Content-Digest: e6f9e2c638204a274318ef5582bf426d9b84e697
X-Frame-Options: ALLOWALL
X-Powered-By: Phusion Passenger Enterprise 6.0.7
X-Rack-Cache: miss, store
X-Request-Id: bf3464573837a5fd3c37a88649605148
X-Runtime: 0.085844
Set-Cookie: __cf_bm=0lE0FXHnhFT4Bkw9pQNiz2xTaFdtehq6jNGbe1YLSiI-1668036961-0-ATDvvKUNCQ+WW6HE8J3iR6XFHdfbTLioIsz6W4oEGxR9tHkr42gJn4xoFURbPd3MBliTO7I9EtC/DlVmb0uz6fBFJONlK+rPn2Edibxq0IAf; path=/; expires=Thu, 10-Nov-22 00:06:01 GMT; domain=.us-septifix.com; HttpOnly; SameSite=None
Server: cloudflare
alt-svc: h2=":443"; ma=60

ocsp.digicert.com/

93.184.220.29

200 OK

279 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
279 B (279 bytes)
Hash
572fb467c24923ecfd2b686c90683b30
b3daeb270365baecf6c4bc08d67c303d888b0286
e714756ffa4b63b7c7ff18be9f2bfac176def58e37dad12abcb298bbc24ddc0d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5651
Cache-Control: max-age=117648
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 23:36:01 GMT
Etag: "636b4bde-117"
Expires: Fri, 11 Nov 2022 08:16:49 GMT
Last-Modified: Wed, 09 Nov 2022 06:42:38 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 279

us-septifix.com/assets/lander.css

104.16.14.194

200 OK

72 kB

URL HTTP/2
us-septifix.com/assets/lander.css
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type
Unicode text, UTF-8 (with BOM) text, with very long lines (53232)
Size
72 kB (71954 bytes)
Hash
882fc41c1f13aec5f14896ebf9372036
df3f45ec576e36a46fca7eb61c44f05e41ffa153
297d446f21b9acc702f34da67e91375173c7a29a7e80a80089426d3bb10a7f15

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/lander.css HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:01 GMT
content-type: text/css
cf-ray: 767a5e40bb321bfe-OSL
access-control-allow-origin: *
age: 620
cache-control: public, max-age=1200
etag: W/"6359dae3-6a514"
expires: Wed, 09 Nov 2022 23:56:01 GMT
last-modified: Thu, 27 Oct 2022 01:12:03 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
c59d06092401e375df491b06ee8e6dbc
2e27b8ff7c08a5349e27969bc2a08e5e19d0c1da
23ee4ab633fcf67dc5d4d1931450e365cec8d436ef1f9ba5f46b6bab974724c4

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 178
Cache-Control: max-age=120826
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 23:36:01 GMT
Etag: "636b6da9-1d7"
Expires: Fri, 11 Nov 2022 09:09:47 GMT
Last-Modified: Wed, 09 Nov 2022 09:06:49 GMT
Server: ECS (ska/F705)
X-Cache: HIT
Content-Length: 471

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2cc2a9c89cbd9d2da1fd4a79a7d8b1d8
b2a4971855e26ff842f71d5dd4fff2596a83bd59
3bdf6aea6d003d0b087c13a74034f422cb09a59fd5c97b2b48ce590dfca6109a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 23:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
2cc2a9c89cbd9d2da1fd4a79a7d8b1d8
b2a4971855e26ff842f71d5dd4fff2596a83bd59
3bdf6aea6d003d0b087c13a74034f422cb09a59fd5c97b2b48ce590dfca6109a

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 23:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
6bbfc6315b9228fd41cc16d1b2f54feb
2f2ca82eb3ca303268b03f7aa80af90f9380e8e2
9a593b197ba164b8fc74cfe6feccd57e05233a642d1dd8065c6723cee2c15701

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 23:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

use.fontawesome.com/releases/v5.9.0/css/v4-shims.css

172.64.132.15

200 OK

4.7 kB

URL HTTP/2
use.fontawesome.com/releases/v5.9.0/css/v4-shims.css
IP
172.64.132.15:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (26440)
Size
4.7 kB (4659 bytes)
Hash
5192252318ee7f403b3152d4a708ddb0
27c65e3ae1369989df4e288a9eca0bb12a49c583
0e6e6601590ac6eb8b7a23140309eec1257ce42d6d5e49999b008adf1e9708ec

HTTP Headers

GET /releases/v5.9.0/css/v4-shims.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:01 GMT
content-type: text/css
x-amz-id-2: lj0FvMnfC9mptRM/Gd0lw9lT7Zj4wo+oaxaEYLcDnZaRJXq3Oc/kbTmcEwen2MxXaG9FhyIrGnI=
x-amz-request-id: 9D38DJ2PTJVFVSCR
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"e140a7d32f343530f016095df3cc2ae4"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 1218290
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=dGkrtl7PuFVz0V4rjw3lXP5VxjXIEntqOJ8LYn1%2Fg4FqfkoEeuLXVyO4A6d%2B3s2nbPWEEiCB5RKsEd5ww5Q9ofb16RhNTNpZS2FbmAmObfkwAOKEyflRvuPWWhgMrbd1h4Inqcin"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 767a5e41db437719-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

fonts.gstatic.com/s/droidserif/v19/tDbI2oqRg1oM3QBjjcaDkOr9rAU.woff2

216.58.207.195

200 OK

22 kB

URL HTTP/2
fonts.gstatic.com/s/droidserif/v19/tDbI2oqRg1oM3QBjjcaDkOr9rAU.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 22476, version 1.0\012- data
Size
22 kB (22476 bytes)
Hash
c221fd7b9d189773de5e54745a6dc28c
9a58a6bd08f6cda6acbfaaa160375d3e1c5c93f0
aee4051a20e975b9bb6fdc20984a091eb1f55c35ea87abe441db4cdbe8c116d0

HTTP Headers

GET /s/droidserif/v19/tDbI2oqRg1oM3QBjjcaDkOr9rAU.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://us-septifix.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 22476
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 08 Nov 2022 22:34:54 GMT
expires: Wed, 08 Nov 2023 22:34:54 GMT
cache-control: public, max-age=31536000
age: 90067
last-modified: Tue, 19 Apr 2022 19:19:08 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f0c1ba8782042e64d296c64158811a67
ae25bf491e6f7381e4eecfead2a61e95489c850f
eb70540a2e2a591edb02abefb7ba5e08d35fe532db6469c1df9e45e5c4bb9983

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 23:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f0c1ba8782042e64d296c64158811a67
ae25bf491e6f7381e4eecfead2a61e95489c850f
eb70540a2e2a591edb02abefb7ba5e08d35fe532db6469c1df9e45e5c4bb9983

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 23:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2

216.58.207.195

200 OK

24 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 23580, version 1.0\012- data
Size
24 kB (23580 bytes)
Hash
e1b3b5908c9cf23dfb2b9c52b9a023ab
fcd4136085f2a03481d9958cc6793a5ed98e714c
918b7dc3e2e2d015c16ce08b57bcb64d2253bafc1707658f361e72865498e537

HTTP Headers

GET /s/lato/v23/S6uyw4BMUTPHjx4wXg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://us-septifix.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 08 Nov 2022 17:10:21 GMT
expires: Wed, 08 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 109540
last-modified: Tue, 26 Apr 2022 15:48:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f0c1ba8782042e64d296c64158811a67
ae25bf491e6f7381e4eecfead2a61e95489c850f
eb70540a2e2a591edb02abefb7ba5e08d35fe532db6469c1df9e45e5c4bb9983

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 23:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

fonts.gstatic.com/s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2

216.58.207.195

200 OK

17 kB

URL HTTP/2
fonts.gstatic.com/s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 16588, version 1.0\012- data
Size
17 kB (16588 bytes)
Hash
6a93e73463e9f1b7c7b41c52c93843c5
48d5ed2bcc9c9c5c4182ae8957e5cef207cdfcbc
54eb546ba2203d87ad9a38ffdb92fdfed9733e08239dbea692a1ca059a287480

HTTP Headers

GET /s/fjallaone/v13/Yq6R-LCAWCX3-6Ky7FAFrOF6kg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://us-septifix.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 16588
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 03 Nov 2022 21:30:30 GMT
expires: Fri, 03 Nov 2023 21:30:30 GMT
cache-control: public, max-age=31536000
age: 525931
last-modified: Thu, 21 Apr 2022 16:38:59 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

push.services.mozilla.com/

52.35.74.102

101 Switching Protocols

0 B

URL HTTP/1.1
push.services.mozilla.com/
IP
52.35.74.102:0
ASN
#16509 AMAZON-02

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: O06hqclOMvA6uIF5jKGvUw==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket

HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: BzW1DtIlC6OLUZ6HS09xCj1CQNw=

fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2

216.58.207.195

200 OK

23 kB

URL HTTP/2
fonts.gstatic.com/s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 23040, version 1.0\012- data
Size
23 kB (23040 bytes)
Hash
de69cf9e514df447d1b0bb16f49d2457
2ac78601179c3a63ba3f3f3081556b12ddcaf655
c447dd7677b419db7b21dbdfc6277c7816a913ffda76fd2e52702df538de0e49

HTTP Headers

GET /s/lato/v23/S6u9w4BMUTPHh6UVSwiPGQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://us-septifix.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 23040
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 08 Nov 2022 17:10:21 GMT
expires: Wed, 08 Nov 2023 17:10:21 GMT
cache-control: public, max-age=31536000
age: 109540
last-modified: Tue, 26 Apr 2022 15:56:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

fonts.gstatic.com/s/droidserif/v19/tDbV2oqRg1oM3QBjjcaDkOJGiRD7OwE.woff2

216.58.207.195

200 OK

26 kB

URL HTTP/2
fonts.gstatic.com/s/droidserif/v19/tDbV2oqRg1oM3QBjjcaDkOJGiRD7OwE.woff2
IP
216.58.207.195:0
ASN
#15169 GOOGLE

File type
Web Open Font Format (Version 2), TrueType, length 25980, version 1.0\012- data
Size
26 kB (25980 bytes)
Hash
a73882a3738e4aa2ed2e10b93d97c94e
052309efbebfd9acc7e03599ddc3efcafd746feb
4fa898d9bdc34304905c4b165e561c8dc3fe452b0bdd7259140e1aa530a42136

HTTP Headers

GET /s/droidserif/v19/tDbV2oqRg1oM3QBjjcaDkOJGiRD7OwE.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://us-septifix.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 25980
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 08 Nov 2022 22:37:25 GMT
expires: Wed, 08 Nov 2023 22:37:25 GMT
cache-control: public, max-age=31536000
age: 89916
last-modified: Tue, 19 Apr 2022 18:47:46 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2

ocsp.pki.goog/gts1c3

142.250.74.35

200 OK

472 B

URL HTTP/1.1
ocsp.pki.goog/gts1c3
IP
142.250.74.35:0
ASN
#15169 GOOGLE

File type
data
Size
472 B (472 bytes)
Hash
f0c1ba8782042e64d296c64158811a67
ae25bf491e6f7381e4eecfead2a61e95489c850f
eb70540a2e2a591edb02abefb7ba5e08d35fe532db6469c1df9e45e5c4bb9983

HTTP Headers

POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 23:36:01 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN

assets.clickfunnels.com/images/closemodal.png

104.16.14.194

200 OK

672 B

URL HTTP/2
assets.clickfunnels.com/images/closemodal.png
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type
RIFF (little-endian) data, Web/P image\012- data
Size
672 B (672 bytes)
Hash
19754ed4d508cf576c80cf36e0db8c50
f459beac714e5be68aa75349fa806a5642af456a
5216f197f782f4bb872e02a677986af90a488015910f8d3864b796ad68dbd389

HTTP Headers

GET /images/closemodal.png HTTP/1.1
Host: assets.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: image/webp
content-length: 672
cf-ray: 767a5e466b55b51d-OSL
accept-ranges: bytes
access-control-allow-origin: *
age: 1204770
cache-control: public, max-age=2678400
content-disposition: inline; filename="closemodal.webp"
etag: "63571ab3-314"
expires: Sat, 10 Dec 2022 23:36:02 GMT
last-modified: Mon, 24 Oct 2022 23:07:31 GMT
strict-transport-security: max-age=0
vary: Accept, Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
cf-bgj: imgq:100,h2pri
cf-polished: origFmt=png, origSize=788
set-cookie: __cf_bm=qcvY191zmzyWLborNUZrYR7P2gzzmn3pkd_JhdNQl6Y-1668036962-0-AfYtcmdL16cbi/YL3U1KLhGFMMLfiampTiZl+brIM+gfwd5EWz0JPAl4A5aGrPc10z9KqxO+P3imq2cVBw4MWEDW0Dc+169ZwjHybctzqCFP; path=/; expires=Thu, 10-Nov-22 00:06:02 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2

us-septifix.com/hosted/images/0b/a34518539e4e9e9f71d3c0a2423b27/warning.png

104.16.14.194

200 OK

1.5 kB

URL HTTP/2
us-septifix.com/hosted/images/0b/a34518539e4e9e9f71d3c0a2423b27/warning.png
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 100 x 93, 8-bit colormap, non-interlaced\012- data
Size
1.5 kB (1498 bytes)
Hash
29eaeebe5085952aaf327c4ed1c66203
f0e686327bb387af7e745224e509d0b7bddb533f
d8794bc776f223c1418f482cac70a539dc7c8581d09b01272b84e23f2f74bdf6

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /hosted/images/0b/a34518539e4e9e9f71d3c0a2423b27/warning.png HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTY5MDc1Mjk=:visited=true; cf:visitor_id=543e27a2-4365-409b-a46f-412ad0c9196f; addevent_track_cookie=b1bead77-b187-415a-e44e-e7bbce90a9b7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: image/png
content-length: 1498
cf-ray: 767a5e466ea81bfe-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "b3a657ed1e860c68e43ad3c0849ce41e"
last-modified: Fri, 09 Jul 2021 11:34:03 GMT
vary: Accept, Accept-Encoding
cf-cache-status: REVALIDATED
cf-bgj: imgq:85,h2pri
cf-polished: origSize=1641
x-amz-cf-pop: OSL50-P1
server: cloudflare
X-Firefox-Spdy: h2

us-septifix.com/hosted/images/34/9d9437e4124984abc3ff58790858f2/5-star-rating.png

104.16.14.194

200 OK

8.2 kB

URL HTTP/2
us-septifix.com/hosted/images/34/9d9437e4124984abc3ff58790858f2/5-star-rating.png
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 920 x 171, 8-bit colormap, non-interlaced\012- data
Size
8.2 kB (8160 bytes)
Hash
6e85f37a04494a3767cdf1af05b1b14a
b35bc3d34eb28a8e85cc8ee799157b46e547a841
c6e66c1da0a202fc829edcca37d2de4d615916d5e853011437fcbd3b6482047d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /hosted/images/34/9d9437e4124984abc3ff58790858f2/5-star-rating.png HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTY5MDc1Mjk=:visited=true; cf:visitor_id=543e27a2-4365-409b-a46f-412ad0c9196f; addevent_track_cookie=b1bead77-b187-415a-e44e-e7bbce90a9b7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: image/png
content-length: 8160
cf-ray: 767a5e466e981bfe-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "6e85f37a04494a3767cdf1af05b1b14a"
last-modified: Fri, 16 Sep 2022 07:35:39 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-P1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

us-septifix.com/hosted/images/e5/f7426eac9145b3b99cd46d6cbd8c68/fda-approved.png

104.16.14.194

200 OK

2.5 kB

URL HTTP/2
us-septifix.com/hosted/images/e5/f7426eac9145b3b99cd46d6cbd8c68/fda-approved.png
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 144 x 144, 8-bit colormap, non-interlaced\012- data
Size
2.5 kB (2490 bytes)
Hash
a918aa201adc318a5f2eda9d361884cf
606f3352343821fc9fafc11ce0883b6d52d06f8b
a9cdcb9614f83bb9b504e4f4efabf48398ea17d5477f86ca5451677e30cb5387

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /hosted/images/e5/f7426eac9145b3b99cd46d6cbd8c68/fda-approved.png HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTY5MDc1Mjk=:visited=true; cf:visitor_id=543e27a2-4365-409b-a46f-412ad0c9196f; addevent_track_cookie=b1bead77-b187-415a-e44e-e7bbce90a9b7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: image/png
content-length: 2490
cf-ray: 767a5e466ea01bfe-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "a918aa201adc318a5f2eda9d361884cf"
last-modified: Tue, 12 Jul 2022 05:51:06 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-P1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

us-septifix.com/hosted/images/b3/97275fd5d642399dabd3f4c81a13b1/all-natural-2-.png

104.16.14.194

200 OK

5.6 kB

URL HTTP/2
us-septifix.com/hosted/images/b3/97275fd5d642399dabd3f4c81a13b1/all-natural-2-.png
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 144 x 144, 8-bit colormap, non-interlaced\012- data
Size
5.6 kB (5597 bytes)
Hash
3dd2297e7034b415f21a25c21234f180
590b2fc659e820d088f70d475d826b06ecddcf7c
ffd3f86715632e2915cecef4e9a9bf4cb716def96ab0d4488155a52918e8e6cb

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /hosted/images/b3/97275fd5d642399dabd3f4c81a13b1/all-natural-2-.png HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTY5MDc1Mjk=:visited=true; cf:visitor_id=543e27a2-4365-409b-a46f-412ad0c9196f; addevent_track_cookie=b1bead77-b187-415a-e44e-e7bbce90a9b7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: image/png
content-length: 5597
cf-ray: 767a5e466e9e1bfe-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "3dd2297e7034b415f21a25c21234f180"
last-modified: Tue, 12 Jul 2022 05:51:06 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-P1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

us-septifix.com/hosted/images/bb/48f06ecefa4940b6b4cb1fc364df11/Buy-Now-1.gif

104.16.14.194

200 OK

48 kB

URL HTTP/2
us-septifix.com/hosted/images/bb/48f06ecefa4940b6b4cb1fc364df11/Buy-Now-1.gif
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type
GIF image data, version 89a, 357 x 149\012- data
Size
48 kB (48274 bytes)
Hash
f14ea507f6c0ea7da6d763dae835ea1c
f2c153908c4796d765d57bfbb1945987f1f35138
31331b2b6a0fdba0cef2d8076ad8f4e87905d00267ccc79b01ee649961f52a1a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /hosted/images/bb/48f06ecefa4940b6b4cb1fc364df11/Buy-Now-1.gif HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTY5MDc1Mjk=:visited=true; cf:visitor_id=543e27a2-4365-409b-a46f-412ad0c9196f; addevent_track_cookie=b1bead77-b187-415a-e44e-e7bbce90a9b7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: image/gif
content-length: 48274
cf-ray: 767a5e465e931bfe-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "f14ea507f6c0ea7da6d763dae835ea1c"
last-modified: Sun, 03 Oct 2021 15:26:22 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-P1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

us-septifix.com/hosted/images/e4/031bc23a24429c8c15ca0ce9fe92b0/buy-now.png

104.16.14.194

200 OK

42 kB

URL HTTP/2
us-septifix.com/hosted/images/e4/031bc23a24429c8c15ca0ce9fe92b0/buy-now.png
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 707 x 353, 8-bit colormap, non-interlaced\012- data
Size
42 kB (42334 bytes)
Hash
b71acdb7d87388e72ae64476d483c549
065c38892a1baf63e61833e8458eade32657b41c
18a06a4168d304d9af07c7be2cccb0999e50ee96bf7242704e1f41784dba8d97

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /hosted/images/e4/031bc23a24429c8c15ca0ce9fe92b0/buy-now.png HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTY5MDc1Mjk=:visited=true; cf:visitor_id=543e27a2-4365-409b-a46f-412ad0c9196f; addevent_track_cookie=b1bead77-b187-415a-e44e-e7bbce90a9b7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: image/png
content-length: 42334
cf-ray: 767a5e467eae1bfe-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "b71acdb7d87388e72ae64476d483c549"
last-modified: Mon, 04 Jul 2022 06:17:26 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-P1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

us-septifix.com/hosted/images/55/928de66cf345d591ec4ae3ee85e96e/phytocet-180-days-supply-371x830.png

104.16.14.194

200 OK

37 kB

URL HTTP/2
us-septifix.com/hosted/images/55/928de66cf345d591ec4ae3ee85e96e/phytocet-180-days-supply-371x830.png
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 371 x 830, 8-bit colormap, non-interlaced\012- data
Size
37 kB (36949 bytes)
Hash
3eb52670ee8d3bfc25b9fcce50257b43
bbe1581b515c307440a76d15467a98e1f922bd2c
1b0f643094b8b07dd8c696372c3c0856c09a3af17aaa5de1bc9b60dfa3bc3c86

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /hosted/images/55/928de66cf345d591ec4ae3ee85e96e/phytocet-180-days-supply-371x830.png HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTY5MDc1Mjk=:visited=true; cf:visitor_id=543e27a2-4365-409b-a46f-412ad0c9196f; addevent_track_cookie=b1bead77-b187-415a-e44e-e7bbce90a9b7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: image/png
content-length: 36949
cf-ray: 767a5e466ea21bfe-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "3eb52670ee8d3bfc25b9fcce50257b43"
last-modified: Sun, 19 Jun 2022 09:13:28 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-P1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

us-septifix.com/hosted/images/af/ecbebe603946259eaee5f4f63fd91f/made-in-USA.png

104.16.14.194

200 OK

8.1 kB

URL HTTP/2
us-septifix.com/hosted/images/af/ecbebe603946259eaee5f4f63fd91f/made-in-USA.png
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 144 x 144, 8-bit colormap, non-interlaced\012- data
Size
8.1 kB (8085 bytes)
Hash
17571fd2150b7bede570ca69507cff03
1da5ea3912c5f5efea21b379639380bc370b134a
5d88c2e990cf283e025adb45e2d72aad64fded9d10929c238bae9207bb622d5d

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /hosted/images/af/ecbebe603946259eaee5f4f63fd91f/made-in-USA.png HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTY5MDc1Mjk=:visited=true; cf:visitor_id=543e27a2-4365-409b-a46f-412ad0c9196f; addevent_track_cookie=b1bead77-b187-415a-e44e-e7bbce90a9b7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: image/png
content-length: 8085
cf-ray: 767a5e466e9d1bfe-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "17571fd2150b7bede570ca69507cff03"
last-modified: Tue, 12 Jul 2022 05:51:06 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-P1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

us-septifix.com/hosted/images/b7/5df72461fd4e31bc3ce9c5e6ca99cc/moneyback-gaurantee-2-.png

104.16.14.194

200 OK

27 kB

URL HTTP/2
us-septifix.com/hosted/images/b7/5df72461fd4e31bc3ce9c5e6ca99cc/moneyback-gaurantee-2-.png
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 361 x 340, 8-bit colormap, non-interlaced\012- data
Size
27 kB (27093 bytes)
Hash
41386bd4b71f3b67bcf7a5cd96fc801d
b0576f894754335c6784896c631c75b1f6407bcb
170931199712541f400d104290e6a8b23b4d5db34acdcd70a9d9eacf3404e60b

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /hosted/images/b7/5df72461fd4e31bc3ce9c5e6ca99cc/moneyback-gaurantee-2-.png HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTY5MDc1Mjk=:visited=true; cf:visitor_id=543e27a2-4365-409b-a46f-412ad0c9196f; addevent_track_cookie=b1bead77-b187-415a-e44e-e7bbce90a9b7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: image/png
content-length: 27093
cf-ray: 767a5e466ea91bfe-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "41386bd4b71f3b67bcf7a5cd96fc801d"
last-modified: Fri, 16 Sep 2022 06:26:34 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-P1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

us-septifix.com/cdn-cgi/rum?

104.16.14.194

204 No Content

0 B

URL HTTP/2
us-septifix.com/cdn-cgi/rum?
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
content-type: application/json
Content-Length: 6049
Origin: https://us-septifix.com
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTY5MDc1Mjk=:visited=true; cf:visitor_id=543e27a2-4365-409b-a46f-412ad0c9196f; addevent_track_cookie=b1bead77-b187-415a-e44e-e7bbce90a9b7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 204 No Content
date: Wed, 09 Nov 2022 23:36:02 GMT
access-control-allow-origin: https://us-septifix.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 767a5e46eef21bfe-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

us-septifix.com/hosted/images/fa/38f7b870d64cf09788f058ed6770d0/SEPTIFIX-buy-1-pack-1-.png

104.16.14.194

200 OK

37 kB

URL HTTP/2
us-septifix.com/hosted/images/fa/38f7b870d64cf09788f058ed6770d0/SEPTIFIX-buy-1-pack-1-.png
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 421 x 914, 8-bit colormap, non-interlaced\012- data
Size
37 kB (37084 bytes)
Hash
2ca009aca05d31ba04fd446dbe412691
dab4fac897f6e1e166eedb98a63d7daac895fb35
534494eda7935af8c575dce6d09285e548990201f0910d9902799b9ddf311bee

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /hosted/images/fa/38f7b870d64cf09788f058ed6770d0/SEPTIFIX-buy-1-pack-1-.png HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTY5MDc1Mjk=:visited=true; cf:visitor_id=543e27a2-4365-409b-a46f-412ad0c9196f; addevent_track_cookie=b1bead77-b187-415a-e44e-e7bbce90a9b7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: image/png
content-length: 37084
cf-ray: 767a5e466ea31bfe-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "2ca009aca05d31ba04fd446dbe412691"
last-modified: Sun, 16 Oct 2022 05:51:40 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-P1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

us-septifix.com/hosted/images/51/5c950be8854cab9386b10f6f638075/Septifix-review1-1-.jpg

104.16.14.194

200 OK

36 kB

URL HTTP/2
us-septifix.com/hosted/images/51/5c950be8854cab9386b10f6f638075/Septifix-review1-1-.jpg
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 461x461, components 3\012- data
Size
36 kB (35563 bytes)
Hash
b396f9c5fb9d34be3e0c46113b1b5fc0
30aa3b429f76aa6ef57dd2aa4e5289968d4e0b43
0288ac489af8ed7b62a6edbdccd5420609232c6d00e2600f79368171a463c7d4

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /hosted/images/51/5c950be8854cab9386b10f6f638075/Septifix-review1-1-.jpg HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTY5MDc1Mjk=:visited=true; cf:visitor_id=543e27a2-4365-409b-a46f-412ad0c9196f; addevent_track_cookie=b1bead77-b187-415a-e44e-e7bbce90a9b7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: image/jpeg
content-length: 35563
cf-ray: 767a5e465e971bfe-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "b396f9c5fb9d34be3e0c46113b1b5fc0"
last-modified: Sun, 16 Oct 2022 06:22:05 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-P1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

us-septifix.com/hosted/images/6e/ee3cc6a4f64c08bb66837371e2b213/Septifix-review-3-1-.jpg

104.16.14.194

200 OK

38 kB

URL HTTP/2
us-septifix.com/hosted/images/6e/ee3cc6a4f64c08bb66837371e2b213/Septifix-review-3-1-.jpg
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 461x461, components 3\012- data
Size
38 kB (38368 bytes)
Hash
1df9d7acc1520b8fd7e245e7bb449f0e
53487d44dc2367b561bb3641036a9e3773a9d90d
fe6fa3414ae51572a76a60b12849902935c06bb57fb54b5f1e119d5cb6cc0354

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /hosted/images/6e/ee3cc6a4f64c08bb66837371e2b213/Septifix-review-3-1-.jpg HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTY5MDc1Mjk=:visited=true; cf:visitor_id=543e27a2-4365-409b-a46f-412ad0c9196f; addevent_track_cookie=b1bead77-b187-415a-e44e-e7bbce90a9b7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: image/jpeg
content-length: 38368
cf-ray: 767a5e466e991bfe-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "1df9d7acc1520b8fd7e245e7bb449f0e"
last-modified: Sun, 16 Oct 2022 06:22:04 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-P1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

us-septifix.com/hosted/images/b0/9ef5473b7e44f184ea52d933834fe0/SEPTIFIX-buy-3-packs-1-.png

104.16.14.194

200 OK

32 kB

URL HTTP/2
us-septifix.com/hosted/images/b0/9ef5473b7e44f184ea52d933834fe0/SEPTIFIX-buy-3-packs-1-.png
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 415 x 913, 8-bit colormap, non-interlaced\012- data
Size
32 kB (31689 bytes)
Hash
02cc1d54d8cad5047644749919738c30
3a858996942a9c194bd259c24697bea72439f3c5
6d56eeedeff184641ed479996da8bd78a60f52f8d6f5ca8505099aafcd50b12a

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /hosted/images/b0/9ef5473b7e44f184ea52d933834fe0/SEPTIFIX-buy-3-packs-1-.png HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTY5MDc1Mjk=:visited=true; cf:visitor_id=543e27a2-4365-409b-a46f-412ad0c9196f; addevent_track_cookie=b1bead77-b187-415a-e44e-e7bbce90a9b7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: image/png
content-length: 31689
cf-ray: 767a5e466ea41bfe-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "02cc1d54d8cad5047644749919738c30"
last-modified: Sun, 16 Oct 2022 05:51:37 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-P1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993

104.16.57.101

200 OK

39 kB

URL HTTP/2
static.cloudflareinsights.com/beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993
IP
104.16.57.101:0
ASN
#13335 CLOUDFLARENET

File type
data
Size
39 kB (38930 bytes)
Hash
4993a13afaecd7bcccd66e526e61895f
418407b65d20ba8fb45834787eed0c5b453c5766
ce3d96d49c530803acaacafd9ba648d58726efe1402fdec4774edcfbb0ae54be

HTTP Headers

GET /beacon.min.js/vaafb692b2aea4879b33c060e79fe94621666317369993 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us-septifix.com
Connection: keep-alive
Referer: https://us-septifix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:01 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/2022.10.1
last-modified: Fri, 21 Oct 2022 01:56:09 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 767a5e417d65b51e-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

us-septifix.com/hosted/images/16/669d53d37448a29b751cb65d49f0c2/SEPTIFIX-3-packs-1-.png

104.16.14.194

200 OK

28 kB

URL HTTP/2
us-septifix.com/hosted/images/16/669d53d37448a29b751cb65d49f0c2/SEPTIFIX-3-packs-1-.png
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 351 x 253, 8-bit colormap, non-interlaced\012- data
Size
28 kB (27769 bytes)
Hash
d32115e1c788ed711d5537de6a489fb4
062e0905f2eb51ff18e1e39173e01bb3f09d9c01
0eb134e033fee590c111b4d6bd86e6a51d62f226ea92ed0efe7410b1390c91ca

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /hosted/images/16/669d53d37448a29b751cb65d49f0c2/SEPTIFIX-3-packs-1-.png HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTY5MDc1Mjk=:visited=true; cf:visitor_id=543e27a2-4365-409b-a46f-412ad0c9196f; addevent_track_cookie=b1bead77-b187-415a-e44e-e7bbce90a9b7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: image/png
content-length: 27769
cf-ray: 767a5e467eac1bfe-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "d32115e1c788ed711d5537de6a489fb4"
last-modified: Sun, 16 Oct 2022 05:51:42 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-P1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

us-septifix.com/hosted/images/8a/f4080d5ed74f09b0afb5a3c7e20293/Septifix-review-2-1-.jpg

104.16.14.194

200 OK

42 kB

URL HTTP/2
us-septifix.com/hosted/images/8a/f4080d5ed74f09b0afb5a3c7e20293/Septifix-review-2-1-.jpg
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 461x461, components 3\012- data
Size
42 kB (42090 bytes)
Hash
11a03fbc850b3b9fa20b9d1b2291c814
ffc3e8329ef78882351ad4b76c5f5d9ca126fad9
54e8b8fe054227e3f806074a5ef9deacfa40e238d32f08d6195c5c9c8aba27e9

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /hosted/images/8a/f4080d5ed74f09b0afb5a3c7e20293/Septifix-review-2-1-.jpg HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTY5MDc1Mjk=:visited=true; cf:visitor_id=543e27a2-4365-409b-a46f-412ad0c9196f; addevent_track_cookie=b1bead77-b187-415a-e44e-e7bbce90a9b7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: image/jpeg
content-length: 42090
cf-ray: 767a5e466e9b1bfe-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "11a03fbc850b3b9fa20b9d1b2291c814"
last-modified: Sun, 16 Oct 2022 06:22:06 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-P1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

app.clickfunnels.com/userevents/?funnel_id=V1gzU2l1c1lpa3hURE82eVBHM3I3dz09LS1UZVhmbERjbS9ndnI3Vnd4VXp5THpnPT0%3D--e471961d1c79fb09b309d28d42ef5de1523077f5&page_id=RVdtU0loTTMrOU5hQXJXSU56QzNBUT09LS1Nb1N5cmdaUFhXRjBPT0dMSWlQSEt3PT0%3D--b54afe92e4bfac5a068c64c66727d4971b87a73d&funnel_step_id=WHdhUjhySnRTK3JQbytHZ0s5OWVYQT09LS1pRGZoTE9ZWEVVRE5oSGg4YnNRYzN3PT0%3D--aa75fab21c2e2fc11a39928c24330057dff05eb5&user_id=akV2WTk3V29ET2t1bXU4QXFhcUVPQT09LS1EYWY3QnVuSTRzak8zbnFES1gxSEx3PT0%3D--ee8adc49632319ede3bcc30eb09e35380bf53b86&account_id=a1pIV2NsZktFcXh2RVJhdXhPcmc4dz09LS03Q1FqbzBoanFzRFVueWo4UE1DVllnPT0%3D--2c71e4cabd2cde4bc9df9431e32704f98c76f555&page_code=NTY5MDc1Mjk%3D&mode_id=1&time_zone=UTC&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniqueVisitorsCreatedSummary&nonce=0195e9bb-bb6d-448c-b06e-c63b41ea59f5&url=https%3A%2F%2Fus-septifix.com%2Fbuy-septifix

104.16.13.194

202 Accepted

59 kB

URL HTTP/2
app.clickfunnels.com/userevents/?funnel_id=V1gzU2l1c1lpa3hURE82eVBHM3I3dz09LS1UZVhmbERjbS9ndnI3Vnd4VXp5THpnPT0%3D--e471961d1c79fb09b309d28d42ef5de1523077f5&page_id=RVdtU0loTTMrOU5hQXJXSU56QzNBUT09LS1Nb1N5cmdaUFhXRjBPT0dMSWlQSEt3PT0%3D--b54afe92e4bfac5a068c64c66727d4971b87a73d&funnel_step_id=WHdhUjhySnRTK3JQbytHZ0s5OWVYQT09LS1pRGZoTE9ZWEVVRE5oSGg4YnNRYzN3PT0%3D--aa75fab21c2e2fc11a39928c24330057dff05eb5&user_id=akV2WTk3V29ET2t1bXU4QXFhcUVPQT09LS1EYWY3QnVuSTRzak8zbnFES1gxSEx3PT0%3D--ee8adc49632319ede3bcc30eb09e35380bf53b86&account_id=a1pIV2NsZktFcXh2RVJhdXhPcmc4dz09LS03Q1FqbzBoanFzRFVueWo4UE1DVllnPT0%3D--2c71e4cabd2cde4bc9df9431e32704f98c76f555&page_code=NTY5MDc1Mjk%3D&mode_id=1&time_zone=UTC&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniqueVisitorsCreatedSummary&nonce=0195e9bb-bb6d-448c-b06e-c63b41ea59f5&url=https%3A%2F%2Fus-septifix.com%2Fbuy-septifix
IP
104.16.13.194:0
ASN
#13335 CLOUDFLARENET

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], progressive, precision 8, 1064x668, components 3\012- data
Size
59 kB (58828 bytes)
Hash
f82ff816ec09e997ea417eb79b06eb7a
4832efbe535c9abc0483174e1fc5100c458a6106
7e92aca69d1908cc8147bc110f68be58640694df54d27a9cabe092650ceb59b3

HTTP Headers

GET /userevents/?funnel_id=V1gzU2l1c1lpa3hURE82eVBHM3I3dz09LS1UZVhmbERjbS9ndnI3Vnd4VXp5THpnPT0%3D--e471961d1c79fb09b309d28d42ef5de1523077f5&page_id=RVdtU0loTTMrOU5hQXJXSU56QzNBUT09LS1Nb1N5cmdaUFhXRjBPT0dMSWlQSEt3PT0%3D--b54afe92e4bfac5a068c64c66727d4971b87a73d&funnel_step_id=WHdhUjhySnRTK3JQbytHZ0s5OWVYQT09LS1pRGZoTE9ZWEVVRE5oSGg4YnNRYzN3PT0%3D--aa75fab21c2e2fc11a39928c24330057dff05eb5&user_id=akV2WTk3V29ET2t1bXU4QXFhcUVPQT09LS1EYWY3QnVuSTRzak8zbnFES1gxSEx3PT0%3D--ee8adc49632319ede3bcc30eb09e35380bf53b86&account_id=a1pIV2NsZktFcXh2RVJhdXhPcmc4dz09LS03Q1FqbzBoanFzRFVueWo4UE1DVllnPT0%3D--2c71e4cabd2cde4bc9df9431e32704f98c76f555&page_code=NTY5MDc1Mjk%3D&mode_id=1&time_zone=UTC&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniqueVisitorsCreatedSummary&nonce=0195e9bb-bb6d-448c-b06e-c63b41ea59f5&url=https%3A%2F%2Fus-septifix.com%2Fbuy-septifix HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us-septifix.com
Connection: keep-alive
Referer: https://us-septifix.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 202 Accepted
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: text/html
cf-ray: 767a5e450c0a0afe-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: cd5b8c37e058cde87c124727310089c4
x-runtime: 0.037275
set-cookie: __cf_bm=Ju6vY_afp0rwQzhf049f7aVD0K.nK8UjAwxx1ZSZRog-1668036962-0-AaNpc1GjBoLXWLfLJslUWevCIsdnXvrIzvyUssJ4I63YrzAFmqCOyjOmJ2CMEHqxkNt3HhK4C+fywdbvbDJEOnkAYNsAlfte11mDCTcPFdH+; path=/; expires=Thu, 10-Nov-22 00:06:02 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2

us-septifix.com/hosted/images/08/8869de158149caabc7e579852276d1/SEPTIFIX-1-pack-1-.png

104.16.14.194

200 OK

34 kB

URL HTTP/2
us-septifix.com/hosted/images/08/8869de158149caabc7e579852276d1/SEPTIFIX-1-pack-1-.png
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 351 x 253, 8-bit colormap, non-interlaced\012- data
Size
34 kB (33922 bytes)
Hash
810a1c2a5abaf8164f8b5ba7a95ab555
4a8780039308a06a3221569a0aaa15d3ae4ffdbb
fdb8a4b212067e791f92b75fe3845fbdb780ff72a655b77df862d653f5856507

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /hosted/images/08/8869de158149caabc7e579852276d1/SEPTIFIX-1-pack-1-.png HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTY5MDc1Mjk=:visited=true; cf:visitor_id=543e27a2-4365-409b-a46f-412ad0c9196f; addevent_track_cookie=b1bead77-b187-415a-e44e-e7bbce90a9b7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: image/png
content-length: 33922
cf-ray: 767a5e465e8f1bfe-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "810a1c2a5abaf8164f8b5ba7a95ab555"
last-modified: Sun, 16 Oct 2022 05:51:42 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-P1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

us-septifix.com/hosted/images/62/feab7296e44fa091fa116bc6326369/SEPTIFIX-orders-1-.png

104.16.14.194

200 OK

100 kB

URL HTTP/2
us-septifix.com/hosted/images/62/feab7296e44fa091fa116bc6326369/SEPTIFIX-orders-1-.png
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type
PNG image data, 1272 x 919, 8-bit colormap, non-interlaced\012- data
Size
100 kB (99748 bytes)
Hash
dde39da7a4d22783689af08fe7d44f79
b75ccc17842d950e1f1e150910de3e7f8327d0f3
0528cb3571ceaa26d8fd335e6489b68b969cf6d91c1e7b22d1a01eac3964c93f

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /hosted/images/62/feab7296e44fa091fa116bc6326369/SEPTIFIX-orders-1-.png HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTY5MDc1Mjk=:visited=true; cf:visitor_id=543e27a2-4365-409b-a46f-412ad0c9196f; addevent_track_cookie=b1bead77-b187-415a-e44e-e7bbce90a9b7
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:03 GMT
content-type: image/png
content-length: 99748
cf-ray: 767a5e466eab1bfe-OSL
accept-ranges: bytes
cache-control: max-age=31536000
etag: "dde39da7a4d22783689af08fe7d44f79"
last-modified: Sun, 16 Oct 2022 05:51:41 GMT
cf-cache-status: MISS
x-amz-cf-pop: OSL50-P1
vary: Accept-Encoding
server: cloudflare
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b6e55fb9c16b8ec503ca6fb935f650f
1e392159765235158a218248677dc21c46bc4f42
89cc50a881ff8fae94b7bfa2732d133df59bae06680f6d2147281ee7bf8ab00b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8195
Expires: Thu, 10 Nov 2022 01:52:38 GMT
Date: Wed, 09 Nov 2022 23:36:03 GMT
Connection: keep-alive

use.fontawesome.com/releases/v5.9.0/css/all.css

172.64.132.15

200 OK

13 kB

URL HTTP/2
use.fontawesome.com/releases/v5.9.0/css/all.css
IP
172.64.132.15:0
ASN
#13335 CLOUDFLARENET

File type
ASCII text, with very long lines (55782)
Size
13 kB (12699 bytes)
Hash
147584018ee3def8751d7177f3345d6c
64dd623c85b7d08f539a2aebd00265116362df67
101ab62c298f317a8644e45347caa5674677cd2e008f459f3142da241c4a6584

HTTP Headers

GET /releases/v5.9.0/css/all.css HTTP/1.1
Host: use.fontawesome.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:01 GMT
content-type: text/css
x-amz-id-2: aTwuyWgaPvMb6JWlB6xk6ko4jaJeYcep7GkUNwiiQ54PacIiib0YpvXLB8kuH9wuaqemxGQSQA4=
x-amz-request-id: PSJN9FGRVEEQCVY1
last-modified: Wed, 30 Jun 2021 15:48:06 GMT
etag: W/"dbf9d822cefe851ba6f66e1ad57e8987"
cache-control: max-age=31556926
cf-cache-status: HIT
age: 800843
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=7W6LU8kT%2BvrAEJeqsx0OsxQlrjs9q36EC3zjyjrdG11zao2Ag9odK3WWuD23sEAuaESArIWPufrEsqtFeW8%2BKaKI7rlgvA7Xas6b64q4S4mLeIHG0pL7ACli4vvZzUxcCWv2KqWA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 767a5e41cb2c7719-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b6e55fb9c16b8ec503ca6fb935f650f
1e392159765235158a218248677dc21c46bc4f42
89cc50a881ff8fae94b7bfa2732d133df59bae06680f6d2147281ee7bf8ab00b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8195
Expires: Thu, 10 Nov 2022 01:52:38 GMT
Date: Wed, 09 Nov 2022 23:36:03 GMT
Connection: keep-alive

r3.o.lencr.org/

23.36.77.32

200 OK

503 B

URL HTTP/1.1
r3.o.lencr.org/
IP
23.36.77.32:0
ASN
#20940 Akamai International B.V.

File type
data
Size
503 B (503 bytes)
Hash
1b6e55fb9c16b8ec503ca6fb935f650f
1e392159765235158a218248677dc21c46bc4f42
89cc50a881ff8fae94b7bfa2732d133df59bae06680f6d2147281ee7bf8ab00b

HTTP Headers

POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "89CC50A881FF8FAE94B7BFA2732D133DF59BAE06680F6D2147281EE7BF8AB00B"
Last-Modified: Tue, 08 Nov 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=8195
Expires: Thu, 10 Nov 2022 01:52:38 GMT
Date: Wed, 09 Nov 2022 23:36:03 GMT
Connection: keep-alive

img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F571618d6-4a7c-4655-9a3f-1a43863258d2.webp

34.120.237.76

200 OK

5.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F571618d6-4a7c-4655-9a3f-1a43863258d2.webp
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
5.2 kB (5209 bytes)
Hash
2ce8780a7be7c6df77fe53398560075f
7392dfd49233a2653b99feed8b73a8deea709d24
e6d97c56796c69609430d9e1d802fd8b1169e3fceb749d034aa827fda30383a9

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F571618d6-4a7c-4655-9a3f-1a43863258d2.webp HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 5209
x-amzn-requestid: 065bcafb-c718-4313-a11e-86c96f43fb88
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWmCeF3gIAMFSsg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1d42-16886ef54cf2da932a8cefad;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:36:02 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: cqWFX2xWvC_wT6zQTwfBN09QlPMejOPIWxPt0N-ZQeqSjZy12y1GJw==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 e95ec8f1dc02e32f0cb9e113963ceb4e.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:51:08 GMT
etag: "7392dfd49233a2653b99feed8b73a8deea709d24"
content-type: image/jpeg
age: 6295
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

js-agent.newrelic.com/nr-1216.min.js

151.101.86.137

200 OK

14 kB

URL HTTP/2
js-agent.newrelic.com/nr-1216.min.js
IP
151.101.86.137:0
ASN
#54113 FASTLY

File type
ASCII text, with very long lines (32022)
Size
14 kB (14391 bytes)
Hash
b7c09cc097b2847f9edc784adba62dcb
5aa648623cf5e3b4b215fe5d068a7904c59f2925
6da450b6a3ba53bdab36f6529e987a245cdfca9a37b77790f06dfd8d5797bdaa

HTTP Headers

GET /nr-1216.min.js HTTP/1.1
Host: js-agent.newrelic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
x-amz-id-2: Vf9xsFZHH0UI6bmTnW+KeBzegICGOxvtMLIWtbljNKoJtdkUEk/MfmbYPFui+bgtiUf/4lC5dk8=
x-amz-request-id: 4AV5AVKCCR961CNG
last-modified: Thu, 14 Apr 2022 16:45:57 GMT
etag: "9f533d8cd24b2c5e3b4dc886ecbd43e8"
x-amz-version-id: mHHzJIqOizHibcYt0xqAszRr0gQRiNYy
content-type: application/javascript
server: AmazonS3
cache-control: public, max-age=7200, stale-if-error=604800
content-encoding: gzip
accept-ranges: bytes
date: Wed, 09 Nov 2022 23:36:03 GMT
via: 1.1 varnish
x-served-by: cache-bma1645-BMA
x-cache: HIT
x-cache-hits: 2176
x-timer: S1668036963.213141,VS0,VE0
vary: Accept-Encoding
cross-origin-resource-policy: cross-origin
content-length: 14391
X-Firefox-Spdy: h2

34.120.237.76

200 OK

4.9 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F926c35ea-dd9c-4fe5-b907-38d078956395.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
4.9 kB (4873 bytes)
Hash
dfc306260ce6b4d62c619ce08b47b95a
89a46fdf3787da4bb8ff621078971b2a7f065f9c
cbf17e18ef94ead764379964b4bca0f8c1779cd526d28a1d8190d6a0dd647ae2

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F926c35ea-dd9c-4fe5-b907-38d078956395.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 4873
x-amzn-requestid: d71cb1a2-e8e3-4adb-a642-ce21ae8579bc
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWmCIHR6IAMFq5A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1d40-322737b620672fa66c264414;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:36:00 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: jvqQMn902Aa40eCqqKNvDtnOgevnZuc6K_2J74oS6nv2mLP4-8P69Q==
via: 1.1 28a7186077f9b5270d98dd053f31303e.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:49:12 GMT
age: 6411
etag: "89a46fdf3787da4bb8ff621078971b2a7f065f9c"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

13 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61e5641a-68af-473c-af88-cf2c9e3c69d5.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
13 kB (12758 bytes)
Hash
d398b5d30ea461015a3abba3b028ef97
9036a9a8a0904abf68a8f6046505a806c840e056
2cf47136f257e9484ea11928b181976c4961a58b95020d1abb8e68d280099931

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F61e5641a-68af-473c-af88-cf2c9e3c69d5.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 12758
x-amzn-requestid: 8c503d98-3659-40e7-9337-9f02502e9536
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlniH4YoAMFfBw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c96-6feb60720a37636e21e1be8f;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:10 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BCrex9BLIjqBvqO2vWb93rNfP73MDM4zF-zB4ng9fJwmWbDaPgFu_Q==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 476c2ba6d9f6cd69dbcedbd65688cbc0.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:42:11 GMT
age: 6832
etag: "9036a9a8a0904abf68a8f6046505a806c840e056"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

8.2 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f570a6d-7e0c-4dc3-9a3f-7af7ccbae623.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
8.2 kB (8242 bytes)
Hash
feb275cc5fa7b13e70522cb76f001bbc
80ca9cf6cbbc73a884c3a839ace9a7aa191a8504
a5680637b55669355967b87fd4be4881a3e4dea746b7c420acf4dcb46b8a28de

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7f570a6d-7e0c-4dc3-9a3f-7af7ccbae623.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 8242
x-amzn-requestid: 1ab9c180-7e6b-4eae-a6cf-6a45c96fdc4e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlrkE_2oAMFk2A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1cb0-0089846803d11bb649874507;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:36 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: kZPJ95WwFXhxoBwZIeTN2iRl3-XFPmooKSeFtLu3wIm4b8nabFY2mA==
via: 1.1 c34da255183aa208dd1c722ff211f9b2.cloudfront.net (CloudFront), 1.1 91356d2137f5a7345e93da4516c49ec4.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:46:29 GMT
etag: "80ca9cf6cbbc73a884c3a839ace9a7aa191a8504"
content-type: image/jpeg
age: 6574
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

11 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
11 kB (11316 bytes)
Hash
848af62ec10d0c297922f8600b6ad12d
4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d
a3b4eb6768259876819d7e6c7ac9e21c603d54f60bf70ed077cb820711e2ae74

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7b66f592-618a-4463-834d-ff9bbe8866ae.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 11316
x-amzn-requestid: 8456b25a-b87f-490d-86b3-fb217afea082
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bWlniESaIAMF3Qg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636c1c96-30ed3b0972418bae4700edc8;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 21:33:10 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: y5MD-207EEHTD7hC8z0SzYCHA0JdOpYRrUhYDwo0cQ9ITGRbtQ-McA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 707e733794d52100fde0ab21bf0b1462.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 21:46:28 GMT
age: 6575
etag: "4eadbf5f0dade92dcc6d68c8ebb70898aadb9a7d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

34.120.237.76

200 OK

7.3 kB

URL HTTP/2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F277aa861-ae6e-4751-9600-94ebbba9ce15.jpeg
IP
34.120.237.76:0
ASN
#15169 GOOGLE

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Size
7.3 kB (7258 bytes)
Hash
eb75e812f53dc321df03786e8abed258
23017e1582756a012eeb41292d341e34229e1361
d369a3e8edb93852fecad6ed018c56391e237fcaf339133e2ecc65344ee6e3bd

HTTP Headers

GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F277aa861-ae6e-4751-9600-94ebbba9ce15.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 200 OK
server: nginx
content-length: 7258
x-amzn-requestid: f3444b55-7477-45b3-b0e4-d1257cc976b2
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: bUKZ6EJSoAMFUIQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-636b243f-4e51d0b967a3440326b82e6f;Sampled=0
x-amzn-remapped-date: Wed, 09 Nov 2022 03:53:35 GMT
x-amz-cf-pop: SEA19-C3
x-cache: Hit from cloudfront
x-amz-cf-id: va-umdzr21XzZ40RkQ_BxFVNy-fVpiI-OfefquikDyWK5veIhFZklA==
via: 1.1 b04d82bf2bc15ab146955a862be263f0.cloudfront.net (CloudFront), 1.1 21618d080c6bfbcd465fc55a167a8c1a.cloudfront.net (CloudFront), 1.1 google
date: Wed, 09 Nov 2022 10:51:27 GMT
age: 45876
etag: "23017e1582756a012eeb41292d341e34229e1361"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2

ocsp.digicert.com/

93.184.220.29

200 OK

471 B

URL HTTP/1.1
ocsp.digicert.com/
IP
93.184.220.29:0
ASN
#15133 EDGECAST

File type
data
Size
471 B (471 bytes)
Hash
600068581e035a56fc6346d488e8f415
418e562a914c44e4ceed5e12e1104d0b9d962161
324677fc199235a95ed8883ec81bc5a2b2cefc989a42b2f38938b04d60b04fa5

HTTP Headers

POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3167
Cache-Control: max-age=85668
Content-Type: application/ocsp-response
Date: Wed, 09 Nov 2022 23:36:03 GMT
Etag: "636ad8a8-1d7"
Expires: Thu, 10 Nov 2022 23:23:51 GMT
Last-Modified: Tue, 08 Nov 2022 22:31:04 GMT
Server: ECS (ska/F717)
X-Cache: HIT
Content-Length: 471

bam.nr-data.net/1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=2840&ck=1&ref=https://us-septifix.com/buy-septifix&ap=565&be=934&fe=1869&dc=1654&perf=%7B%22timing%22:%7B%22of%22:1668036956802,%22n%22:0,%22f%22:635,%22dn%22:637,%22dne%22:640,%22c%22:640,%22s%22:645,%22ce%22:662,%22rq%22:663,%22rp%22:891,%22rpe%22:891,%22dl%22:917,%22di%22:1621,%22ds%22:1653,%22de%22:1811,%22dc%22:1868,%22l%22:1868,%22le%22:1982%7D,%22navigation%22:%7B%7D%7D&fcp=1621&jsonp=NREUM.setToken

162.247.241.14

200 OK

72 B

URL HTTP/1.1
bam.nr-data.net/1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=2840&ck=1&ref=https://us-septifix.com/buy-septifix&ap=565&be=934&fe=1869&dc=1654&perf=%7B%22timing%22:%7B%22of%22:1668036956802,%22n%22:0,%22f%22:635,%22dn%22:637,%22dne%22:640,%22c%22:640,%22s%22:645,%22ce%22:662,%22rq%22:663,%22rp%22:891,%22rpe%22:891,%22dl%22:917,%22di%22:1621,%22ds%22:1653,%22de%22:1811,%22dc%22:1868,%22l%22:1868,%22le%22:1982%7D,%22navigation%22:%7B%7D%7D&fcp=1621&jsonp=NREUM.setToken
IP
162.247.241.14:0
ASN
#23467 NEWRELIC-AS-1

File type
ASCII text, with no line terminators
Size
72 B (72 bytes)
Hash
107d93e382e2c9b00fbf9fb0edc65d86
77e750e3ebf9706f4f6dd253785602d70be17c6c
a1ee50b689ea433a0acdccbf4ee4629e9ea3f9c4bcdd21effb334359a2f9e937

HTTP Headers

GET /1/NRJS-fc902efb332119fff33?a=367981416&v=1216.487a282&to=dFZWTENWVQ9QExdNRlJLSFlWXEpMRQBfXUYYSU1aXVBKC1AF&rst=2840&ck=1&ref=https://us-septifix.com/buy-septifix&ap=565&be=934&fe=1869&dc=1654&perf=%7B%22timing%22:%7B%22of%22:1668036956802,%22n%22:0,%22f%22:635,%22dn%22:637,%22dne%22:640,%22c%22:640,%22s%22:645,%22ce%22:662,%22rq%22:663,%22rp%22:891,%22rpe%22:891,%22dl%22:917,%22di%22:1621,%22ds%22:1653,%22de%22:1811,%22dc%22:1868,%22l%22:1868,%22le%22:1982%7D,%22navigation%22:%7B%7D%7D&fcp=1621&jsonp=NREUM.setToken HTTP/1.1
Host: bam.nr-data.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site

HTTP/1.1 200 OK
Date: Wed, 09 Nov 2022 23:36:03 GMT
Content-Type: text/javascript
Transfer-Encoding: chunked
Connection: keep-alive
CF-Ray: 767a5e4c6c26b52d-OSL
Access-Control-Allow-Origin: *
Set-Cookie: JSESSIONID=d225d9bc4be4c129; Path=/; Domain=.nr-data.net; Secure; SameSite=None
CF-Cache-Status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, HEAD, OPTIONS
Cross-Origin-Resource-Policy: cross-origin
Vary: Accept-Encoding
Server: cloudflare
Content-Encoding: gzip

us-septifix.com/cdn-cgi/rum?

104.16.14.194

204 No Content

0 B

URL HTTP/2
us-septifix.com/cdn-cgi/rum?
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 606
Origin: https://us-septifix.com
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTY5MDc1Mjk=:visited=true; cf:visitor_id=543e27a2-4365-409b-a46f-412ad0c9196f; addevent_track_cookie=b1bead77-b187-415a-e44e-e7bbce90a9b7; is_eu=false; n2t04wah1zhsqdz4=true; 12552185_viewed_1=1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 204 No Content
date: Wed, 09 Nov 2022 23:36:09 GMT
access-control-allow-origin: https://us-septifix.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 767a5e73a9701bfe-OSL
x-frame-options: DENY
x-content-type-options: nosniff
X-Firefox-Spdy: h2

app.clickfunnels.com/userevents/?funnel_id=V1gzU2l1c1lpa3hURE82eVBHM3I3dz09LS1UZVhmbERjbS9ndnI3Vnd4VXp5THpnPT0%3D--e471961d1c79fb09b309d28d42ef5de1523077f5&page_id=RVdtU0loTTMrOU5hQXJXSU56QzNBUT09LS1Nb1N5cmdaUFhXRjBPT0dMSWlQSEt3PT0%3D--b54afe92e4bfac5a068c64c66727d4971b87a73d&funnel_step_id=WHdhUjhySnRTK3JQbytHZ0s5OWVYQT09LS1pRGZoTE9ZWEVVRE5oSGg4YnNRYzN3PT0%3D--aa75fab21c2e2fc11a39928c24330057dff05eb5&user_id=akV2WTk3V29ET2t1bXU4QXFhcUVPQT09LS1EYWY3QnVuSTRzak8zbnFES1gxSEx3PT0%3D--ee8adc49632319ede3bcc30eb09e35380bf53b86&account_id=a1pIV2NsZktFcXh2RVJhdXhPcmc4dz09LS03Q1FqbzBoanFzRFVueWo4UE1DVllnPT0%3D--2c71e4cabd2cde4bc9df9431e32704f98c76f555&page_code=NTY5MDc1Mjk%3D&mode_id=1&time_zone=UTC&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::PageviewsCreatedSummary&nonce=d07ba87c-9b21-4804-a787-2cb033a8504c&url=https%3A%2F%2Fus-septifix.com%2Fbuy-septifix

104.16.13.194

202 Accepted

0 B

URL HTTP/2
app.clickfunnels.com/userevents/?funnel_id=V1gzU2l1c1lpa3hURE82eVBHM3I3dz09LS1UZVhmbERjbS9ndnI3Vnd4VXp5THpnPT0%3D--e471961d1c79fb09b309d28d42ef5de1523077f5&page_id=RVdtU0loTTMrOU5hQXJXSU56QzNBUT09LS1Nb1N5cmdaUFhXRjBPT0dMSWlQSEt3PT0%3D--b54afe92e4bfac5a068c64c66727d4971b87a73d&funnel_step_id=WHdhUjhySnRTK3JQbytHZ0s5OWVYQT09LS1pRGZoTE9ZWEVVRE5oSGg4YnNRYzN3PT0%3D--aa75fab21c2e2fc11a39928c24330057dff05eb5&user_id=akV2WTk3V29ET2t1bXU4QXFhcUVPQT09LS1EYWY3QnVuSTRzak8zbnFES1gxSEx3PT0%3D--ee8adc49632319ede3bcc30eb09e35380bf53b86&account_id=a1pIV2NsZktFcXh2RVJhdXhPcmc4dz09LS03Q1FqbzBoanFzRFVueWo4UE1DVllnPT0%3D--2c71e4cabd2cde4bc9df9431e32704f98c76f555&page_code=NTY5MDc1Mjk%3D&mode_id=1&time_zone=UTC&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::PageviewsCreatedSummary&nonce=d07ba87c-9b21-4804-a787-2cb033a8504c&url=https%3A%2F%2Fus-septifix.com%2Fbuy-septifix
IP
104.16.13.194:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /userevents/?funnel_id=V1gzU2l1c1lpa3hURE82eVBHM3I3dz09LS1UZVhmbERjbS9ndnI3Vnd4VXp5THpnPT0%3D--e471961d1c79fb09b309d28d42ef5de1523077f5&page_id=RVdtU0loTTMrOU5hQXJXSU56QzNBUT09LS1Nb1N5cmdaUFhXRjBPT0dMSWlQSEt3PT0%3D--b54afe92e4bfac5a068c64c66727d4971b87a73d&funnel_step_id=WHdhUjhySnRTK3JQbytHZ0s5OWVYQT09LS1pRGZoTE9ZWEVVRE5oSGg4YnNRYzN3PT0%3D--aa75fab21c2e2fc11a39928c24330057dff05eb5&user_id=akV2WTk3V29ET2t1bXU4QXFhcUVPQT09LS1EYWY3QnVuSTRzak8zbnFES1gxSEx3PT0%3D--ee8adc49632319ede3bcc30eb09e35380bf53b86&account_id=a1pIV2NsZktFcXh2RVJhdXhPcmc4dz09LS03Q1FqbzBoanFzRFVueWo4UE1DVllnPT0%3D--2c71e4cabd2cde4bc9df9431e32704f98c76f555&page_code=NTY5MDc1Mjk%3D&mode_id=1&time_zone=UTC&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::PageviewsCreatedSummary&nonce=d07ba87c-9b21-4804-a787-2cb033a8504c&url=https%3A%2F%2Fus-septifix.com%2Fbuy-septifix HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us-septifix.com
Connection: keep-alive
Referer: https://us-septifix.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 202 Accepted
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: text/html
cf-ray: 767a5e451c0c0afe-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 8e2429f0a2aa93a1648bce6a7e9c2c3c
x-runtime: 0.034830
set-cookie: __cf_bm=LyZSnPnRgrreslrzK62ffKcB7SsOEY9y8LoJf0q.mV0-1668036962-0-ARPRAEJl0cFNFvtAA7qi0uc3XrzQ6K5uBKiy6YJ1SF1YXzGSWsN1sy0gVhAF7ko71uwvfm9qZO6HcedqkXsX7/9OTYzvA1Bl1OL9o20eZ0EW; path=/; expires=Thu, 10-Nov-22 00:06:02 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/csp-reporting.cloudflare.com\/cdn-cgi\/script_monitor\/report?m=nkT8IqM24cz7Vr_Hw8x6CYFca3V3FntuNXEEtULPb5Q-1668036962-0-AfPulPddv0gvKV8x8sJnCHZRVGfEumonoGfm8mp6pSx7rTWSP8l0KwSISTs24-bL-VfHQ6iJFpHYyWaE-5YdWR5sBMsNtukHYlk71l7Egtd6"}],"group":"cf-csp-endpoint","max_age":86400}
content-security-policy-report-only: script-src 'none'; report-uri https://csp-reporting.cloudflare.com/cdn-cgi/script_monitor/report?m=nkT8IqM24cz7Vr_Hw8x6CYFca3V3FntuNXEEtULPb5Q-1668036962-0-AfPulPddv0gvKV8x8sJnCHZRVGfEumonoGfm8mp6pSx7rTWSP8l0KwSISTs24-bL-VfHQ6iJFpHYyWaE-5YdWR5sBMsNtukHYlk71l7Egtd6; report-to cf-csp-endpoint
server: cloudflare
X-Firefox-Spdy: h2

us-septifix.com/assets/lander.js

104.16.14.194

200 OK

0 B

URL HTTP/2
us-septifix.com/assets/lander.js
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/lander.js HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:01 GMT
content-type: application/x-javascript
cf-ray: 767a5e40bb3c1bfe-OSL
access-control-allow-origin: *
age: 595
cache-control: public, max-age=1200
etag: W/"6359db3a-2391a3"
expires: Wed, 09 Nov 2022 23:56:01 GMT
last-modified: Thu, 27 Oct 2022 01:13:30 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

us-septifix.com/assets/pushcrew.js

104.16.14.194

200 OK

0 B

URL HTTP/2
us-septifix.com/assets/pushcrew.js
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/pushcrew.js HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:01 GMT
content-type: application/x-javascript
cf-ray: 767a5e40cb3e1bfe-OSL
access-control-allow-origin: *
age: 594
cache-control: public, max-age=1200
etag: W/"6359dae3-27d"
expires: Wed, 09 Nov 2022 23:56:01 GMT
last-modified: Thu, 27 Oct 2022 01:12:03 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

us-septifix.com/assets/userevents/application.js

104.16.14.194

200 OK

0 B

URL HTTP/2
us-septifix.com/assets/userevents/application.js
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /assets/userevents/application.js HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:01 GMT
content-type: application/x-javascript
cf-ray: 767a5e40bb381bfe-OSL
access-control-allow-origin: *
age: 594
cache-control: public, max-age=1200
etag: W/"6359dae3-147c"
expires: Wed, 09 Nov 2022 23:56:01 GMT
last-modified: Thu, 27 Oct 2022 01:12:03 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: HIT
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

us-septifix.com/vendor.js

104.16.14.194

200 OK

0 B

URL HTTP/2
us-septifix.com/vendor.js
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /vendor.js HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: application/javascript
cf-ray: 767a5e449d871bfe-OSL
access-control-allow-origin: *
cache-control: max-age=900, public
etag: W/"7422e50efbaea439fda7ef3b0eb54ee1"
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 200 OK
x-content-digest: 581e49c9b7bdd06dab54c00931f4256b223e620e
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: stale, valid, store
x-request-id: 0a52a869456de8912004702eae341aac
x-runtime: 0.025634
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

app.clickfunnels.com/userevents/?funnel_id=V1gzU2l1c1lpa3hURE82eVBHM3I3dz09LS1UZVhmbERjbS9ndnI3Vnd4VXp5THpnPT0%3D--e471961d1c79fb09b309d28d42ef5de1523077f5&page_id=RVdtU0loTTMrOU5hQXJXSU56QzNBUT09LS1Nb1N5cmdaUFhXRjBPT0dMSWlQSEt3PT0%3D--b54afe92e4bfac5a068c64c66727d4971b87a73d&funnel_step_id=WHdhUjhySnRTK3JQbytHZ0s5OWVYQT09LS1pRGZoTE9ZWEVVRE5oSGg4YnNRYzN3PT0%3D--aa75fab21c2e2fc11a39928c24330057dff05eb5&user_id=akV2WTk3V29ET2t1bXU4QXFhcUVPQT09LS1EYWY3QnVuSTRzak8zbnFES1gxSEx3PT0%3D--ee8adc49632319ede3bcc30eb09e35380bf53b86&account_id=a1pIV2NsZktFcXh2RVJhdXhPcmc4dz09LS03Q1FqbzBoanFzRFVueWo4UE1DVllnPT0%3D--2c71e4cabd2cde4bc9df9431e32704f98c76f555&page_code=NTY5MDc1Mjk%3D&mode_id=1&time_zone=UTC&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniquePageviewsCreatedSummary&nonce=a8db7da7-5463-4612-9c7c-72fbac7ec844&url=https%3A%2F%2Fus-septifix.com%2Fbuy-septifix

104.16.13.194

202 Accepted

0 B

URL HTTP/2
app.clickfunnels.com/userevents/?funnel_id=V1gzU2l1c1lpa3hURE82eVBHM3I3dz09LS1UZVhmbERjbS9ndnI3Vnd4VXp5THpnPT0%3D--e471961d1c79fb09b309d28d42ef5de1523077f5&page_id=RVdtU0loTTMrOU5hQXJXSU56QzNBUT09LS1Nb1N5cmdaUFhXRjBPT0dMSWlQSEt3PT0%3D--b54afe92e4bfac5a068c64c66727d4971b87a73d&funnel_step_id=WHdhUjhySnRTK3JQbytHZ0s5OWVYQT09LS1pRGZoTE9ZWEVVRE5oSGg4YnNRYzN3PT0%3D--aa75fab21c2e2fc11a39928c24330057dff05eb5&user_id=akV2WTk3V29ET2t1bXU4QXFhcUVPQT09LS1EYWY3QnVuSTRzak8zbnFES1gxSEx3PT0%3D--ee8adc49632319ede3bcc30eb09e35380bf53b86&account_id=a1pIV2NsZktFcXh2RVJhdXhPcmc4dz09LS03Q1FqbzBoanFzRFVueWo4UE1DVllnPT0%3D--2c71e4cabd2cde4bc9df9431e32704f98c76f555&page_code=NTY5MDc1Mjk%3D&mode_id=1&time_zone=UTC&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniquePageviewsCreatedSummary&nonce=a8db7da7-5463-4612-9c7c-72fbac7ec844&url=https%3A%2F%2Fus-septifix.com%2Fbuy-septifix
IP
104.16.13.194:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

HTTP Headers

GET /userevents/?funnel_id=V1gzU2l1c1lpa3hURE82eVBHM3I3dz09LS1UZVhmbERjbS9ndnI3Vnd4VXp5THpnPT0%3D--e471961d1c79fb09b309d28d42ef5de1523077f5&page_id=RVdtU0loTTMrOU5hQXJXSU56QzNBUT09LS1Nb1N5cmdaUFhXRjBPT0dMSWlQSEt3PT0%3D--b54afe92e4bfac5a068c64c66727d4971b87a73d&funnel_step_id=WHdhUjhySnRTK3JQbytHZ0s5OWVYQT09LS1pRGZoTE9ZWEVVRE5oSGg4YnNRYzN3PT0%3D--aa75fab21c2e2fc11a39928c24330057dff05eb5&user_id=akV2WTk3V29ET2t1bXU4QXFhcUVPQT09LS1EYWY3QnVuSTRzak8zbnFES1gxSEx3PT0%3D--ee8adc49632319ede3bcc30eb09e35380bf53b86&account_id=a1pIV2NsZktFcXh2RVJhdXhPcmc4dz09LS03Q1FqbzBoanFzRFVueWo4UE1DVllnPT0%3D--2c71e4cabd2cde4bc9df9431e32704f98c76f555&page_code=NTY5MDc1Mjk%3D&mode_id=1&time_zone=UTC&app_domain=app.clickfunnels.com&aff_sub2=&aff_sub3=&aff_sub=&affiliate_id=&cf_affiliate_id=&content=&medium=&name=&source=&term=&client_width=1268&type=Userevents::UniquePageviewsCreatedSummary&nonce=a8db7da7-5463-4612-9c7c-72fbac7ec844&url=https%3A%2F%2Fus-septifix.com%2Fbuy-septifix HTTP/1.1
Host: app.clickfunnels.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://us-septifix.com
Connection: keep-alive
Referer: https://us-septifix.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site

HTTP/2 202 Accepted
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: text/html
cf-ray: 767a5e451c0e0afe-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: BYPASS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
pragma: no-cache
status: 202 Accepted
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: 7bee567f925f74d3bd0152c10890391c
x-runtime: 0.035395
set-cookie: __cf_bm=YyK7p_wr6C_mNOlAMKEv.6xSbUTCfjIfocZ6hre0l1I-1668036962-0-AXtiShKT9bQDz5Xjw6+qCipXbyl/nGyAgmEaYsWcG9iVhdpBRxoryD3XJZL0H0aIxI4UteNq9q25+mj9Q/J92fgQ6jF4pd7ITmCkgfrq8zm3; path=/; expires=Thu, 10-Nov-22 00:06:02 GMT; domain=.clickfunnels.com; HttpOnly; Secure; SameSite=None
server: cloudflare
X-Firefox-Spdy: h2

us-septifix.com/buy-septifix

104.16.14.194

200 OK

0 B

URL HTTP/2
us-septifix.com/buy-septifix
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /buy-septifix HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:01 GMT
content-type: text/html; charset=utf-8
cf-ray: 767a5e3e99e51bfe-OSL
access-control-allow-origin: *
cache-control: max-age=60, public, s-maxage=600, r-maxage=10
last-modified: Thu, 03 Nov 2022 17:47:35 GMT
strict-transport-security: max-age=0
vary: Accept-Encoding
cf-cache-status: MISS
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
status: 200 OK
x-content-digest: e5dbca68a97791ced1f2a2e0e27588241375c85e
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: stale, valid, store
x-request-id: 81e75307fb285ef51bf80d0084f030dc
x-runtime: 0.558327
set-cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; path=/; expires=Thu, 10-Nov-22 00:06:01 GMT; domain=.us-septifix.com; HttpOnly; Secure; SameSite=None
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

us-septifix.com/images/background.png?_unique=0.7395044207902952&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//us-septifix.com/buy-septifix&_title=Septifix%C2%AE%20%7C%20USA%20OFFICIAL%20SITE&_key=elpo76dj&_page_key=n2t04wah1zhsqdz4&_fid=12552185&_fspos=1&_fvrs=1&_funnel_stat=1&_location=https://us-septifix.com/buy-septifix&_referrer=

104.16.14.194

200 OK

0 B

URL HTTP/2
us-septifix.com/images/background.png?_unique=0.7395044207902952&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//us-septifix.com/buy-septifix&_title=Septifix%C2%AE%20%7C%20USA%20OFFICIAL%20SITE&_key=elpo76dj&_page_key=n2t04wah1zhsqdz4&_fid=12552185&_fspos=1&_fvrs=1&_funnel_stat=1&_location=https://us-septifix.com/buy-septifix&_referrer=
IP
104.16.14.194:0
ASN
#13335 CLOUDFLARENET

File type

Size
0 B (0 bytes)
Hash

Detections

Analyzer	Verdict	Alert
quad9	Sinkholed

HTTP Headers

GET /images/background.png?_unique=0.7395044207902952&_uniqueVisitorID=null&_type=WINDOW&_location=ttps%3A//us-septifix.com/buy-septifix&_title=Septifix%C2%AE%20%7C%20USA%20OFFICIAL%20SITE&_key=elpo76dj&_page_key=n2t04wah1zhsqdz4&_fid=12552185&_fspos=1&_fvrs=1&_funnel_stat=1&_location=https://us-septifix.com/buy-septifix&_referrer= HTTP/1.1
Host: us-septifix.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://us-septifix.com/buy-septifix
Cookie: __cf_bm=eu_3V_F5eV1KSH3q5lerlx8aVQ4fidc8ClQOkbtlrFQ-1668036961-0-AQbTSRHaU7+S6kr6LSvkdatxYOtzrIhYgE3CCuOKE5QPLX1KTSsDDFXXC/K0sVchd1Z2XMkzRqTnrvDVFTSbMRD1NtAInXYc5Xk7MlUJmdV2; cf:aff_sub2=; cf:aff_sub3=; cf:aff_sub=; cf:affiliate_id=; cf:cf_affiliate_id=; cf:content=; cf:medium=; cf:name=; cf:source=; cf:term=; cf:NTY5MDc1Mjk=:visited=true; cf:visitor_id=543e27a2-4365-409b-a46f-412ad0c9196f; addevent_track_cookie=b1bead77-b187-415a-e44e-e7bbce90a9b7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/2 200 OK
date: Wed, 09 Nov 2022 23:36:02 GMT
content-type: text/javascript; charset=utf-8
cf-ray: 767a5e467eb01bfe-OSL
access-control-allow-origin: *
cache-control: no-cache, no-store, private
strict-transport-security: max-age=0
cf-cache-status: DYNAMIC
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Authorization
access-control-allow-methods: GET, PUT, POST, DELETE, PATCH, OPTIONS
access-control-request-method: *
status: 200 OK
x-frame-options: ALLOWALL
x-powered-by: Phusion Passenger Enterprise 6.0.7
x-rack-cache: miss
x-request-id: b7a9c6f4edc5548dd0e3a43b114d358f
x-runtime: 0.020611
vary: Accept-Encoding
server: cloudflare
content-encoding: br
X-Firefox-Spdy: h2

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

JavaScript (20)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP