| www.ourfastcdn.com/vas-lps/4/kuwait-flag.png | 194.242.11.186 | 200 OK | 2.2 kB |
URL GET HTTP/2www.ourfastcdn.com/vas-lps/4/kuwait-flag.png IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://get-fabulous-content.click/lp/kw/ar/xp02tm9d02/?cid=0c79f7d828ce1d16dd4a0419f2aaea30&aff=56&s1=499725&s2=&s3=&s4=&s5= CertificateIssuerLet's Encrypt Subjectwww.ourfastcdn.com Fingerprint81:BF:AB:3B:A2:E2:70:D4:2B:F4:8A:EF:0A:D1:EE:5C:1F:5B:49:C6 ValidityMon, 06 May 2024 22:09:52 GMT - Sun, 04 Aug 2024 22:09:51 GMT
File typePNG image data, 290 x 174, 8-bit colormap, non-interlaced Hash27964c1a361d3a4f85ba4d02aebe007f 01a8992da32b1b077cc05bee196ef1e7f3da2922 8f778d9db96c115f2bbf7ef7c0746eab3c18fe6580f6bacb0b2bb5a1f11a87d9
GET /vas-lps/4/kuwait-flag.png HTTP/1.1
Host: www.ourfastcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-fabulous-content.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 16:41:28 GMT
content-type: image/png
content-length: 2158
server: BunnyCDN-NO1-830
cdn-pullzone: 123549
cdn-uid: 6c7a66c5-a071-443f-ac0a-15b8056be674
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Mon, 20 Mar 2023 11:23:18 GMT
cdn-cachedat: 05/08/2024 19:20:29
cdn-storageserver: DE-677
cdn-fileserver: 403
cdn-proxyver: 1.04
cdn-requestpullcode: 206
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 550c761e8b51ee868c8ecbe62c6a3e88
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.ourfastcdn.com/vas-lps/4/mobile.png | 194.242.11.186 | 200 OK | 8.7 kB |
URL GET HTTP/2www.ourfastcdn.com/vas-lps/4/mobile.png IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://get-fabulous-content.click/lp/kw/ar/xp02tm9d02/?cid=0c79f7d828ce1d16dd4a0419f2aaea30&aff=56&s1=499725&s2=&s3=&s4=&s5= CertificateIssuerLet's Encrypt Subjectwww.ourfastcdn.com Fingerprint81:BF:AB:3B:A2:E2:70:D4:2B:F4:8A:EF:0A:D1:EE:5C:1F:5B:49:C6 ValidityMon, 06 May 2024 22:09:52 GMT - Sun, 04 Aug 2024 22:09:51 GMT
File typePNG image data, 350 x 393, 8-bit/color RGBA, non-interlaced Hashe0f3837582795e7f5405c042c358fbf2 f08cf1b56020b2b073d9067f01b5c0a5698b322a 641fb17be0e06afda9b93f7b9fb7d9dd3eafd202bd4c19aa77c968f1c84456ef
GET /vas-lps/4/mobile.png HTTP/1.1
Host: www.ourfastcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-fabulous-content.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 16:41:28 GMT
content-type: image/png
content-length: 8715
server: BunnyCDN-NO1-830
cdn-pullzone: 123549
cdn-uid: 6c7a66c5-a071-443f-ac0a-15b8056be674
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Fri, 27 Jan 2023 00:25:29 GMT
cdn-cachedat: 05/09/2024 15:47:55
cdn-storageserver: DE-664
cdn-fileserver: 528
cdn-proxyver: 1.04
cdn-requestpullcode: 206
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 2ee897515b32248b64b6a882edb35429
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| www.ourfastcdn.com/vas-lps/4/loading.gif | 194.242.11.186 | 200 OK | 173 kB |
URL GET HTTP/2www.ourfastcdn.com/vas-lps/4/loading.gif IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://get-fabulous-content.click/lp/kw/ar/xp02tm9d02/?cid=0c79f7d828ce1d16dd4a0419f2aaea30&aff=56&s1=499725&s2=&s3=&s4=&s5= CertificateIssuerLet's Encrypt Subjectwww.ourfastcdn.com Fingerprint81:BF:AB:3B:A2:E2:70:D4:2B:F4:8A:EF:0A:D1:EE:5C:1F:5B:49:C6 ValidityMon, 06 May 2024 22:09:52 GMT - Sun, 04 Aug 2024 22:09:51 GMT
File typeGIF image data, version 89a, 630 x 636 Size173 kB (172593 bytes) Hashe5ed5c6288d5d294a607ac99a13d8b02 a06b3c444b8a1076702d992a0f9a14a18fb22134 28f8977a12f0de984d665663073a824c7c834ef19de692ee066d396c19cfcfee
GET /vas-lps/4/loading.gif HTTP/1.1
Host: www.ourfastcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-fabulous-content.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers
HTTP/2 200 OK
date: Fri, 10 May 2024 16:41:28 GMT
content-type: image/gif
content-length: 172593
server: BunnyCDN-NO1-830
cdn-pullzone: 123549
cdn-uid: 6c7a66c5-a071-443f-ac0a-15b8056be674
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Fri, 27 Jan 2023 00:30:31 GMT
cdn-cachedat: 05/08/2024 14:33:32
cdn-storageserver: DE-588
cdn-fileserver: 519
cdn-proxyver: 1.04
cdn-requestpullcode: 206
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: f26f2feea805308dfc2a4628f44a4473
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| fd.sla-alacrity.com/token?partner=partner:624cdcca924feb5a3e92521f09031dca18fe2259&service=campaign:9f322d8dc286dcf4366a9770ba998d7aef0b0f37&ref=&fetch_usage=true | 54.230.111.68 | 200 OK | 7.5 kB |
URL GET HTTP/2fd.sla-alacrity.com/token?partner=partner:624cdcca924feb5a3e92521f09031dca18fe2259&service=campaign:9f322d8dc286dcf4366a9770ba998d7aef0b0f37&ref=&fetch_usage=true IP54.230.111.68:443
Requested byhttps://get-fabulous-content.click/lp/kw/ar/xp02tm9d02/?cid=0c79f7d828ce1d16dd4a0419f2aaea30&aff=56&s1=499725&s2=&s3=&s4=&s5= CertificateIssuerSectigo Limited Subject*.sla-alacrity.com Fingerprint0F:9A:D2:50:32:F9:50:67:E7:4F:7C:88:EA:B0:C7:D1:88:47:85:17 ValidityTue, 16 Apr 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
Hash8a513f749f08ab0827283efb74369b85 379ea9a6a684cd935c722ea311f9c0a4da6ddeef 086ec297e9005323a162bff984f66125b39e8c5ab690a19045833f2ffab93ac9
GET /token?partner=partner:624cdcca924feb5a3e92521f09031dca18fe2259&service=campaign:9f322d8dc286dcf4366a9770ba998d7aef0b0f37&ref=&fetch_usage=true HTTP/1.1
Host: fd.sla-alacrity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://get-fabulous-content.click
DNT: 1
Connection: keep-alive
Referer: https://get-fabulous-content.click/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Fri, 10 May 2024 16:41:28 GMT
server: nginx/1.21.4
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-expose-headers:
access-control-max-age: 1728000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
access-control-allow-headers: Origin,Accept,Content-Type,X-Requested-With,X-CSRF-Token
vary: Accept, Origin
etag: W/"eb7f791e9303b353315635ab8d525ca4"
cache-control: max-age=0, private, must-revalidate
x-request-id: 8296dfaf-ce62-4971-a259-1e9d9d81fc18
x-runtime: 0.031667
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: ufCC8Ga7JNR5276Z4Bn_KE0iUVZe9n1MmPEO07UIqy0YNU6duvvr0Q==
X-Firefox-Spdy: h2
|
|
| antifraud-uk.empello.net/api/v2/token/js/info/ | 13.43.60.223 | 200 OK | 0 B |
URL POST HTTP/2antifraud-uk.empello.net/api/v2/token/js/info/ IP13.43.60.223:443
Requested byhttps://get-fabulous-content.click/lp/kw/ar/xp02tm9d02/?cid=0c79f7d828ce1d16dd4a0419f2aaea30&aff=56&s1=499725&s2=&s3=&s4=&s5= CertificateIssuerSectigo Limited Subject*.empello.net FingerprintBD:EE:34:0F:30:99:2E:5A:A7:5D:1E:8C:1A:07:BD:9D:B8:05:E2:85 ValidityWed, 24 Apr 2024 00:00:00 GMT - Mon, 19 May 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/token/js/info/ HTTP/1.1
Host: antifraud-uk.empello.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 5722
Origin: https://get-fabulous-content.click
DNT: 1
Connection: keep-alive
Referer: https://get-fabulous-content.click/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 16:41:29 GMT
content-type: application/json
content-length: 0
server: nginx
x-frame-options: DENY
referrer-policy: same-origin
cross-origin-opener-policy: same-origin
vary: origin
access-control-allow-origin: *
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self'
strict-transport-security: max-age=0; includeSubdomains;
cache-control: no-cache, no-store, must-revalidate
X-Firefox-Spdy: h2
|
|
| antifraud-uk.empello.net/ws/info/?key=ukvxwdpfaqrpxlexntwghikjoixsamtxtbjclygagircfcqxpoxhhayufpxnbqbc | 13.43.60.223 | | 0 B |
URL antifraud-uk.empello.net/ws/info/?key=ukvxwdpfaqrpxlexntwghikjoixsamtxtbjclygagircfcqxpoxhhayufpxnbqbc IP13.43.60.223:0
CertificateIssuerSectigo Limited Subject*.empello.net FingerprintBD:EE:34:0F:30:99:2E:5A:A7:5D:1E:8C:1A:07:BD:9D:B8:05:E2:85 ValidityWed, 24 Apr 2024 00:00:00 GMT - Mon, 19 May 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws/info/?key=ukvxwdpfaqrpxlexntwghikjoixsamtxtbjclygagircfcqxpoxhhayufpxnbqbc HTTP/1.1
Host: antifraud-uk.empello.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://get-fabulous-content.click
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: x4BjLeX2QBUp76bdQyS9CA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Fri, 10 May 2024 16:41:29 GMT
Connection: upgrade
Server: nginx
Upgrade: WebSocket
Sec-WebSocket-Accept: M8nXawFwKfZApnv8XWNgPQ/kB7s=
|
|
| fd.sla-alacrity.com/token/fingerprint?token=ad1f2e13-88af-424d-9abb-f6bb3040244d&fingerprint=5db3a4e34790624df926db520a13f79f | 54.230.111.68 | 200 OK | 18 kB |
URL POST HTTP/3fd.sla-alacrity.com/token/fingerprint?token=ad1f2e13-88af-424d-9abb-f6bb3040244d&fingerprint=5db3a4e34790624df926db520a13f79f IP54.230.111.68:443
Requested byhttps://get-fabulous-content.click/lp/kw/ar/xp02tm9d02/?cid=0c79f7d828ce1d16dd4a0419f2aaea30&aff=56&s1=499725&s2=&s3=&s4=&s5= CertificateIssuerSectigo Limited Subject*.sla-alacrity.com Fingerprint0F:9A:D2:50:32:F9:50:67:E7:4F:7C:88:EA:B0:C7:D1:88:47:85:17 ValidityTue, 16 Apr 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
Hash6eab956b362c0150baa4bbc1a2d68037 34f0ce58499eb1266ffb423cacf93e36aebb90ea cb2e484f62da98baa42de44f4bd117d530c08afc2996d23de4181a8b9e9b6de0
POST /token/fingerprint?token=ad1f2e13-88af-424d-9abb-f6bb3040244d&fingerprint=5db3a4e34790624df926db520a13f79f HTTP/1.1
Host: fd.sla-alacrity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://get-fabulous-content.click
DNT: 1
Connection: keep-alive
Referer: https://get-fabulous-content.click/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
TE: trailers
HTTP/3 200 OK
content-type: text/plain; charset=utf-8
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: OSL50-P1
date: Fri, 10 May 2024 16:41:29 GMT
server: nginx/1.21.4
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-expose-headers:
access-control-max-age: 1728000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
access-control-allow-headers: Origin,Accept,Content-Type,X-Requested-With,X-CSRF-Token
vary: Accept, Origin
etag: W/"2689367b205c16ce32ed4200942b8b8b"
cache-control: max-age=0, private, must-revalidate
x-request-id: e9d0a409-e625-441e-9176-1f750f6eca70
x-runtime: 0.018363
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-id: nkz2x1xrZpU4TauWnZeB18XGLk_hvnYkTLPHxtUMy3bKB79J2lNdlw==
|
|
| fd.sla-alacrity.com/d513e9e03227.js | 54.230.111.68 | 200 OK | 20 kB |
URL GET HTTP/2fd.sla-alacrity.com/d513e9e03227.js IP54.230.111.68:443
Requested byhttps://get-fabulous-content.click/lp/kw/ar/xp02tm9d02/?cid=0c79f7d828ce1d16dd4a0419f2aaea30&aff=56&s1=499725&s2=&s3=&s4=&s5= CertificateIssuerSectigo Limited Subject*.sla-alacrity.com Fingerprint0F:9A:D2:50:32:F9:50:67:E7:4F:7C:88:EA:B0:C7:D1:88:47:85:17 ValidityTue, 16 Apr 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
File typeJavaScript source, ASCII text, with very long lines (19939), with no line terminators Hasha745c02927f3f2bbea57e779107be034 c41a7b70dc41bb73dde868d61906e2af9e54320f 265f2a49910682ea3dd31952090019b4372c1f2898c6fa39c959fad312c14854
Analyzer | Verdict | Alert | Public Nextron YARA rules | malware | Unique code from Jetriz, Swid & Jeniva of the Tetris framework |
GET /d513e9e03227.js HTTP/1.1
Host: fd.sla-alacrity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-fabulous-content.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/javascript
date: Fri, 10 May 2024 07:56:45 GMT
server: nginx/1.21.4
last-modified: Tue, 26 Mar 2024 12:34:10 GMT
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 227a1815a1677b9cf6dd587e443000b8.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: _W9q-s2fVz4yiBtAJREsQt0iKeGP7CWv_B9QSnPAVZAnrUNwel_sGA==
age: 31482
X-Firefox-Spdy: h2
|
|
| www.ourfastcdn.com/vas-lps/kw36.js | 194.242.11.186 | 200 OK | 11 kB |
URL GET HTTP/2www.ourfastcdn.com/vas-lps/kw36.js IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://get-fabulous-content.click/lp/kw/ar/xp02tm9d02/?cid=0c79f7d828ce1d16dd4a0419f2aaea30&aff=56&s1=499725&s2=&s3=&s4=&s5= CertificateIssuerLet's Encrypt Subjectwww.ourfastcdn.com Fingerprint81:BF:AB:3B:A2:E2:70:D4:2B:F4:8A:EF:0A:D1:EE:5C:1F:5B:49:C6 ValidityMon, 06 May 2024 22:09:52 GMT - Sun, 04 Aug 2024 22:09:51 GMT
File typeJavaScript source, ASCII text, with CRLF line terminators Hash8c5e53d9c1079e213be1c920a11b5644 acb687c5bd0101824a9190a7bdd350412e52487b 41c337d43a964302fdb91a0d5d07ecb3e4592caeaadb14978c36b4535d705bc7
GET /vas-lps/kw36.js HTTP/1.1
Host: www.ourfastcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-fabulous-content.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 16:41:28 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 123549
cdn-uid: 6c7a66c5-a071-443f-ac0a-15b8056be674
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"662e4397-2a10"
last-modified: Sun, 28 Apr 2024 12:39:51 GMT
cdn-cachedat: 05/08/2024 19:20:29
cdn-storageserver: DE-663
cdn-fileserver: 247
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: dd19e90d824d20acdcddeba46fa921ef
cdn-cache: HIT
X-Firefox-Spdy: h2
|
|
| www.ourfastcdn.com/vas-lps/4/icons8-protect-96.png | 194.242.11.186 | 200 OK | 18 kB |
URL GET HTTP/2www.ourfastcdn.com/vas-lps/4/icons8-protect-96.png IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://get-fabulous-content.click/lp/kw/ar/xp02tm9d02/?cid=0c79f7d828ce1d16dd4a0419f2aaea30&aff=56&s1=499725&s2=&s3=&s4=&s5= CertificateIssuerLet's Encrypt Subjectwww.ourfastcdn.com Fingerprint81:BF:AB:3B:A2:E2:70:D4:2B:F4:8A:EF:0A:D1:EE:5C:1F:5B:49:C6 ValidityMon, 06 May 2024 22:09:52 GMT - Sun, 04 Aug 2024 22:09:51 GMT
File typePNG image data, 96 x 96, 8-bit/color RGBA, non-interlaced Hashfc7316436bbdb0d6569724ede8ca5b37 d898e9e8c6bb9b532a63231ce78e912d64485fe8 3ff0b0fa8b151a29195a283633757f54112fa377353ec3a65ba04ca1994aaec6
GET /vas-lps/4/icons8-protect-96.png HTTP/1.1
Host: www.ourfastcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-fabulous-content.click/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 16:41:29 GMT
content-type: image/png
content-length: 18321
server: BunnyCDN-NO1-830
cdn-pullzone: 123549
cdn-uid: 6c7a66c5-a071-443f-ac0a-15b8056be674
cdn-requestcountrycode: NO
cache-control: public, max-age=31919000
last-modified: Fri, 27 Jan 2023 00:25:29 GMT
cdn-cachedat: 05/09/2024 15:47:56
cdn-storageserver: DE-165
cdn-fileserver: 534
cdn-proxyver: 1.04
cdn-requestpullcode: 206
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: c87132ded8db641c97bef0cf49aaf6db
cdn-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2
|
|
| get-fabulous-content.click/lp/kw/ar/xp02tm9d02/?cid=0c79f7d828ce1d16dd4a0419f2aaea30&aff=56&s1=499725&s2=&s3=&s4=&s5= | 188.114.97.1 | 200 OK | 5.5 kB |
URL User Request GET HTTP/2get-fabulous-content.click/lp/kw/ar/xp02tm9d02/?cid=0c79f7d828ce1d16dd4a0419f2aaea30&aff=56&s1=499725&s2=&s3=&s4=&s5= IP188.114.97.1:443
CertificateIssuerLet's Encrypt Subjectget-fabulous-content.click Fingerprint2B:B5:95:00:28:15:55:DA:D5:27:69:A3:E7:59:CC:C5:79:06:CA:5E ValidityFri, 29 Mar 2024 04:08:55 GMT - Thu, 27 Jun 2024 04:08:54 GMT
File typeHTML document, Unicode text, UTF-8 text, with very long lines (4972), with no line terminators Hash1ae0b28fa81e2b8be3e4b5d5f82869e1 953b75881b5b205fda98b832c4121b5d4b448ed0 f9e739c203beb9b3a83d35e9b808f8b10659fc35b1ae9886bd4481e157878e5d
GET /lp/kw/ar/xp02tm9d02/?cid=0c79f7d828ce1d16dd4a0419f2aaea30&aff=56&s1=499725&s2=&s3=&s4=&s5= HTTP/1.1
Host: get-fabulous-content.click
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 16:41:27 GMT
content-type: text/html; charset=UTF-8
set-cookie: 0c79f7d828ce1d16dd4a0419f2aaea30=0c79f7d828ce1d16dd4a0419f2aaea30; expires=Sat, 10 May 2025 16:41:27 GMT; Max-Age=31536000; path=/; secure
vary: Accept-Encoding
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
strict-transport-security: max-age=31536000
alt-svc: h3=":443"; ma=86400
x-turbo-charged-by: LiteSpeed
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=ECNpBrucqxmx6oXnOIRyuXURRh33PtA5gtHQTu3jKrA2N9hIteRYKpzDyV7bPMttEg2PvfBAmhT3Tqfa%2FHM4Ix0TMASFh6GPHyU%2FTJrctPVpkvd5TcT%2FL%2Fhf%2BrXh6mYI0V6NORe7ICXWZbClLg%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b607a08c85694-OSL
content-encoding: br
X-Firefox-Spdy: h2
|
|
| antifraud-uk.empello.net/ws/info/?key=ukvxwdpfaqrpxlexntwghikjoixsamtxtbjclygagircfcqxpoxhhayufpxnbqbc | 13.43.60.223 | 101 Switching Protocols | 0 B |
URL GET HTTP/1.1antifraud-uk.empello.net/ws/info/?key=ukvxwdpfaqrpxlexntwghikjoixsamtxtbjclygagircfcqxpoxhhayufpxnbqbc IP13.43.60.223:443
Requested byhttps://get-fabulous-content.click/lp/kw/ar/xp02tm9d02/?cid=0c79f7d828ce1d16dd4a0419f2aaea30&aff=56&s1=499725&s2=&s3=&s4=&s5= CertificateIssuerSectigo Limited Subject*.empello.net FingerprintBD:EE:34:0F:30:99:2E:5A:A7:5D:1E:8C:1A:07:BD:9D:B8:05:E2:85 ValidityWed, 24 Apr 2024 00:00:00 GMT - Mon, 19 May 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /ws/info/?key=ukvxwdpfaqrpxlexntwghikjoixsamtxtbjclygagircfcqxpoxhhayufpxnbqbc HTTP/1.1
Host: antifraud-uk.empello.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: https://get-fabulous-content.click
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: x4BjLeX2QBUp76bdQyS9CA==
DNT: 1
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Date: Fri, 10 May 2024 16:41:29 GMT
Connection: upgrade
Server: nginx
Upgrade: WebSocket
Sec-WebSocket-Accept: M8nXawFwKfZApnv8XWNgPQ/kB7s=
|
|
| redirect.2ndprftdomn.digital/click?o=10592&a=56&sub_id1=499725&aff_click_id=5720197804 | 172.67.135.237 | 302 Found | 5.5 kB |
URL User Request GET HTTP/2redirect.2ndprftdomn.digital/click?o=10592&a=56&sub_id1=499725&aff_click_id=5720197804 IP172.67.135.237:443
CertificateIssuerGoogle Trust Services LLC Subject2ndprftdomn.digital Fingerprint8C:79:E4:CA:51:15:05:9B:8E:B2:A9:9F:37:7A:A0:43:2B:EB:DA:AE ValidityMon, 25 Mar 2024 22:42:03 GMT - Sun, 23 Jun 2024 22:42:02 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /click?o=10592&a=56&sub_id1=499725&aff_click_id=5720197804 HTTP/1.1
Host: redirect.2ndprftdomn.digital
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Upgrade-Insecure-Requests: 1
Connection: keep-alive
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 302 Found
date: Fri, 10 May 2024 16:41:27 GMT
content-type: text/html; charset=UTF-8
location: https://get-fabulous-content.click/lp/kw/ar/xp02tm9d02/?cid=0c79f7d828ce1d16dd4a0419f2aaea30&aff=56&s1=499725&s2=&s3=&s4=&s5=
set-cookie: U-f6c2a0c4b566bc99d596e58638e342b0=unique; expires=Sun, 09-Jun-2024 16:41:27 GMT; Max-Age=2592000; path=/; secure; SameSite=None
o_f6c2a0c4b566bc99d596e58638e342b0=3af47297-3feb-42f9-a630-0b1efaf0da1d; expires=Sun, 17-Jan-2038 16:41:27 GMT; Max-Age=432000000; path=/; secure; SameSite=None
x-debug-tag: 663e4e3718635
x-debug-duration: 108
x-debug-link: /v-debugger/default/view?tag=663e4e3718635
cf-cache-status: DYNAMIC
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v4?s=S85Pll7bHnqsvUpFiwLSfUUXgmgrBNFrcp6t47XtT2mXZ31nZzfbPTO46TmnvZTucmNYMV3HemkejS3KXL1ct84ctBbRCrasUXCnzivJbN8NI1QpR%2FQdTGz3QK3WMHhdmJfnaShs8FyrF0rjBm6r"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
server: cloudflare
cf-ray: 881b60775a99b511-OSL
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2
|
|
| fd.sla-alacrity.com/fp.js | 54.230.111.68 | 200 OK | 30 kB |
URL GET HTTP/3fd.sla-alacrity.com/fp.js IP54.230.111.68:443
Requested byhttps://get-fabulous-content.click/lp/kw/ar/xp02tm9d02/?cid=0c79f7d828ce1d16dd4a0419f2aaea30&aff=56&s1=499725&s2=&s3=&s4=&s5= CertificateIssuerSectigo Limited Subject*.sla-alacrity.com Fingerprint0F:9A:D2:50:32:F9:50:67:E7:4F:7C:88:EA:B0:C7:D1:88:47:85:17 ValidityTue, 16 Apr 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /fp.js HTTP/1.1
Host: fd.sla-alacrity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-fabulous-content.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/3 200 OK
content-type: application/javascript
alt-svc: h3=":443"; ma=86400
age: 31483
date: Fri, 10 May 2024 07:56:46 GMT
server: nginx/1.21.4
last-modified: Tue, 26 Mar 2024 12:34:10 GMT
content-encoding: br
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: g2q_vSoxhpnoSnyRoOo8_zN2KAbVRfsruSbemQUIEnOYHa4iuk_LGg==
|
|
| fd.sla-alacrity.com/token/empello?token=ad1f2e13-88af-424d-9abb-f6bb3040244d&e_token=ukpyvrirptdbmefqatwuqfywmmmrnbmeheoznppxergukeyjrraojyjwrkfqbvvj&empello_checks_delay=false | 54.230.111.68 | 200 OK | 2 B |
URL POST HTTP/3fd.sla-alacrity.com/token/empello?token=ad1f2e13-88af-424d-9abb-f6bb3040244d&e_token=ukpyvrirptdbmefqatwuqfywmmmrnbmeheoznppxergukeyjrraojyjwrkfqbvvj&empello_checks_delay=false IP54.230.111.68:443
Requested byhttps://get-fabulous-content.click/lp/kw/ar/xp02tm9d02/?cid=0c79f7d828ce1d16dd4a0419f2aaea30&aff=56&s1=499725&s2=&s3=&s4=&s5= CertificateIssuerSectigo Limited Subject*.sla-alacrity.com Fingerprint0F:9A:D2:50:32:F9:50:67:E7:4F:7C:88:EA:B0:C7:D1:88:47:85:17 ValidityTue, 16 Apr 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
File typeASCII text, with no line terminators Hash444bcb3a3fcf8389296c49467f27e1d6 7a85f4764bbd6daf1c3545efbbf0f279a6dc0beb 2689367b205c16ce32ed4200942b8b8b1e262dfc70d9bc9fbc77c49699a4f1df
POST /token/empello?token=ad1f2e13-88af-424d-9abb-f6bb3040244d&e_token=ukpyvrirptdbmefqatwuqfywmmmrnbmeheoznppxergukeyjrraojyjwrkfqbvvj&empello_checks_delay=false HTTP/1.1
Host: fd.sla-alacrity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://get-fabulous-content.click
DNT: 1
Connection: keep-alive
Referer: https://get-fabulous-content.click/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Content-Length: 0
HTTP/3 200 OK
content-type: text/plain; charset=utf-8
alt-svc: h3=":443"; ma=86400
x-amz-cf-pop: OSL50-P1
date: Fri, 10 May 2024 16:41:29 GMT
server: nginx/1.21.4
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-expose-headers:
access-control-max-age: 1728000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
access-control-allow-headers: Origin,Accept,Content-Type,X-Requested-With,X-CSRF-Token
vary: Accept, Origin
etag: W/"2689367b205c16ce32ed4200942b8b8b"
cache-control: max-age=0, private, must-revalidate
x-request-id: ea2bd53d-299a-48fa-b2ba-7054f110607a
x-runtime: 0.016989
x-cache: Miss from cloudfront
via: 1.1 d9fb4c3794a085bb4ee2c5798c2cb1b8.cloudfront.net (CloudFront)
x-amz-cf-id: NKxrS_J75dUzfh6Ydh7Wpki3Osv_1AiVW5dL-7AFtBRd76wAzACdiQ==
|
|
| fd.sla-alacrity.com/token/empello?token=ad1f2e13-88af-424d-9abb-f6bb3040244d&version=2&button=I3N1YnNjcmliZQ== | 54.230.111.68 | 200 OK | 132 kB |
URL GET HTTP/2fd.sla-alacrity.com/token/empello?token=ad1f2e13-88af-424d-9abb-f6bb3040244d&version=2&button=I3N1YnNjcmliZQ== IP54.230.111.68:443
Requested byhttps://get-fabulous-content.click/lp/kw/ar/xp02tm9d02/?cid=0c79f7d828ce1d16dd4a0419f2aaea30&aff=56&s1=499725&s2=&s3=&s4=&s5= CertificateIssuerSectigo Limited Subject*.sla-alacrity.com Fingerprint0F:9A:D2:50:32:F9:50:67:E7:4F:7C:88:EA:B0:C7:D1:88:47:85:17 ValidityTue, 16 Apr 2024 00:00:00 GMT - Wed, 16 Apr 2025 23:59:59 GMT
Size132 kB (132166 bytes) Hashd41d8cd98f00b204e9800998ecf8427e da39a3ee5e6b4b0d3255bfef95601890afd80709 e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /token/empello?token=ad1f2e13-88af-424d-9abb-f6bb3040244d&version=2&button=I3N1YnNjcmliZQ== HTTP/1.1
Host: fd.sla-alacrity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://get-fabulous-content.click
DNT: 1
Connection: keep-alive
Referer: https://get-fabulous-content.click/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
content-type: application/json; charset=utf-8
date: Fri, 10 May 2024 16:41:28 GMT
server: nginx/1.21.4
access-control-allow-origin: *
access-control-allow-methods: POST, GET, OPTIONS
access-control-expose-headers:
access-control-max-age: 1728000
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
x-download-options: noopen
x-permitted-cross-domain-policies: none
referrer-policy: strict-origin-when-cross-origin
access-control-allow-headers: Origin,Accept,Content-Type,X-Requested-With,X-CSRF-Token
vary: Accept, Origin
etag: W/"4ee8ba0ac79011c9d9153e3c18458cd0"
cache-control: max-age=0, private, must-revalidate
x-request-id: 9aea9713-5886-45bf-8e8d-e66b70bd9e3f
x-runtime: 0.129763
x-cache: Miss from cloudfront
via: 1.1 0c35b89cb607eddb1b7cc5d6ada865d6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: r1VJ28f7pmzDb0yLdcaWJb4uKuIHLOpWnIlUj35tFhhWY88CpRpbbg==
X-Firefox-Spdy: h2
|
|
| antifraud-uk.empello.net/api/v2/token/js/get/ | 13.43.60.223 | 200 OK | 77 B |
URL POST HTTP/2antifraud-uk.empello.net/api/v2/token/js/get/ IP13.43.60.223:443
Requested byhttps://get-fabulous-content.click/lp/kw/ar/xp02tm9d02/?cid=0c79f7d828ce1d16dd4a0419f2aaea30&aff=56&s1=499725&s2=&s3=&s4=&s5= CertificateIssuerSectigo Limited Subject*.empello.net FingerprintBD:EE:34:0F:30:99:2E:5A:A7:5D:1E:8C:1A:07:BD:9D:B8:05:E2:85 ValidityWed, 24 Apr 2024 00:00:00 GMT - Mon, 19 May 2025 23:59:59 GMT
File typetroff or preprocessor input, ASCII text, with no line terminators Hash4129c2eb46ac9f82714bb22a8d03646a f6c47b4508c818bf0dc97b27d0e5cdb424d6b62b bb12b65a2c5ec90fd957a1e1e66e643c9bc3c84fc322da4f62c5a342f4d3db15
POST /api/v2/token/js/get/ HTTP/1.1
Host: antifraud-uk.empello.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-type: application/x-www-form-urlencoded
Content-Length: 155
Origin: https://get-fabulous-content.click
DNT: 1
Connection: keep-alive
Referer: https://get-fabulous-content.click/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 16:41:29 GMT
content-type: application/json
server: nginx
x-frame-options: DENY
referrer-policy: same-origin
cross-origin-opener-policy: same-origin
vary: origin
access-control-allow-origin: *
x-content-type-options: nosniff, nosniff
x-xss-protection: 1; mode=block
content-security-policy: script-src 'self'
strict-transport-security: max-age=0; includeSubdomains;
cache-control: no-cache, no-store, must-revalidate
content-encoding: gzip
X-Firefox-Spdy: h2
|
|
| www.ourfastcdn.com/vas-lps/4/style7.css | 194.242.11.186 | 200 OK | 12 kB |
URL GET HTTP/2www.ourfastcdn.com/vas-lps/4/style7.css IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://get-fabulous-content.click/lp/kw/ar/xp02tm9d02/?cid=0c79f7d828ce1d16dd4a0419f2aaea30&aff=56&s1=499725&s2=&s3=&s4=&s5= CertificateIssuerLet's Encrypt Subjectwww.ourfastcdn.com Fingerprint81:BF:AB:3B:A2:E2:70:D4:2B:F4:8A:EF:0A:D1:EE:5C:1F:5B:49:C6 ValidityMon, 06 May 2024 22:09:52 GMT - Sun, 04 Aug 2024 22:09:51 GMT
File typeASCII text, with CRLF line terminators Hash643ef93c632f3bb14bff37d3a6b25bbe 7fc6a195e75ea56e36dba14ed118b09023584204 e65c22d563a312ba24328587df604f20d922b82fcf5123711a7265acab53e989
GET /vas-lps/4/style7.css HTTP/1.1
Host: www.ourfastcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-fabulous-content.click/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 16:41:28 GMT
content-type: text/css
server: BunnyCDN-NO1-830
cdn-pullzone: 123549
cdn-uid: 6c7a66c5-a071-443f-ac0a-15b8056be674
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"64a56814-3012"
last-modified: Wed, 05 Jul 2023 12:54:44 GMT
cdn-cachedat: 05/09/2024 15:47:55
cdn-storageserver: DE-679
cdn-fileserver: 634
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 25b67d8e13ea93a435219860a3daf000
cdn-cache: HIT
X-Firefox-Spdy: h2
|
|
| www.ourfastcdn.com/libraries/axios.min.js | 194.242.11.186 | 200 OK | 31 kB |
URL GET HTTP/2www.ourfastcdn.com/libraries/axios.min.js IP194.242.11.186:443 ASN#34989 ServeTheWorld AS
Requested byhttps://get-fabulous-content.click/lp/kw/ar/xp02tm9d02/?cid=0c79f7d828ce1d16dd4a0419f2aaea30&aff=56&s1=499725&s2=&s3=&s4=&s5= CertificateIssuerLet's Encrypt Subjectwww.ourfastcdn.com Fingerprint81:BF:AB:3B:A2:E2:70:D4:2B:F4:8A:EF:0A:D1:EE:5C:1F:5B:49:C6 ValidityMon, 06 May 2024 22:09:52 GMT - Sun, 04 Aug 2024 22:09:51 GMT
File typeJavaScript source, ASCII text, with very long lines (31114) Hashb843d5d6f3c9912a2c5b5056e378f3f2 2463f7b88c39d73a0c1bfa38d494c2d37cdd7590 994d6e124d837856735298c59b571c79f9f61e448c84ad6b742e6f6ba05cbf93
GET /libraries/axios.min.js HTTP/1.1
Host: www.ourfastcdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://get-fabulous-content.click/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
HTTP/2 200 OK
date: Fri, 10 May 2024 16:41:28 GMT
content-type: application/javascript
server: BunnyCDN-NO1-830
cdn-pullzone: 123549
cdn-uid: 6c7a66c5-a071-443f-ac0a-15b8056be674
cdn-requestcountrycode: NO
vary: Accept-Encoding
access-control-allow-origin: *
access-control-allow-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
access-control-expose-headers: Server, x-goog-meta-frames, Content-Length, Content-Type, Range, X-Requested-With, If-Modified-Since, If-None-Match
cache-control: public, max-age=31919000
content-encoding: br
etag: W/"63d2fc69-79b1"
last-modified: Thu, 26 Jan 2023 22:19:21 GMT
cdn-cachedat: 05/07/2024 19:49:49
cdn-storageserver: DE-661
cdn-fileserver: 537
cdn-proxyver: 1.04
cdn-requestpullcode: 200
cdn-requestpullsuccess: True
cdn-edgestorageid: 830
cdn-status: 200
cdn-requestid: 311d8d07a9c52b6d01d7e92c7cc7dcb3
cdn-cache: HIT
X-Firefox-Spdy: h2
|
|