Report - proxy.latestcache.com/phillyalumnae-dst.org

Report Overview

Visited public
2023-12-05 17:39:29
Tags
URL
proxy.latestcache.com/phillyalumnae-dst.org
Finishing URL
proxy.latestcache.com/phillyalumnae-dst.org
IP / ASN
104.21.36.134
#13335 CLOUDFLARENET
Title
(1) New Message!

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
static.cloudflareinsights.com	1294	2019-08-30	2019-09-24 16:34:56	2023-12-05 08:16:24	477 B	18 kB	104.16.56.101
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12 17:15:41	2023-12-05 11:19:54	1.4 kB	211 kB	45.133.44.10
fonts.googleapis.com	8877	2005-01-25	2013-06-10 22:14:26	2023-12-05 07:37:50	428 B	1.3 kB	142.250.74.74
proxy.latestcache.com	unknown	2023-03-07	2023-03-15 05:29:51	2023-12-04 02:26:21	24 kB	4.1 MB	104.21.36.134
phillyalumnae-dst.org	unknown	unknown	2015-02-06 17:52:56	2023-01-29 02:59:08	485 B	757 kB	192.124.249.7
proftrafficcounter.com	unknown	2023-11-16	2023-11-21 09:55:14	2023-12-04 18:39:56	414 B	428 B	18.184.210.76
friendshipmale.com	unknown	2022-10-21	2022-10-21 14:15:25	2023-12-04 19:07:45	376 B	32 kB	172.64.172.31
curryoxygencheaper.com	unknown	2023-11-28	2023-11-28 10:22:05	2023-12-03 11:33:36	4.7 kB	9.5 kB	192.243.59.13
cdn.barscreative1.com	25648	2021-09-08	2021-09-16 13:14:42	2023-12-04 11:41:21	473 B	1.7 kB	45.133.44.4
stewardfallenailment.com	unknown	2023-07-14	2023-07-14 17:02:18	2023-10-23 10:25:17	420 B	30 kB	173.233.137.44
www.googletagmanager.com	75	2011-11-11	2013-05-22 04:07:37	2023-12-05 06:24:59	399 B	92 kB	142.250.74.104
growledavenuejill.com	unknown	2023-11-28	2023-11-28 15:18:21	2023-12-01 18:56:56	2.8 kB	22 kB	192.243.59.13
cdn.creative-bars1.com	unknown	2022-11-01	2022-11-15 17:46:22	2023-12-04 23:03:56	1.9 kB	88 kB	172.64.108.10
fonts.gstatic.com	unknown	2008-02-11	2014-09-09 02:40:21	2023-12-05 06:14:20	1.1 kB	33 kB	142.250.74.163
unseenreport.com	unknown	2022-03-30	2022-03-30 16:33:17	2023-12-05 07:43:32	730 B	423 B	192.243.59.20

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-05	medium	growledavenuejill.com	Sinkholed
2023-12-05	medium	growledavenuejill.com	Sinkholed
2023-12-05	medium	growledavenuejill.com	Sinkholed
2023-12-05	medium	curryoxygencheaper.com	Sinkholed
2023-12-05	medium	unseenreport.com	Sinkholed
2023-12-05	medium	curryoxygencheaper.com	Sinkholed
2023-12-05	medium	curryoxygencheaper.com	Sinkholed
2023-12-05	medium	curryoxygencheaper.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (29)

	URL	From	Size	First Seen	Last Seen
	proxy.latestcache.com/phillyalumnae-dst.org	ScriptElement	486 B	2023-10-19	2024-08-21
Pretty URL proxy.latestcache.com/phillyalumnae-dst.org IP 104.21.36.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-10-19 14:57 Last Seen2024-08-21 04:06 Times Seen6 Hash c9362ab65e4c0bbabc442d8b5577f5dd 400cb741ae2ba9e8b504fb2af0f2d1ff2c519d96 959a74761ad531a2e0cec26fd219adfef09d6e93395d64c1ca70dcab251a36c1 Loading...

	proxy.latestcache.com/phillyalumnae-dst.org	ScriptElement	97 B	2023-04-11	2025-05-07
Pretty URL proxy.latestcache.com/phillyalumnae-dst.org IP 104.21.36.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-11 19:08 Last Seen2025-05-07 21:35 Times Seen150 Hash b99f746c8fe6679f165ab0d897a68642 5f18ffaab0c0e7f31624873d073bbabef8b7c5a1 231fa4ce5eeb84851500d35fe0913060cad91bd80abb000f01ab0dcc2ef831f2 Loading...

	proxy.latestcache.com/phillyalumnae-dst.org	ScriptElement	38 B	2023-03-07	2025-05-07
Pretty URL proxy.latestcache.com/phillyalumnae-dst.org IP 104.21.36.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:08 Last Seen2025-05-07 21:35 Times Seen193 Hash 14407576c5aa7c9553693a85234cec7c 5cc8468e5d4339c84428c294708708a9e9a81712 1fd67536eafa91c4af0e02f695ca14aedd8ba6e8a5531b61b8505d99f1278625 Loading...

	growledavenuejill.com/73/b3/48/73b34811dd7ce33d1c7a42a1ebf30880.js	ScriptElement	43 kB	2023-12-05	2023-12-05
Pretty URL growledavenuejill.com/73/b3/48/73b34811dd7ce33d1c7a42a1ebf30880.js IP 192.243.59.13 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 18:39 Last Seen2023-12-05 18:39 Times Seen1 Hash 8ae4b5ae3c4ffbea67cb6c6a8d193c1c 2c226313fe2207b0a8aad40f9a33a83f555e8a69 84be9f900ceee01afeba48bc105e9944728e6302e6736d47da9993deec97f834 Loading...

	friendshipmale.com/sfp.js	ScriptElement	86 kB	2023-11-23	2024-08-20
Pretty URL friendshipmale.com/sfp.js IP 172.64.172.31 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-23 18:35 Last Seen2024-08-20 18:08 Times Seen6307 Hash 924e967bca1d599992556a8d139b1c5a 222b09dbf164ddc03d39100fd0524a22018d28b2 ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95 Loading...

	proxy.latestcache.com/cdn-cgi/challenge-platform/scripts/jsd/main.js	ScriptElement	7.4 kB	2023-12-05	2023-12-05
Pretty URL proxy.latestcache.com/cdn-cgi/challenge-platform/scripts/jsd/main.js IP 104.21.36.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 18:39 Last Seen2023-12-05 18:59 Times Seen2 Hash b809b5f85bfe45b407fb612baf9cc6c3 343f614f90e7e91b3f39d7df9694116107d11cdb 4384b1e4edd6dfb01880d49aa6cee583f567570ca587e696628ce6a8d9edca5e Loading...

	proxy.latestcache.com/phillyalumnae-dst.org	ScriptElement	43 B	2023-03-13	2025-05-07
Pretty URL proxy.latestcache.com/phillyalumnae-dst.org IP 104.21.36.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-13 22:55 Last Seen2025-05-07 21:35 Times Seen193 Hash 7791972de4d65bfcbeb3e34f71e118ce d52e408c9eec6aa899ca765734718f3a2cd69cbc 754cd57b45c907d3c632ec883f860be6c2f916910e5cdca880f749c845fc2838 Loading...

	proxy.latestcache.com/phillyalumnae-dst.org/wp-content/plugins/tenweb-speed-optimizer/includes/external/js/vanilla-lazyload/lazyload.min.js	ScriptElement	8.9 kB	2023-03-07	2025-05-11
Pretty URL proxy.latestcache.com/phillyalumnae-dst.org/wp-content/plugins/tenweb-speed-optimizer/includes/external/js/vanilla-lazyload/lazyload.min.js IP 104.21.36.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:19 Last Seen2025-05-11 10:37 Times Seen18621 Hash fb15a10a641a318f91e7e912e4f9c184 bd41f67233facb96976ed7b8e7207d52c03d340e f40767552e5e94b2d5f9a65d7f640cfa7d225298023dbd682095e040809a3d1a Loading...

	proxy.latestcache.com/phillyalumnae-dst.org	ScriptElement	22 kB	2024-08-20	2024-08-20
Pretty URL proxy.latestcache.com/phillyalumnae-dst.org IP 104.21.36.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:39 Last Seen2024-08-20 16:39 Times Seen1 Hash 55a6180b5b6a7e09dde8af81e78f65c4 f384baa133d049c5b4207977767394054505c96b ae3cbb419d1e29a7c836d1c7db0d89733743bc201850e66f7bb962a3dad94cfb Loading...

	www.googletagmanager.com/gtag/js?id=G-H55MMD7MCD	ScriptElement	274 kB	2023-12-05	2023-12-05
Pretty URL www.googletagmanager.com/gtag/js?id=G-H55MMD7MCD IP 142.250.74.104 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 18:39 Last Seen2023-12-05 18:39 Times Seen1 Hash f41aba97eed6269bac7e5e8ed5a110c0 c54cf8ff4dffdece4b80be575be2a474652cbef4 a1f5def67c1508025217eed9629856f8092fcbae927ab0598570bcef2ce39262 Loading...

	proxy.latestcache.com/phillyalumnae-dst.org	ScriptElement	964 B	2024-08-20	2024-08-20
Pretty URL proxy.latestcache.com/phillyalumnae-dst.org IP 104.21.36.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:39 Last Seen2024-08-20 16:39 Times Seen1 Hash ba8ad1e4dcdf5907e65dc2d037fefa90 c460b894702987473f46ee77d8627fde70a385b4 5300d8b86c8c254073cce6dc1f9e935565551f4bff97386a8988795424ebdbe0 Loading...

	unknown	ScriptElement	601 B	2023-06-26	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-26 20:53 Last Seen2024-08-21 08:05 Times Seen9 Hash a206ade2dc18d65a9a6868012afa6e7b de3aa496511a12b0e3b98f6b2b1b23bce06b164d 8065d77769691f0c2af7b0606a1c1b28bd50eb3e6a4aff229d7ab4c007f36a49 Loading...

	proxy.latestcache.com/phillyalumnae-dst.org	ScriptElement	1.9 kB	2023-06-16	2025-05-07
Pretty URL proxy.latestcache.com/phillyalumnae-dst.org IP 104.21.36.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-16 09:16 Last Seen2025-05-07 21:35 Times Seen176 Hash 1d83a07049dbd1df980ddcd2da64d280 330bffc779808457a3532d7c41917b198edf6f90 be3bc12f40d71dd88d9bda6fbdf1473deb1e6ada6259bbb1716c5b352a5438f5 Loading...

	proxy.latestcache.com/cdn-cgi/apps/body/0u8bev7r7LyK2fjruYWKC6_8D8A.js	ScriptElement	3.7 kB	2023-03-26	2024-08-21
Pretty URL proxy.latestcache.com/cdn-cgi/apps/body/0u8bev7r7LyK2fjruYWKC6_8D8A.js IP 104.21.36.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 06:58 Last Seen2024-08-21 08:32 Times Seen6 Hash 47e471b950bdb80d663fdc8c637961d6 6b7abd66fcf0ef7f6aa60ebc68716c5aa9811b78 23bf82350c62d88b7effb31bdd9bef908a05424a45c13a68f01430da6183c732 Loading...

	stewardfallenailment.com/4439e3c279bee065536d153688548a10/invoke.js	ScriptElement	30 kB	2023-12-05	2023-12-05
Pretty URL stewardfallenailment.com/4439e3c279bee065536d153688548a10/invoke.js IP 173.233.137.44 ASN #7979 SERVERS-COM Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-05 18:39 Last Seen2023-12-05 18:39 Times Seen1 Hash 97041ae7b7670e960dbdffd24a01070c 28fd4a353c0f491e65c0bc0edad89ba4d6bdd004 949d5b88901a276529688269e8258af7ccbe008af8be7f8d8449ad8f25433efd Loading...

	proxy.latestcache.com/phillyalumnae-dst.org	ScriptElement	225 B	2023-06-16	2025-05-07
Pretty URL proxy.latestcache.com/phillyalumnae-dst.org IP 104.21.36.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-16 09:16 Last Seen2025-05-07 21:35 Times Seen168 Hash 59a72a1c0e2a2f6a3d786f009a0ca490 040abb30b74676c6c36044069da0b671d0019bf0 02d3ba8c2ed055aead3002bff0e97e5b3d01b22ba72027def08c55cc82f1c2eb Loading...

	unknown	ScriptElement	247 B	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 16:39 Last Seen2024-08-20 16:39 Times Seen1 Hash 56ce2423d111813ddf1b803076f328dc c5f1a9e429f6ace19779d0280bd9d67ddbc1f414 d2d5f32578767fd2f2517820e2e28676270090d5551deeaf4f502dc22aba852f Loading...

	proxy.latestcache.com/phillyalumnae-dst.org	ScriptElement	740 B	2023-06-16	2025-05-07
Pretty URL proxy.latestcache.com/phillyalumnae-dst.org IP 104.21.36.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-06-16 09:16 Last Seen2025-05-07 21:35 Times Seen177 Hash c1f0ea332b8da1564bcbbedd14e10f01 e6119754a951dafa0451743a4c915207b451d2e6 5ba47f0246802374db0c51d9a8a40e9b450c211ac425bcd1079d60ab62cc691b Loading...

	proxy.latestcache.com/phillyalumnae-dst.org	ScriptElement	10 B	2023-03-07	2025-05-07
Pretty URL proxy.latestcache.com/phillyalumnae-dst.org IP 104.21.36.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-07 12:04 Last Seen2025-05-07 21:35 Times Seen278 Hash 11c9683e85b677e3c9e1ba3de28166e2 5748cab81ad1bd91fc8cac2735c3c4efac183e75 97c9360271e4b5c4b2cacdb8f9f3155de26c8697c9426acbd2b941a5af380216 Loading...

	proxy.latestcache.com/phillyalumnae-dst.org	ScriptElement	7.3 kB	2024-08-20	2024-08-20
Pretty URL proxy.latestcache.com/phillyalumnae-dst.org IP 104.21.36.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2024-08-20 16:39 Last Seen2024-08-20 16:39 Times Seen1 Hash e7e2903132fa9e453ec8bef569ef5105 ad34c77097ac65f268c7bdb1d31871d4eb83598b 72af656b1d54102393fd99e5cb2aac5b82e30b287491a1a0368e0ff594c80533 Loading...

	static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317	ScriptElement	20 kB	2023-10-13	2025-05-09
Pretty URL static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 IP 104.16.56.101 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-10-13 06:51 Last Seen2025-05-09 13:23 Times Seen17152 Hash dd1d068fdb5fe90b6c05a5b3940e088c 0d96f9df8772633a9df4c81cf323a4ef8998ba59 6153d13804862b0fc1c016cf1129f34cb7c6185f2cf4bf1a3a862eecdab50101 Loading...

	unknown	ScriptElement	196 B	2023-12-04	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 17:54 Last Seen2024-08-20 16:48 Times Seen3 Hash b32ef00c12cea2b01b5dd10939164a4b 8b8a5250f67899702a2c7b78d8172a25aec29f52 70ea3339c0bd2417438e75019358dbe1602527a400c083cfddabd5ee2e3fc53e Loading...

	proxy.latestcache.com/cdn-cgi/apps/head/q6VigkzHh5xGbmd0GX6edfKnNmE.js	ScriptElement	9.7 kB	2023-03-26	2024-08-21
Pretty URL proxy.latestcache.com/cdn-cgi/apps/head/q6VigkzHh5xGbmd0GX6edfKnNmE.js IP 104.21.36.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-26 06:58 Last Seen2024-08-21 08:32 Times Seen5 Hash 34cd0418f533aaab670da51c20764068 aa248185d4fb459cdf50491227664c6022294ffe 0ae46cdd253c4a84de426e86e1e1548794e230a5880dbedaac7b73064571f3b5 Loading...

	proxy.latestcache.com/phillyalumnae-dst.org	ScriptElement	2.0 kB	2023-07-17	2025-05-07
Pretty URL proxy.latestcache.com/phillyalumnae-dst.org IP 104.21.36.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-07-17 04:40 Last Seen2025-05-07 21:35 Times Seen114 Hash 809f10d1b95e48acb495ae8516f78d57 bfa6f71f1b7bb7825a68b5d8eba25153729b5fef 164de3e904aa4ae5c666a6df33566a21ad94b29933a34a92c2cc41d26be28ef7 Loading...

	proxy.latestcache.com/phillyalumnae-dst.org	ScriptElement	1.9 kB	2023-05-24	2024-12-02
Pretty URL proxy.latestcache.com/phillyalumnae-dst.org IP 104.21.36.134 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-05-24 16:24 Last Seen2024-12-02 23:07 Times Seen49 Hash 25b620c9a7752a33a6cec5f8c6445c91 f5f60a45ebddd6be95d512b54752bc8b94ba4ef0 a4efec1fde3e29d29b5d99971eaec7f8dd1baa64110fe869be345fcc80894d28 Loading...

	unknown	ScriptElement	145 B	2023-06-26	2024-08-21
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-06-26 20:53 Last Seen2024-08-21 08:05 Times Seen14 Hash 384a783e9c3d2a7a127b69dbc82cb4c7 a377a352352067eb2ffc11802af9ecd8559a2a29 e5e7b8249df8e7bf034a30add63c3a25bda6757a6063eae9d9c72c6264b69dd9 Loading...

	unknown	ScriptElement	3.3 kB	2024-08-20	2024-08-20
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2024-08-20 16:39 Last Seen2024-08-20 16:39 Times Seen1 Hash 18fa6ff8885bb95580859af7a712ed9f 935796ee3f2f011531162fc0937987a0cdc1a62f fcc7acd2e64a01201c83d7de9d6ad45bb1eb297776be3521a7c575df70f721f9 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 5a2ccb72a10965062b22c11361687714	2.1 kB	2024-08-20 16:39	2024-08-20 16:39
Pretty Observations First Seen2024-08-20 16:39 Last Seen2024-08-20 16:39 Times Seen1 Hash 5a2ccb72a10965062b22c11361687714 a2e06ad388b07fcaab7548e7af53ba035a1d43e0 92e9617a3f5bad99c1a57387b948683bc7e999dfd25234ebd5acdd1ae128a59e Loading...

		Size	First Seen	Last Seen
	#1 Write - 4d95a6912cc9529f5bf7c5f164611766	122 B	2023-12-04 17:53	2024-08-20 16:48
Pretty Observations First Seen2023-12-04 17:53 Last Seen2024-08-20 16:48 Times Seen6 Hash 4d95a6912cc9529f5bf7c5f164611766 61a29885b7744adb5c144632e943f847d7ee8a9b e5e09b1a990c640dbf1d289381585b2052b9d372dd06804cfb4931cb1ca0c571 Loading...

HTTP Transactions (61)

URL IP Response Size

www.googletagmanager.com/gtag/js?id=G-H55MMD7MCD

142.250.74.104

200 OK

92 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=G-H55MMD7MCD
IP
142.250.74.104:443
ASN
#15169 GOOGLE

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (4179)
Size
92 kB (91626 bytes)
Hash
f41aba97eed6269bac7e5e8ed5a110c0
c54cf8ff4dffdece4b80be575be2a474652cbef4
a1f5def67c1508025217eed9629856f8092fcbae927ab0598570bcef2ce39262

HTTP Headers

GET /gtag/js?id=G-H55MMD7MCD HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 05 Dec 2023 17:39:10 GMT
expires: Tue, 05 Dec 2023 17:39:10 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 91626
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20791%201024%22%3E%3C/svg%3E

104.21.36.134

2.5 kB

URL
proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20791%201024%22%3E%3C/svg%3E
IP
104.21.36.134:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1481)
Size
2.5 kB (2524 bytes)
Hash
ed291c2cc0ee5c476ab0174d024092ed
9ce05ac6465aae95f43bac1fbc65dcf41497e272
a5412176710cf339b85e530e7a9ccbcebcf3e2d3a9ba8e01437e8bf2787f3907

HTTP Headers

GET /phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20791%201024%22%3E%3C/svg%3E HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 403 Forbidden
date: Tue, 05 Dec 2023 17:39:10 GMT
content-type: text/html; charset=utf-8
cross-origin-opener-policy: same-origin
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5VUB%2BxwfjGfbsNuHLR28qIF%2Bb4ySm0eFAWatG7C6JmTIR3DZ2dku4DKv%2BHMhHPhRNSSgFecXIDs52PGvOCEKthtUg7B021GDmR1Pl0FlINkm%2FGALC1RQpFujVFBOM21IZkX4q%2F%2BHY5Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830e11252921b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317

104.16.56.101

200 OK

18 kB

URL GET HTTP/2
static.cloudflareinsights.com/beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317
IP
104.16.56.101:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint89:79:35:ED:04:A2:CA:50:F7:9A:B8:FE:DF:A5:0C:B1:F2:E6:DD:E8
ValidityMon, 10 Apr 2023 00:00:00 GMT - Tue, 09 Apr 2024 23:59:59 GMT

File type
ASCII text, with very long lines (49627), with no line terminators
Size
18 kB (17796 bytes)
Hash
ebf0c0dbdc72257afade8f4e40bf7777
ca0105d95f492441a28e8b36ded688bbf8ba6229
dfdefc2a2955d85aec5aa5c73ceae3856905555498bfb47f7abfa5bcde193c3c

HTTP Headers

GET /beacon.min.js/v84a3a4012de94ce1a686ba8c167c359c1696973893317 HTTP/1.1
Host: static.cloudflareinsights.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://proxy.latestcache.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:39:10 GMT
content-type: text/javascript;charset=UTF-8
access-control-allow-origin: *
cache-control: public, max-age=86400
etag: W/"2023.10.0"
last-modified: Tue, 10 Oct 2023 21:38:13 GMT
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e11253bfc56c3-OSL
content-encoding: gzip
X-Firefox-Spdy: h2

proftrafficcounter.com/stats

18.184.210.76

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.184.210.76:443
ASN
#16509 AMAZON-02

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
7a34b663ce47007163b162d3f43ad32f
c854f1480e034ba09b73c16e3afd6ca374949254
10b8e1a8968e2c885ba1409f2bdd18a1a439c81da36f2fe7ad07ba4eb501a8ae

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://proxy.latestcache.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:39:11 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://proxy.latestcache.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=e19b4d44-822c-473f-aad3-8726f5b1b101:2:1; expires=Fri, 02 Dec 2033 17:39:11 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

proxy.latestcache.com/fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

104.21.36.134

200 OK

31 kB

URL GET HTTP/3
proxy.latestcache.com/fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:39:11 GMT
content-type: font/woff2
content-length: 30928
cache-control: max-age=315360000
cross-origin-opener-policy: same-origin
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
x-proxy-cache: MISS
cf-cache-status: MISS
last-modified: Tue, 05 Dec 2023 17:39:11 GMT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=uEgme0%2BRXVQwslN9FcNfs400mlWaEJEpJkkLvVgLIqxcKyWb%2F5DZFMs53%2BZZITp51v1G5lQSq6wLNVXqhIreBTmhmfCCUpXpqVU7k2tDThuj%2BSfbMjCsA9CZJF9c19KkGHCCejjxPrU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e112cad53b500-OSL
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

104.21.36.134

200 OK

31 kB

URL GET HTTP/3
proxy.latestcache.com/fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:39:12 GMT
content-type: font/woff2
content-length: 30928
cache-control: max-age=315360000
cross-origin-opener-policy: same-origin
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
x-proxy-cache: MISS
cf-cache-status: HIT
age: 1
last-modified: Tue, 05 Dec 2023 17:39:11 GMT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LzoRvJgqCQTtNvpr7DxEAP4lvyseKUY6GrUZi37mRBB%2F6N8os5FeVEcx6bkgtmGrkZ204FJdp4t25ZrCxCBinCUFhgGvtxRDushUAuWRGzwAtcvL4nzligpAI6MlbwU2x%2FNmhgcNmRY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e112ceda5b500-OSL
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

104.21.36.134

200 OK

31 kB

URL GET HTTP/3
proxy.latestcache.com/fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:39:12 GMT
content-type: font/woff2
content-length: 30928
cache-control: max-age=315360000
cross-origin-opener-policy: same-origin
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
x-proxy-cache: MISS
cf-cache-status: HIT
age: 1
last-modified: Tue, 05 Dec 2023 17:39:11 GMT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ar6Rvl7IVyzCVB5WALFae74%2FXiOmxEZ0KXG3N8M4pLI%2F0HdtFN%2FhkwrATQhFn1DvoVLQQJFPWE5m6hD2jVOVIobRFWwH4aFqrYzjyGHRRRtWNWAhF3phm5H06U%2FBA%2FrQ6EIz3Uw7xkg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e112ceda7b500-OSL
alt-svc: h3=":443"; ma=86400

phillyalumnae-dst.org/wp-content/uploads/2023/10/Copy-of-2023-PAC-3-for-me-Flyer-Cheryl-Boddy-Oakman-791x1024.png

192.124.249.7

200 OK

757 kB

URL GET HTTP/2
phillyalumnae-dst.org/wp-content/uploads/2023/10/Copy-of-2023-PAC-3-for-me-Flyer-Cheryl-Boddy-Oakman-791x1024.png
IP
192.124.249.7:443
ASN
#30148 SUCURI-SEC

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoDaddy.com, Inc.
Subjectphillyalumnae-dst.org
Fingerprint26:B7:49:9F:A8:8E:67:D5:5F:2A:6A:31:9C:EE:3B:3D:85:CE:78:EF
ValidityMon, 03 Jul 2023 08:02:58 GMT - Wed, 03 Jul 2024 08:02:58 GMT

File type
PNG image data, 791 x 1024, 8-bit/color RGBA, non-interlaced\012- data
Size
757 kB (756759 bytes)
Hash
2c7e8538ec9b26b2b74c82ad9d5270a4
3fe126ea2e6b0ba332fb5b53f94f5269bb3be39f
444d3b72c32f6380c698634e49849d5be2c1ac88b81c3ecbcbdefdc6f181a0b0

HTTP Headers

GET /wp-content/uploads/2023/10/Copy-of-2023-PAC-3-for-me-Flyer-Cheryl-Boddy-Oakman-791x1024.png HTTP/1.1
Host: phillyalumnae-dst.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Tue, 05 Dec 2023 17:39:11 GMT
content-type: image/png
content-length: 756759
x-sucuri-id: 19007
x-xss-protection: 1; mode=block
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: upgrade-insecure-requests;, upgrade-insecure-requests;
last-modified: Sun, 29 Oct 2023 14:35:27 GMT
etag: "720ba5-b8c17-608dbd52a1298"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: max-age=315360000
x-sucuri-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

proxy.latestcache.com/fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2

104.21.36.134

200 OK

31 kB

URL GET HTTP/3
proxy.latestcache.com/fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
Web Open Font Format (Version 2), TrueType, length 30928, version 1.0\012- data
Size
31 kB (30928 bytes)
Hash
ac0d2859ea5f8fd6bcb3c305c08ec184
7f6c17e3e592cd8bd346b9cc261d8dd961b8aef7
ae919a7c9f25f0fd97fc18e398ae8e453fcaae487e4a4cb4f896e7fecde4a780

HTTP Headers

GET /fonts.gstatic.com/s/montserrat/v25/JTUSjIg1_i6t8kCHKm459Wlhyw.woff2 HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:39:12 GMT
content-type: font/woff2
content-length: 30928
cache-control: max-age=315360000
cross-origin-opener-policy: same-origin
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
x-proxy-cache: MISS
cf-cache-status: HIT
age: 1
last-modified: Tue, 05 Dec 2023 17:39:11 GMT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=yUpU%2Bt1Le0kTewFM6rFKifGVZub0qZvJmI7D6rEAW1kBu1vSSMAq4uirjd8CiWDYILq6rxOuGrlIHpFXmznL3ijZSIS5Jc7aGZZhgPsrmacFpsBsilC%2BfqfnD%2BcVWa7bDaV%2FU0cHJmU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e112cfdcdb500-OSL
alt-svc: h3=":443"; ma=86400

192.243.59.13

307 Temporary Redirect

0 B

URL GET HTTP/1.1
growledavenuejill.com/watch.1051496064541.js?key=4439e3c279bee065536d153688548a10&kw=%5B%5D&refer=https%3A%2F%2Fproxy.latestcache.com%2Fphillyalumnae-dst.org&tz=0&dev=e&res=14.3095&uuid=e19b4d44-822c-473f-aad3-8726f5b1b101%3A2%3A1
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerLet's Encrypt
Subjectgrowledavenuejill.com
Fingerprint50:97:C7:CA:37:99:93:62:32:18:B9:E4:22:54:6D:32:09:B4:97:72
ValidityTue, 28 Nov 2023 10:58:45 GMT - Mon, 26 Feb 2024 10:58:44 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1051496064541.js?key=4439e3c279bee065536d153688548a10&kw=%5B%5D&refer=https%3A%2F%2Fproxy.latestcache.com%2Fphillyalumnae-dst.org&tz=0&dev=e&res=14.3095&uuid=e19b4d44-822c-473f-aad3-8726f5b1b101%3A2%3A1 HTTP/1.1
Host: growledavenuejill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://proxy.latestcache.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Tue, 05 Dec 2023 17:39:12 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://proxy.latestcache.com
Access-Control-Allow-Origin: https://proxy.latestcache.com
Access-Control-Allow-Credentials: true
Location: https://growledavenuejill.com/watch.1051496064541.js?key=4439e3c279bee065536d153688548a10&kw=%5B%5D&refer=https%3A%2F%2Fproxy.latestcache.com%2Fphillyalumnae-dst.org&tz=0&dev=e&res=14.3095&uuid=e19b4d44-822c-473f-aad3-8726f5b1b101%3A2%3A1&shu=f1ddf9505ced096e4aefee7685e7725bc1e9f26899d0e03da80c7de3d0cb702f472014cf80fd6ac507144ea2f979ad3b5f61391623b1d5bd703fd87e07a4e59bf02f0d0a1542cbef36dba0ca68468862b92b0e1837b01fd61c63bf22cffd42&pst=1701798012&rmtc=t
Set-Cookie: u_pl=18375056; expires=Wed, 06 Dec 2023 17:39:12 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.uC2KllVAb1tlckYsaenuKASaPFJeUtvcm4-0VGGEbEM; expires=Tue, 05 Dec 2023 17:40:12 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 344f76ab67288656f3fefb8487a00ce0
Strict-Transport-Security: max-age=0; includeSubdomains

growledavenuejill.com/73/b3/48/73b34811dd7ce33d1c7a42a1ebf30880.js

192.243.59.13

200 OK

15 kB

URL GET HTTP/1.1
growledavenuejill.com/73/b3/48/73b34811dd7ce33d1c7a42a1ebf30880.js
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerLet's Encrypt
Subjectgrowledavenuejill.com
Fingerprint50:97:C7:CA:37:99:93:62:32:18:B9:E4:22:54:6D:32:09:B4:97:72
ValidityTue, 28 Nov 2023 10:58:45 GMT - Mon, 26 Feb 2024 10:58:44 GMT

File type
ASCII text, with very long lines (42798), with no line terminators
Size
15 kB (15429 bytes)
Hash
8ae4b5ae3c4ffbea67cb6c6a8d193c1c
2c226313fe2207b0a8aad40f9a33a83f555e8a69
84be9f900ceee01afeba48bc105e9944728e6302e6736d47da9993deec97f834

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /73/b3/48/73b34811dd7ce33d1c7a42a1ebf30880.js HTTP/1.1
Host: growledavenuejill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 05 Dec 2023 17:39:12 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 814755484f19878a94a926040db46bf8
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

growledavenuejill.com/watch.1051496064541.js?key=4439e3c279bee065536d153688548a10&kw=%5B%5D&refer=https%3A%2F%2Fproxy.latestcache.com%2Fphillyalumnae-dst.org&tz=0&dev=e&res=14.3095&uuid=e19b4d44-822c-473f-aad3-8726f5b1b101%3A2%3A1&shu=f1ddf9505ced096e4aefee7685e7725bc1e9f26899d0e03da80c7de3d0cb702f472014cf80fd6ac507144ea2f979ad3b5f61391623b1d5bd703fd87e07a4e59bf02f0d0a1542cbef36dba0ca68468862b92b0e1837b01fd61c63bf22cffd42&pst=1701798012&rmtc=t

192.243.59.13

200 OK

2.1 kB

URL GET HTTP/1.1
growledavenuejill.com/watch.1051496064541.js?key=4439e3c279bee065536d153688548a10&kw=%5B%5D&refer=https%3A%2F%2Fproxy.latestcache.com%2Fphillyalumnae-dst.org&tz=0&dev=e&res=14.3095&uuid=e19b4d44-822c-473f-aad3-8726f5b1b101%3A2%3A1&shu=f1ddf9505ced096e4aefee7685e7725bc1e9f26899d0e03da80c7de3d0cb702f472014cf80fd6ac507144ea2f979ad3b5f61391623b1d5bd703fd87e07a4e59bf02f0d0a1542cbef36dba0ca68468862b92b0e1837b01fd61c63bf22cffd42&pst=1701798012&rmtc=t
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerLet's Encrypt
Subjectgrowledavenuejill.com
Fingerprint50:97:C7:CA:37:99:93:62:32:18:B9:E4:22:54:6D:32:09:B4:97:72
ValidityTue, 28 Nov 2023 10:58:45 GMT - Mon, 26 Feb 2024 10:58:44 GMT

File type
HTML document text\012- HTML document, ASCII text, with very long lines (2647)
Size
2.1 kB (2106 bytes)
Hash
6a5c34a04d8baf1f804684dc8576cf5d
f0fd25bb95f783b24716d570e211a4fe0e0c3b6e
16da5925c1f6e675bfac4ee67147f9763e1eac762206fa6c5b1b1a8533f0b1de

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1051496064541.js?key=4439e3c279bee065536d153688548a10&kw=%5B%5D&refer=https%3A%2F%2Fproxy.latestcache.com%2Fphillyalumnae-dst.org&tz=0&dev=e&res=14.3095&uuid=e19b4d44-822c-473f-aad3-8726f5b1b101%3A2%3A1&shu=f1ddf9505ced096e4aefee7685e7725bc1e9f26899d0e03da80c7de3d0cb702f472014cf80fd6ac507144ea2f979ad3b5f61391623b1d5bd703fd87e07a4e59bf02f0d0a1542cbef36dba0ca68468862b92b0e1837b01fd61c63bf22cffd42&pst=1701798012&rmtc=t HTTP/1.1
Host: growledavenuejill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://proxy.latestcache.com
DNT: 1
Connection: keep-alive
Cookie: u_pl=18375056; ain=eyJhbGciOiJIUzI1NiJ9.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.uC2KllVAb1tlckYsaenuKASaPFJeUtvcm4-0VGGEbEM
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 05 Dec 2023 17:39:12 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://proxy.latestcache.com
Access-Control-Allow-Origin: https://proxy.latestcache.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=e19b4d44-822c-473f-aad3-8726f5b1b101:2:1; expires=Tue, 12 Dec 2023 17:39:12 GMT; secure; SameSite=None
iprc657c55d96ede444e92e0765293b4c9d6=3569808; expires=Tue, 05 Dec 2023 21:39:12 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 06 Dec 2023 17:39:12 GMT; secure; SameSite=None
uncs=1; expires=Wed, 06 Dec 2023 17:39:12 GMT; secure; SameSite=None
pdhtkv23=true; expires=Wed, 06 Dec 2023 17:39:12 GMT; secure; SameSite=None
uncs23=1; expires=Wed, 06 Dec 2023 17:39:12 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 0ae304290807c2b0869bbb7eb23eed7d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20806%201024%22%3E%3C/svg%3E

104.21.36.134

24 kB

URL
proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20806%201024%22%3E%3C/svg%3E
IP
104.21.36.134:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1481)
Size
24 kB (24510 bytes)
Hash
5e41fcacf80e59ca7aeba6d7e33b4fef
d685e547e093f614e5626aa55be9fa8cd53207ba
e2e40410121653a1c9d8e84d78ce47d4ebf8d617232264b535b2238d14f9bda5

HTTP Headers

GET /phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20806%201024%22%3E%3C/svg%3E HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 403 Forbidden
date: Tue, 05 Dec 2023 17:39:10 GMT
content-type: text/html; charset=utf-8
cross-origin-opener-policy: same-origin
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZQrI5w%2BJKYZaGxSuOwwLlCIU96qg1Lhj%2FtysXtteT7jaOrTdazZ210iLmPbkGZgnAULHzD0iBX5ibLTRPBY6fJqlsX9P6Xne2URpf4uhRw69kDhcMnPPhaO7DHmNAAHz0hsB6J4g24k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830e11252924b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.cloudimagesb.com/cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png

45.133.44.10

200 OK

106 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
PNG image data, 728 x 90, 8-bit/color RGBA, non-interlaced\012- data
Size
106 kB (105910 bytes)
Hash
a36b92bb68d9b579458560ba9b94862a
782d2932ccd3a56e5aad1cca7e6e7fb4a3cf23d6
9de12cf85ad80cae34d8bdaeb59169d75e3bd4f8b931ec90ea2c3be166647c0e

HTTP Headers

GET /cti/5c/10/b0/5c10b0b28e7a0e9d7e61bd8d09bee3db/1658920078.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:39:12 GMT
content-type: image/png
content-length: 105910
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 11:08:06 GMT
etag: "62e11c96-19db6"
expires: Thu, 07 Dec 2023 17:39:12 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

proxy.latestcache.com/phillyalumnae-dst.org/wp-content/themes/fluida/resources/fonts/elusive.woff

104.21.36.134

200 OK

15 kB

URL GET HTTP/3
proxy.latestcache.com/phillyalumnae-dst.org/wp-content/themes/fluida/resources/fonts/elusive.woff
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
Web Open Font Format, TrueType, length 14740, version 1.0\012- data
Size
15 kB (14740 bytes)
Hash
4af5bc564780a95541ce26e843d9860a
01801dd84676bd6a2d166108a3327a1d21ecced6
91138f3b30a796e5e5cd696f1271356a17e416782e22e05a3c31577e624d1549

HTTP Headers

GET /phillyalumnae-dst.org/wp-content/themes/fluida/resources/fonts/elusive.woff HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:39:12 GMT
content-type: font/woff
content-length: 14740
cache-control: max-age=315360000
cross-origin-opener-policy: same-origin
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
x-proxy-cache: MISS
cf-cache-status: MISS
last-modified: Tue, 05 Dec 2023 17:39:12 GMT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IL%2FVT5iCBw6KxoAY%2FpVJUBTP3vbRynhJjUioPCVpDmodbByRftSWYqTfapZxPMK1041OVn4rbX1nk5adqwiz31911T7c%2BYOmhuD3fvap7%2BvDtEQHr4tn0RwCbtwCecsAFpwWd5j2zYg%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e112ccd7eb500-OSL
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/phillyalumnae-dst.org/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2

104.21.36.134

200 OK

78 kB

URL GET HTTP/3
proxy.latestcache.com/phillyalumnae-dst.org/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
Web Open Font Format (Version 2), TrueType, length 78196, version 331.-31261\012- data
Size
78 kB (78196 bytes)
Hash
e8a427e15cc502bef99cfd722b37ea98
a9922842a120a7f1eaced667480c5e185a106d69
d0b4256abed72481585662971262eabee345c19f837af00d7ce24239d3b40eef

HTTP Headers

GET /phillyalumnae-dst.org/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:39:13 GMT
content-type: font/woff2
content-length: 78196
cache-control: max-age=315360000
cross-origin-opener-policy: same-origin
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
x-proxy-cache: MISS
cf-cache-status: MISS
last-modified: Tue, 05 Dec 2023 17:39:12 GMT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=1RssWkTvWTLVy7der0B0Q%2BAhtg6o3LHnJELTM%2FFIcQGZslZ9dPy3fd2iG3v4Hexh2dkDvjMp%2FCLcZNSP2R5DdQh%2FstLjyGbR2R%2B0C8ATxKdKz3ylXX6xeATrIcWqVJgdrdAb3zjjk6M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e112cfdb9b500-OSL
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/phillyalumnae-dst.org/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2

104.21.36.134

200 OK

77 kB

URL GET HTTP/3
proxy.latestcache.com/phillyalumnae-dst.org/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
Web Open Font Format (Version 2), TrueType, length 76764, version 331.-31261\012- data
Size
77 kB (76764 bytes)
Hash
f7307680c7fe85959f3ecf122493ea7d
fce0da592a3e536d6d5df5b50cb513398d8c5161
43c072c16c9ee6d67acdfa6c6d6685ff1e74eb4237b7cc3c1348ab1c108b26af

HTTP Headers

GET /phillyalumnae-dst.org/wp-content/plugins/elementor/assets/lib/font-awesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:39:13 GMT
content-type: font/woff2
content-length: 76764
cache-control: max-age=315360000
cross-origin-opener-policy: same-origin
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
x-proxy-cache: MISS
cf-cache-status: MISS
last-modified: Tue, 05 Dec 2023 17:39:13 GMT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=xK3hyGFk6sc4vmpxlJjpC%2Bm0nHCxNA9yV6uZZH6GRE1mMD9vlcON9i4Hzj8xFeXnV9djVux1W5FYiUY2g1A%2FwHuy84ygv5VrvqM351hWE66h6PbHnweL%2BwQ5G%2BFs8DwCsNx%2Fq%2BqbC10%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e112cfdc9b500-OSL
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20%20%22%3E%3C/svg%3E

104.21.36.134

181 kB

URL
proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20%20%22%3E%3C/svg%3E
IP
104.21.36.134:0
ASN
#13335 CLOUDFLARENET

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1481)
Size
181 kB (181142 bytes)
Hash
69f6303aa2400ab4ace3350f8fe12787
0ab4e74a35da47b1f0b68cdd3acddd27e21e37f0
7924803d4edad7931457765b6f89254999315c7d0a40801e5ac82e55fbf5dc64

HTTP Headers

GET /phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20%20%22%3E%3C/svg%3E HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 403 Forbidden
date: Tue, 05 Dec 2023 17:39:10 GMT
content-type: text/html; charset=utf-8
cross-origin-opener-policy: same-origin
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FgSzAtXmlQajJr%2F7ZAy2ig5FXKAdO8gVKkGalbn7uvjl60qjuVgfhRc47kFcMoWK%2BPcZHwAc9gZVqA5g5MiYTmgXd1jfpf8rlXCjU8c6v%2BnoEJHYD1a%2BlcYY6w6fviDGbfbAKfIyGNw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830e1125291cb500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/phillyalumnae-dst.org/wp-content/themes/fluida/resources/fonts/blocks.woff

104.21.36.134

200 OK

59 kB

URL GET HTTP/3
proxy.latestcache.com/phillyalumnae-dst.org/wp-content/themes/fluida/resources/fonts/blocks.woff
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
Web Open Font Format, TrueType, length 58936, version 1.0\012- data
Size
59 kB (58936 bytes)
Hash
10b4ceb8fdbbae8657f8f9f30c72a63e
3bc68bf04dffe739d1bfdf94c883c969ed0e7d84
9ea5b3fa87808e126b9a34a0f2ef828422428db992096c3b3a70c53867dd66bf

HTTP Headers

GET /phillyalumnae-dst.org/wp-content/themes/fluida/resources/fonts/blocks.woff HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:39:13 GMT
content-type: font/woff
content-length: 58936
cache-control: max-age=315360000
cross-origin-opener-policy: same-origin
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
x-proxy-cache: MISS
cf-cache-status: MISS
last-modified: Tue, 05 Dec 2023 17:39:13 GMT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=fQBlq5JciVCZVsnXjFDhBH0NDqfvoXzK2eZ8%2FHLky6y7ZZwlhRkvZR9eT%2FcCMEmeCjWK4XtqgVvlQMg4nrMfvgomWjnwU%2BOZwsrtdKf2iBjUSGpDsqPiVbqPFzeFJ81bvqMXmaS9xk0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e112cad54b500-OSL
alt-svc: h3=":443"; ma=86400

friendshipmale.com/sfp.js

172.64.172.31

200 OK

32 kB

URL GET HTTP/2
friendshipmale.com/sfp.js
IP
172.64.172.31:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint08:6F:D8:CB:9E:0C:0A:98:2E:C5:CD:21:8E:0B:76:2B:50:6F:B6:37
ValiditySat, 18 Feb 2023 00:00:00 GMT - Sat, 17 Feb 2024 23:59:59 GMT

File type
Unicode text, UTF-8 text, with very long lines (65529), with no line terminators
Size
32 kB (31463 bytes)
Hash
924e967bca1d599992556a8d139b1c5a
222b09dbf164ddc03d39100fd0524a22018d28b2
ac84c2f8288b59f8e04ba77287ce696052bfeee0d462a566d94dc305df646c95

HTTP Headers

GET /sfp.js HTTP/1.1
Host: friendshipmale.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:39:12 GMT
content-type: application/javascript; charset=utf-8
p3p: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
access-control-allow-origin: *
expires: Thu, 01 Jan 1970 00:00:01 GMT
cache-control: max-age=14400
x-request-id: bfec33b92d47f784a46fe33e81609d5b
strict-transport-security: max-age=0; includeSubdomains
cf-cache-status: EXPIRED
last-modified: Tue, 05 Dec 2023 17:39:12 GMT
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kaV4tnYDK9H3nZYYDVkcgi%2FX2ayj3oMBrVuAlLv5jJP5VUM8rY785fps2u0iuefH46hRkX22y0VAZkpHKmO4M6sd9S9N%2F5Kot%2Fuj3jq6E2D8lscUGQsghEIpRxYVTVAhoMfJQEE%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e11322d97778f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

curryoxygencheaper.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST28cxRfscfLLJadfhIRAAi0ihyDh9fzb7C45hIQQZGFskwT5Svd0z7pxz%2FTQPbOz9gVDJJTjcuM4rrVjAQGRD4CExnBAlixYJJAP8ZcIyg0J7XolwzvMq%2Bl6LVXV6893ihPioaDHq%2B%2FpLakUXWg13caVNZlyXdrG8r2G5zbda401mV4NrzUGk4%2Fpv%2BG5rab7WuMdEW3oBd%2F1XNdzvcZtaUSsBwtTFjJ71PWaXbcZ%2Bk2vFWJg%2FvtvCweWOuD9E3IJko%2F%2Ft%2F7LY8ioRpp8f0vYjVxnr7%2BdFIrm2qDP9z9IN1JdpkjOYGwcxOn%2BbBrajgn5cg463Z85gO7vThyAyTFx%2FvTA0v2ZTLD%2B3qlSpiBSMH4RZb%2BGUDUkrRHp%2B5D8NwJEHMsrSJOHy9qUdPOUpRN2TM4%2FewpZjsn5J88hTb67qeSgcVerIpc6tRjEFeSghuzVyIoD5FsOZHmAKP8Mkh%2BRhWdLSJPdFas0JD%2B%2BLLwuC3kYznd8P5oP20E8TykP5jtt%2F2rcYh7zXG8akZQ1ZFxDiSGonUNhHRTSQRE7KDIHCT9u0FY3dt12zOIg6IRRFAVBFLU6V3mLB2EndlFEEw9D5NkQkRoiMtvIzDY25BCm%2BBF2vYLlc7D5mDjvf4I%2Br1AKgtISlJSglARlTlD2qz2urG%2Brh1zZgnmz7s96UI103tuhezrviZSAmuFOdkL%2BPwnQufLXy9gQx412wIKw43mctyMRBNyL2jT0qSdYHLidjgsrK0g7B2odbMkxeeVygUyOCfnjCIwewKoDRPISaPESaDlq%2By7o%2BijsuNhKv02kMdowutnUpgeuK2T5eeSbzo46IS9MN%2FlmfQEiOrz%2BK5kWIlMhMxU%2Bkj8R9NSD0R1dkt07urTk8UqWy0Ru0cmW7%2BY0F%2Be%2BfldsltrwxVt2%2BNWNaEJM4KN7wuZLNOUy7VnyzU3JuTC3tYkE%2BWHRrgm2Wtj1m4VJi2xp9a3bi0lmhLVSpzXoxFv9MSI5Jhf%2FPpq%2B4FeNgjQ1TFEhKQ7JrCD1AaJsGzY70281gVFnMyxzUBbVyPjs7FDJMfGfPg8lDq%2F%2F%2FOmFy08WXgRlFaz418UzvGMfoGcc0Pw%2B0qRC31ToqwpUDWGLc6M8M4fXfw%2BmBaacEVPG2WXKqC9OA7byuCFasRsL1xcs7rK4TV3ejcMuo11PtFmLesjtWOgPb%2FwDAAD%2F%2FwEAAP%2F%2Fa5%2Bg0Z0EAAA%3D

192.243.59.13

200 OK

7 B

URL GET HTTP/1.1
curryoxygencheaper.com/ren.gif?sid=H4sIAAAAAAAC%2F1RST28cxRfscfLLJadfhIRAAi0ihyDh9fzb7C45hIQQZGFskwT5Svd0z7pxz%2FTQPbOz9gVDJJTjcuM4rrVjAQGRD4CExnBAlixYJJAP8ZcIyg0J7XolwzvMq%2Bl6LVXV6893ihPioaDHq%2B%2FpLakUXWg13caVNZlyXdrG8r2G5zbda401mV4NrzUGk4%2Fpv%2BG5rab7WuMdEW3oBd%2F1XNdzvcZtaUSsBwtTFjJ71PWaXbcZ%2Bk2vFWJg%2FvtvCweWOuD9E3IJko%2F%2Ft%2F7LY8ioRpp8f0vYjVxnr7%2BdFIrm2qDP9z9IN1JdpkjOYGwcxOn%2BbBrajgn5cg463Z85gO7vThyAyTFx%2FvTA0v2ZTLD%2B3qlSpiBSMH4RZb%2BGUDUkrRHp%2B5D8NwJEHMsrSJOHy9qUdPOUpRN2TM4%2FewpZjsn5J88hTb67qeSgcVerIpc6tRjEFeSghuzVyIoD5FsOZHmAKP8Mkh%2BRhWdLSJPdFas0JD%2B%2BLLwuC3kYznd8P5oP20E8TykP5jtt%2F2rcYh7zXG8akZQ1ZFxDiSGonUNhHRTSQRE7KDIHCT9u0FY3dt12zOIg6IRRFAVBFLU6V3mLB2EndlFEEw9D5NkQkRoiMtvIzDY25BCm%2BBF2vYLlc7D5mDjvf4I%2Br1AKgtISlJSglARlTlD2qz2urG%2Brh1zZgnmz7s96UI103tuhezrviZSAmuFOdkL%2BPwnQufLXy9gQx412wIKw43mctyMRBNyL2jT0qSdYHLidjgsrK0g7B2odbMkxeeVygUyOCfnjCIwewKoDRPISaPESaDlq%2By7o%2BijsuNhKv02kMdowutnUpgeuK2T5eeSbzo46IS9MN%2FlmfQEiOrz%2BK5kWIlMhMxU%2Bkj8R9NSD0R1dkt07urTk8UqWy0Ru0cmW7%2BY0F%2Be%2BfldsltrwxVt2%2BNWNaEJM4KN7wuZLNOUy7VnyzU3JuTC3tYkE%2BWHRrgm2Wtj1m4VJi2xp9a3bi0lmhLVSpzXoxFv9MSI5Jhf%2FPpq%2B4FeNgjQ1TFEhKQ7JrCD1AaJsGzY70281gVFnMyxzUBbVyPjs7FDJMfGfPg8lDq%2F%2F%2FOmFy08WXgRlFaz418UzvGMfoGcc0Pw%2B0qRC31ToqwpUDWGLc6M8M4fXfw%2BmBaacEVPG2WXKqC9OA7byuCFasRsL1xcs7rK4TV3ejcMuo11PtFmLesjtWOgPb%2FwDAAD%2F%2FwEAAP%2F%2Fa5%2Bg0Z0EAAA%3D
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerLet's Encrypt
Subjectcurryoxygencheaper.com
FingerprintF2:DD:AF:D4:3D:96:F2:C2:C1:37:D0:07:73:80:BA:7B:02:75:3E:DC
ValidityTue, 28 Nov 2023 08:20:34 GMT - Mon, 26 Feb 2024 08:20:33 GMT

File type
ASCII text, with no line terminators
Size
7 B (7 bytes)
Hash
132d6af1b46048b45cf86cdee7991d31
eb7007d03d59b65bc6da7e098c4d38fc6dfb6285
ab852e838deccd742a03ca81d4a8d75cf1a00b327db3eaf46bd7da6b6db9384c

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /ren.gif?sid=H4sIAAAAAAAC%2F1RST28cxRfscfLLJadfhIRAAi0ihyDh9fzb7C45hIQQZGFskwT5Svd0z7pxz%2FTQPbOz9gVDJJTjcuM4rrVjAQGRD4CExnBAlixYJJAP8ZcIyg0J7XolwzvMq%2Bl6LVXV6893ihPioaDHq%2B%2FpLakUXWg13caVNZlyXdrG8r2G5zbda401mV4NrzUGk4%2Fpv%2BG5rab7WuMdEW3oBd%2F1XNdzvcZtaUSsBwtTFjJ71PWaXbcZ%2Bk2vFWJg%2FvtvCweWOuD9E3IJko%2F%2Ft%2F7LY8ioRpp8f0vYjVxnr7%2BdFIrm2qDP9z9IN1JdpkjOYGwcxOn%2BbBrajgn5cg463Z85gO7vThyAyTFx%2FvTA0v2ZTLD%2B3qlSpiBSMH4RZb%2BGUDUkrRHp%2B5D8NwJEHMsrSJOHy9qUdPOUpRN2TM4%2FewpZjsn5J88hTb67qeSgcVerIpc6tRjEFeSghuzVyIoD5FsOZHmAKP8Mkh%2BRhWdLSJPdFas0JD%2B%2BLLwuC3kYznd8P5oP20E8TykP5jtt%2F2rcYh7zXG8akZQ1ZFxDiSGonUNhHRTSQRE7KDIHCT9u0FY3dt12zOIg6IRRFAVBFLU6V3mLB2EndlFEEw9D5NkQkRoiMtvIzDY25BCm%2BBF2vYLlc7D5mDjvf4I%2Br1AKgtISlJSglARlTlD2qz2urG%2Brh1zZgnmz7s96UI103tuhezrviZSAmuFOdkL%2BPwnQufLXy9gQx412wIKw43mctyMRBNyL2jT0qSdYHLidjgsrK0g7B2odbMkxeeVygUyOCfnjCIwewKoDRPISaPESaDlq%2By7o%2BijsuNhKv02kMdowutnUpgeuK2T5eeSbzo46IS9MN%2FlmfQEiOrz%2BK5kWIlMhMxU%2Bkj8R9NSD0R1dkt07urTk8UqWy0Ru0cmW7%2BY0F%2Be%2BfldsltrwxVt2%2BNWNaEJM4KN7wuZLNOUy7VnyzU3JuTC3tYkE%2BWHRrgm2Wtj1m4VJi2xp9a3bi0lmhLVSpzXoxFv9MSI5Jhf%2FPpq%2B4FeNgjQ1TFEhKQ7JrCD1AaJsGzY70281gVFnMyxzUBbVyPjs7FDJMfGfPg8lDq%2F%2F%2FOmFy08WXgRlFaz418UzvGMfoGcc0Pw%2B0qRC31ToqwpUDWGLc6M8M4fXfw%2BmBaacEVPG2WXKqC9OA7byuCFasRsL1xcs7rK4TV3ejcMuo11PtFmLesjtWOgPb%2FwDAAD%2F%2FwEAAP%2F%2Fa5%2Bg0Z0EAAA%3D HTTP/1.1
Host: curryoxygencheaper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: u_pl=19461150; uid_id2=e19b4d44-822c-473f-aad3-8726f5b1b101:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 05 Dec 2023 17:39:13 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: af5a465dc500e71db262218333a3c5d8
Strict-Transport-Security: max-age=0; includeSubdomains

cdn.cloudimagesb.com/si/05/c8/20/05c820d9ce67af6dea2e5441dbe3e8f9/1683231080.png

45.133.44.10

200 OK

39 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/05/c8/20/05c820d9ce67af6dea2e5441dbe3e8f9/1683231080.png
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
39 kB (39220 bytes)
Hash
6451b63b68b5068db02571051f6f6a30
32badef5d69090b4d2ea7b300bb5264938e198ef
b1b0a314a2d4924b2849fec48b7863ccc68413e58330d99f6ad901bfa6282819

HTTP Headers

GET /si/05/c8/20/05c820d9ce67af6dea2e5441dbe3e8f9/1683231080.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:39:14 GMT
content-type: image/png
content-length: 39220
server: nginx/1.21.6
last-modified: Thu, 04 May 2023 20:11:29 GMT
etag: "64541171-9934"
expires: Thu, 07 Dec 2023 17:39:14 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/dating/default/us/desk-all/img/close.png

172.64.108.10

200 OK

4.0 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/dating/default/us/desk-all/img/close.png
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
PNG image data, 500 x 500, 8-bit gray+alpha, non-interlaced\012- data
Size
4.0 kB (4022 bytes)
Hash
23e9690b0e7ac26868363a6248f44467
d7ad0eae64e0c1e65b12eda0aa9d2b91996dd64f
f362c67320d739ccf3bea21f857b9620075bd20ceacda8c51261b9612fe28395

HTTP Headers

GET /sb/notifications/dating/default/us/desk-all/img/close.png HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:39:14 GMT
content-type: image/png
content-length: 4022
last-modified: Tue, 14 Apr 2020 14:09:22 GMT
etag: "5e95c412-fb6"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: HIT
age: 557876
accept-ranges: bytes
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ho469HxzvoZa2p8MgExo7wvlCmD8xsJjkOnM7sjWXJt3nGO0Gi0za8AKavLgc8HD0hQfJwVU6s82p0lGkx39%2BLLNrsDnE9%2FwPnj%2B4InFZdKZWHNsdmsUCdoxyvQ8FlzTO8l7gmn2DCRg"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e113d6b52730f-LHR
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/si/b3/dd/fd/b3ddfd7cf6f212b3bce3129fb7a007fc/1683231156.png

45.133.44.10

200 OK

65 kB

URL GET HTTP/2
cdn.cloudimagesb.com/si/b3/dd/fd/b3ddfd7cf6f212b3bce3129fb7a007fc/1683231156.png
IP
45.133.44.10:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
65 kB (64601 bytes)
Hash
887812a53b8ea2dbad33f6ae105b8c2d
f83d97ef46827200fa62093ed09b4b6fa25b26d8
9443edf293511b0732211234002c799508a2bfc63a3e28a57d7b12ee30f277e9

HTTP Headers

GET /si/b3/dd/fd/b3ddfd7cf6f212b3bce3129fb7a007fc/1683231156.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:39:14 GMT
content-type: image/png
content-length: 64601
server: nginx/1.21.6
last-modified: Thu, 04 May 2023 20:12:45 GMT
etag: "645411bd-fc59"
expires: Thu, 07 Dec 2023 17:39:14 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Size
16 kB (15860 bytes)
Hash
e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860

HTTP Headers

GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://proxy.latestcache.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 29 Nov 2023 21:52:12 GMT
expires: Thu, 28 Nov 2024 21:52:12 GMT
cache-control: public, max-age=31536000
age: 503222
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2

142.250.74.163

200 OK

16 kB

URL GET HTTP/2
fonts.gstatic.com/s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
142.250.74.163:443
ASN
#15169 GOOGLE

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 15744, version 1.0\012- data
Size
16 kB (15744 bytes)
Hash
15d9f621c3bd1599f0169dcf0bd5e63e
7ca9c5967f3bb8bffeab24b639b49c1e7d03fa52
f6734f8177112c0839b961f96d813fcb189d81b60e96c33278c1983b6f419615

HTTP Headers

GET /s/roboto/v30/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://proxy.latestcache.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15744
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 04 Dec 2023 23:43:03 GMT
expires: Tue, 03 Dec 2024 23:43:03 GMT
cache-control: public, max-age=31536000
age: 64571
last-modified: Wed, 11 May 2022 19:24:48 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/dating/default/us/desk-all/css/style.css

172.64.108.10

200 OK

1.5 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/dating/default/us/desk-all/css/style.css
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
ASCII text
Size
1.5 kB (1492 bytes)
Hash
ff9ebedb55b053ebd14efcce6b3917e0
9b306adb30092f39235392926189c4a1e3816bfa
ffcde61128702ad9b659eaf18c732dafc248344c80260cee28f49f300521a2ed

HTTP Headers

GET /sb/notifications/dating/default/us/desk-all/css/style.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://proxy.latestcache.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:39:14 GMT
content-type: text/css
last-modified: Fri, 27 Aug 2021 11:38:00 GMT
etag: W/"6128ce98-169c"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RNvUe5vFsmLasrg81Sq9Qe6o32VEb6wEs5YYji3RRIGESupoFpDZvAEEDXsBdHfXwYwXs8I%2FwH0M6H5SBjUuiewVthLGazKvVm2fkeBQeyTL5l9PfhHqjcUpLeV4C3641Iu2R8iUk96z"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e113d4b1c730f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

proxy.latestcache.com/phillyalumnae-dst.org/wp-content/plugins/tenweb-speed-optimizer/includes/external/js/vanilla-lazyload/lazyload.min.js

104.21.36.134

200 OK

719 kB

URL GET HTTP/3
proxy.latestcache.com/phillyalumnae-dst.org/wp-content/plugins/tenweb-speed-optimizer/includes/external/js/vanilla-lazyload/lazyload.min.js
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
ASCII text, with very long lines (8892), with no line terminators
Size
719 kB (718634 bytes)
Hash
fb15a10a641a318f91e7e912e4f9c184
bd41f67233facb96976ed7b8e7207d52c03d340e
f40767552e5e94b2d5f9a65d7f640cfa7d225298023dbd682095e040809a3d1a

HTTP Headers

GET /phillyalumnae-dst.org/wp-content/plugins/tenweb-speed-optimizer/includes/external/js/vanilla-lazyload/lazyload.min.js HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:39:11 GMT
content-type: application/javascript; charset=utf-8
cache-control: max-age=315360000
cross-origin-opener-policy: same-origin
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
x-proxy-cache: MISS
cf-cache-status: MISS
last-modified: Tue, 05 Dec 2023 17:39:11 GMT
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=8Ex9mkKJ4XGO5LCfFJr6KBRCAbihifT7xBbzqBs9lqj31xRDc5%2BFfR4a660BRCu7c8QRYcJlaW44e70cTJkwZpp%2F94qCZLcEu%2BcBM7qfTXrwcEeCeJgGcU1cgJfWTMdezC%2F%2FH9WhwPA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e1125292bb500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap

142.250.74.74

200 OK

694 B

URL GET HTTP/2
fonts.googleapis.com/css?family=Roboto:300,400,700&display=swap
IP
142.250.74.74:443
ASN
#15169 GOOGLE

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text
Size
694 B (694 bytes)
Hash
cb2c9df74facee436bb99358b04d9bab
4bf65a78e6a0566051b5b47b75e8b0deac478071
e40dbc6da95b47d932014e5a93f35b13a341a37ea6fe7559dca041dc77271cd6

HTTP Headers

GET /css?family=Roboto:300,400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 05 Dec 2023 17:39:14 GMT
date: Tue, 05 Dec 2023 17:39:14 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

proxy.latestcache.com/phillyalumnae-dst.org/wp-content/uploads/2020/04/cropped-PAC_Logo-32x32.png

104.21.36.134

200 OK

3.0 kB

URL GET HTTP/3
proxy.latestcache.com/phillyalumnae-dst.org/wp-content/uploads/2020/04/cropped-PAC_Logo-32x32.png
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced\012- data
Size
3.0 kB (3010 bytes)
Hash
cc21e53d1cbaf1988e3ccaeaa293d708
0ffbb069cea5f36b505e564e34be119bcc7e0bee
5551c434078301e59709485ef29ed8ec983c3a46f48a4d54cec78340e9caf457

HTTP Headers

GET /phillyalumnae-dst.org/wp-content/uploads/2020/04/cropped-PAC_Logo-32x32.png HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957; dom3ic8zudi28v8lr6fgphwffqoz0j6c=e19b4d44-822c-473f-aad3-8726f5b1b101%3A2%3A1; cf_clearance=nZjYgx5G9cnemtOh8NaESbVV.rLLKOwM4xjjNcNae_k-1701797951-0-1-730ca2d2.73a07051.5b213570-0.2.1701797951; sb_main_73b34811dd7ce33d1c7a42a1ebf30880=1; sb_count_73b34811dd7ce33d1c7a42a1ebf30880=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=curryoxygencheaper.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:39:16 GMT
content-type: image/png
content-length: 3010
cache-control: max-age=315360000
cross-origin-opener-policy: same-origin
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
x-proxy-cache: MISS
cf-cache-status: MISS
last-modified: Tue, 05 Dec 2023 17:39:16 GMT
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=K7exFXQoDR%2FUtp1pOBV7Amu9X0pn6YyujYg2cXzEWRLgOW0DyK%2BKbhkETxGHgWrwBg%2BM4ucoF7GcJUkQSVRF6g0C1GBDpzTt90q4eAhIJLG9mLoE6TReVTgD9PcwB06eacVFTet3NgU%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e11434edab500-OSL
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/phillyalumnae-dst.org/wp-content/uploads/2020/04/cropped-PAC_Logo-192x192.png

104.21.36.134

200 OK

52 kB

URL GET HTTP/3
proxy.latestcache.com/phillyalumnae-dst.org/wp-content/uploads/2020/04/cropped-PAC_Logo-192x192.png
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
52 kB (51927 bytes)
Hash
92e880baf093597b637c989af75b7676
ccd75168576fa0d752f5d5473c93d26bc9028af6
0f0072924452126b8bc09df214f4e93a26ede233c282b05da2580176967d1b19

HTTP Headers

GET /phillyalumnae-dst.org/wp-content/uploads/2020/04/cropped-PAC_Logo-192x192.png HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957; dom3ic8zudi28v8lr6fgphwffqoz0j6c=e19b4d44-822c-473f-aad3-8726f5b1b101%3A2%3A1; cf_clearance=nZjYgx5G9cnemtOh8NaESbVV.rLLKOwM4xjjNcNae_k-1701797951-0-1-730ca2d2.73a07051.5b213570-0.2.1701797951; sb_main_73b34811dd7ce33d1c7a42a1ebf30880=1; sb_count_73b34811dd7ce33d1c7a42a1ebf30880=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=curryoxygencheaper.com
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:39:16 GMT
content-type: image/png
content-length: 51927
cache-control: max-age=315360000
cross-origin-opener-policy: same-origin
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
x-proxy-cache: MISS
cf-cache-status: MISS
last-modified: Tue, 05 Dec 2023 17:39:16 GMT
accept-ranges: bytes
priority: u=6,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=20O%2FxhVRtaWdPPvwxL6eBUe3coaG2cmCMPJDBSbjtCD%2Fbn9oXracMEAVpGOyY9Ztzy6fzjzASbiE05Nil365pcPdcpaFnT%2Fkf6sGsJdg2Y8oQ64PwMPs7%2Bey1o0oTJwuRu91Knq4vws%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e11434ed7b500-OSL
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/phillyalumnae-dst.org/wp-content/uploads/2020/06/philadelphia-skyline-spring-garden-bridge-csmyth-for-vp-2200x1237px.png

104.21.36.134

200 OK

1.6 MB

URL GET HTTP/3
proxy.latestcache.com/phillyalumnae-dst.org/wp-content/uploads/2020/06/philadelphia-skyline-spring-garden-bridge-csmyth-for-vp-2200x1237px.png
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
PNG image data, 2198 x 780, 8-bit/color RGBA, non-interlaced\012- data
Size
1.6 MB (1606900 bytes)
Hash
541399ffa1afdc68f91a387b9c17dae9
caf64330f270fd82b1bd52ec70d0933f78519f19
53082231c3efe416e92053cf9b9806d3bfadb0089a7ba44ad7af3568546f9e6c

HTTP Headers

GET /phillyalumnae-dst.org/wp-content/uploads/2020/06/philadelphia-skyline-spring-garden-bridge-csmyth-for-vp-2200x1237px.png HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:39:19 GMT
content-type: image/png
content-length: 1606900
cache-control: max-age=315360000
cross-origin-opener-policy: same-origin
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
x-proxy-cache: MISS
cf-cache-status: MISS
last-modified: Tue, 05 Dec 2023 17:39:19 GMT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=RYoRhapPWpavmQ0in2QdHOWuBQ3UVeinuM2gI%2BAeDKpt8483h6e8dyVZ7ljKVlo1Tt5o80DCBMOBKojZ6sl7SextqaBSjHT%2FawN47GzM9JdayYdVtZTdNBQaZSwnOcxWpLYFUfKBGyM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e112c9d4fb500-OSL
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/cdn-cgi/rum?

104.21.36.134

204 No Content

0 B

URL POST HTTP/3
proxy.latestcache.com/cdn-cgi/rum?
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
content-type: application/json
Content-Length: 1081
Origin: https://proxy.latestcache.com
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957; dom3ic8zudi28v8lr6fgphwffqoz0j6c=e19b4d44-822c-473f-aad3-8726f5b1b101%3A2%3A1; cf_clearance=nZjYgx5G9cnemtOh8NaESbVV.rLLKOwM4xjjNcNae_k-1701797951-0-1-730ca2d2.73a07051.5b213570-0.2.1701797951; sb_main_73b34811dd7ce33d1c7a42a1ebf30880=1; sb_count_73b34811dd7ce33d1c7a42a1ebf30880=1; pbpr0tpuw4isk85t8yg3jb2lj5vqf=curryoxygencheaper.com
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 204 No Content
date: Tue, 05 Dec 2023 17:39:20 GMT
access-control-allow-origin: https://proxy.latestcache.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 830e1167ffa3b500-OSL
x-frame-options: DENY
x-content-type-options: nosniff

unseenreport.com/pxf.gif?uuid=e19b4d44-822c-473f-aad3-8726f5b1b101&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=73b34811dd7ce33d1c7a42a1ebf30880&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17

192.243.59.20

200 OK

1 B

URL GET HTTP/1.1
unseenreport.com/pxf.gif?uuid=e19b4d44-822c-473f-aad3-8726f5b1b101&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=73b34811dd7ce33d1c7a42a1ebf30880&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerLet's Encrypt
Subject*.unseenreport.com
Fingerprint79:45:7F:58:D5:82:45:0A:7D:1E:FF:7A:98:05:26:E9:D6:FE:91:14
ValidityWed, 22 Nov 2023 07:56:28 GMT - Tue, 20 Feb 2024 07:56:27 GMT

File type
very short file (no magic)
Size
1 B (1 bytes)
Hash
93b885adfe0da089cdf634904fd59f71
5ba93c9db0cff93f52b521d7420e43f6eda2784f
6e340b9cffb37a989ca544e6bb780a2c78901d3fb33738768511a30617afa01d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pxf.gif?uuid=e19b4d44-822c-473f-aad3-8726f5b1b101&eb=a996fe56ed028c08f89591a4a8a9c431&te=4cb725660c43031e3b06c75892d96c5a&ua=Mozilla%2F5.0%20(Windows%20NT%2010.0%3B%20Win64%3B%20x64%3B%20rv%3A105.0)%20Gecko%2F20100101%20Firefox%2F105.0&dev=e&res=14.3095&b_frame=0&pk=73b34811dd7ce33d1c7a42a1ebf30880&bl=en-US&sr=1024x1280&sz=1024x1280&hjs=17 HTTP/1.1
Host: unseenreport.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 05 Dec 2023 17:39:21 GMT
Content-Type: image/gif
Content-Length: 1
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: c5cbc4b2f045de8a82963a4416fbcd73
Strict-Transport-Security: max-age=0; includeSubdomains

proxy.latestcache.com/cdn-cgi/rum?

104.21.36.134

204 No Content

0 B

URL POST HTTP/3
proxy.latestcache.com/cdn-cgi/rum?
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/rum? HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
Content-Type: application/json
Content-Length: 531
Origin: https://proxy.latestcache.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers

HTTP/3 204 No Content
date: Tue, 05 Dec 2023 17:39:27 GMT
access-control-allow-origin: https://proxy.latestcache.com
access-control-allow-methods: POST,OPTIONS
access-control-max-age: 86400
vary: Origin
access-control-allow-credentials: true
server: cloudflare
cf-ray: 830e118fd84bb500-OSL
x-frame-options: DENY
x-content-type-options: nosniff

proxy.latestcache.com/phillyalumnae-dst.org/wp-content/uploads/2020/04/red-header-2.png

104.21.36.134

200 OK

716 kB

URL GET HTTP/3
proxy.latestcache.com/phillyalumnae-dst.org/wp-content/uploads/2020/04/red-header-2.png
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
PNG image data, 1400 x 500, 8-bit/color RGBA, non-interlaced\012- data
Size
716 kB (715573 bytes)
Hash
f8758e70068c0a1e886c4192178c92ad
51f0261cf543c829a1f83babd9a8712485cf01c9
6a3e55e692c87ce9f1b9bee2d290aa737694edfdea3b756bfdaf77dbe04526cb

HTTP Headers

GET /phillyalumnae-dst.org/wp-content/uploads/2020/04/red-header-2.png HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:39:13 GMT
content-type: image/png
content-length: 715573
cache-control: max-age=315360000
cross-origin-opener-policy: same-origin
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
x-proxy-cache: MISS
cf-cache-status: MISS
last-modified: Tue, 05 Dec 2023 17:39:13 GMT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=pFRgT0EKcZP198kpbpP7UZ%2FcsbbE8FmHFPr8A1PrZVkj9heuEr0zYQEbsmOXlxNCOspf5TXeGpMnvYa4noaS%2FtNF6f6MBdxeBHCPcz699qAR%2BlESxKB%2BcwjCt3VfN2qcL8%2BsRjtZnHM%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e112d6e7eb500-OSL
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20806%201024%22%3E%3C/svg%3E

104.21.36.134

403 Forbidden

4.7 kB

URL GET HTTP/3
proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20806%201024%22%3E%3C/svg%3E
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4926), with no line terminators
Size
4.7 kB (4738 bytes)
Hash
e922bcee0118370b11dcce664db203fe
82afb076cd8c6519af2c145a42fb84e9c98cfe98
2851b91966f53cee1bb275e30f639378187f385a8f12be614001cb43eada1d1a

HTTP Headers

GET /phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20806%201024%22%3E%3C/svg%3E HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
date: Tue, 05 Dec 2023 17:39:10 GMT
content-type: text/html; charset=utf-8
cross-origin-opener-policy: same-origin
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=ZQrI5w%2BJKYZaGxSuOwwLlCIU96qg1Lhj%2FtysXtteT7jaOrTdazZ210iLmPbkGZgnAULHzD0iBX5ibLTRPBY6fJqlsX9P6Xne2URpf4uhRw69kDhcMnPPhaO7DHmNAAHz0hsB6J4g24k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830e11252924b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20806%201024%22%3E%3C/svg%3E

104.21.36.134

403 Forbidden

4.7 kB

URL GET HTTP/3
proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20806%201024%22%3E%3C/svg%3E
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4926), with no line terminators
Size
4.7 kB (4738 bytes)
Hash
c5ab1ba1290e9a2c851aa80a9f2822e8
60c0688178a95ad7e1c76af72ea89dbfe61d3a31
d36ab17ca4a248869be289f5fdd83e89a267616123a62c2387b14317e824f1ad

HTTP Headers

GET /phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20806%201024%22%3E%3C/svg%3E HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
date: Tue, 05 Dec 2023 17:39:13 GMT
content-type: text/html; charset=utf-8
cross-origin-opener-policy: same-origin
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Ac%2FDp1zyFKHxwLFD0XlXj10dFigLW8aQlZgWpB1z77z0fbf24oJd9ZLIX1Odicr3sMf%2BLIMuQAemKN%2BnLX2lSrj5Tz8rNnTPyM0%2FIYwM8%2BJtsWi7eUmHm7DIgrhPDLoZrfzdE9G8%2Bhk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830e112c7d1eb500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20%20%22%3E%3C/svg%3E

104.21.36.134

403 Forbidden

4.7 kB

URL GET HTTP/3
proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20%20%22%3E%3C/svg%3E
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4919), with no line terminators
Size
4.7 kB (4731 bytes)
Hash
ca2f525a82bb960f73ab9f9ae6b725bf
cf0bfc6df8514c9df1f814c3e7c40958b2f9f37f
b503b97b7f9744b19ea126536d0d8c519ee0473d7308575eaf92c5f4cce61bbd

HTTP Headers

GET /phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20%20%22%3E%3C/svg%3E HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
date: Tue, 05 Dec 2023 17:39:10 GMT
content-type: text/html; charset=utf-8
cross-origin-opener-policy: same-origin
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FgSzAtXmlQajJr%2F7ZAy2ig5FXKAdO8gVKkGalbn7uvjl60qjuVgfhRc47kFcMoWK%2BPcZHwAc9gZVqA5g5MiYTmgXd1jfpf8rlXCjU8c6v%2BnoEJHYD1a%2BlcYY6w6fviDGbfbAKfIyGNw%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830e1125291cb500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/cdn-cgi/challenge-platform/h/b/jsd/r/830e11225ea3b503

104.21.36.134

200 OK

0 B

URL POST HTTP/3
proxy.latestcache.com/cdn-cgi/challenge-platform/h/b/jsd/r/830e11225ea3b503
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

POST /cdn-cgi/challenge-platform/h/b/jsd/r/830e11225ea3b503 HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Content-Length: 12211
Origin: https://proxy.latestcache.com
DNT: 1
Connection: keep-alive
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957; dom3ic8zudi28v8lr6fgphwffqoz0j6c=e19b4d44-822c-473f-aad3-8726f5b1b101%3A2%3A1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:39:11 GMT
content-type: text/plain; charset=UTF-8
priority: u=3,i=?0
set-cookie: cf_clearance=nZjYgx5G9cnemtOh8NaESbVV.rLLKOwM4xjjNcNae_k-1701797951-0-1-730ca2d2.73a07051.5b213570-0.2.1701797951; path=/; expires=Wed, 04-Dec-24 17:39:11 GMT; domain=.latestcache.com; HttpOnly; Secure; SameSite=None
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=jZM8p1Xlbf0ByGI5orvFFpYgkR1pbP91n9X1yhIeqBdiEunASIhQLp3%2B6xKJ7N2w8xw1%2Bb1ZXDVk%2F3EHzHV%2FNWxiGr21OJeObrL2aK2eyxes8ng6UnFeru7PdWLbLPsuGbn73CcV49M%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830e112f293bb500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/56d3063b/main.js

104.21.36.134

200 OK

7.4 kB

URL GET HTTP/3
proxy.latestcache.com/cdn-cgi/challenge-platform/h/b/scripts/jsd/56d3063b/main.js
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
ASCII text, with very long lines (7376), with no line terminators
Size
7.4 kB (7376 bytes)
Hash
b809b5f85bfe45b407fb612baf9cc6c3
343f614f90e7e91b3f39d7df9694116107d11cdb
4384b1e4edd6dfb01880d49aa6cee583f567570ca587e696628ce6a8d9edca5e

HTTP Headers

GET /cdn-cgi/challenge-platform/h/b/scripts/jsd/56d3063b/main.js HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:39:11 GMT
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
cache-control: max-age=14400, public
vary: accept-encoding
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=I0Q2Ftoa3tX1WwSf1lLn3RdstUfu52TvpHT7j84dAH4AAzb0Xb0nLV1XY4ZkIcRtaNC0GlwPRUFHR%2BE5wMeyLrgWQMNHR4%2BN9lo0Uy0RQAThfKfnGoUM9NMDhO0iDJ4bKFiofJdziaA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830e112dff79b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.creative-bars1.com/sb/notifications/dating/default/us/desk-all/css/animate.css

172.64.108.10

200 OK

79 kB

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/dating/default/us/desk-all/css/animate.css
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
ASCII text
Size
79 kB (79245 bytes)
Hash
80047eaa13ebd50c50e8a9753621e430
9c503e07d130572a0eaf51f7c02cbd4cf6213fe3
3f831a59615f8d5d40b4340b2836f91438c876f8dbce75f78e38360d6fe0f429

HTTP Headers

GET /sb/notifications/dating/default/us/desk-all/css/animate.css HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://proxy.latestcache.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:39:14 GMT
content-type: text/css
last-modified: Tue, 14 Apr 2020 14:09:21 GMT
etag: W/"5e95c411-1358d"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=AECjFrjAuyAxJ4lajOyqdUNDfPpxba96w29MhkaLv%2BB2PL7ravcI2gsqZ6R2l05YOF0xZ93cVCvzJBqxMhSl52aagXg14JHjdeyzbMCsrdHFwWqDSilWV20zz0BapGbxuxe8fKidEwtU"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e113d2afd730f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.creative-bars1.com/sb/notifications/dating/default/us/desk-all/js/script.js

172.64.108.10

200 OK

386 B

URL GET HTTP/2
cdn.creative-bars1.com/sb/notifications/dating/default/us/desk-all/js/script.js
IP
172.64.108.10:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectcreative-bars1.com
Fingerprint2B:CC:32:FC:17:6F:25:69:2F:F4:A0:D9:DC:9C:C2:09:28:32:AB:34
ValiditySat, 21 Oct 2023 15:38:40 GMT - Fri, 19 Jan 2024 15:38:39 GMT

File type
ASCII text, with very long lines (399), with no line terminators
Size
386 B (386 bytes)
Hash
022602a468da44628060800173771da2
9be813fbfebbcb2aa46d8c6b8abec68b3d16c89c
6742c376e658c34d09b2dc5772bd798e3cd52bb265758bac5bce184f8ee7b5cc

HTTP Headers

GET /sb/notifications/dating/default/us/desk-all/js/script.js HTTP/1.1
Host: cdn.creative-bars1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://proxy.latestcache.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:39:14 GMT
content-type: application/javascript
last-modified: Tue, 14 Apr 2020 14:09:27 GMT
etag: W/"5e95c417-182"
expires: Thu, 31 Dec 2037 23:55:55 GMT
cache-control: public, max-age=315360000
access-control-allow-origin: *
access-control-expose-headers: Date
cf-cache-status: MISS
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=QJ0WU1FTLYiQptYlHyIPOMQrEWluC6EiTvw6y0NUHC2piM3ThPuQ6kNihqVG%2FvSm%2BQU41Nyh6FNHVcEBP7NuYbf%2B6n7hfxLHwiheOSQEcWWmFOZx7sn6WSkTRGP6myNoU3AoiatACwsl"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e113d2b06730f-LHR
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

curryoxygencheaper.com/pixel/sbs?c=1

173.233.139.164

200 OK

0 B

URL GET HTTP/1.1
curryoxygencheaper.com/pixel/sbs?c=1
IP
173.233.139.164:443
ASN
#7979 SERVERS-COM

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerLet's Encrypt
Subjectcurryoxygencheaper.com
FingerprintF2:DD:AF:D4:3D:96:F2:C2:C1:37:D0:07:73:80:BA:7B:02:75:3E:DC
ValidityTue, 28 Nov 2023 08:20:34 GMT - Mon, 26 Feb 2024 08:20:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /pixel/sbs?c=1 HTTP/1.1
Host: curryoxygencheaper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: u_pl=19461150; uid_id2=e19b4d44-822c-473f-aad3-8726f5b1b101:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 17:39:14 GMT
Content-Length: 0
Connection: keep-alive
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
Access-Control-Allow-Origin: *
Access-Control-Allow-Methods: GET, POST, OPTIONS
Access-Control-Allow-Headers: DNT,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type,Range,Upgrade-Insecure-Requests
Access-Control-Expose-Headers: Content-Length,Content-Range

proxy.latestcache.com/phillyalumnae-dst.org/wp-content/themes/fluida/resources/fonts/socials.woff

104.21.36.134

200 OK

22 kB

URL GET HTTP/3
proxy.latestcache.com/phillyalumnae-dst.org/wp-content/themes/fluida/resources/fonts/socials.woff
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
Web Open Font Format, TrueType, length 22488, version 1.0\012- data
Size
22 kB (22488 bytes)
Hash
4ceff58b0a9ce8d542f4fda2f88bdec9
ed5b8e069e2f8f8442650b674de1ff756397a4d2
7265f19b6b7127ac7f3fc2c194ef133c3d9967cbb48b3afe405c520e4eeaabc1

HTTP Headers

GET /phillyalumnae-dst.org/wp-content/themes/fluida/resources/fonts/socials.woff HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:39:12 GMT
content-type: font/woff
content-length: 22488
cache-control: max-age=315360000
cross-origin-opener-policy: same-origin
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
x-proxy-cache: MISS
cf-cache-status: MISS
last-modified: Tue, 05 Dec 2023 17:39:12 GMT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zz02F6xsVHlieZN95bP2udSh0QHUsBoQkoq%2FH5%2Bw9YKS7P0xMIO70FGp6vvKha1O6WJ7MmxRc30CicUtpfP36Ht1XmLgVQCLnxzBKMMws%2B6d1eAqISaBN71W9yoNZEWpwwXrziavDt0%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e112d0dd6b500-OSL
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/phillyalumnae-dst.org/wp-content/uploads/2020/10/President-Dr.-Penny-Nixon-scaled-e1604268966481.jpg

104.21.36.134

200 OK

179 kB

URL GET HTTP/3
proxy.latestcache.com/phillyalumnae-dst.org/wp-content/uploads/2020/10/President-Dr.-Penny-Nixon-scaled-e1604268966481.jpg
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 300x300, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=16, height=4928, bps=0, PhotometricIntepretation=RGB, manufacturer=NIKON CORPORATION, model=NIKON D7000, orientation=upper-left, width=3264], baseline, precision 8, 1696x1830, components 3\012- data
Size
179 kB (179127 bytes)
Hash
c11b2ae8b92aaa94f5f5ad9e3e0c6eb4
bceb5a6f73d74d698260d84c53bc3608c68102d5
b7c04e9322cfb1b4ed8c2c5e52ab02567976b3e0be5b280c436cfb199697f3e0

HTTP Headers

GET /phillyalumnae-dst.org/wp-content/uploads/2020/10/President-Dr.-Penny-Nixon-scaled-e1604268966481.jpg HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:39:13 GMT
content-type: image/jpeg
content-length: 179127
cache-control: max-age=315360000
cross-origin-opener-policy: same-origin
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
x-proxy-cache: MISS
cf-cache-status: MISS
last-modified: Tue, 05 Dec 2023 17:39:13 GMT
accept-ranges: bytes
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=WzojyCz7fKC9TUMP6Iw7cyc9Li4sNmR%2F3eLuufFKFtDKKY4w3ODRoXutfrKFiUOqhE8X1TIQQg6r8FqpylaxIfV%2FdLrH%2BbwSHsBSXJHoxCrjSwCv3VD6FLtkz7D9o%2BI8QlDGL%2FwONIQ%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e112d6e83b500-OSL
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20791%201024%22%3E%3C/svg%3E

104.21.36.134

403 Forbidden

4.7 kB

URL GET HTTP/3
proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20791%201024%22%3E%3C/svg%3E
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4926), with no line terminators
Size
4.7 kB (4738 bytes)
Hash
7676d9359a1e35ab95a5ae53e5d57c1c
7bcabfce6b77a236f1b5e0cb30f5bc12f92102a9
1a95ec45d6e4732450790cf86c2e2fe3a2fde7cc90b04667033b40a45d837350

HTTP Headers

GET /phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20791%201024%22%3E%3C/svg%3E HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
date: Tue, 05 Dec 2023 17:39:10 GMT
content-type: text/html; charset=utf-8
cross-origin-opener-policy: same-origin
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5VUB%2BxwfjGfbsNuHLR28qIF%2Bb4ySm0eFAWatG7C6JmTIR3DZ2dku4DKv%2BHMhHPhRNSSgFecXIDs52PGvOCEKthtUg7B021GDmR1Pl0FlINkm%2FGALC1RQpFujVFBOM21IZkX4q%2F%2BHY5Q%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830e11252921b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20278%20300%22%3E%3C/svg%3E

0.0.0.0

0 B

URL GET
proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20278%20300%22%3E%3C/svg%3E
IP
0.0.0.0:0
ASN
#0

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20278%20300%22%3E%3C/svg%3E HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

proxy.latestcache.com/cdn-cgi/challenge-platform/scripts/jsd/main.js

104.21.36.134

302 Found

7.4 kB

URL GET HTTP/3
proxy.latestcache.com/cdn-cgi/challenge-platform/scripts/jsd/main.js
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type

Size
7.4 kB (7376 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /cdn-cgi/challenge-platform/scripts/jsd/main.js HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 302 Found
date: Tue, 05 Dec 2023 17:39:11 GMT
location: /cdn-cgi/challenge-platform/h/b/scripts/jsd/56d3063b/main.js
access-control-allow-origin: *
cache-control: max-age=300, public
vary: accept-encoding
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=NxlM3zL9TbESaNsJBV8xUr66xKVWDI4jrTcJyrSHakW3%2F6Pb%2BlrSVC6AJYz9d6UVsN39vaaaBEFBZYU23FCPvOUn%2B4zLGCT8XHd4Q%2FMAQw%2B54MuGVJOhXCjF5jPxEbw5ovL2eMlVIKY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830e112d9ed6b500-OSL
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20278%20300%22%3E%3C/svg%3E

104.21.36.134

403 Forbidden

4.7 kB

URL GET HTTP/3
proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20278%20300%22%3E%3C/svg%3E
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4925), with no line terminators
Size
4.7 kB (4737 bytes)
Hash
aea9d5a60b4121f68676587181b682d4
1911e00d1b3e9e23ebd2c1dac12086b0de950c88
9b62445dfdc4f448a21c27bc8da6a1bbfcd6e64126db0392bf37c0ff4efacd51

HTTP Headers

GET /phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20278%20300%22%3E%3C/svg%3E HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
date: Tue, 05 Dec 2023 17:39:10 GMT
content-type: text/html; charset=utf-8
cross-origin-opener-policy: same-origin
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=u2pi3nyiI%2Fq8hHlA%2FzbU6q6dvPi3ECAIfU%2BD5utC7rGV%2Fb3qNfrrU4pc8cgGuPa675s%2FuP8WUjY35jdUZm2KazD8P2FOzheNmZLc%2Bqw0Asb1JD4J3WOCbj%2FSczcqeJaE2g6hFO8Z0JY%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830e1125291db500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

cdn.barscreative1.com/sb/au/24/54/4e/24544ed07f7394384bbb75023b9b0b3a/1591713925.html

45.133.44.4

200 OK

1.3 kB

URL GET HTTP/2
cdn.barscreative1.com/sb/au/24/54/4e/24544ed07f7394384bbb75023b9b0b3a/1591713925.html
IP
45.133.44.4:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerLet's Encrypt
Subjectcdn.barscreative1.com
Fingerprint55:06:B7:F1:EF:E9:55:FB:7C:8C:4F:5D:DB:05:C9:15:19:90:9B:2F
ValiditySat, 11 Nov 2023 03:00:51 GMT - Fri, 09 Feb 2024 03:00:50 GMT

File type
HTML document text\012- HTML document, ASCII text, with very long lines (1388), with no line terminators
Size
1.3 kB (1274 bytes)
Hash
1e11fba825d4244ebfc11b9784c9744f
86f24edfd397e9f4d65e589ceb97196b71d2d828
7737a119c12f495c4f32f75686c087c59387d5f851ec8c5443a385dda8c5df76

HTTP Headers

GET /sb/au/24/54/4e/24544ed07f7394384bbb75023b9b0b3a/1591713925.html HTTP/1.1
Host: cdn.barscreative1.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://proxy.latestcache.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:39:13 GMT
content-type: text/html; charset=utf-8
server: nginx/1.21.6
last-modified: Sat, 07 May 2022 03:21:27 GMT
etag: W/"6275e5b7-4fa"
cache-control: max-age=3600
access-control-allow-origin: *
access-control-expose-headers: Date
content-encoding: gzip
expires: Tue, 05 Dec 2023 18:39:13 GMT
x-proxy-cache: HIT
X-Firefox-Spdy: h2

proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20788%201024%22%3E%3C/svg%3E

104.21.36.134

403 Forbidden

4.7 kB

URL GET HTTP/3
proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20788%201024%22%3E%3C/svg%3E
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4926), with no line terminators
Size
4.7 kB (4738 bytes)
Hash
3f02441d37914f8950d2af613bd7faec
5092221ee1387b94bd3ed218322ea0cb9981888a
43a55225724d245454accb75dfa7491f41436d9a5b37e01d75196161781eec90

HTTP Headers

GET /phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20788%201024%22%3E%3C/svg%3E HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
date: Tue, 05 Dec 2023 17:39:10 GMT
content-type: text/html; charset=utf-8
cross-origin-opener-policy: same-origin
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=c3PhNx2FovrAlbj4kNqzQK91eKqxeVW5H34NfBNC9rF4Uebv0D5RQSAiUWZJ9w4m%2FSZyksrNTAUiWeLoOINbvUazl3%2BoJahnTyxytruxCvMIKN%2BbTMXZj6riY2VDkmyt5FAt594aVGc%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830e11252927b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20788%201024%22%3E%3C/svg%3E

104.21.36.134

403 Forbidden

4.7 kB

URL GET HTTP/3
proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20788%201024%22%3E%3C/svg%3E
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4926), with no line terminators
Size
4.7 kB (4738 bytes)
Hash
38c7722716ca86679ee9d5731ce58cf6
05db4aeed192724d495be13ec63ff66f3b0f19c2
1e886f617692896dd0284a112a69b5eeedb934c0c9d10e8853973d5acd08e914

HTTP Headers

GET /phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20788%201024%22%3E%3C/svg%3E HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
date: Tue, 05 Dec 2023 17:39:11 GMT
content-type: text/html; charset=utf-8
cross-origin-opener-policy: same-origin
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=JPOGIhCgqqz5nTWwPOp4JkgwfrP%2BfictcziPfMI2zcJg5IT%2BY9tSzqRZy1ilzJGFudq6f9bEmCihJ9OHXXa0pxzVT6V%2FF9jJnykxrMJqawejO1sJB%2BIL3FtM8qO4fTTNwqDanxj0A1w%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830e112c8d24b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/phillyalumnae-dst.org

104.21.36.134

200 OK

184 kB

URL User Request GET HTTP/2
proxy.latestcache.com/phillyalumnae-dst.org
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type

Size
184 kB (184192 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /phillyalumnae-dst.org HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Tue, 05 Dec 2023 17:39:09 GMT
content-type: text/html; charset=utf-8
cache-control: max-age=315360000
cross-origin-opener-policy: same-origin
expires: Thu, 31 Dec 2037 23:55:55 GMT
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
x-proxy-cache: HIT
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=LyJwxI3IRJf92%2F3U3Hd7WklGedOMh5%2BvTyqaGEInceMPCiFICpbkREwBZLVG4AgOHewrqIypGmuUPfj%2FtKhzFDkfxnI1LD6Bm83%2Bcs15bLc7UZqQ2ibQ3r7nSXXUXWDh15YDRPIV5rk%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830e11225ea3b503-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

curryoxygencheaper.com/sbar.json?key=73b34811dd7ce33d1c7a42a1ebf30880&uuid=e19b4d44-822c-473f-aad3-8726f5b1b101%3A2%3A1

192.243.59.13

200 OK

6.4 kB

URL GET HTTP/1.1
curryoxygencheaper.com/sbar.json?key=73b34811dd7ce33d1c7a42a1ebf30880&uuid=e19b4d44-822c-473f-aad3-8726f5b1b101%3A2%3A1
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerLet's Encrypt
Subjectcurryoxygencheaper.com
FingerprintF2:DD:AF:D4:3D:96:F2:C2:C1:37:D0:07:73:80:BA:7B:02:75:3E:DC
ValidityTue, 28 Nov 2023 08:20:34 GMT - Mon, 26 Feb 2024 08:20:33 GMT

File type
Unicode text, UTF-8 text, with very long lines (6441), with no line terminators
Size
6.4 kB (6356 bytes)
Hash
3680a53a696308b8789615d57ff754ff
65d54a9d30c1fb383f8dce13083a75ac0908429e
29e54e9fca48a40c077a49ad253cdfd00b0c610bf5cad16fae24fe8cf922e84d

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /sbar.json?key=73b34811dd7ce33d1c7a42a1ebf30880&uuid=e19b4d44-822c-473f-aad3-8726f5b1b101%3A2%3A1 HTTP/1.1
Host: curryoxygencheaper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://proxy.latestcache.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 05 Dec 2023 17:39:13 GMT
Content-Type: text/plain; charset=utf-8
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://proxy.latestcache.com
Access-Control-Allow-Origin: https://proxy.latestcache.com
Access-Control-Allow-Credentials: true
Set-Cookie: u_pl=19461150; expires=Wed, 06 Dec 2023 17:39:13 GMT; secure; SameSite=None
uid_id2=e19b4d44-822c-473f-aad3-8726f5b1b101:2:1; expires=Tue, 12 Dec 2023 17:39:13 GMT; secure; SameSite=None
pdhtkv=true; expires=Wed, 06 Dec 2023 17:39:13 GMT; secure; SameSite=None
uncs=1; expires=Wed, 06 Dec 2023 17:39:13 GMT; secure; SameSite=None
pdhtkv29=true; expires=Wed, 06 Dec 2023 17:39:13 GMT; secure; SameSite=None
uncs29=1; expires=Wed, 06 Dec 2023 17:39:13 GMT; secure; SameSite=None
slec73b34811dd7ce33d1c7a42a1ebf30880=[4243974]; expires=Tue, 05 Dec 2023 17:39:18 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 35b95fd20aefa285401fe52d6578c4e4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

stewardfallenailment.com/4439e3c279bee065536d153688548a10/invoke.js

173.233.137.44

200 OK

30 kB

URL GET HTTP/1.1
stewardfallenailment.com/4439e3c279bee065536d153688548a10/invoke.js
IP
173.233.137.44:443
ASN
#7979 SERVERS-COM

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerLet's Encrypt
Subjectstewardfallenailment.com
FingerprintAB:69:7D:BA:3C:CA:24:CF:CE:59:18:84:D1:8F:B9:A8:F9:90:92:1C
ValiditySun, 12 Nov 2023 07:20:42 GMT - Sat, 10 Feb 2024 07:20:41 GMT

File type
exported SGML document, ASCII text, with very long lines (29641), with no line terminators
Size
30 kB (29641 bytes)
Hash
97041ae7b7670e960dbdffd24a01070c
28fd4a353c0f491e65c0bc0edad89ba4d6bdd004
949d5b88901a276529688269e8258af7ccbe008af8be7f8d8449ad8f25433efd

HTTP Headers

GET /4439e3c279bee065536d153688548a10/invoke.js HTTP/1.1
Host: stewardfallenailment.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Tue, 05 Dec 2023 17:39:11 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 448dd6b5d888c3406fa9204bea7f3d71
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20791%201024%22%3E%3C/svg%3E

104.21.36.134

403 Forbidden

4.7 kB

URL GET HTTP/3
proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20791%201024%22%3E%3C/svg%3E
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (4926), with no line terminators
Size
4.7 kB (4738 bytes)
Hash
0d0c7834e2ff1ac247f8562acd37dd29
4ce40c7183aa592790a9f239cee1b463d4f631b4
25da61cd3b508afde6af1243192a0ccbf6df55d64f44c80373085f9f8fd8738e

HTTP Headers

GET /phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20791%201024%22%3E%3C/svg%3E HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 403 Forbidden
date: Tue, 05 Dec 2023 17:39:11 GMT
content-type: text/html; charset=utf-8
cross-origin-opener-policy: same-origin
referrer-policy: same-origin
x-content-type-options: nosniff
x-frame-options: DENY
cf-cache-status: DYNAMIC
priority: u=4,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=BIYB62E4OFm4%2BvvMNkPDxcDMcZY9YBt0XmTAcpA%2F9PNBCDQgVv8ClplECpy7NU4ofk%2BaVwte%2FLEdtJkJ1Go9nOEHSlks7vrSPs8NKAq%2FCLaSZd6VjlJXurTkRtPBIB%2BwS4lxXKQZl5k%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 830e112c7d1bb500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/cdn-cgi/apps/head/q6VigkzHh5xGbmd0GX6edfKnNmE.js

104.21.36.134

200 OK

9.7 kB

URL GET HTTP/3
proxy.latestcache.com/cdn-cgi/apps/head/q6VigkzHh5xGbmd0GX6edfKnNmE.js
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
ASCII text, with very long lines (9853), with no line terminators
Size
9.7 kB (9695 bytes)
Hash
a2f2bf6c4d33a72606ac2d8d41206d75
76254108c6fe2c3a5394ba17fd957f34ed519ceb
e280775ab9c6ae519574acdd25fca0999c42214f7dd68eed4536b5ddb86a2e84

HTTP Headers

GET /cdn-cgi/apps/head/q6VigkzHh5xGbmd0GX6edfKnNmE.js HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:39:10 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: Hp44kvlPNVA/MrkNcFTJp18eDeji7c13kj4vzcBSwNC60D07ByIIn8zddltMgdccU9XmT8VZaZU=
x-amz-request-id: M86YVW1VMY8NQ520
cache-control: public, max-age=31536000
last-modified: Wed, 15 Mar 2023 02:06:52 GMT
x-amz-version-id: zM4u_59zAj8rPmX3qgu0ez9JA1MXRRrK
etag: W/"2bd55c12a937916233a15f3608de6a92"
cf-cache-status: HIT
age: 277233
priority: u=2,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=zkYSK2QPzbZGeTx%2B5r1%2FahgygAT1s3sHgaibhcRRjrILKtFtb8LcNW7urXDz5BJEo5HsnxGIyWIG5Z8pMFrsm%2FGRch9VridW6QLzi6yMcsLUYD0KWRU4NG%2FvS%2Fr7lJaJ937hje4yDZs%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e1125291ab500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20%20%22%3E%3C/svg%3E

0.0.0.0

0 B

URL GET
proxy.latestcache.com/phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20%20%22%3E%3C/svg%3E
IP
0.0.0.0:0
ASN
#0

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

GET /phillyalumnae-dst.org/data:image/svg+xml,%3Csvg%20xmlns=%22http://www.w3.org/2000/svg%22%20viewBox=%220%200%20%20%22%3E%3C/svg%3E HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Cookie: _ga_H55MMD7MCD=GS1.1.1701797956.1.0.1701797956.0.0.0; _ga=GA1.1.648592465.1701797957
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

curryoxygencheaper.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST28cxRfscfLLJadfhIRAAi0ihyDh9fzb7Cw5hIQQFBESkwT5Sk93z7pxz%2FTQPbOz9gVDJJTjcuM4rrVjAQGRD4CExnBAlixYJJAP8ZcIyg0J7XolwzvMq%2Bl6LVXV68%2B3yiPioaSHy%2B%2FpDakUXeq03daFFZlxXdnWrXstz227l1orMrsYXmoNpx8zeMNzO233tdY7gq3pJd%2F1XNdzvdZ1aUSih0szFjJ%2F1PPaPbcd%2Bm2vE2Jo%2FvtvSweWOuCDI3IOkk%2F%2Bt%2FrLY0jWIEu%2FvybsWqHz199OS0ULbTDgux9ka5muMqQnMDEOkmx3Pg1tJ4R8uQCd7c4dQA%2B2pw4Qywlx%2FvQQZ7tzmYgHO8dKYwWRIeZnUQ0aCNVA0gZM34fkvxGAcdy6jSx9eEubiq4fs3TKTsjpZ08hqwk5%2FeQ5ZOl3V5Uctu5qVRZSZxbDpIYcNpD9Bnm5h2LDgaz2wIrPIPkBWXp2E1m6fdsqDckPzwuvF4c8DBcj32eLYTdIFinlwWLU9S8mndiLPdebRSRlA5k0UGIEahdQWgeldFAmDsrcQcoPW7TTS1y3m8RJEEQhYywIGOtEF3mHB2GUuCjZ1MMIRT4CUyMws4ncbGJNjmDKH2FXa1i%2BAFtMiPP%2BJxjwGpUgqCxBRQkqSVAVBNWg3uHK%2BrZ%2ByJUtY2%2Fe%2FXkP6rEu%2Blt0Rxd9kRFQM9rKj8j%2FpwE6F%2F56GWvisNUN4iCMPI%2FzLhNBwD3WpaFPPREngRtFLqysIe0CqHWwISfklfMlcjkh5I8DxHQPVu2ByXOg5Uug1bjru6Cr4zBysZF9m0pjtInpelubPriukRenUaw7W%2BqIvDDb5JvNGQi2f%2FlXMiswUyM3NT6SPxH01YPxHV2R7Tu6suTx7byQqdyg0y3fLWghTn39rlivtOE3rtnRV1fYlJjCR%2FeELW7SjMusb8k3VyXnwlzXhgnyww27IuLl0q5eLU1W5jeX37p%2BI82NsFbqrAGdems%2BBpMTcvbvg9kLftUoSNPAlDXScp%2FMC1LvgeWbsPmJfqsJjDqZiXMHVVmPjR%2BfHCo5If7T56HE%2FuWfPz1z%2FsnSi6BxDSv%2BdfEEb9kH6BsHtLiPLK0xMDUGqgZVI9jy1LjIzf7l34NZIVbOOFbG2Y6VUV8cB2zlYavjhSKKoy7jPBaMe10%2FiALX9TkPuz3h9VDYidAfXvkHAAD%2F%2FwEAAP%2F%2Ff5cuN50EAAA%3D

192.243.59.13

200 OK

0 B

URL GET HTTP/1.1
curryoxygencheaper.com/impr.gif?sid=H4sIAAAAAAAC%2F1RST28cxRfscfLLJadfhIRAAi0ihyDh9fzb7Cw5hIQQFBESkwT5Sk93z7pxz%2FTQPbOz9gVDJJTjcuM4rrVjAQGRD4CExnBAlixYJJAP8ZcIyg0J7XolwzvMq%2Bl6LVXV68%2B3yiPioaSHy%2B%2FpDakUXeq03daFFZlxXdnWrXstz227l1orMrsYXmoNpx8zeMNzO233tdY7gq3pJd%2F1XNdzvdZ1aUSih0szFjJ%2F1PPaPbcd%2Bm2vE2Jo%2FvtvSweWOuCDI3IOkk%2F%2Bt%2FrLY0jWIEu%2FvybsWqHz199OS0ULbTDgux9ka5muMqQnMDEOkmx3Pg1tJ4R8uQCd7c4dQA%2B2pw4Qywlx%2FvQQZ7tzmYgHO8dKYwWRIeZnUQ0aCNVA0gZM34fkvxGAcdy6jSx9eEubiq4fs3TKTsjpZ08hqwk5%2FeQ5ZOl3V5Uctu5qVRZSZxbDpIYcNpD9Bnm5h2LDgaz2wIrPIPkBWXp2E1m6fdsqDckPzwuvF4c8DBcj32eLYTdIFinlwWLU9S8mndiLPdebRSRlA5k0UGIEahdQWgeldFAmDsrcQcoPW7TTS1y3m8RJEEQhYywIGOtEF3mHB2GUuCjZ1MMIRT4CUyMws4ncbGJNjmDKH2FXa1i%2BAFtMiPP%2BJxjwGpUgqCxBRQkqSVAVBNWg3uHK%2BrZ%2ByJUtY2%2Fe%2FXkP6rEu%2Blt0Rxd9kRFQM9rKj8j%2FpwE6F%2F56GWvisNUN4iCMPI%2FzLhNBwD3WpaFPPREngRtFLqysIe0CqHWwISfklfMlcjkh5I8DxHQPVu2ByXOg5Uug1bjru6Cr4zBysZF9m0pjtInpelubPriukRenUaw7W%2BqIvDDb5JvNGQi2f%2FlXMiswUyM3NT6SPxH01YPxHV2R7Tu6suTx7byQqdyg0y3fLWghTn39rlivtOE3rtnRV1fYlJjCR%2FeELW7SjMusb8k3VyXnwlzXhgnyww27IuLl0q5eLU1W5jeX37p%2BI82NsFbqrAGdems%2BBpMTcvbvg9kLftUoSNPAlDXScp%2FMC1LvgeWbsPmJfqsJjDqZiXMHVVmPjR%2BfHCo5If7T56HE%2FuWfPz1z%2FsnSi6BxDSv%2BdfEEb9kH6BsHtLiPLK0xMDUGqgZVI9jy1LjIzf7l34NZIVbOOFbG2Y6VUV8cB2zlYavjhSKKoy7jPBaMe10%2FiALX9TkPuz3h9VDYidAfXvkHAAD%2F%2FwEAAP%2F%2Ff5cuN50EAAA%3D
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerLet's Encrypt
Subjectcurryoxygencheaper.com
FingerprintF2:DD:AF:D4:3D:96:F2:C2:C1:37:D0:07:73:80:BA:7B:02:75:3E:DC
ValidityTue, 28 Nov 2023 08:20:34 GMT - Mon, 26 Feb 2024 08:20:33 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /impr.gif?sid=H4sIAAAAAAAC%2F1RST28cxRfscfLLJadfhIRAAi0ihyDh9fzb7Cw5hIQQFBESkwT5Sk93z7pxz%2FTQPbOz9gVDJJTjcuM4rrVjAQGRD4CExnBAlixYJJAP8ZcIyg0J7XolwzvMq%2Bl6LVXV68%2B3yiPioaSHy%2B%2FpDakUXeq03daFFZlxXdnWrXstz227l1orMrsYXmoNpx8zeMNzO233tdY7gq3pJd%2F1XNdzvdZ1aUSih0szFjJ%2F1PPaPbcd%2Bm2vE2Jo%2FvtvSweWOuCDI3IOkk%2F%2Bt%2FrLY0jWIEu%2FvybsWqHz199OS0ULbTDgux9ka5muMqQnMDEOkmx3Pg1tJ4R8uQCd7c4dQA%2B2pw4Qywlx%2FvQQZ7tzmYgHO8dKYwWRIeZnUQ0aCNVA0gZM34fkvxGAcdy6jSx9eEubiq4fs3TKTsjpZ08hqwk5%2FeQ5ZOl3V5Uctu5qVRZSZxbDpIYcNpD9Bnm5h2LDgaz2wIrPIPkBWXp2E1m6fdsqDckPzwuvF4c8DBcj32eLYTdIFinlwWLU9S8mndiLPdebRSRlA5k0UGIEahdQWgeldFAmDsrcQcoPW7TTS1y3m8RJEEQhYywIGOtEF3mHB2GUuCjZ1MMIRT4CUyMws4ncbGJNjmDKH2FXa1i%2BAFtMiPP%2BJxjwGpUgqCxBRQkqSVAVBNWg3uHK%2BrZ%2ByJUtY2%2Fe%2FXkP6rEu%2Blt0Rxd9kRFQM9rKj8j%2FpwE6F%2F56GWvisNUN4iCMPI%2FzLhNBwD3WpaFPPREngRtFLqysIe0CqHWwISfklfMlcjkh5I8DxHQPVu2ByXOg5Uug1bjru6Cr4zBysZF9m0pjtInpelubPriukRenUaw7W%2BqIvDDb5JvNGQi2f%2FlXMiswUyM3NT6SPxH01YPxHV2R7Tu6suTx7byQqdyg0y3fLWghTn39rlivtOE3rtnRV1fYlJjCR%2FeELW7SjMusb8k3VyXnwlzXhgnyww27IuLl0q5eLU1W5jeX37p%2BI82NsFbqrAGdems%2BBpMTcvbvg9kLftUoSNPAlDXScp%2FMC1LvgeWbsPmJfqsJjDqZiXMHVVmPjR%2BfHCo5If7T56HE%2FuWfPz1z%2FsnSi6BxDSv%2BdfEEb9kH6BsHtLiPLK0xMDUGqgZVI9jy1LjIzf7l34NZIVbOOFbG2Y6VUV8cB2zlYavjhSKKoy7jPBaMe10%2FiALX9TkPuz3h9VDYidAfXvkHAAD%2F%2FwEAAP%2F%2Ff5cuN50EAAA%3D HTTP/1.1
Host: curryoxygencheaper.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Cookie: u_pl=19461150; uid_id2=e19b4d44-822c-473f-aad3-8726f5b1b101:2:1; pdhtkv=true; uncs=1; pdhtkv29=true; uncs29=1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Tue, 05 Dec 2023 17:39:14 GMT
Content-Type: image/gif
Content-Length: 7
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 02ca3d354873aa95c1e90b49dcb10434
Strict-Transport-Security: max-age=0; includeSubdomains

proxy.latestcache.com/cdn-cgi/apps/body/0u8bev7r7LyK2fjruYWKC6_8D8A.js

104.21.36.134

200 OK

3.7 kB

URL GET HTTP/3
proxy.latestcache.com/cdn-cgi/apps/body/0u8bev7r7LyK2fjruYWKC6_8D8A.js
IP
104.21.36.134:443
ASN
#13335 CLOUDFLARENET

Requested by
https://proxy.latestcache.com/phillyalumnae-dst.org
Certificate
IssuerGoogle Trust Services LLC
Subjectlatestcache.com
FingerprintBE:93:73:D7:CC:2D:08:0D:97:40:F0:4A:CD:C9:F1:DC:77:61:BF:18
ValiditySun, 29 Oct 2023 17:42:52 GMT - Sat, 27 Jan 2024 17:42:51 GMT

File type
ASCII text, with very long lines (3740), with no line terminators
Size
3.7 kB (3716 bytes)
Hash
2f4910f93d25a85f5aad8ab46339a4c3
431514f26c79cb359f0a52c454d5dbb3bc4c2444
3a977f056e371be3b5928f4d1b3425cf20bf8a3cf700af309190efac527d246d

HTTP Headers

GET /cdn-cgi/apps/body/0u8bev7r7LyK2fjruYWKC6_8D8A.js HTTP/1.1
Host: proxy.latestcache.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://proxy.latestcache.com/phillyalumnae-dst.org
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Tue, 05 Dec 2023 17:39:10 GMT
content-type: application/javascript; charset=utf-8
x-amz-id-2: jfSqbTRXuTkSoOO5Z7jhKuigf/e+iI0cet4wTD0WV2jt1CPZCvWxXnZKMPsw/PQDV5BY+0UhgZY=
x-amz-request-id: BY03A9C7NPXKEJZM
cache-control: public, max-age=31536000
last-modified: Wed, 15 Mar 2023 02:06:52 GMT
x-amz-version-id: ssrzx5W2q8xknXmAPe.uy.ZXqLRcmRWy
etag: W/"0b9381048044b3207a2e9371ecb4b0fc"
cf-cache-status: HIT
age: 821830
priority: u=3,i=?0
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=mAEvqbuZeCB3benTpBPZTyCAUpvzDJOxREI8yGwLBPINWSPjongHID%2B%2BQQL2RjLErMY4l%2BwLP8iMjIrd2xyc4A2H%2F7zZtzHgpw9C6jRAFhavFR%2Bl0P2sYAZK6BDGJMBHuW2S4O1gb%2FA%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 830e1125d9e7b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (29)

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by