| code.jquery.com/jquery-3.7.1.min.js | 151.101.194.137 | 200 OK | 30 kB |
URL GET HTTP/2code.jquery.com/jquery-3.7.1.min.js IP151.101.194.137:443
Requested byhttps://safetyswdomain.com/S1FLePUgAS CertificateIssuerSectigo Limited Subject*.jquery.com FingerprintD2:19:0A:AD:CE:BB:9C:61:17:5D:29:4B:A2:54:E8:C6:91:B8:F9:8D ValidityTue, 11 Jul 2023 00:00:00 GMT - Sun, 14 Jul 2024 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (65447) Hash2c872dbe60f4ba70fb85356113d8b35e ee48592d1fff952fcf06ce0b666ed4785493afdc fc9a93dd241f6b045cbff0481cf4e1901becd0e12fb45166a8f17f95823f0b1a
GET /jquery-3.7.1.min.js HTTP/1.1
Host: code.jquery.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://safetyswdomain.com
DNT: 1
Connection: keep-alive
Referer: https://safetyswdomain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=utf-8
last-modified: Fri, 18 Oct 1991 12:00:00 GMT
etag: W/"28feccc0-155ed"
cache-control: public, max-age=31536000, stale-while-revalidate=604800
access-control-allow-origin: *
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Wed, 08 May 2024 18:04:08 GMT
age: 1049244
x-served-by: cache-lga21978-LGA, cache-hel1410031-HEL
x-cache: HIT, HIT
x-cache-hits: 5, 208969
x-timer: S1715191448.259251,VS0,VE0
vary: Accept-Encoding
content-length: 30336
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/firebasejs/5.0.2/firebase-app.js | 142.250.74.163 | 200 OK | 8.6 kB |
URL GET HTTP/2www.gstatic.com/firebasejs/5.0.2/firebase-app.js IP142.250.74.163:443
Requested byhttps://safetyswdomain.com/S1FLePUgAS CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeJavaScript source, ASCII text, with very long lines (25088) Hash9164d0e8a317eceb870cca88c9683127 4617c910005f7100b4ff26a458a8b4463e33cdc6 15c9bd66992ef54979c981763cae280f28b6845520020ed38b5ab5f3f70f7931
GET /firebasejs/5.0.2/firebase-app.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safetyswdomain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 8604
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 20:42:54 GMT
expires: Fri, 02 May 2025 20:42:54 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 10 May 2018 20:35:51 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 508874
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js | 142.250.74.163 | 200 OK | 10 kB |
URL GET HTTP/2www.gstatic.com/firebasejs/5.0.2/firebase-messaging.js IP142.250.74.163:443
Requested byhttps://safetyswdomain.com/S1FLePUgAS CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeJavaScript source, ASCII text, with very long lines (35547) Hash0cb7a0eb328ea70ab360f861314c8820 e3e20eb50dae36f4cbcef1890b1cc7878acb537a 4569845f7c550a55311814032e88541bd3b4a055ec3894e9cf58c4fff1be91d9
GET /firebasejs/5.0.2/firebase-messaging.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safetyswdomain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/firebase-js
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="firebase-js"
report-to: {"group":"firebase-js","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/firebase-js"}]}
content-length: 10017
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 23:33:31 GMT
expires: Fri, 02 May 2025 23:33:31 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 10 May 2018 20:35:52 GMT
content-type: text/javascript; charset=UTF-8
vary: Accept-Encoding
age: 498637
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.jmp-assets.com/prod/push-lang-config.js | 23.36.76.179 | 200 OK | 2.4 kB |
URL GET HTTP/1.1cdn.jmp-assets.com/prod/push-lang-config.js IP23.36.76.179:443 ASN#20940 Akamai International B.V.
Requested byhttps://safetyswdomain.com/S1FLePUgAS CertificateIssuerLet's Encrypt Subjectcdn.smrt-content.com Fingerprint2B:7E:EA:63:CE:17:9B:FE:88:49:C0:9C:D8:70:CC:59:BE:F2:4F:00 ValidityFri, 22 Mar 2024 14:16:46 GMT - Thu, 20 Jun 2024 14:16:45 GMT
File typeJavaScript source, Unicode text, UTF-8 text, with very long lines (7658), with no line terminators Hash7152525f63649929a736f6efb78b58a5 5bf8138b39eaeebdf4681ad31fac3a02075e36ad f1f5518e39341d6f4189be101a85c496add2a43b569a809bd3193d52f3e61de1
GET /prod/push-lang-config.js HTTP/1.1
Host: cdn.jmp-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safetyswdomain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Tue, 15 Feb 2022 10:45:43 GMT
ETag: "7152525f63649929a736f6efb78b58a5"
x-amz-meta-s3cmd-attrs: atime:1644921890/ctime:1644921887/gid:20/gname:staff/md5:7152525f63649929a736f6efb78b58a5/mode:33188/mtime:1644921887/uid:501/uname:nimspy
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: EWR53-C1
X-Amz-Cf-Id: PlzHg_kpLQKC63Gp9E61K1OBX5ibTIl975NYZyc2dmovD1t05XIN0Q==
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 08 May 2024 18:04:08 GMT
Content-Length: 2366
Connection: keep-alive
|
|
| fonts.googleapis.com/css?family=Montserrat&subset=latin-ext | 142.250.74.138 | 200 OK | 1.0 kB |
URL GET HTTP/2fonts.googleapis.com/css?family=Montserrat&subset=latin-ext IP142.250.74.138:443
Requested byhttps://safetyswdomain.com/S1FLePUgAS CertificateIssuerGoogle Trust Services LLC Subjectupload.video.google.com Fingerprint36:49:20:36:0C:4D:DA:55:65:64:23:0F:49:3E:FA:78:87:35:A3:79 ValidityTue, 16 Apr 2024 04:17:12 GMT - Tue, 09 Jul 2024 04:17:11 GMT
File typegzip compressed data, max compression Hash93a0dac2d7ac3ea20bd7d45e9a126d1e 9bf9a11e327be499d678b70cdbce036f2917957c 475067bbc6c4bc9d2a7548716de9199fa85e5d55c52d631a3e8b516d3bfce0ab
GET /css?family=Montserrat&subset=latin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safetyswdomain.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 08 May 2024 18:04:08 GMT
date: Wed, 08 May 2024 18:04:08 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| cdn.jmp-assets.com/assets/1387/js/backoffer.js | 23.36.76.179 | 200 OK | 660 B |
URL GET HTTP/1.1cdn.jmp-assets.com/assets/1387/js/backoffer.js IP23.36.76.179:443 ASN#20940 Akamai International B.V.
Requested byhttps://safetyswdomain.com/S1FLePUgAS CertificateIssuerLet's Encrypt Subjectcdn.smrt-content.com Fingerprint2B:7E:EA:63:CE:17:9B:FE:88:49:C0:9C:D8:70:CC:59:BE:F2:4F:00 ValidityFri, 22 Mar 2024 14:16:46 GMT - Thu, 20 Jun 2024 14:16:45 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hashe7e1dc07852a36f89e4be03aa3787316 0dc3f8e7eb943af093cf8f4600fcf0e421891025 33b8a5c4f883a3a775162d3c5287fe94bc4b22a86fe8b52fcb5aa615d2ffe388
GET /assets/1387/js/backoffer.js HTTP/1.1
Host: cdn.jmp-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safetyswdomain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/javascript
Content-Length: 660
Last-Modified: Thu, 06 May 2021 12:38:04 GMT
ETag: "e7e1dc07852a36f89e4be03aa3787316"
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: JFK51-C1
X-Amz-Cf-Id: Ct4gwLcTloBEVOXNAkPHVE_nt09klAc2VQmBXL2NgHnXp5GYhbW-rA==
Date: Wed, 08 May 2024 18:04:08 GMT
Connection: keep-alive
|
|
| cdn.jmp-assets.com/devassets/4052/js/multilang.js | 23.36.76.179 | 200 OK | 8.2 kB |
URL GET HTTP/1.1cdn.jmp-assets.com/devassets/4052/js/multilang.js IP23.36.76.179:443 ASN#20940 Akamai International B.V.
Requested byhttps://safetyswdomain.com/S1FLePUgAS CertificateIssuerLet's Encrypt Subjectcdn.smrt-content.com Fingerprint2B:7E:EA:63:CE:17:9B:FE:88:49:C0:9C:D8:70:CC:59:BE:F2:4F:00 ValidityFri, 22 Mar 2024 14:16:46 GMT - Thu, 20 Jun 2024 14:16:45 GMT
Hash90b2126822e1f6ab5e4ec1569b545596 a7e767d83f82c3de040e9f31fec60255d937fd53 e5349f85a6e16999378e7a89cdcf2a0b1c18428013da7e69b2e70f4ef8b72889
GET /devassets/4052/js/multilang.js HTTP/1.1
Host: cdn.jmp-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safetyswdomain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: text/javascript
Last-Modified: Fri, 23 Feb 2024 16:23:39 GMT
ETag: "90b2126822e1f6ab5e4ec1569b545596"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: EWR53-C1
X-Amz-Cf-Id: yuKu7ESBSe6XL_amZ3ursyc1r1BaB4e3eXYxBWIENUEYl6ZIFldv5g==
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 08 May 2024 18:04:08 GMT
Content-Length: 8243
Connection: keep-alive
|
|
| cdn.jmp-assets.com/prod/push-subscriber.js | 23.36.76.179 | 200 OK | 4.4 kB |
URL GET HTTP/1.1cdn.jmp-assets.com/prod/push-subscriber.js IP23.36.76.179:443 ASN#20940 Akamai International B.V.
Requested byhttps://safetyswdomain.com/S1FLePUgAS CertificateIssuerLet's Encrypt Subjectcdn.smrt-content.com Fingerprint2B:7E:EA:63:CE:17:9B:FE:88:49:C0:9C:D8:70:CC:59:BE:F2:4F:00 ValidityFri, 22 Mar 2024 14:16:46 GMT - Thu, 20 Jun 2024 14:16:45 GMT
File typeJavaScript source, ASCII text Hash6b5bccad39f7057909ad0660f33cc2fa a7995e45d98a311f94c3f6f096a7e414b5a34407 765f676a53b5275cb0bf0835962b72accd340101ac2e32d8a215f8b1047b0941
GET /prod/push-subscriber.js HTTP/1.1
Host: cdn.jmp-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safetyswdomain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/javascript
Last-Modified: Tue, 29 Mar 2022 15:19:51 GMT
ETag: "6b5bccad39f7057909ad0660f33cc2fa"
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: JFK51-C1
X-Amz-Cf-Id: 35kqMJuJ1u5RjAKtxbnFwd5U4zZZCXGXjyOLiAvqNh6C3w79fp8VLA==
Vary: Accept-Encoding
Content-Encoding: gzip
Date: Wed, 08 May 2024 18:04:08 GMT
Content-Length: 4395
Connection: keep-alive
|
|
| safetyswdomain.com/S1FLePUgAS | 54.76.248.31 | 200 OK | 8.6 kB |
URL User Request GET HTTP/2safetyswdomain.com/S1FLePUgAS IP54.76.248.31:443
CertificateIssuerAmazon Subjectsafetyswdomain.com Fingerprint15:85:39:72:02:3B:BE:03:3D:39:2C:75:2B:27:B5:C1:1C:6F:21:C2 ValidityWed, 30 Aug 2023 00:00:00 GMT - Fri, 27 Sep 2024 23:59:59 GMT
File typegzip compressed data, from Unix Hash006df8124119dc6d565529c8c7d5af9a 083742554b827cd7fbc21a715e75a724eebdc47c 91dc6f04ad12279cf8ec0c84ed5c64294e313568ff0ef269fb137a4af0378a68
Analyzer | Verdict | Alert | Quad9 DNS | malicious | Sinkholed |
GET /S1FLePUgAS HTTP/1.1
Host: safetyswdomain.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 18:04:08 GMT
content-type: text/html;charset=utf-8
server: nginx
vary: Accept-Encoding, Accept-Encoding
set-cookie: v_seg_freq_v2_1_001=yVtRd63XvId1wk9xIzRh5UHN+ojmyCD/Hr8c7H4nqrc=; Domain=.safetyswdomain.com; Expires=Tue, 06-Aug-2024 18:04:08 GMT; Path=/; Secure; SameSite=None
gdm_uid_v2_1_001=mYIW65OP16k4mvIs05cIzdoMiI9JlFa0CWjYhVFQaWNRHG+z4vF+p1YV9+rrQuc9; Domain=.safetyswdomain.com; Expires=Tue, 06-Aug-2024 18:04:08 GMT; Path=/; Secure; SameSite=None
gdm_visit_freq_v2_1_001=gtb2PIdYIK5rjOnGhnl/I6+nRj42vU8FcbYpU/uwdly8W60IKbzEX/NIZ4d0OQWl; Domain=.safetyswdomain.com; Expires=Tue, 06-Aug-2024 18:04:08 GMT; Path=/; Secure; SameSite=None
gdm_suid_v2_1_001=HPfHs3OFxkaNOwO68jCjbQ==; Domain=.safetyswdomain.com; Expires=Tue, 06-Aug-2024 18:04:08 GMT; Path=/; Secure; SameSite=None
gdm_suid_v1_1_001=HPfHs3OFxkaNOwO68jCjbQ==; Domain=.safetyswdomain.com; Expires=Tue, 06-Aug-2024 18:04:08 GMT; Path=/
v_rule_freq_v2_1_001=0momyqPzfHX97/PKKSo1Nd/Rx5mSd0RgsOysvMROdNg=; Domain=.safetyswdomain.com; Expires=Tue, 06-Aug-2024 18:04:08 GMT; Path=/; Secure; SameSite=None
gdm_visit_freq_v1_1_001=gtb2PIdYIK5rjOnGhnl/I6+nRj42vU8FcbYpU/uwdly8W60IKbzEX/NIZ4d0OQWl; Domain=.safetyswdomain.com; Expires=Tue, 06-Aug-2024 18:04:08 GMT; Path=/
gdm_uid_v1_1_001=mYIW65OP16k4mvIs05cIzdoMiI9JlFa0CWjYhVFQaWNRHG+z4vF+p1YV9+rrQuc9; Domain=.safetyswdomain.com; Expires=Tue, 06-Aug-2024 18:04:08 GMT; Path=/
v_rule_freq_v1_1_001=0momyqPzfHX97/PKKSo1Nd/Rx5mSd0RgsOysvMROdNg=; Domain=.safetyswdomain.com; Expires=Tue, 06-Aug-2024 18:04:08 GMT; Path=/
v_seg_freq_v1_1_001=yVtRd63XvId1wk9xIzRh5UHN+ojmyCD/Hr8c7H4nqrc=; Domain=.safetyswdomain.com; Expires=Tue, 06-Aug-2024 18:04:08 GMT; Path=/
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Sat, 1 May 2020 12:00:00 GMT
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: Accept,Authorization,Cache-Control,Content-Type,DNT,If-Modified-Since,Keep-Alive,Origin,User-Agent,X-Requested-With,X-Auth,Pasha-Jlob
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| cdn.jmp-assets.com/devassets/4052/video/1.mp4 | 23.36.76.179 | 206 Partial Content | 813 kB |
URL GET HTTP/1.1cdn.jmp-assets.com/devassets/4052/video/1.mp4 IP23.36.76.179:443 ASN#20940 Akamai International B.V.
Requested byhttps://safetyswdomain.com/S1FLePUgAS CertificateIssuerLet's Encrypt Subjectcdn.smrt-content.com Fingerprint2B:7E:EA:63:CE:17:9B:FE:88:49:C0:9C:D8:70:CC:59:BE:F2:4F:00 ValidityFri, 22 Mar 2024 14:16:46 GMT - Thu, 20 Jun 2024 14:16:45 GMT
File typeISO Media, MP4 Base Media v1 [ISO 14496-12:2003] Size813 kB (812806 bytes) Hash0e69f55dab6828ef2d98f705f9b67762 8d10428259edf7c06be9d36aa295c67a86892c8e adf21d7585851751fbde3c5d7b20a75c53406024e2e27c0236dfc9d145dc60c5
GET /devassets/4052/video/1.mp4 HTTP/1.1
Host: cdn.jmp-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: video/webm,video/ogg,video/*;q=0.9,application/ogg;q=0.7,audio/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://safetyswdomain.com/
Sec-Fetch-Dest: video
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 206 Partial Content
Content-Type: video/mp4
Last-Modified: Fri, 23 Feb 2024 16:18:37 GMT
ETag: "0e69f55dab6828ef2d98f705f9b67762"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: EWR53-C1
X-Amz-Cf-Id: hvRBe-au9D41lfITWa8nQUU_dn6xtQrItANOMvoyvRhhpoqZbYAdHw==
Date: Wed, 08 May 2024 18:04:08 GMT
Content-Range: bytes 0-812805/812806
Content-Length: 812806
Connection: keep-alive
|
|
| fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 | 216.58.207.227 | 200 OK | 15 kB |
URL GET HTTP/2fonts.gstatic.com/s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 IP216.58.207.227:443
Requested byhttps://safetyswdomain.com/S1FLePUgAS CertificateIssuerGoogle Trust Services LLC Subject*.gstatic.com Fingerprint15:DD:05:B3:2F:D8:E3:54:C9:B4:FA:E4:AC:01:ED:C8:E1:EA:A7:AD ValidityTue, 16 Apr 2024 04:17:07 GMT - Tue, 09 Jul 2024 04:17:06 GMT
File typeWeb Open Font Format (Version 2), TrueType, length 14940, version 1.0 Hasha46fb7aae99225fdfd9d64b2b8b1063f 1ee50bf5985c1956dde1c06d9b1cec4645ddb92b 4b5816bbfc52587979139951355fe4048da02ce60e40cef8e4a1efb6cd396281
GET /s/montserrat/v26/JTUHjIg1_i6t8kCHKm4532VJOt5-QNFgpCtr6Hw5aXo.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://safetyswdomain.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 14940
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 02 May 2024 01:57:59 GMT
expires: Fri, 02 May 2025 01:57:59 GMT
cache-control: public, max-age=31536000
last-modified: Wed, 13 Sep 2023 22:46:07 GMT
content-type: font/woff2
age: 576369
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-TR8VQRX | 142.250.74.168 | 200 OK | 77 kB |
URL GET HTTP/2www.googletagmanager.com/gtm.js?id=GTM-TR8VQRX IP142.250.74.168:443
Requested byhttps://safetyswdomain.com/S1FLePUgAS CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (2285) Hash3f781175e8c85bdd8249a320458fa911 06d2cafb3654e78214932e2f02ca3da1738e9841 7e4b1369e7e35312ce9297ca89d64d9f4ce37325126989c709f41defb62a6e97
GET /gtm.js?id=GTM-TR8VQRX HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safetyswdomain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 18:04:08 GMT
expires: Wed, 08 May 2024 18:04:08 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 77215
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
|
|
| www.googletagmanager.com/gtm.js?id=GTM-5R6C28C | 142.250.74.168 | 200 OK | 66 kB |
URL GET HTTP/3www.googletagmanager.com/gtm.js?id=GTM-5R6C28C IP142.250.74.168:443
Requested byhttps://safetyswdomain.com/S1FLePUgAS CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (4046) Hashb9500d79f62905cbae93e2984b58aae2 0beb4d58aad14edd49f0164155e2ebd8e63b1b34 62f5df5496a85e36d9540c27ce1ad14966da7e4edbfb1378ca8e2b4a271d4373
GET /gtm.js?id=GTM-5R6C28C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safetyswdomain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 18:04:09 GMT
expires: Wed, 08 May 2024 18:04:09 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 65986
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtag/js?id=G-C3EPRPS8FB&l=dataLayer&cx=c | 142.250.74.168 | 200 OK | 94 kB |
URL GET HTTP/3www.googletagmanager.com/gtag/js?id=G-C3EPRPS8FB&l=dataLayer&cx=c IP142.250.74.168:443
Requested byhttps://safetyswdomain.com/S1FLePUgAS CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (3034) Hashb614b44d91ebc7834a56400168d67c1a 0322a96c667b5941990e589863a4aa9ca2b5bfd1 719d98402e0d89248d7795bbeb7da8f2051e3c0ffa6fb85c2ab51b53ca40f39b
GET /gtag/js?id=G-C3EPRPS8FB&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safetyswdomain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 18:04:09 GMT
expires: Wed, 08 May 2024 18:04:09 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93853
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtm.js?id=GTM-5R6C28C | 142.250.74.168 | 200 OK | 66 kB |
URL GET HTTP/3www.googletagmanager.com/gtm.js?id=GTM-5R6C28C IP142.250.74.168:443
Requested byhttps://safetyswdomain.com/S1FLePUgAS CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (4046) Hashf8add5654b6e1b5f2accad7b9297a887 a338d6a58f8a7076b088bc9887834265820ba958 2e7cb8d78e5e83a270258d42b121794b7dab8dd02f93092458795e793bbe7f41
GET /gtm.js?id=GTM-5R6C28C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safetyswdomain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 18:04:09 GMT
expires: Wed, 08 May 2024 18:04:09 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 65933
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| www.googletagmanager.com/gtm.js?id=GTM-5R6C28C | 142.250.74.168 | 200 OK | 66 kB |
URL GET HTTP/3www.googletagmanager.com/gtm.js?id=GTM-5R6C28C IP142.250.74.168:443
Requested byhttps://safetyswdomain.com/S1FLePUgAS CertificateIssuerGoogle Trust Services LLC Subject*.google-analytics.com Fingerprint93:6B:D2:9D:92:BE:2D:D8:02:67:82:83:5E:EF:A3:F9:13:F3:26:AE ValidityTue, 16 Apr 2024 03:18:45 GMT - Tue, 09 Jul 2024 03:18:44 GMT
File typeJavaScript source, ASCII text, with very long lines (4046) Hash1f7d21244e9c3843b6f033b9acd9bc8c ebdfe92b8e6b966dd04724d146c38e85fb0f792e 7104734c459bd417410cc14ac2ce961efb8ae0b9e98c76d69999c9bcd3015026
GET /gtm.js?id=GTM-5R6C28C HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safetyswdomain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 08 May 2024 18:04:09 GMT
expires: Wed, 08 May 2024 18:04:09 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 65974
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
|
|
| tsyndicate.com/api/v1/retargeting/set/3f949dfe-3372-4caa-baf0-047f88323cfa?pageviewe={pageviewe}&lead={lead} | 78.46.40.103 | 200 OK | 43 B |
URL GET HTTP/2tsyndicate.com/api/v1/retargeting/set/3f949dfe-3372-4caa-baf0-047f88323cfa?pageviewe={pageviewe}&lead={lead} IP78.46.40.103:443 ASN#24940 Hetzner Online GmbH
Requested byhttps://safetyswdomain.com/S1FLePUgAS CertificateIssuerLet's Encrypt Subjecttsyndicate.com FingerprintF5:9F:1F:89:8F:08:CD:46:43:4B:55:0A:42:66:52:21:16:57:43:31 ValidityFri, 12 Apr 2024 09:06:37 GMT - Thu, 11 Jul 2024 09:06:36 GMT
File typeGIF image data, version 89a, 1 x 1 Hashba036c43037cfe89320d1ef7b64cd43f 88c72d3e26047eb1e45e5564a76427734f120efe 42cb846e07917f6731406e500f24aeb2e88c42cda124eaa59e08c5331cad8bcb
GET /api/v1/retargeting/set/3f949dfe-3372-4caa-baf0-047f88323cfa?pageviewe={pageviewe}&lead={lead} HTTP/1.1
Host: tsyndicate.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safetyswdomain.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
server: nginx
date: Wed, 08 May 2024 18:04:09 GMT
content-type: image/gif
content-length: 43
pragma: no-cache
expires: 0
vary: *
x-api-version: 1
x-request-id: 4fb482597ce874c1
set-cookie: ts_rt_3f949dfe-3372-4caa-baf0-047f88323cfa=ANmUCUOmR4kbQgQSPEjEBJwwZ8rYSVPmThmDCB9GnFixDMOA; expires=Thu, 08 May 2025 18:04:09 GMT; path=/; HttpOnly; secure; SameSite=None
cache-control: no-cache, no-store, no-transform, must-revalidate, no-transform
x-robots-tag: none, noindex, nofollow
report-to: { "url": "https://pxl.tsyndicate.com/api/v1/heavy-ad/report", "max_age": 86401 }
X-Firefox-Spdy: h2
|
|
| ocsp.e2m02.amazontrust.com/ | 143.204.53.97 | | 280 B |
URL ocsp.e2m02.amazontrust.com/ IP143.204.53.97:0
Hash07d08618ade8ec8a5299447cb02277b8 a79720fb0d41f9a7399ba3871be8f56baa2723ed 9f939e2948022ca46c0961e2e7c5d33c683ff551e82ac23f5d79825f4409afc9
POST / HTTP/1.1
Host: ocsp.e2m02.amazontrust.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 280
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Wed, 08 May 2024 18:04:09 GMT
Last-Modified: Wed, 08 May 2024 17:12:02 GMT
Server: ECAcc (amb/6AA6)
X-Cache: Miss from cloudfront
Via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: x4wNi5XaTTpcX0LkjxJ_cEP3WcTqqqhLMkG5vdXW5iYJUWfCxrbUZA==
Age: 3127
|
|
| cloudflrcdn.com/color?x=1&forScheme=aHR0cHM6Ly9zYWZldHlzd2RvbWFpbi5jb20vUzFGTGVQVWdBUw== | 44.194.10.59 | 204 No Content | 0 B |
URL GET HTTP/2cloudflrcdn.com/color?x=1&forScheme=aHR0cHM6Ly9zYWZldHlzd2RvbWFpbi5jb20vUzFGTGVQVWdBUw== IP44.194.10.59:443
Requested byhttps://safetyswdomain.com/S1FLePUgAS CertificateIssuerAmazon Subjectcloudflrcdn.com Fingerprint65:5A:56:CE:D2:21:48:13:54:07:CA:43:C4:19:72:3D:1C:C8:BE:E5 ValidityWed, 17 Apr 2024 00:00:00 GMT - Sat, 17 May 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /color?x=1&forScheme=aHR0cHM6Ly9zYWZldHlzd2RvbWFpbi5jb20vUzFGTGVQVWdBUw== HTTP/1.1
Host: cloudflrcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://safetyswdomain.com
DNT: 1
Connection: keep-alive
Referer: https://safetyswdomain.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 204 No Content
date: Wed, 08 May 2024 18:04:09 GMT
server: nginx
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: *
X-Firefox-Spdy: h2
|
|
| cdn.jmpcdn.com/assets/3420/images/6.ico | 23.36.76.194 | 200 OK | 4.3 kB |
URL GET HTTP/1.1cdn.jmpcdn.com/assets/3420/images/6.ico IP23.36.76.194:443 ASN#20940 Akamai International B.V.
Requested byhttps://safetyswdomain.com/S1FLePUgAS CertificateIssuerLet's Encrypt Subjectcdn.smrt-content.com Fingerprint2B:7E:EA:63:CE:17:9B:FE:88:49:C0:9C:D8:70:CC:59:BE:F2:4F:00 ValidityFri, 22 Mar 2024 14:16:46 GMT - Thu, 20 Jun 2024 14:16:45 GMT
File typeMS Windows icon resource - 1 icon, 32x32, 32 bits/pixel Hashc62f95ec3ca566be8be396bca24c92a5 51a6ff0e1a233a612ac33283bbb3d39c8f5e7644 b91d02ba417bb7defd5b66e7b6d576edd428db676d389a417dffaf7f01fc0956
GET /assets/3420/images/6.ico HTTP/1.1
Host: cdn.jmpcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safetyswdomain.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/vnd.microsoft.icon
Content-Length: 4286
Last-Modified: Fri, 16 Jun 2023 22:31:06 GMT
ETag: "c62f95ec3ca566be8be396bca24c92a5"
x-amz-server-side-encryption: AES256
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: JFK50-P7
X-Amz-Cf-Id: 3a_7KJG0tMEWXi9biE7MYVKzKnMqHUu4cAu0DA0ZIppMDhDTTCmiwg==
Date: Wed, 08 May 2024 18:04:09 GMT
Connection: keep-alive
|
|
| statisticresearch.com/user-segments/?pid=TH | 54.83.28.39 | 200 OK | 62 B |
URL GET HTTP/2statisticresearch.com/user-segments/?pid=TH IP54.83.28.39:443
Requested byhttps://safetyswdomain.com/S1FLePUgAS CertificateIssuerAmazon Subjectstatisticresearch.com Fingerprint2F:CC:98:EF:04:8B:A4:59:6A:E1:12:94:3E:BB:CC:0C:05:BA:C2:B7 ValidityMon, 05 Feb 2024 00:00:00 GMT - Tue, 04 Mar 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hashac0b622721bcfcdc85cdebb98ad03bf9 f1981b6dff8ad407bbb760ac6cfd57ae7c921fa0 7b2a79e668b985367b96ed97f0b5544d66cfd8fc78dc1d09110aa62dc1586179
GET /user-segments/?pid=TH HTTP/1.1
Host: statisticresearch.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safetyswdomain.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Wed, 08 May 2024 18:04:09 GMT
server: nginx
X-Firefox-Spdy: h2
|
|
| cdn.jmp-assets.com/assets/1235/images/TTlogo.png | 23.36.76.179 | 200 OK | 4.2 kB |
URL GET HTTP/1.1cdn.jmp-assets.com/assets/1235/images/TTlogo.png IP23.36.76.179:443 ASN#20940 Akamai International B.V.
Requested byhttps://safetyswdomain.com/S1FLePUgAS CertificateIssuerLet's Encrypt Subjectcdn.smrt-content.com Fingerprint2B:7E:EA:63:CE:17:9B:FE:88:49:C0:9C:D8:70:CC:59:BE:F2:4F:00 ValidityFri, 22 Mar 2024 14:16:46 GMT - Thu, 20 Jun 2024 14:16:45 GMT
File typePNG image data, 254 x 64, 8-bit/color RGBA, non-interlaced Hash2f2e21df9c90ffb29c50d4b08367cf53 eeef7cb9a056189158041618753e7d66334869d9 a3e3981a2acf732849aae258cb0282db3d2a76d774be07082dc92d79428430ea
GET /assets/1235/images/TTlogo.png HTTP/1.1
Host: cdn.jmp-assets.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://safetyswdomain.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: image/png
Content-Length: 4226
Last-Modified: Wed, 03 Mar 2021 17:27:56 GMT
ETag: "2f2e21df9c90ffb29c50d4b08367cf53"
Accept-Ranges: bytes
Server: AmazonS3
X-Amz-Cf-Pop: EWR53-C1
X-Amz-Cf-Id: 9-779TgOQpUx1dB7lM_OdL2rP3ZRWODQvBqXaP-gE4XCkx4-8LqXZA==
Date: Wed, 08 May 2024 18:04:08 GMT
Connection: keep-alive
|
|