firefox.settings.services.mozilla.com/v1/
143.204.55.27200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash b593eb39329cfe060d55be5e4a5405e2
78e46c1028e9f94f8569303ad2d90d7df13a059a
08a810103557efe55ca4425ff0cf82593f1f54633df899127eaec9bee05d4d04
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, Alert, Content-Length, Content-Type, Backoff
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Tue, 06 Sep 2022 17:04:20 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: KmKMH18vi9tk1vt5a2qTLPOoHH-cs8OJNQWV1tvD0tCfUyZ3Qvym2A==
Age: 2399
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=15440
Expires: Tue, 06 Sep 2022 22:01:39 GMT
Date: Tue, 06 Sep 2022 17:44:19 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Tue, 06 Sep 2022 01:15:18 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 f00e3524edcdf61801454f2bb21e71ce.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: 2cf7dcSeKtq4C0u-gqrzkBEIynn4Y_2TJwgwbpcFs3XMFtTjq8c0Lg==
age: 59342
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 17:44:19 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
154.16.114.64301 Moved Permanently 0 B URL HTTP/1.1 biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?aff_id=15&subid2=6383_sessid20220906174327644&subid=466 HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Tue, 06 Sep 2022 17:44:19 GMT
Server: Apache
X-Redirect-By: WordPress
Upgrade: h2,h2c
Connection: Upgrade, Keep-Alive
Location: https://biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
Content-Length: 0
Keep-Alive: timeout=5, max=100
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.27200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.27:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Retry-After, ETag, Backoff, Last-Modified, Pragma, Cache-Control, Expires, Content-Type, Content-Length, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Cache-Control: max-age=3600
Date: Tue, 06 Sep 2022 17:38:18 GMT
Expires: Tue, 06 Sep 2022 17:42:30 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 50584ad285d5f627ddebae74efdd0770.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: GGZOHaj6i2HtJ8aTzxErcGWqiS9dXsnKsrQzUKaMnUagJPD0lq_6ow==
Age: 362
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash e8952752ad4a452a575522a7eb737217
c5554fa2af05d7a7117032b0f99352de08988346
8c182bed7bbd843774a2136823b30a4cb707e2a5386f71d01640aa3558888bf7
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2466
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 17:44:20 GMT
Last-Modified: Tue, 06 Sep 2022 17:03:14 GMT
Server: ECS (ska/F707)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
35.164.146.235101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 35.164.146.235:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: YRrYECBruHIds3erTmCjYA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: hiO+aET07zVEjI6qEwL+cAxEZ1U=
biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
154.16.114.64301 Moved Permanently 0 B URL HTTP/2 biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /?aff_id=15&subid2=6383_sessid20220906174327644&subid=466 HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
x-redirect-by: WordPress
location: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
content-length: 0
content-type: text/html; charset=UTF-8
date: Tue, 06 Sep 2022 17:44:20 GMT
server: Apache
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7297
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 17:44:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7297
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 17:44:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7297
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 17:44:21 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.77.32200 OK 503 B IP 23.36.77.32:0
ASN #20940 Akamai International B.V.
Hash bc70b1691dd339e8120b92ba393ffb69
99118be3645b3182ccdc5f9da149a97c220a3929
da94f53f998808b2b187d6c265722e95e4cdce9f0a4b23ff0bf6c96d2cdf2bd8
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "DA94F53F998808B2B187D6C265722E95E4CDCE9F0A4B23FF0BF6C96D2CDF2BD8"
Last-Modified: Mon, 05 Sep 2022 08:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=7297
Expires: Tue, 06 Sep 2022 19:45:58 GMT
Date: Tue, 06 Sep 2022 17:44:21 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
34.120.237.76200 OK 13 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash ec466c0d472e43c11d36bf6fce068205
720d3624a76d060b8e2699e9aa7a320e3efd4878
5553fc24713aae808f5ab81671551b0ae719435f3ced9f25df97d8edf6bfe86f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F106059e1-95ed-4ffb-b6d2-7b4f160333ed.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 12683
x-amzn-requestid: 6127e5b6-72f6-40df-b400-41a1f147f6da
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Xz8XmEe0IAMFQDA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63117430-2b27a2683d2d320172cef32e;Sampled=0
x-amzn-remapped-date: Fri, 02 Sep 2022 03:10:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: Mj_IT5g7hGu2AunKK7mvierv5BQ8cAxhnbGaUNsL6hRNu6MRAzIBDw==
via: 1.1 56c69262ecfa7873b40572ba8a323242.cloudfront.net (CloudFront), 1.1 4f3feb5c4393987d42d1971d404d7cea.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 04:36:52 GMT
age: 47249
etag: "720d3624a76d060b8e2699e9aa7a320e3efd4878"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg
34.120.237.76200 OK 7.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8c23179b2131543088771e3fa84ff231
ae50ae4aecd962b698c19f2863857b51cea7fcec
660900ca69b1787a734c1dbe3d6b9b19656912b4bc4715964c4325edff57f008
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc4b02d0f-9da0-42dc-a234-02e974e7d286.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7855
x-amzn-requestid: d7c8054c-d7d3-4b76-815d-36c3a2e1f6a4
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYn6FwzoAMF40g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166e32-3ededbf27f83503978e0d775;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:46:26 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: 8OlwFzmUfQEPeP7pT-g5wRMq0I1jllBnRU0Nxk4kNkcVD_evLZYc7g==
via: 1.1 98e601970ea59f4d5f56a752787ff9fc.cloudfront.net (CloudFront), 1.1 989017835f43d594873bde5a7ee7fe5e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 22:17:51 GMT
etag: "ae50ae4aecd962b698c19f2863857b51cea7fcec"
content-type: image/jpeg
age: 69990
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 983e705542fa78b4d5c876e0c1eada7e
5fc951e5236edd282d4975853ca35dab2e55fb17
fa6e478fc213f6cb6c9f33c96c51105262c857bfe313b3d310755be30b1feeb3
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fe1756524-f0d1-4149-aa44-603b827f87d4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6656
x-amzn-requestid: 2703eaf4-1a5a-41a6-859b-47255865efb0
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAX-3F2ZIAMFpLg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166d2b-6df026de5a9230ed429d08c1;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:42:03 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: FIIvB2jeQ_PBDzi8XRN0jnNxze3OwDbz8TBaIcadRvmQd2EFhCwX7Q==
via: 1.1 0c96ded7ff282d2dbcf47c918b6bb500.cloudfront.net (CloudFront), 1.1 001e7070d795018d01b93988b9723742.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 21:45:42 GMT
age: 71919
etag: "5fc951e5236edd282d4975853ca35dab2e55fb17"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png
34.120.237.76200 OK 8.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6bb4b1d74f1443bc3328301ab3ae6464
2768253dacaaad6cb498c6b2eb7694208b0ce0a6
07dcc95dab7757402998a5a61b540c965ce95c8bd51a814a09438981693b563a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc410b0d8-b008-47cc-bbf7-a762c06e0fcd.png HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8688
x-amzn-requestid: 1c5fbc89-8ce8-4792-b713-f2c0ceeab737
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X5wifFJYoAMFi0g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6313c7a9-214311e155c661ff77d89906;Sampled=0
x-amzn-remapped-date: Sat, 03 Sep 2022 21:31:21 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: wd9SF3txQNTVUaSPcKQ_nQfPt1pBjFbuHzSZiQjfbGBSb-i7J8Rgjg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 6396e88c437c096ef98930ce29f731a2.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 20:12:25 GMT
age: 77516
etag: "2768253dacaaad6cb498c6b2eb7694208b0ce0a6"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F803e9506-f3ea-4e09-a966-608b8dabf3b0.jpeg
34.120.237.76200 OK 8.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F803e9506-f3ea-4e09-a966-608b8dabf3b0.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 5540d72831e7e7b9fc287f92c48d9f5e
ec19429fa76d9ad47a0578734b011b530b79ebbf
bc27a44853fd17cf51d6bba0db58a755c75a309d9b0cbcd454dfc9d62785f72f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F803e9506-f3ea-4e09-a966-608b8dabf3b0.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8134
x-amzn-requestid: 5f6027e8-842f-476a-85e5-cc8b848e4567
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: X7FlpEoVIAMFuiA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63144fbd-7095c29a04d2f5310b1b84c4;Sampled=0
x-amzn-remapped-date: Sun, 04 Sep 2022 07:11:57 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: Gf6IGDeM-y_nDO1C3m9xeyAJdkYRe2CN87Pi986A7B1qsjq5p9VkQw==
via: 1.1 d7782b26e589b8e1397d352f4daf0d58.cloudfront.net (CloudFront), 1.1 01147dcc35d57fc0238a3c1700c13f16.cloudfront.net (CloudFront), 1.1 google
date: Tue, 06 Sep 2022 07:41:25 GMT
age: 36176
etag: "ec19429fa76d9ad47a0578734b011b530b79ebbf"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa58df54c-7833-44ce-9519-a44b50319614.jpeg
34.120.237.76200 OK 5.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa58df54c-7833-44ce-9519-a44b50319614.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 1a87857b93f99eab3118aae97a1c9d22
3aea6a5aaf5ccda356d7e0941b33a7c2e2b13e80
97ce11c0e0efe83d6568f173f9235160157c52b4ab4299823d508c072f113ddc
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fa58df54c-7833-44ce-9519-a44b50319614.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5775
x-amzn-requestid: dc0a6d9c-5aec-44a3-be54-69cec17f9de1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YAYfxE0noAMFz0A=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63166dfe-6c8ec4b03fc761d81c988132;Sampled=0
x-amzn-remapped-date: Mon, 05 Sep 2022 21:45:34 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: z3WamVQsZqAoYnfPZ0rgyYXGzs1jsv56D1oF4Wzva-H-T8a-xPU8mg==
via: 1.1 2dc111aa3ead15d061e41a423155a53a.cloudfront.net (CloudFront), 1.1 28390a4d24ed4fdccd685d99cd06cf4e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 05 Sep 2022 22:00:00 GMT
age: 71061
etag: "3aea6a5aaf5ccda356d7e0941b33a7c2e2b13e80"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 17:44:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 17:44:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.googleoptimize.com/optimize.js?id=OPT-PX828G2
142.250.74.46200 OK 41 kB URL HTTP/2 www.googleoptimize.com/optimize.js?id=OPT-PX828G2
IP 142.250.74.46:0
File type ASCII text, with very long lines (1615)
Hash 5523a3ddb5c19f2fd9ebcce271ae70a2
bb339def0d7e7653f2cc714ec71d95f973171953
4853d8c0ddc7a544f96e2089dfac21c31b0274cf0803832cda81fc554da14440
GET /optimize.js?id=OPT-PX828G2 HTTP/1.1
Host: www.googleoptimize.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Sep 2022 17:44:22 GMT
expires: Tue, 06 Sep 2022 17:44:22 GMT
cache-control: private, max-age=900
last-modified: Tue, 06 Sep 2022 16:00:34 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 41181
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
www.googletagmanager.com/gtag/js?id=G-NWVJ02QJDT
142.250.74.72200 OK 74 kB URL HTTP/2 www.googletagmanager.com/gtag/js?id=G-NWVJ02QJDT
IP 142.250.74.72:0
File type ASCII text, with very long lines (15517)
Hash 45e9fd15947b755856edc48e271777c4
1ea8b48e68f87eb76e84160746ad4a3f14b4b921
2409420233d9a3abe79095b75fc437d9c95d6a34655b297fd242705d11cfb726
GET /gtag/js?id=G-NWVJ02QJDT HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Tue, 06 Sep 2022 17:44:22 GMT
expires: Tue, 06 Sep 2022 17:44:22 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 73874
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 17:44:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 62c739a1335c5cf0fd4e783db6cdf14b
4f4a2acf32a7b7d8d86f7d0b037cdd16d59704ff
de1d42a2f47b8a7f1fed1880f1b485f63a5e07ede87fee3194cabeab056cf6f9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 17:44:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
154.16.114.64200 OK 244 kB URL HTTP/2 www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (1706), with CRLF, LF line terminators
Size 244 kB (243914 bytes)
Hash 7f58c34c2596a24b7c74f2fed7f471d1
06e9ce7e9ff1337bb89498a4321782f339985015
217229c6d114f024e8391042cdd85ae01b9a9d755889ce75c69632ceddd41660
GET /?aff_id=15&subid2=6383_sessid20220906174327644&subid=466 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
link: <https://www.biofungusnuker.com/wp-json/>; rel="https://api.w.org/", <https://www.biofungusnuker.com/wp-json/wp/v2/pages/7>; rel="alternate"; type="application/json", <https://www.biofungusnuker.com/>; rel=shortlink
content-length: 243914
content-type: text/html; charset=UTF-8
date: Tue, 06 Sep 2022 17:44:20 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=4.6.11
154.16.114.64200 OK 1.8 kB URL HTTP/2 www.biofungusnuker.com/wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=4.6.11
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
Hash 270d05c0ca7ab3b98eb99183bf1e1ef2
c68771f89466e43ebc4ed54028627be4b3e33977
5803ac00778699dfa69a5f4fed086bf5c29164864bdb5b2f36fe0e3cc98736fb
GET /wp-content/plugins/email-subscribers/lite/public/css/email-subscribers-public.css?ver=4.6.11 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 01 Mar 2021 10:38:34 GMT
accept-ranges: bytes
content-length: 1822
content-type: text/css
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=4.6.11
154.16.114.64200 OK 4.3 kB URL HTTP/2 www.biofungusnuker.com/wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=4.6.11
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
Hash d1fdce218e486089ed3e3c56ffd451ed
f4fb6b3f4ed76c5de129bf84279086dff7ca871f
a5a0ac2b3d285a43297085af1b35a9021164746c3fbee207c8595fbea5d63a4a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/email-subscribers/lite/public/js/email-subscribers-public.js?ver=4.6.11 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 01 Mar 2021 10:38:34 GMT
accept-ranges: bytes
content-length: 4275
content-type: application/javascript
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/uploads/themify-css/concate/themify-concate-405c7d81c6c9e9fa1575869d440c7211.min.css
154.16.114.64200 OK 98 kB URL HTTP/2 www.biofungusnuker.com/wp-content/uploads/themify-css/concate/themify-concate-405c7d81c6c9e9fa1575869d440c7211.min.css
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (21878), with CRLF, LF line terminators
Hash 94ca64bb0f9c94eb19d206fba21db8f1
08e7d6eaf66073b41a81046ed19bec3a1255f3d6
eb5e4adf7f88966858873eb0c0d2f5a385e4004580a9cc2c56867902e6d815e1
GET /wp-content/uploads/themify-css/concate/themify-concate-405c7d81c6c9e9fa1575869d440c7211.min.css HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:28:12 GMT
accept-ranges: bytes
content-length: 98404
content-type: text/css
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c0498832f97967e1fbaa64eba7c65094
2dcaaa99759c7b3279d75f4f934bf05a1c4ca8e7
63621ee746f1a80c3c6167ca190e5008e3e79db0bc8f0e5cb0e5dccc11ceb822
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 17:44:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.biofungusnuker.com/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
154.16.114.64200 OK 90 kB URL HTTP/2 www.biofungusnuker.com/wp-includes/js/jquery/jquery.min.js?ver=3.5.1
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (65451)
Hash b6f7093369a0e8b83703914ce731b13c
d1889f5c173c2a4b20288f1f84758599afd346ef
60240d5a27ede94fd35fea44bd110b88c7d8cfc08127f032d13b0c622b8be827
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.5.1 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 16 Dec 2020 07:58:04 GMT
accept-ranges: bytes
content-length: 89496
content-type: application/javascript
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 472 B IP 142.250.74.3:0
Hash c0498832f97967e1fbaa64eba7c65094
2dcaaa99759c7b3279d75f4f934bf05a1c4ca8e7
63621ee746f1a80c3c6167ca190e5008e3e79db0bc8f0e5cb0e5dccc11ceb822
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 17:44:22 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
code.jqueryoi.com/js/pub.min.js
67.212.173.78200 OK 1.5 kB URL HTTP/2 code.jqueryoi.com/js/pub.min.js
IP 67.212.173.78:0
File type ASCII text, with very long lines (3046)
Hash 6b59aef8edb9a8a745a3f09d386cebca
0c5831d854a3dcde9fd2ff6476484253219d9cf7
7dbd92ef041a0a0ca1a2b87f7bcf416eb60fd72670391ec82d2997e2dfd7b903
Analyzer Verdict Alert fortinet Malware
GET /js/pub.min.js HTTP/1.1
Host: code.jqueryoi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 17:44:22 GMT
content-type: application/javascript
content-length: 1547
last-modified: Wed, 22 Sep 2021 12:11:29 GMT
vary: Accept-Encoding
etag: "614b1d71-60b"
content-encoding: gzip
expires: Wed, 07 Sep 2022 17:44:22 GMT
cache-control: max-age=86400
strict-transport-security: max-age=31536000; includeSubdomains;
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/1r.jpg
154.16.114.64200 OK 231 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/1r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size 231 kB (231040 bytes)
Hash 3cc91d3adc5689ea23faa79a9860c982
15b017607ccd0bd87ad99c0aa704b730a183b382
9df5e3df32c0877bf589078c217f4989f67d1306952e0511834d2972c3fded65
GET /wp-content/uploads/2020/11/1r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:48 GMT
accept-ranges: bytes
content-length: 231040
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/7r.jpg
154.16.114.64200 OK 110 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/7r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 110 kB (109456 bytes)
Hash e44b3bd5bc837b9df1fd1cb74afdabd5
3f75200138c7b8e48d35ecf3b6618361aa9c8970
b9a0b47a56bbbc597bb6b8135d7281be2109187c03eaffbf96ae8c0aee47b4fa
GET /wp-content/uploads/2020/11/7r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:38 GMT
accept-ranges: bytes
content-length: 109456
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/28.-mONEY-bACK.png
154.16.114.64200 OK 7.3 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/28.-mONEY-bACK.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 746 x 152, 8-bit colormap, non-interlaced\012- data
Hash d1fb5a5d83c2b4979eb9a38a43802606
0c4ae4dcdbc2225423f6323927954ef1507141d3
ae4b6f2fc1e8d6f78110c5f0694ed905c6d599522f1ab5c30638bbb69fced66b
GET /wp-content/uploads/2020/10/28.-mONEY-bACK.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:24:56 GMT
accept-ranges: bytes
content-length: 7270
content-type: image/png
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/26.-60-Day-Money-Back-Guarantee.png
154.16.114.64200 OK 49 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/26.-60-Day-Money-Back-Guarantee.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 480 x 480, 8-bit colormap, non-interlaced\012- data
Hash 19daf776b1c17b081e2382735f469ae1
02111774fb0f42d7025bab2f9a35db5c877e1ae7
0573acd36c523ebb9fb914409f42ad0d6fc51d59b3b2a0dc52ca8c11124ab6db
GET /wp-content/uploads/2020/10/26.-60-Day-Money-Back-Guarantee.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:25:00 GMT
accept-ranges: bytes
content-length: 49004
content-type: image/png
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/2r.jpg
154.16.114.64200 OK 299 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/2r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size 299 kB (299066 bytes)
Hash 330a705f21c79091070ff8997ab6d92b
41f244b2fb7ab11ac2259c3f525e7c51ddfecbc7
74658094ced3ba5e265b4e3e75f8877e0d2646d88bbd2df46731221ed5a83138
GET /wp-content/uploads/2020/11/2r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:45 GMT
accept-ranges: bytes
content-length: 299066
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/themify-builder/js/themify.builder.script.min.js?ver=5.0.5
154.16.114.64200 OK 16 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/themify-builder/js/themify.builder.script.min.js?ver=5.0.5
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (551)
Hash 3ca456c7ab74f2d523dca3ff999941ab
8543c902a8ff405d60332d3ad02863e5fb999b2b
3c96378b65d5fb22c3313952dce83f31f18e6c2662989107d0576d66617ba1d3
GET /wp-content/themes/themify-landing/themify/themify-builder/js/themify.builder.script.min.js?ver=5.0.5 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 15697
content-type: application/javascript
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/js/themify.script.min.js?ver=5.0.6
154.16.114.64200 OK 1.0 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/js/themify.script.min.js?ver=5.0.6
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (501)
Hash 0b9070926d46b977161ec1a572299ae1
2fb0c7ff7534d73818f29cd22dd9884a8d9db0e3
3612092149ae982f6f94ef5d7af5f4a022dc8efa52eb18d8a382e47b6f76c7a2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/js/themify.script.min.js?ver=5.0.6 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 1001
content-type: application/javascript
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/main.min.js?ver=5.0.5
154.16.114.64200 OK 26 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/main.min.js?ver=5.0.5
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (553)
Hash 4f040ddd228d764d433ee31f2fd06868
88b4417a276a08bbb17c02e08c90bfc44179ac07
337f41195e18addb58f14268fbea93376cedcf62dc7f89e73e81177221637a37
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/themify/js/main.min.js?ver=5.0.5 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 26408
content-type: application/javascript
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/4r.jpg
154.16.114.64200 OK 175 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/4r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1500, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1000], progressive, precision 8, 600x900, components 3\012- data
Size 175 kB (174896 bytes)
Hash ee5c3a7b3d275bfa83e1b09fc7961fc6
c4138263bdca73d1f01c5ee5f7af8407862d87ca
308d9e3a68f8572302745735e22b29b13d8eba5ff0fbfadb878ba52f58010c19
GET /wp-content/uploads/2020/11/4r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:41 GMT
accept-ranges: bytes
content-length: 174896
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/media-queries.min.css?ver=5.0.6
154.16.114.64200 OK 4.2 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/media-queries.min.css?ver=5.0.6
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (4202)
Hash 6744c911c6ee2b8940f01439c284a7e4
72f0b106e1efcb4079c699665455901e3265926f
f38b8b8614425e370e4972fa42a7d9fe79cd181d03cbd04b12821f426d35a7ee
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/media-queries.min.css?ver=5.0.6 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:10 GMT
accept-ranges: bytes
content-length: 4203
content-type: text/css
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/uploads/themify-css/concate/themify-mobile-dee6a58368f16c5a779def98678d751a.min.css
154.16.114.64200 OK 6.1 kB URL HTTP/2 www.biofungusnuker.com/wp-content/uploads/themify-css/concate/themify-mobile-dee6a58368f16c5a779def98678d751a.min.css
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (6083)
Hash 9c65ab3d364b34be36f8ff1aaad5688d
e602603e0bcf1d9aa08fd1a40cc046a9dd61af32
c47271831ddb3c92e6a83a18e01c0d0f9a8450852bfa855a0a2a9f2e910edda4
GET /wp-content/uploads/themify-css/concate/themify-mobile-dee6a58368f16c5a779def98678d751a.min.css HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 30 Aug 2022 20:17:39 GMT
accept-ranges: bytes
content-length: 6100
content-type: text/css
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eb53024bbd41c1d8f88fa7b9becb704a
c87f5ac53cff6e3436c15551f8092f1e0215cb79
f2f589c71f9426ead1c60e4707982aa501b785a6040c95214db905a5cff8a777
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 17:44:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eb53024bbd41c1d8f88fa7b9becb704a
c87f5ac53cff6e3436c15551f8092f1e0215cb79
f2f589c71f9426ead1c60e4707982aa501b785a6040c95214db905a5cff8a777
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 17:44:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2
142.250.74.163200 OK 18 kB URL HTTP/2 fonts.gstatic.com/s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2
IP 142.250.74.163:0
File type Web Open Font Format (Version 2), TrueType, length 17908, version 1.0\012- data
Hash e46b4e2e3b47cc232937ebf72b4c537e
2675bc06ee643b8c935370325a327efb74746e6a
d8543b5dcaea1fc4a0301dc12b5b2adc9079e0794dd6a45879588fb844f3438e
GET /s/oswald/v49/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.biofungusnuker.com
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 17908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 05 Sep 2022 21:38:35 GMT
expires: Tue, 05 Sep 2023 21:38:35 GMT
cache-control: public, max-age=31536000
age: 72348
last-modified: Mon, 18 Jul 2022 19:23:34 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/Testimonial-Instagram-Quote-2.png
154.16.114.64200 OK 91 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/Testimonial-Instagram-Quote-2.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 1080 x 1080, 8-bit colormap, non-interlaced\012- data
Hash 96137593658435d55556106487a460ef
acd642d5071a3100f790a95dc5913134445cae58
28501541aa65ddddfcd2a87909ab80fa9aeb27e66f5fd21a300a7f5e4fdab335
GET /wp-content/uploads/2020/10/Testimonial-Instagram-Quote-2.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:20:07 GMT
accept-ranges: bytes
content-length: 91372
content-type: image/png
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/BIO-FUNGUS-NUKER_2.png
154.16.114.64200 OK 17 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/BIO-FUNGUS-NUKER_2.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 1353 x 220, 8-bit/color RGBA, non-interlaced\012- data
Hash e84ccd880a21ae914e585d6c6d0f3968
acd7af3c0be0f9eed00b000deee5933714039a5e
cb8050910cf07d93e11b1a019a2b6f83730e31a27a048f3e3d9116aae6082ca9
GET /wp-content/uploads/2020/11/BIO-FUNGUS-NUKER_2.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Wed, 11 Nov 2020 09:36:02 GMT
accept-ranges: bytes
content-length: 16693
content-type: image/png
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/11r.jpg
154.16.114.64200 OK 115 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/11r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 115 kB (115168 bytes)
Hash d494e4fe791e67849f00b74375377d30
59ea2a7426ce425bb5d00ecdeb86035f9530a4a9
7bc7402d27fc4ed8424744b11435d41f3bb378024cb9a66eab87d1e596e683f9
GET /wp-content/uploads/2020/11/11r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:26 GMT
accept-ranges: bytes
content-length: 115168
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/1-BASIC.jpg
154.16.114.64200 OK 105 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/1-BASIC.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:11:02 13:45:59], progressive, precision 8, 267x670, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 24935-21573, spot sensor temperature 0.000000, unit fahrenheit, color scheme 0, calibration: offset 2619437658466756329472.000000, slope 4061723361280.000000\012- data
Size 105 kB (104858 bytes)
Hash 2355ea650107a94df0c7144fba4b3d40
ce7be156916a2dc632a93423e79feca8815ea908
0f680435887c21115d190f5116e0902f950e1726ebfaf3fd3a1674d57d12b02e
GET /wp-content/uploads/2020/11/1-BASIC.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:56 GMT
accept-ranges: bytes
content-length: 104858
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-1.jpg
154.16.114.64200 OK 112 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-1.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Size 112 kB (112102 bytes)
Hash 445d6b54165ce12712a5375abfece8ef
ee4f3723c9b7b33ce0d5d5f8d2b187100d6612f9
7a64b93a68712b42d1f045407fd0d3bb8537b85c55705f4d15a7e8c5dd3659e2
GET /wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-1.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:20:24 GMT
accept-ranges: bytes
content-length: 112102
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/8r.jpg
154.16.114.64200 OK 143 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/8r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 143 kB (142959 bytes)
Hash dcde181b407e2a4fb76f073117795ef7
d776a33ae438bd23e39f0c2b3186ebf8fc9be87b
b343dddcd88fddb8f3f880190ff0fc8897341c49b2c360481f9de4f15807038a
GET /wp-content/uploads/2020/11/8r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:36 GMT
accept-ranges: bytes
content-length: 142959
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/18-rs.jpg
154.16.114.64200 OK 122 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/18-rs.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:10:23 14:48:03], progressive, precision 8, 900x600, components 3\012- data
Size 122 kB (121901 bytes)
Hash 65be28f8a079f4436ac5d001d86175ec
385d7e68b60cf6fcbd40e70d367e3516cb6863e0
09f80355d12d6402915eef7f459f3d5d3e4fa27f665c6bf814e0ec0341772bb3
GET /wp-content/uploads/2020/10/18-rs.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:22:36 GMT
accept-ranges: bytes
content-length: 121901
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/30.-Easy-Fixes-For-Smelly-Feet.jpg
154.16.114.64200 OK 76 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/30.-Easy-Fixes-For-Smelly-Feet.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Hash 80083f083079d855125df3d5a07a91eb
23efdac2b1a0916adf1707c5581c39a90f4230ca
b6f15e99420334e2cc0ad01080358308a8847d493a76422bf14ef33fd0d71ff0
GET /wp-content/uploads/2020/10/30.-Easy-Fixes-For-Smelly-Feet.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:24:40 GMT
accept-ranges: bytes
content-length: 75750
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/17r.jpg
154.16.114.64200 OK 146 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/17r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:11:02 14:14:27], progressive, precision 8, 700x467, components 3\012- data
Size 146 kB (145952 bytes)
Hash 5d5272b0e231020c86a3bcf45c9992b2
f5e8ac389ba65fdc181012499442b458509176a5
8b32015d819957ca6256bfec907393fdba75550a29c144cac4f075250a0b5d77
GET /wp-content/uploads/2020/11/17r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:10 GMT
accept-ranges: bytes
content-length: 145952
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/6-PREMIUM.jpg
154.16.114.64200 OK 141 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/6-PREMIUM.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:11:02 13:45:34], progressive, precision 8, 281x700, components 3\012- data
Size 141 kB (141307 bytes)
Hash 294e82e9127a87607fc2a9d30f35b0d1
50372b3a9ab2d564c7373d099db87f9b07ccd416
81a1064f1dc34852f060c2e2cd570e2778e2a17fa6daabe2f504eb511c007906
GET /wp-content/uploads/2020/11/6-PREMIUM.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:59 GMT
accept-ranges: bytes
content-length: 141307
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/15r.jpg
154.16.114.64200 OK 169 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/15r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size 169 kB (168793 bytes)
Hash afeb8ede6d8acbbff45bcd7a3c87eed3
3c57bf4698f0ff51ed0c65984d37030fa27529f0
4525d1ce669ad72055146204530190614a26cc33d867359f21c97ac4a92def12
GET /wp-content/uploads/2020/11/15r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:15 GMT
accept-ranges: bytes
content-length: 168793
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash eb53024bbd41c1d8f88fa7b9becb704a
c87f5ac53cff6e3436c15551f8092f1e0215cb79
f2f589c71f9426ead1c60e4707982aa501b785a6040c95214db905a5cff8a777
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Tue, 06 Sep 2022 17:44:23 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
biofungusnuker.com/wp-content/uploads/2020/11/10r.jpg
154.16.114.64200 OK 166 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/10r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 600x600, components 3\012- data
Size 166 kB (165871 bytes)
Hash 1c87ab47a38c289997ad53250b2ff537
3b30795949247a558bf650be75d4230cd3774ba9
8bd43efdd39131498a3776f7c708f0025066f4aeed8522070864f4bf7839d8f5
GET /wp-content/uploads/2020/11/10r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:29 GMT
accept-ranges: bytes
content-length: 165871
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-3.jpg
154.16.114.64200 OK 144 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-3.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Size 144 kB (144017 bytes)
Hash b446714ddbc04171e1e7b30767922365
5f3424525b71e12813a1c1de2083613c60269968
553beb0af1eb98b33eb14cd9dd992729a11faf22a104e31ee967b6a5384dba65
GET /wp-content/uploads/2020/10/TESTIMANIAL-Miko-Nuker-3.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:20:28 GMT
accept-ranges: bytes
content-length: 144017
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/29.-Vitamins-And-Minerals-Handbook.jpg
154.16.114.64200 OK 92 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/29.-Vitamins-And-Minerals-Handbook.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Hash fe6a010f8602871f3888895d0f23455f
5ead712d31c9657696717a0f202861c8284af0b9
36e6cf2199e7785b2367f59e7e1c7deb9b36d61b95b5660d2a7ac933e557eec2
GET /wp-content/uploads/2020/10/29.-Vitamins-And-Minerals-Handbook.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:24:44 GMT
accept-ranges: bytes
content-length: 91998
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/31-Lazy-Mnas-One-Day-Detox.jpg
154.16.114.64200 OK 84 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/31-Lazy-Mnas-One-Day-Detox.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], progressive, precision 8, 1080x1080, components 3\012- data
Hash 708bd423f428c6632e2fec751c1ab8c4
4c4bb3eeb33bbcdc2e23014cc95cd55080a36250
6133f17999c0c1c9c42a30fd998028416232ce0e84ab7cd0c704f0809fc2b55a
GET /wp-content/uploads/2020/10/31-Lazy-Mnas-One-Day-Detox.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:24:36 GMT
accept-ranges: bytes
content-length: 84102
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/13r.jpg
154.16.114.64200 OK 194 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/13r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 194 kB (194426 bytes)
Hash 1d24ebcf92fe37e9082c03c2b31e1df0
6107c9cd2b2a269594ce759119ab0ac99e48d42e
6ba149bf6cc9117c8318d71338eb2b5ad9c94f48d894be2828a11608bc78330c
GET /wp-content/uploads/2020/11/13r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:21 GMT
accept-ranges: bytes
content-length: 194426
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/16r.jpg
154.16.114.64200 OK 194 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/16r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 194 kB (194250 bytes)
Hash 67840ca9c5d981ce5054ca2547e8f875
0390830f7e0f2a51682102b78559a9160f94fb1d
b67cd2b10f7e9875d9387ab500702b1c1e25eadc66de2c75d3c30d212a856912
GET /wp-content/uploads/2020/11/16r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:12 GMT
accept-ranges: bytes
content-length: 194250
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/19.-Myco-Nuker-Fungal-Natural-Treatment.png
154.16.114.64200 OK 158 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/19.-Myco-Nuker-Fungal-Natural-Treatment.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 1080 x 1080, 8-bit colormap, non-interlaced\012- data
Size 158 kB (157703 bytes)
Hash 40e7b065f2ab8ab30acf837e07ed89f5
24132b610dcd903dc6fca42b118c60a89824a2d3
039b43040ad92a751498808e72a3e1c91f647748e09c71073276d2e338b55541
GET /wp-content/uploads/2020/10/19.-Myco-Nuker-Fungal-Natural-Treatment.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:25:57 GMT
accept-ranges: bytes
content-length: 157703
content-type: image/png
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/19-rs.jpg
154.16.114.64200 OK 112 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/19-rs.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:10:23 14:47:20], progressive, precision 8, 650x650, components 3\012- data
Size 112 kB (112289 bytes)
Hash faa98f31f05fefb116853a0a294911b8
0f556ef256ace144517df2597cf4fa3e8106a95f
275e3a03b42aab4217d1f52033cf0993e6f3b94bab37ee6875d45ddd4993b647
GET /wp-content/uploads/2020/10/19-rs.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:22:32 GMT
accept-ranges: bytes
content-length: 112289
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/12r.jpg
154.16.114.64200 OK 206 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/12r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=1080, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=1080], progressive, precision 8, 700x700, components 3\012- data
Size 206 kB (206418 bytes)
Hash 92861fa27a5685911446a022714d8ed0
81cd10ba9efaffc9d7e1e64c65af7d1473eb23c2
36bf0cd7ed9a85f23eb9c33147c7a8e304a1ede7373d310c3f70d59143dc0b26
GET /wp-content/uploads/2020/11/12r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:24 GMT
accept-ranges: bytes
content-length: 206418
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/3-STANDARD.jpg
154.16.114.64200 OK 126 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/3-STANDARD.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:11:02 13:46:17], progressive, precision 8, 267x670, components 3\012- data
Size 126 kB (125560 bytes)
Hash c0f4fa670859979e4e547f134faf8d26
59b5bc86311e2a9cfab95bb3b62f56ebf5d9ccc3
576e296fde222c8d182c0651bad7f587c8128eac395d9e7f22536b51279fbe49
GET /wp-content/uploads/2020/11/3-STANDARD.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:20:04 GMT
accept-ranges: bytes
content-length: 125560
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/5-rsToenail-Fungus-Transformation.jpg
154.16.114.64200 OK 284 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/5-rsToenail-Fungus-Transformation.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CS6 (Windows), datetime=2020:10:23 14:56:22], progressive, precision 8, 900x900, components 3\012- data
Size 284 kB (284033 bytes)
Hash afff2562975f976e996acab16f1ef233
0f0b12eb817258085dd9bf2b0ab48036168aa581
80047c21c9c6ffb89abff2a12550e1d8cb67d1370df3d3e780a16f97cba77f4b
GET /wp-content/uploads/2020/10/5-rsToenail-Fungus-Transformation.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:23:14 GMT
accept-ranges: bytes
content-length: 284033
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/23r.jpg
154.16.114.64200 OK 205 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/23r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 205 kB (204851 bytes)
Hash a8f904dc77916235b57c70f369b2bb6a
541bfb55b58b748d592237520ec28b498df34580
2de640b4f2f06b32e8c4460538f3dcd057048712b1c4b3f5ec83456982bccfae
GET /wp-content/uploads/2020/11/23r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:54 GMT
accept-ranges: bytes
content-length: 204851
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/24r.jpg
154.16.114.64200 OK 217 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/24r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3\012- data
Size 217 kB (217054 bytes)
Hash 77a624de1388541bdeb2a7ee2a8c0647
cc19a2a80d2498e325615bf9e4790f5a51d3ca3c
dd1dadcc668260627fa4446b9ed6047627132da7572ee75d29a7b10553b72502
GET /wp-content/uploads/2020/11/24r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:51 GMT
accept-ranges: bytes
content-length: 217054
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/14r.jpg
154.16.114.64200 OK 247 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/14r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=13, height=3840, bps=170, PhotometricIntepretation=RGB, orientation=upper-left, width=5760], progressive, precision 8, 700x467, components 3 DIY-Thermocam raw data\012- (Lepton 2.x), scale 30050-16495, spot sensor temperature 0.000000, unit celsius, color scheme 0, calibration: offset 17875471468176858939392.000000, slope 75530841815994297227822967554048.000000\012- data
Size 247 kB (246645 bytes)
Hash 48c6967c890da1ab223f9a9d41b9bee9
35ac259c50008332f6c5b122546781dedc8ad029
06efc01636d9cbe89852bc48454b8d3bc8061dc69d0ace4aae812b5a68e6a9dd
GET /wp-content/uploads/2020/11/14r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:18 GMT
accept-ranges: bytes
content-length: 246645
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/To-get-from-this-2-scaled.jpg
154.16.114.64200 OK 115 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/To-get-from-this-2-scaled.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=5, orientation=upper-left, xresolution=74, yresolution=82, resolutionunit=2], baseline, precision 8, 2560x1707, components 3\012- data
Size 115 kB (114763 bytes)
Hash 8477f3a80322520148723e00f2c58463
717e7275df536587b767560785e5f4433fa30118
d7876ba55c7b43bafbb74da2258a2fdc2cdbbb7cab83f9377c096670b6063e1e
GET /wp-content/uploads/2020/10/To-get-from-this-2-scaled.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:20:57 GMT
accept-ranges: bytes
content-length: 114763
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/Myco-Nuker-label.jpg
154.16.114.64200 OK 775 kB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/Myco-Nuker-label.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=12, height=675, bps=0, PhotometricIntepretation=CMYK, orientation=upper-left, width=1620], baseline, precision 8, 700x292, components 4\012- data
Size 775 kB (775000 bytes)
Hash 229c89df816b15531898ac6871bd7dbc
fdc27b5c9656642bda4c2838a39d393016b4d825
0fd52035dfea573b25022e5afd69753d820574f06638ffa5943fa35e5fc815e1
GET /wp-content/uploads/2020/11/Myco-Nuker-label.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 13:52:41 GMT
accept-ranges: bytes
content-length: 775000
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/32.-Fungus-Transformation-Myco-Nuker-1.png
154.16.114.64200 OK 3.0 MB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/32.-Fungus-Transformation-Myco-Nuker-1.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 5760 x 3000, 8-bit colormap, non-interlaced\012- data
Size 3.0 MB (2964360 bytes)
Hash 69c409c5bab0cc632d961368ca75ed3f
82f4f2817f4a30aa14d867ca1d2c5dde267c55a9
10e6c091e39402c70bac1d6b7cd82db1e1c771ef90f14886fc09f5d68eac8c55
GET /wp-content/uploads/2020/10/32.-Fungus-Transformation-Myco-Nuker-1.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:24:03 GMT
accept-ranges: bytes
content-length: 2964360
content-type: image/png
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules/tf_wow.min.js?ver=5.0.5
154.16.114.64200 OK 2.1 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules/tf_wow.min.js?ver=5.0.5
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (533)
Hash 278c3a0b9f48985031858bd14f855519
2502887ebb26f397ad1152db01f00dc43677b32a
ad7c531720b78898150aacbcef72addf69bbd59ccef4eb718397290294b2f5c3
GET /wp-content/themes/themify-landing/themify/js/modules/tf_wow.min.js?ver=5.0.5 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 2110
content-type: application/javascript
date: Tue, 06 Sep 2022 17:44:23 GMT
server: Apache
X-Firefox-Spdy: h2
go.maxweb.com/conversion/iframe/?a=6383&token=2ac0eb6f6c02b0fd4b48d31cd94f8f35
172.66.40.143200 OK 13 kB URL HTTP/2 go.maxweb.com/conversion/iframe/?a=6383&token=2ac0eb6f6c02b0fd4b48d31cd94f8f35
IP 172.66.40.143:0
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with no line terminators
Hash 7f28cd080b3363daad35b065089c6e10
6ab62ec00d59250fed1c894b825a5d1ba7b704df
59bb4effa417f3dd6cfc4f280e3faf844d0666a651e556a920554932af6412ae
GET /conversion/iframe/?a=6383&token=2ac0eb6f6c02b0fd4b48d31cd94f8f35 HTTP/1.1
Host: go.maxweb.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 17:44:23 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
expires: Tue, 06 Sep 2022 18:44:23 GMT
cache-control: max-age=3600, private
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74690326ccbcb500-OSL
content-encoding: br
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules/jquery.imagesloaded.min.js?ver=4.1.4
154.16.114.64200 OK 3.9 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules/jquery.imagesloaded.min.js?ver=4.1.4
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (3921)
Hash 1f323646e6ff48c37944512d867f49c9
27415be1e46996bd850ba10d193d44feb4f81a69
eb0045ba455512d20b72d4a2148abc8c75f3088ca96bcfeadff4a1b56eacbeab
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/themify/js/modules/jquery.imagesloaded.min.js?ver=4.1.4 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
X-Moz: prefetch
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 3932
content-type: application/javascript
date: Tue, 06 Sep 2022 17:44:23 GMT
server: Apache
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/10/Myco-nuker_St.png
154.16.114.64200 OK 1.2 MB URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/10/Myco-nuker_St.png
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type PNG image data, 3000 x 3000, 8-bit colormap, non-interlaced\012- data
Size 1.2 MB (1157453 bytes)
Hash bcab79483fb09770c6956d1f626a44cd
07c874ded33c2cadaebe0e2f136f028051998c9b
cd33005bef59a3c2c13318f2db5cf691ece5f6a0b5d9cf7a8491150fae4c061f
GET /wp-content/uploads/2020/10/Myco-nuker_St.png HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Cookie: _ga_NWVJ02QJDT=GS1.1.1662486257.1.0.1662486257.0.0.0; _ga=GA1.1.972480368.1662486258
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:29:02 GMT
accept-ranges: bytes
content-length: 1157453
content-type: image/png
date: Tue, 06 Sep 2022 17:44:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules/fixedheader.min.js?ver=5.0.5
154.16.114.64200 OK 4.1 kB URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/js/modules/fixedheader.min.js?ver=5.0.5
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (543)
Hash a74c13524ec9ed1c1a8e482a9b91c77c
dab11f455e63b1a493f720edf642805ac24ad937
cf47060ae1727c74061b69eaf476efd73be46abf39d3360592ce74fb1ae309af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/themify-landing/themify/js/modules/fixedheader.min.js?ver=5.0.5 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
Cookie: _ga_NWVJ02QJDT=GS1.1.1662486257.1.0.1662486257.0.0.0; _ga=GA1.1.972480368.1662486258; sessid2=sessid20220906174413259; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220906174327644; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:09 GMT
accept-ranges: bytes
content-length: 4126
content-type: application/javascript
date: Tue, 06 Sep 2022 17:44:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/sw.js?v=1662486257805
154.16.114.64200 OK 49 B URL HTTP/2 www.biofungusnuker.com/sw.js?v=1662486257805
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with no line terminators
Hash 6f25a7e5dfc97f9725b80ce6dab06a84
3c01ae61c07356a97633a3612b28ad5e4f99866a
ccab01b0139eb20f1b457278aefb951c6ca4d474b26a889fd4e3a59d9aba6f20
Analyzer Verdict Alert fortinet Phishing
GET /sw.js?v=1662486257805 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Service-Worker: script
Connection: keep-alive
Cookie: _ga_NWVJ02QJDT=GS1.1.1662486257.1.0.1662486257.0.0.0; _ga=GA1.1.972480368.1662486258; sessid2=sessid20220906174413259; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220906174327644; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: serviceworker
Sec-Fetch-Mode: same-origin
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 14 Feb 2022 11:44:29 GMT
accept-ranges: bytes
content-length: 49
content-type: application/javascript
date: Tue, 06 Sep 2022 17:44:23 GMT
server: Apache
X-Firefox-Spdy: h2
www.biofungusnuker.com/wp-content/themes/themify-landing/themify/themify-builder/css/modules/frames.min.css?ver=5.0.5
154.16.114.64200 OK 705 B URL HTTP/2 www.biofungusnuker.com/wp-content/themes/themify-landing/themify/themify-builder/css/modules/frames.min.css?ver=5.0.5
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
File type ASCII text, with very long lines (704)
Hash ba5c5a4de0e92a943dfe7f3e86d4f840
9eadc3b9410cdfd4f3c019519c9002d4857897a6
0feede88e961b94693c86462d85a81249451c555c68d40aa9b39569cc8be94c4
GET /wp-content/themes/themify-landing/themify/themify-builder/css/modules/frames.min.css?ver=5.0.5 HTTP/1.1
Host: www.biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/?aff_id=15&subid2=6383_sessid20220906174327644&subid=466
Cookie: _ga_NWVJ02QJDT=GS1.1.1662486257.1.0.1662486257.0.0.0; _ga=GA1.1.972480368.1662486258; sessid2=sessid20220906174413259; spi_funnel_codename=; aff_id=15; sid=466%7C6383_sessid20220906174327644; campaign_id=; referrer=91.90.42.154::www.biofungusnuker.com
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
last-modified: Thu, 22 Oct 2020 18:52:10 GMT
accept-ranges: bytes
content-length: 705
content-type: text/css
date: Tue, 06 Sep 2022 17:44:23 GMT
server: Apache
X-Firefox-Spdy: h2
region1.google-analytics.com/g/collect?v=2&tid=G-NWVJ02QJDT>m=2oe8v0&_p=754455968&cid=972480368.1662486258&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662486257&sct=1&seg=0&dl=https%3A%2F%2Fwww.biofungusnuker.com%2F%3Faff_id%3D15%26subid2%3D6383_sessid20220906174327644%26subid%3D466&dt=Eradicate%20Fungus%20%7C%20BIO%20Fungus%20Nuker&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
216.239.34.36204 No Content 0 B URL HTTP/2 region1.google-analytics.com/g/collect?v=2&tid=G-NWVJ02QJDT>m=2oe8v0&_p=754455968&cid=972480368.1662486258&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662486257&sct=1&seg=0&dl=https%3A%2F%2Fwww.biofungusnuker.com%2F%3Faff_id%3D15%26subid2%3D6383_sessid20220906174327644%26subid%3D466&dt=Eradicate%20Fungus%20%7C%20BIO%20Fungus%20Nuker&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1
IP 216.239.34.36:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /g/collect?v=2&tid=G-NWVJ02QJDT>m=2oe8v0&_p=754455968&cid=972480368.1662486258&ul=en-us&sr=1280x1024&_z=ccd.v9B&_s=1&sid=1662486257&sct=1&seg=0&dl=https%3A%2F%2Fwww.biofungusnuker.com%2F%3Faff_id%3D15%26subid2%3D6383_sessid20220906174327644%26subid%3D466&dt=Eradicate%20Fungus%20%7C%20BIO%20Fungus%20Nuker&en=page_view&_fv=1&_nsi=1&_ss=1&_ee=1 HTTP/1.1
Host: region1.google-analytics.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.biofungusnuker.com
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Content-Length: 0
HTTP/2 204 No Content
access-control-allow-origin: https://www.biofungusnuker.com
date: Tue, 06 Sep 2022 17:44:23 GMT
pragma: no-cache
expires: Fri, 01 Jan 1990 00:00:00 GMT
cache-control: no-cache, no-store, must-revalidate
access-control-allow-credentials: true
content-type: text/plain
cross-origin-resource-policy: cross-origin
server: Golfe2
content-length: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
code.jqueryoi.com/sw.js
67.212.173.78200 OK 776 B IP 67.212.173.78:0
Hash aa6261f6bcdea58ca6703b3109bd5eb6
788cbd4d7de687a942a7d0797e2119de29192e88
ab99cce1d646bd4caaca1f3d9af1f9e80a8a607031bde78f31b64c30d65cc8cd
Analyzer Verdict Alert fortinet Phishing
GET /sw.js HTTP/1.1
Host: code.jqueryoi.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
server: nginx
date: Tue, 06 Sep 2022 17:44:23 GMT
content-type: application/javascript
content-length: 776
last-modified: Wed, 13 Jul 2022 18:17:53 GMT
vary: Accept-Encoding
etag: "62cf0c51-308"
content-encoding: gzip
content-security-policy: default-src * 'unsafe-inline' 'unsafe-eval'; script-src * 'unsafe-inline' 'unsafe-eval'; connect-src * 'unsafe-inline'; img-src * data: blob: 'unsafe-inline'; frame-src *; style-src * 'unsafe-inline';
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Oswald:400,700%7CCrimson+Text:700i,400,700,400i&display=swap
142.250.74.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Oswald:400,700%7CCrimson+Text:700i,400,700,400i&display=swap
IP 142.250.74.10:0
GET /css?family=Oswald:400,700%7CCrimson+Text:700i,400,700,400i&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Tue, 06 Sep 2022 17:44:22 GMT
date: Tue, 06 Sep 2022 17:44:22 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
biofungusnuker.com/wp-content/uploads/2020/11/9r.jpg
154.16.114.64200 OK 0 B URL HTTP/2 biofungusnuker.com/wp-content/uploads/2020/11/9r.jpg
IP 154.16.114.64:0
ASN #36352 AS-COLOCROSSING
GET /wp-content/uploads/2020/11/9r.jpg HTTP/1.1
Host: biofungusnuker.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-site
TE: trailers
HTTP/2 200 OK
last-modified: Tue, 03 Nov 2020 07:19:33 GMT
accept-ranges: bytes
content-length: 161260
content-type: image/jpeg
date: Tue, 06 Sep 2022 17:44:22 GMT
server: Apache
X-Firefox-Spdy: h2
display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=6213
172.66.43.115200 OK 0 B URL HTTP/2 display.buygoods.com/v1/disclaimer?id=disclaimer&account_id=6213
IP 172.66.43.115:0
GET /v1/disclaimer?id=disclaimer&account_id=6213 HTTP/1.1
Host: display.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 17:44:22 GMT
x-powered-by: Express
access-control-allow-origin: *
access-control-allow-credentials: true
strict-transport-security: max-age=31536000;
set-cookie: SERVERID=; Expires=Thu, 01-Jan-1970 00:00:01 GMT; path=/
cache-control: private
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74690325cb29b500-OSL
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tracking.buygoods.com/track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6&caller_url=https%3A%2F%2Fwww.biofungusnuker.com%2F%3Faff_id%3D15%26subid2%3D6383_sessid20220906174327644%26subid%3D466
172.66.40.234200 OK 0 B URL HTTP/2 tracking.buygoods.com/track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6&caller_url=https%3A%2F%2Fwww.biofungusnuker.com%2F%3Faff_id%3D15%26subid2%3D6383_sessid20220906174327644%26subid%3D466
IP 172.66.40.234:0
GET /track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6&caller_url=https%3A%2F%2Fwww.biofungusnuker.com%2F%3Faff_id%3D15%26subid2%3D6383_sessid20220906174327644%26subid%3D466 HTTP/1.1
Host: tracking.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
date: Tue, 06 Sep 2022 17:44:23 GMT
content-type: application/javascript
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
set-cookie: spiaffid_6344=15; expires=Mon, 05-Dec-2022 17:44:23 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spisubid_6344=466%7C6383_sessid20220906174327644; expires=Mon, 05-Dec-2022 17:44:23 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spicampaign_id_6344=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
spireferrer_6344=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
spireferrer_6344=91.90.42.154::www.biofungusnuker.com; expires=Mon, 05-Dec-2022 17:44:23 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spisessid2_6344=sessid20220906174413259; expires=Mon, 05-Dec-2022 17:44:23 GMT; Max-Age=7776000; path=/; domain=.buygoods.com
spi_funnel_codename_6344=deleted; expires=Thu, 01-Jan-1970 00:00:01 GMT; Max-Age=0; path=/; domain=.buygoods.com
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 74690328cfd4b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
tracking.buygoods.com/track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6
172.66.40.234200 OK 0 B URL HTTP/2 tracking.buygoods.com/track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6
IP 172.66.40.234:0
GET /track/?a=6344&firstcookie=0&tracking_redirect=&referrer=&sessid2=&product=myco-nuker-1,myco-nuker-3,myco-nuker-6 HTTP/1.1
Host: tracking.buygoods.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.biofungusnuker.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
date: Tue, 06 Sep 2022 17:44:23 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
p3p: CP="CAO COR CURa ADMa DEVa OUR IND ONL COM DEM PRE"
cache-control: no-cache, must-revalidate
pragma: no-cache
expires: Tue, Jan 12 1999 01:01:01 GMT
cf-cache-status: DYNAMIC
server: cloudflare
cf-ray: 746903269c89b500-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400, h3-29=":443"; ma=86400
X-Firefox-Spdy: h2