Report - fighterpunch.com/

Report Overview

Submitted URL
fighterpunch.com/
IP
162.0.215.120
ASN
#22612 NAMECHEAP-NET
Submitted
2023-12-06 02:41:17
Access
public
Website Title
FighterPunch -
Final URL
fighterpunch.com/
Tags
urlquery detections
No alerts detected

Detections

urlquery
0
Network Intrusion Detection
0
Threat Detection Systems
40

Domain Summary

Domain / FQDN	Rank	Registered	First Seen	Last Seen	Sent	Received	IP
fighterpunch.com	unknown	unknown	No data	No data	18 kB	430 kB	162.0.215.120
becorsolaom.com	355840	2021-08-09	2021-11-04	2023-11-18	4.3 kB	59 kB	139.45.197.238
growledavenuejill.com	unknown	2023-11-28	2023-11-28	2023-12-01	2.4 kB	5.7 kB	173.233.137.60
devoutdoubtfulsample.com	unknown	2023-11-28	2023-11-28	2023-12-04	2.4 kB	8.8 kB	192.243.59.13
www.googletagmanager.com	75	2011-11-11	2013-05-22	2023-12-05	1.8 kB	327 kB	142.250.74.168
awaydefinitecreature.com	unknown	unknown	No data	No data	2.4 kB	5.5 kB	192.243.61.227
fistsurprising.com	unknown	2023-11-28	2023-11-29	2023-12-05	4.7 kB	11 kB	192.243.59.20
ocsp.r2m03.amazontrust.com	unknown	2007-05-11	2023-02-21	2023-12-05	350 B	942 B	143.204.53.97
static.addtoany.com	4091	2006-03-10	2012-05-21	2023-12-05	6.7 kB	96 kB	104.22.70.197
cdn.cloudimagesb.com	23099	2020-10-06	2021-02-12	2023-12-05	3.2 kB	183 kB	45.133.44.9
tzegilo.com	unknown	2022-01-14	2022-01-14	2023-12-03	411 B	20 kB	104.21.11.245
www.profitablecreativeformat.com	unknown	2023-07-31	2023-08-01	2023-12-01	3.2 kB	81 kB	192.243.59.20
offerimage.com	304078	2019-06-10	2019-06-10	2023-12-05	1.4 kB	107 kB	172.67.22.216
ossmightyenar.net	unknown	2023-06-22	2023-06-23	2023-12-04	3.6 kB	74 kB	139.45.197.245
traumatizedenied.com	unknown	2023-11-28	2023-11-28	2023-12-03	2.4 kB	7.1 kB	173.233.137.52
thubanoa.com	unknown	2023-11-17	2023-11-17	2023-11-19	4.9 kB	460 kB	139.45.197.242
fonts.gstatic.com	unknown	2008-02-11	2014-09-09	2023-12-05	1.7 kB	89 kB	216.58.207.227
node-ya-3.jivosite.com	unknown	2011-05-06	2023-01-18	2023-12-05	494 B	728 B	158.160.7.212
proftrafficcounter.com	unknown	2023-11-16	2023-11-21	2023-12-05	1.9 kB	1.4 kB	18.184.210.76
fleraprt.com	unknown	2022-01-14	2022-01-14	2023-12-05	541 B	484 B	139.45.195.254
my.rtmark.net	9054	2014-10-29	2015-02-04	2023-12-05	437 B	745 B	139.45.195.8
divedresign.com	unknown	2023-11-28	2023-11-28	2023-12-02	2.4 kB	5.5 kB	192.243.59.13
fonts.googleapis.com	8877	2005-01-25	2013-06-10	2023-12-05	963 B	12 kB	142.250.74.106
code.jivosite.com	30079	2011-05-06	2012-07-22	2023-12-05	3.4 kB	302 kB	5.101.37.37
d3x2.myfastcdn.com	123688	2019-06-03	2019-10-29	2023-12-05	484 B	44 kB	172.66.40.155

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

No alerts detected

Threat Detection Systems

Public InfoSec YARA rules

No alerts detected

OpenPhish

No alerts detected

PhishTank

No alerts detected

Fortinet's Web Filter

No alerts detected

mnemonic secure dns

No alerts detected

Quad9 DNS

Scan Date	Severity	Indicator	Alert
2023-12-05	medium	fleraprt.com	Sinkholed
2023-12-06	medium	traumatizedenied.com	Sinkholed
2023-12-05	medium	growledavenuejill.com	Sinkholed
2023-12-05	medium	divedresign.com	Sinkholed
2023-12-06	medium	awaydefinitecreature.com	Sinkholed
2023-12-05	medium	growledavenuejill.com	Sinkholed
2023-12-06	medium	awaydefinitecreature.com	Sinkholed
2023-12-06	medium	fistsurprising.com	Sinkholed
2023-12-06	medium	fistsurprising.com	Sinkholed
2023-12-05	medium	divedresign.com	Sinkholed
2023-12-06	medium	thubanoa.com	Sinkholed
2023-12-06	medium	fistsurprising.com	Sinkholed
2023-12-05	medium	devoutdoubtfulsample.com	Sinkholed
2023-12-06	medium	fistsurprising.com	Sinkholed
2023-12-06	medium	thubanoa.com	Sinkholed
2023-12-06	medium	thubanoa.com	Sinkholed
2023-12-06	medium	traumatizedenied.com	Sinkholed
2023-12-06	medium	thubanoa.com	Sinkholed
2023-12-06	medium	thubanoa.com	Sinkholed
2023-12-05	medium	devoutdoubtfulsample.com	Sinkholed

ThreatFox

No alerts detected

JavaScript (78)

	URL	Size	First Seen	Last Seen
	unknown	145 B	2023-12-06	2023-12-06
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:26 Times Seen1 Hash 502e02f0803e3ec5c30d64c496aa43a3 eceacf18fb1a9a6e95555c6963b8244efa8a938b 50e47308236a07930fece7a5f6089840bc895ba6946244b93c7e7a1c50c7eae1 Loading...

	fighterpunch.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1	14 kB	2023-05-09	2024-07-27
Pretty URL fighterpunch.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-05-09 19:21:05 Last Seen2024-07-27 03:56:16 Times Seen111326 Hash 9ffeb32e2d9efbf8f70caabded242267 3ad0c10e501ac2a9bfa18f9cd7e700219b378738 5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89 Loading...

	fighterpunch.com/	3.3 kB	2023-12-06	2023-12-06
Pretty URL fighterpunch.com/ IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:26 Times Seen1 Hash 69cba6eb86d2b71ea653c0fa99286b96 f59a829f3df9092e47b19b6b2abb31bed105817f d8433e3c0b175fa67bdc64eba651e2777e50f794d6247f30b4ac2402b4a0ad1c Loading...

	www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js	30 kB	2023-11-29	2023-12-09
Pretty URL www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js IP 192.243.59.20 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-29 08:09:25 Last Seen2023-12-09 18:05:59 Times Seen15 Hash 3b517423a8d20e6e8fc9547a3c4ec7ac 14c328058f7a51d1fbfda9ffc65f47b2a2d5719a 0e4111eb31f2796b4e0126f18dda173d5db2645a4b7eeef319bbac0da62a188e Loading...

	static.addtoany.com/menu/svg/icons/pinterest.js	901 B	2023-11-02	2024-04-11
Pretty URL static.addtoany.com/menu/svg/icons/pinterest.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 14:35:30 Last Seen2024-04-11 16:14:21 Times Seen312 Hash 615b17c66cc57716968c15fd9494f558 737e2be21596a4538e1cc6982f96b92d3d577b8b ab86f686b2e5133d5a05b7a94d1294ad711858e6aef9a931118ab1d8f1e2600d Loading...

	unknown	1.4 kB	2023-06-07	2024-07-26
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-06-07 22:16:35 Last Seen2024-07-26 19:08:10 Times Seen536 Hash a4951040210c1a13f3006d506c750587 38552c656ef4fbf104ec652c3ad3a4a76062f501 c444e5aeffcc46c5b62dd11508eecaec8227b0d29ce4c098cd43f7d076a00aa1 Loading...

	static.addtoany.com/menu/page.js	3.1 kB	2023-11-02	2023-12-21
Pretty URL static.addtoany.com/menu/page.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 09:54:10 Last Seen2023-12-21 03:03:54 Times Seen1715 Hash c600948b9f6b92e63735acd32e7b695a 1326a432fa4e80f103146d14b2a7c31ecf6dcbe9 042a9121e1c7bcdc3bfc48ed5e23b8dd1f64f375ef5872a5984e5d5096444702 Loading...

	fighterpunch.com/wp-content/plugins/coupon-reveal-button/js/spbcta-nm.js?ver=1.2.5	3.2 kB	2023-03-10	2023-12-06
Pretty URL fighterpunch.com/wp-content/plugins/coupon-reveal-button/js/spbcta-nm.js?ver=1.2.5 IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-10 14:12:50 Last Seen2023-12-06 03:41:27 Times Seen8 Hash 8cf4b5c4d575456ac8fe86078be4bec0 c6dafa34622cd27889458adc61fc8796e2415448 b73b3dab142ab6e08f115ec8cb10921ec43a68d621f994eee17ae38f3715107c Loading...

	fighterpunch.com/	139 B	2023-11-08	2024-07-26
Pretty URL fighterpunch.com/ IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-11-08 22:06:38 Last Seen2024-07-26 01:59:11 Times Seen261 Hash 9190d4e9041d653a6b7909eaaf939581 c85fe08acbf9402238724d81e1d4898a80c25ba6 9feb477ccc6e446be71b4050ad16f3f722a26b252d349d5cd2d0dd71e6651366 Loading...

	static.addtoany.com/menu/sm.24.html#type=core&event=load	572 B	2023-04-05	2024-07-10
Pretty URL static.addtoany.com/menu/sm.24.html#type=core&event=load IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML true Observations First Seen2023-04-05 07:46:16 Last Seen2024-07-10 12:43:55 Times Seen7673 Hash 0e98daa4131e2ce829dc3a409ea0a319 5f881f1877aa41d1cdf0e05b8c616f4a206fb197 02e28da56ec7a9d68b42c3a634de4c5bf9691fee9aba529a68592416d4251eb0 Loading...

	static.addtoany.com/menu/svg/icons/twitter.js	695 B	2023-03-08	2024-04-11
Pretty URL static.addtoany.com/menu/svg/icons/twitter.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:33 Last Seen2024-04-11 22:41:57 Times Seen4985 Hash 27cd96b1f5736097c53caaeb6d2dc62c 2f853bd93d200defae6f66090d0746ecee3e71d6 74ec1e2bfcf647ccdeaf5b127294db846ee4a6f8ffd6c909d4938370d4187d1f Loading...

	fighterpunch.com/	325 B	2023-12-06	2023-12-06
Pretty URL fighterpunch.com/ IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:26 Times Seen1 Hash cad5165d6fd3de2b54705815fe8b482d 82226c6860a596e6807b49aec70b5be982cd564a 1f5b1e6f9ef7b5aadf0fd6076cf1211cae5801fbbbdf7af368c83ff78d7667e0 Loading...

	www.googletagmanager.com/gtag/js?id=GT-5R7PFGF&l=dataLayer&cx=c	281 kB	2023-12-06	2023-12-06
Pretty URL www.googletagmanager.com/gtag/js?id=GT-5R7PFGF&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:27 Times Seen2 Hash 0630aa8f967eac65ee541aaf3ba2726a 003812e34a97014ab88c9f58bdf896c89258d828 e61382dad8cc485a1430f764683931d0c82bef5cebc2f0e79a25e1086d990ef4 Loading...

	www.googletagmanager.com/gtag/js?id=G-B5T3G0YBDY&l=dataLayer&cx=c	230 kB	2023-12-06	2023-12-06
Pretty URL www.googletagmanager.com/gtag/js?id=G-B5T3G0YBDY&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:27 Times Seen2 Hash 3a2ccf1c8b1eb6a373d46b6b9cc033b2 a0554c2cbc233ba629f5856e76715177ca97f0d0 c8e29c6471e0fefaf0733c3cf5699d301ad36e676194cfd9d628c4f3f4968f1d Loading...

	fighterpunch.com/wp-content/themes/gridshow/assets/js/navigation.js	14 kB	2023-03-11	2024-07-06
Pretty URL fighterpunch.com/wp-content/themes/gridshow/assets/js/navigation.js IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 16:45:01 Last Seen2024-07-06 22:43:45 Times Seen37 Hash 699b9c700532059447b737881650ff07 25aef952431aaa2e45d0e0aed6426a6255139b91 6ea10761d62dc89a5cacb9f2b8dcf1316ddf30a0099e07522225ef1c515c14dd Loading...

	static.addtoany.com/menu/svg/icons/link.js	1.8 kB	2023-09-28	2024-04-07
Pretty URL static.addtoany.com/menu/svg/icons/link.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-28 17:07:08 Last Seen2024-04-07 00:16:17 Times Seen198 Hash 1ed50f8b8af4308bd3517892a0d7833d 8df6a727da57dd97b064f99c03beb106deee8e4b 8fc700a8d1da11928470c6a3475bcf4964c7559925bd18bf976d10ec708fc030 Loading...

	thubanoa.com/27/b7af9eee900df9a8aa2af9ad8ee46174	413 kB	2023-11-24	2024-01-08
Pretty URL thubanoa.com/27/b7af9eee900df9a8aa2af9ad8ee46174 IP 139.45.197.242 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-24 13:48:25 Last Seen2024-01-08 13:42:41 Times Seen943 Hash 1dc3ebe1459db3cde0597b21156f2665 0e5a8c7b79a34f4fffaeab7c7eb4f3a19b0d75f6 1a3f7f2cfe5fba958e9df1a38c0980aab5bb21225601ea849f9e6df4afe09f2e Loading...

	unknown	196 B	2023-12-06	2023-12-06
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:26 Times Seen1 Hash ab7a0733b50a17e5a10cbb230a592511 fcebfd24bf9f8711bbec3f9fdab497e14a1322ae 9848451f4bdd24067c349edb661e3ed78b9207a85f9bbca459f7fa36fd0d417b Loading...

	fighterpunch.com/	59 kB	2023-12-06	2023-12-06
Pretty URL fighterpunch.com/ IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:26 Times Seen1 Hash fbb7d5e6409ded2c3cec385381ffcbd5 d5b92b00117e859513b014bcfcde61abc83f6538 11b620179da5a13df7532b49f90f2f674d57b739defd319826cc96f6727b1ec1 Loading...

	www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js	30 kB	2023-11-29	2023-12-09
Pretty URL www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js IP 192.243.59.20 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-29 08:36:46 Last Seen2023-12-09 20:42:27 Times Seen13 Hash 68f81b32cadfd21cba4ec1cd484e1db0 7a93a7a466194f6cf53c60e8213356782fbde9d4 76e339748e8bae6018f3ae6b6b1754d61601011d3c4a0d7fcd01f0d1b2cd45dd Loading...

	www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js	30 kB	2023-11-28	2023-12-09
Pretty URL www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js IP 192.243.59.20 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-28 20:41:00 Last Seen2023-12-09 20:29:49 Times Seen19 Hash 2ee23010b0bf1c7cd28bc737343bc8a2 dc020a619e5859836831cf239b3e9397e15d94f5 a3a7ee07d3c28c3877c3e716f5bbef12484865470fe9aaf13183175b0c213154 Loading...

	fighterpunch.com/	233 B	2023-12-06	2023-12-06
Pretty URL fighterpunch.com/ IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:26 Times Seen1 Hash 735393409304f198d67937523bf914ec 2e15edb8ff70041898a619bd0fe70cf0f919b05b dd946d78bba55e2358b91556131521cb5d59d86dc737c3d0ebceefead2c51bea Loading...

	fighterpunch.com/wp-content/themes/gridshow/assets/js/html5shiv.js	10 kB	2023-03-11	2024-07-06
Pretty URL fighterpunch.com/wp-content/themes/gridshow/assets/js/html5shiv.js IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 16:45:01 Last Seen2024-07-06 22:43:45 Times Seen37 Hash 94af6868f8e778c5b2d90b4a2e157698 cdca2fdf3867c09d3620e7dec4866e8ccf36d95f 483d754ec68aa08ffc679aed70fab78a51195fe3efd95ca193fa3b9a1eef9adb Loading...

	unknown	2.4 kB	2023-12-06	2023-12-06
Pretty Introduced by Function Embedded in HTML false Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:26 Times Seen1 Hash 6139d9e51482ab6b59e44a9f8aee6382 8f632780a84e033ee3fde75c78d74a40876f88a8 3f1ecaa1b80a9aedfb3c26869f7aa564feb5b3e61b43058670e2df4411249d2e Loading...

	fighterpunch.com/	294 B	2023-12-06	2023-12-06
Pretty URL fighterpunch.com/ IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:26 Times Seen1 Hash 30abe008f8968415c6cde8ac9490210e 20414201ea11c44fe49198f5cd3925a648de1454 e5adf2198fe8324ed32c780a9b554f2770c8859ba91eb4d85f6a044311d743b0 Loading...

	fighterpunch.com/sandbox%20eval%20code	147 B	2023-04-11	2024-07-27
Pretty URL fighterpunch.com/sandbox%20eval%20code IP 0.0.0.0 ASN #0 Introduced by Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-07-27 04:04:32 Times Seen385008 Hash 92b651082ce234f66bb544e678befda3 14c21c55ddce43b6f677caadf51d4ab98c6a3df8 25d57d1d97abeb84531d3d3e5754dd5cb19a2c115edfa7cfc7af8247084faded Loading...

	www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js	30 kB	2023-11-29	2023-12-08
Pretty URL www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js IP 192.243.59.20 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-29 20:33:55 Last Seen2023-12-08 23:28:22 Times Seen17 Hash 9b4a5c0fe11dd4241ad60412777fdf56 31e43750a4c80cbb347621b25f31b9e0b5597e6c e0735b4021aa5916783590509a4baba8156941fa52de1e034a3a67ce23eaa9d7 Loading...

	static.addtoany.com/menu/svg/icons/facebook_messenger.js	378 B	2023-03-08	2024-04-04
Pretty URL static.addtoany.com/menu/svg/icons/facebook_messenger.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 20:04:23 Last Seen2024-04-04 06:36:45 Times Seen708 Hash b285f29d96b60ae611551c8d6f1b3838 69523ce7bf3c5888dc17bd5014393d9227cf3fa4 705ddd320c7afe5895ed0bb7438874918110baaaec1ad4b7da72bd13de82f96d Loading...

	unknown	3.4 kB	2023-12-06	2023-12-06
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:26 Times Seen1 Hash 9aee1d75574aa4d38456df527179894d f8030fba208595a6a9ae9a49299dbcb231fb9c86 2bf3305d8aa977d6f18e43858786eea1c79aac18870f472acbafe463abf81501 Loading...

	unknown	3.4 kB	2023-12-06	2023-12-06
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:26 Times Seen1 Hash c266bc5f9d79a22cccc92b65e9dbb118 d8498de91992928ccc86da2c6d90999dadcc5b82 d48f2da5e7d67a38362a6d184ad0f029a23c4ff988a27baf17242cce8a68f0c4 Loading...

	code.jivosite.com/widget/q5I98oX9eW	18 kB	2023-12-04	2023-12-14
Pretty URL code.jivosite.com/widget/q5I98oX9eW IP 5.101.37.37 ASN #57416 LLC South Internet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 19:52:40 Last Seen2023-12-14 14:41:14 Times Seen131 Hash 594268ca98b7212df8e7a97bc62e40f2 dbf607222a5221900a163110cf5fc5cb62b15d12 eb94169a7557a8d64fb38a58ed6c6e50d9a252b59f8f2e0a93f425299bebc079 Loading...

	fighterpunch.com/	350 B	2023-12-06	2023-12-06
Pretty URL fighterpunch.com/ IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:26 Times Seen1 Hash 15b9defb31ce2c6be02e68d04d6a62ea 4bd9053a23be2950cc2039a7280fd16e8e1dad02 ac97bd8e9aa6c7d3ed7d68181be80f9349ee1e7fe5114ebfc9f3574d488e1357 Loading...

	becorsolaom.com/400/6287845	82 kB	2023-12-06	2023-12-06
Pretty URL becorsolaom.com/400/6287845 IP 139.45.197.238 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:26 Times Seen1 Hash 831e1f55e0cb419bad00732b9df7548a c46fea3c80a08b2d5c8aae05ff91dc0b27ac50ae fbe6fdc00311f5b81fbc17f1e6945c8110e251f3f5cb16244b13fc914b3b340d Loading...

	fighterpunch.com/wp-content/themes/gridshow/assets/js/custom.js	8.8 kB	2023-03-11	2024-07-06
Pretty URL fighterpunch.com/wp-content/themes/gridshow/assets/js/custom.js IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-11 16:45:01 Last Seen2024-07-06 22:43:44 Times Seen33 Hash 8d24f727d0bacd083e8cc67fd929dc71 fd9b56d35f4ada17c78fa8ccce97bad6f49d55d6 a8413645741f65c9ff789d0dceabbde4d807bc98c67b29490ba5ee81f4c7c894 Loading...

	unknown	1.1 MB	2023-12-04	2023-12-06
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 20:26:59 Last Seen2023-12-06 21:54:44 Times Seen7 Hash d718777c53aa02c40cfd2832d9a333e0 73b33b6306cf56aabefb524d38ae22d73b5cbc9b 4f14ecf6cfab9731aa1ecd8664b7b7c4517920be1a5b386225466d9d8f9e4165 Loading...

	fighterpunch.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1	88 kB	2023-11-03	2024-07-27
Pretty URL fighterpunch.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1 IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-03 09:26:43 Last Seen2024-07-27 03:56:16 Times Seen74188 Hash 826eb77e86b02ab7724fe3d0141ff87c 79cd3587d565afe290076a8d36c31c305a573d18 cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf Loading...

	fighterpunch.com/wp-includes/js/imagesloaded.min.js?ver=5.0.0	5.5 kB	2023-11-08	2024-07-27
Pretty URL fighterpunch.com/wp-includes/js/imagesloaded.min.js?ver=5.0.0 IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-08 01:34:44 Last Seen2024-07-27 01:54:37 Times Seen10718 Hash 6823120876c9afc8929418c9a6f8e343 90b0adb37d70ffec5f9189c36bb0027c310c9502 b65b3de1bc923b9355248a0d941a0eaee15dfb9a6b8eadb51323a8df6189dcd1 Loading...

	static.addtoany.com/menu/svg/icons/telegram.js	360 B	2023-03-08	2024-07-25
Pretty URL static.addtoany.com/menu/svg/icons/telegram.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 15:33:09 Last Seen2024-07-25 06:10:29 Times Seen1131 Hash 48f25c508c92c3601cf047609318001f 59117e825084c63a0dda48edec82c14a60e16f23 6415561e892cf9d614e7179f71353af4ceadfd641d71c42fe54c9420eb0d0138 Loading...

	fighterpunch.com/wp-content/themes/gridshow/assets/js/skip-link-focus-fix.js	834 B	2023-03-07	2024-07-24
Pretty URL fighterpunch.com/wp-content/themes/gridshow/assets/js/skip-link-focus-fix.js IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:43 Last Seen2024-07-24 19:35:22 Times Seen274 Hash 1e2caa73e386148cc0892463750d9f92 a9e07545c8f1bef3b56f0c4e2f32ea0b71ff2cf1 5ca257ab8ea720ff657a153f7212034735691282ef8cbfd1af6b6fe9dfb4f536 Loading...

	ossmightyenar.net/401/6287854	89 kB	2023-12-06	2023-12-06
Pretty URL ossmightyenar.net/401/6287854 IP 139.45.197.245 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:26 Times Seen1 Hash 40b543bbe764b9d2c5ed6a024b9b53af 19d06c0d21753ddc5b75154af4dee474559022a7 f4cc9968d8dc5d7e3fe0fcd72319464a74499d640b4d3ea50f1cbe51cbeba815 Loading...

	fighterpunch.com/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1	129 B	2023-03-07	2024-07-27
Pretty URL fighterpunch.com/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1 IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 01:03:19 Last Seen2024-07-27 03:28:12 Times Seen5803 Hash 5ef26b5e47e6951f43ecf2b1fc645222 081afb52577f6f3bb044fdea6d34a632c3cce7e8 50679e0e3933c945348a2db0cc128bb14b57a60a74fabf8cae13acc14efbb2e1 Loading...

	static.addtoany.com/menu/svg/icons/facebook.js	430 B	2023-09-28	2024-04-11
Pretty URL static.addtoany.com/menu/svg/icons/facebook.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-28 17:07:08 Last Seen2024-04-11 22:41:58 Times Seen1136 Hash 243f2a5cd6aa04e6f0d3e7f1f1a577a5 4b4943d6f2f483dd5ecde6e0e94a40fd13e59b9b 9ee1397f4da0e0c981a979bc1ea43be1d0c28bf3619636df8ab9dc09fa770aaf Loading...

	static.addtoany.com/menu/svg/icons/email.js	427 B	2023-11-02	2024-04-11
Pretty URL static.addtoany.com/menu/svg/icons/email.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 10:46:01 Last Seen2024-04-11 22:41:58 Times Seen454 Hash 95959d8b73948bcbe75901f91fe4fbec 779925e62ff499409212ae635ac551fb68fae1f6 b199ed28ba39e8d3bdc0d2860b8f710808796f2c7272406178010428f509d397 Loading...

	www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js	30 kB	2023-11-30	2023-12-06
Pretty URL www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js IP 192.243.59.20 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-30 11:22:42 Last Seen2023-12-06 23:09:59 Times Seen17 Hash fd4a853b19af5f54f2dd919249f88755 a0622cd04cc8bda27c0b777469c762c48aec307f 7b61bf0bddd0d8ca082aaceeb81db7a396283b10a935676255c92e76ff5c0a11 Loading...

	unknown	3.3 kB	2023-12-06	2023-12-06
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:26 Times Seen1 Hash 14d2386172013436692684575586eef7 57eda499f0c81045ba7d58cefe8c41394e222f91 a5445b9f093a0542274102f1e5c099e88746cf241ddb8556418f37736562116a Loading...

	static.addtoany.com/menu/svg/icons/whatsapp.js	1.1 kB	2023-11-02	2024-04-07
Pretty URL static.addtoany.com/menu/svg/icons/whatsapp.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 10:46:01 Last Seen2024-04-07 00:16:17 Times Seen408 Hash bf004036297449bae92251730c072a84 0bfd85a0d0387ba2bc229335e6356d4a246a02ad 390bb80c8ec894a3669df1522e5f88b9f1c2a7dc7b2a6aa39ea8a6401b1aea80 Loading...

	static.addtoany.com/menu/svg/icons/reddit.js	929 B	2023-11-02	2024-04-07
Pretty URL static.addtoany.com/menu/svg/icons/reddit.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 22:54:28 Last Seen2024-04-07 00:16:17 Times Seen367 Hash 5438cf98e05e83a43f82f74c3c4c7d8e ce1d358f9a53c727eca7053e707b1ea2c4c96031 32acbaf49df946ebb1f9958224f92100b9dca8fa41d0e4ca354d43f08f6f20d1 Loading...

	www.googletagmanager.com/gtag/js?id=G-L4J0XMWNXV&l=dataLayer&cx=c	230 kB	2023-12-06	2023-12-06
Pretty URL www.googletagmanager.com/gtag/js?id=G-L4J0XMWNXV&l=dataLayer&cx=c IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:27 Times Seen2 Hash f2b3c93e9c245ed1e6ab4d8b649eb4b9 20d98f5a69caad78c730c2bba82bb86c886a5487 98bf06ad7d733b35f4259aa5786c7eae32c474a37798e06aca900b4621c36209 Loading...

	fighterpunch.com/	181 B	2023-12-06	2023-12-06
Pretty URL fighterpunch.com/ IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:26 Times Seen1 Hash 1b488211294021b9b2ce26f478bda449 d860c95f426f1ec2eb3abdf8d0d901b22fb2d6ac 5007890956ff3c027aaa60242a675eaf2e2c3a589c6adca07b1336142fdc1fc1 Loading...

	fighterpunch.com/	59 kB	2023-12-06	2023-12-06
Pretty URL fighterpunch.com/ IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:26 Times Seen1 Hash 2af196fc8bf7bfad57c3b7e0d5649f58 e4e84ef2352294ce75afca64e61db7879efb0cd4 feba6469508e405f6de6bc91661d2448d159dba7a843b13ef73db134288f5fe2 Loading...

	www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js	30 kB	2023-12-01	2023-12-10
Pretty URL www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js IP 192.243.59.20 ASN #39572 DataWeb Global Group B.V. Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-01 08:48:47 Last Seen2023-12-10 03:43:16 Times Seen14 Hash 576442791b9482c3776a3309165ba102 c5ae50f09faddd38031699c999137badd7f7cf45 5fa1cc362a68f376415ff600953a5ac7fa17e91c39433a2a78ce90ccc42fa9af Loading...

	static.addtoany.com/menu/svg/icons/a2a.js	182 B	2023-03-08	2024-07-26
Pretty URL static.addtoany.com/menu/svg/icons/a2a.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-08 14:25:33 Last Seen2024-07-26 04:33:30 Times Seen4516 Hash baf0595a19bdc7f7497b74731d2166c4 fd5714384c52fc0338083574434d12328313896c 3dab93242ee573bbcfc22c9d15acd47794e500ed44e6bd48a35400b39d65aa43 Loading...

	fighterpunch.com/	244 B	2023-12-06	2023-12-06
Pretty URL fighterpunch.com/ IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:26 Times Seen1 Hash 6c18f6a010ad1a7f811f85cb52acc952 10e5fd39402bb884edcaff1d0b6ac824cd393c9b ae0f82c65b02042c6b09632409684f4369dc3c329034af3fa0cdcd2f8d66ed9c Loading...

	tzegilo.com/stattag.js	19 kB	2023-09-07	2024-02-08
Pretty URL tzegilo.com/stattag.js IP 104.21.11.245 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-09-07 20:07:13 Last Seen2024-02-08 06:45:50 Times Seen4659 Hash 89e89aea544ea2785d49cc4cd9cf26f6 7d53437a89eb9861038ee27a8ff0e3bb70fa2a0b 86da38693fcea056d36588a4146e85392f784c457511de416fec32034aafa4f9 Loading...

	unknown	3.3 kB	2023-12-06	2023-12-06
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:26 Times Seen1 Hash 50e9f3f288b010e24ead30c3326abb22 576637140727401951a279b45a92d6bf732de482 6612d934148108b4fbf49b0af0f5716ab77636bba5e360584f5e052aadefd962 Loading...

	fighterpunch.com/	274 B	2023-12-06	2023-12-06
Pretty URL fighterpunch.com/ IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:26 Times Seen1 Hash 8cdf99d4b90bbdeafcff23df3869525f 6191ab93ed2f87c5139bafa1ce2d26e1a92a2b45 849b7c19b995bd3a726287aaef6828f77e992013bdf07551afadcd275386c087 Loading...

	fighterpunch.com/wp-content/themes/gridshow/assets/js/jquery.fitvids.min.js	1.8 kB	2023-03-07	2024-07-24
Pretty URL fighterpunch.com/wp-content/themes/gridshow/assets/js/jquery.fitvids.min.js IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-03-07 12:02:43 Last Seen2024-07-24 19:35:22 Times Seen214 Hash 02187919639033ddbe1ba88a422c37a8 152a354a6ac63a5cb20a453e89bf4953a6fb47c9 8570b14bb3216bcfb445442d65095db7428892ea6ed93a1ce3c04e28dbd238ee Loading...

	becorsolaom.com/400/6287845	82 kB	2023-12-06	2023-12-06
Pretty URL becorsolaom.com/400/6287845 IP 139.45.197.238 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 03:41:26 Last Seen2023-12-06 03:41:26 Times Seen1 Hash bb5f41f532ae56a8e343b2fcb7936445 2c224295f4c7351ec2cfe48f617961126863b6da 922a2f0aac66e16b1cd7e5fb8b2509be7e97b5d92747d0be69c1929ad1f4b734 Loading...

	unknown	3.4 kB	2023-12-06	2023-12-06
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 03:41:27 Last Seen2023-12-06 03:41:27 Times Seen1 Hash bdd635fb83bdf05a6382150b27166a7d c633179675b82c475b5acf7e1cf1ba53fe5c94da c50fcc97c78bf3e6e358cbdd89ec08579cc7589a6caedc159ea868203fb0206f Loading...

	static.addtoany.com/menu/modules/core.11bfb520.js	71 kB	2023-11-02	2023-12-21
Pretty URL static.addtoany.com/menu/modules/core.11bfb520.js IP 104.22.70.197 ASN #13335 CLOUDFLARENET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-11-02 09:54:10 Last Seen2023-12-21 03:03:55 Times Seen2434 Hash a5823e226d8e9ecea7da99d2b395a0a0 437a591d21ad4281ccaff225189d5d8e9b3a6e4d 77fd2e01fe7322b437084ad512b3c3df777ce7d092b975eb8b29ecb4fb612187 Loading...

	thubanoa.com/1?z=5297528	43 kB	2023-12-06	2023-12-06
Pretty URL thubanoa.com/1?z=5297528 IP 139.45.197.242 ASN #9002 RETN Limited Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 03:41:27 Last Seen2023-12-06 03:41:28 Times Seen2 Hash 3d172155319290d58f7a50e911e97b28 117d006b047a41f66e0391d35d64d74ef2855a71 80e0245bc3f62b9c452afc3a566d7e2ab975906d358fc51e909d7c168f7d76d9 Loading...

	code.jivosite.com/js/bundle_en_US.js?rand=1701697919	1.1 MB	2023-12-04	2023-12-06
Pretty URL code.jivosite.com/js/bundle_en_US.js?rand=1701697919 IP 5.101.37.37 ASN #57416 LLC South Internet Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-04 20:26:59 Last Seen2023-12-06 21:54:44 Times Seen7 Hash f707c1b425e4a50a34e289777f092136 faa772dc7f7957fb50ef7fcfd8475fa8e89184b6 924d1422e20ac74deed07032b5248e5856f74a9c20b6e91409ed0d02ad082ff9 Loading...

	www.googletagmanager.com/gtag/js?id=UA-257244167-1	191 kB	2023-12-06	2023-12-06
Pretty URL www.googletagmanager.com/gtag/js?id=UA-257244167-1 IP 142.250.74.168 ASN #15169 GOOGLE Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 03:41:27 Last Seen2023-12-06 03:41:27 Times Seen2 Hash bdf8b8c2de0379c72b0bd9c0c8ac3bab 115aba71624cf3ab8edded43529fe50b5be2759c 98994a41708e506ec23b271bcb091d9674422fb450a745ca97204057c0f845ce Loading...

	fighterpunch.com/	266 B	2023-03-11	2024-07-06
Pretty URL fighterpunch.com/ IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML true Observations First Seen2023-03-11 16:45:01 Last Seen2024-07-06 22:43:44 Times Seen19 Hash 7e1ced21f3d9d71e5ad77cae6e18a5fd db92e220ebdf6a13cccf727bbd0b6b710336f708 7428c1cca528a4fe9040f69f34ffe390af1d6fe5e6331302965560edae61bce5 Loading...

	fighterpunch.com/wp-content/plugins/jet-blocker-anti-ad-blocker-detector/assets/js/jetblock-scripts.js?ver=1.0.0	2.6 kB	2023-12-06	2024-06-19
Pretty URL fighterpunch.com/wp-content/plugins/jet-blocker-anti-ad-blocker-detector/assets/js/jetblock-scripts.js?ver=1.0.0 IP 162.0.215.120 ASN #22612 NAMECHEAP-NET Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 03:41:27 Last Seen2024-06-19 11:24:06 Times Seen9 Hash 76ba3d64823d38f92761f75a791b21c0 1145527af1b1e2b831ec1dc10ade687f4d15f7bf 2a56d840ae97611bed234e7f3ec2b8c022f8d2898ea874e0b8274a300c553512 Loading...

	www.google-analytics.com/analytics.js	4.7 kB	2023-04-11	2024-07-27
Pretty URL www.google-analytics.com/analytics.js IP 0.0.0.0 ASN #0 Introduced by scriptElement Embedded in HTML false Observations First Seen2023-04-11 21:07:53 Last Seen2024-07-27 04:04:32 Times Seen384357 Hash f24128d0c9cba7be2916c693427a3483 1b6397d496ea896ebc2018b01b995cee4f166029 58173de4697da1a218f04c3a783a733bab4e769ceabc37cd42da9dc3e036a7e8 Loading...

	unknown	3.3 kB	2023-12-06	2023-12-06
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 03:41:27 Last Seen2023-12-06 03:41:27 Times Seen1 Hash 86d77dd0011e5bdb51e49e1825d19029 190dc1fde9a065703404a76262855e951b21bd15 d7c5297b90d6aea4cc1ea39ac66d0c05ec544fbc095d9fa4e9ec281c3e30b82c Loading...

	unknown	3.4 kB	2023-12-06	2023-12-06
Pretty Introduced by scriptElement Embedded in HTML false Observations First Seen2023-12-06 03:41:27 Last Seen2023-12-06 03:41:27 Times Seen1 Hash c571ea59026e0b6a65e8a9929928c4a6 6be8f9bcd6f721aaab9166a21a3b7a58df87199d a52fcac2fcf434d91c7d464c5f3dadce80e4f38a64eb26420e54de49286396e4 Loading...

		Size	First Seen	Last Seen
	#1 Eval - 75a2927ea657a869df8d627184063f87	2.1 kB	2023-12-06	2023-12-06
Pretty Observations First Seen2023-12-06 03:41:27 Last Seen2023-12-06 03:41:27 Times Seen1 Hash 75a2927ea657a869df8d627184063f87 2f8ae1afe1ffeb6b40043e89c64c47da9dbc0aac 2e7ebfef783f7450d53a90a9d1af9bafa567ab66a3c2b6b9318e6bf0d3e97c86 Loading...

	#2 Eval - 6cd136cc67a08a1f9f53cbfc879099c9	2.1 kB	2023-12-06	2023-12-06
Pretty Observations First Seen2023-12-06 03:41:27 Last Seen2023-12-06 03:41:27 Times Seen1 Hash 6cd136cc67a08a1f9f53cbfc879099c9 7da9380020f1cf5c6be80ed420e47bad1d99b872 70181d325a31112e59c83088996990264fdab07e3e337f8f691fced7c479add1 Loading...

	#3 Eval - f486f4910d3bd42c4338a1bc21be8e64	2.1 kB	2023-12-06	2023-12-06
Pretty Observations First Seen2023-12-06 03:41:27 Last Seen2023-12-06 03:41:27 Times Seen1 Hash f486f4910d3bd42c4338a1bc21be8e64 94c7392ae0aae00d4f7caf0ef33a1238bd5542e6 535d61a3338856eb1491e3de7a513b3986f425f0edd0b5dd6c660e8bf7da8828 Loading...

	#4 Eval - 0190f808ae65cdee13012890e7efbda4	2.1 kB	2023-12-06	2023-12-06
Pretty Observations First Seen2023-12-06 03:41:27 Last Seen2023-12-06 03:41:27 Times Seen1 Hash 0190f808ae65cdee13012890e7efbda4 c3a84f0356cd69ea57a220d240f01573207206eb 31d305724bc5e6c66d45645f885de967cba82f852b45b9f3e64b06874f66a22a Loading...

	#5 Eval - 519f8772e351d920e46d0099d39bdba6	2.1 kB	2023-12-06	2023-12-06
Pretty Observations First Seen2023-12-06 03:41:27 Last Seen2023-12-06 03:41:27 Times Seen1 Hash 519f8772e351d920e46d0099d39bdba6 66cd8aa940a90447a64dbe2d8f95672b6bbfdccd 0fa2d98efa5d1bde17064077d298b9751f6f86d2c77af55ea012a2b776e44d4c Loading...

	#6 Eval - 87000b96886a16cc5dad05ad2edbf9b1	2.1 kB	2023-12-06	2023-12-06
Pretty Observations First Seen2023-12-06 03:41:27 Last Seen2023-12-06 03:41:27 Times Seen1 Hash 87000b96886a16cc5dad05ad2edbf9b1 67163de7d0b8be11b6d8b7bd3ffc9552ba7753ca 7c9baee3403d0b12702a6644110a1b3c9a024e27fd938dbb7e87a948de50ca7d Loading...

	#7 Eval - b111b221beb15d473c8d889b9206753b	2.1 kB	2023-12-06	2023-12-06
Pretty Observations First Seen2023-12-06 03:41:27 Last Seen2023-12-06 03:41:27 Times Seen1 Hash b111b221beb15d473c8d889b9206753b 3dd2df0c1ea79c08038f922aa81383e030cf1a2e 9c5b1e1cda09ba3ed06e05fdb6e84f13fd65905a74ab77052d03c53b3dfeae59 Loading...

		Size	First Seen	Last Seen
	#1 Write - 7043d89be56ba6b111297bed9da4d7ab	124 B	2023-12-06	2023-12-06
Pretty Observations First Seen2023-12-06 03:41:27 Last Seen2023-12-06 03:41:27 Times Seen1 Hash 7043d89be56ba6b111297bed9da4d7ab 907cce4a16d8886396e32c7516c33e5113b5340e 64c281a871463acebd181cbbe3a980f5076c724237a3c27c79711c44ae0ed616 Loading...

	#2 Write - b531974188276cad62e4fd88f3e34647	130 B	2023-12-06	2023-12-06
Pretty Observations First Seen2023-12-06 03:41:27 Last Seen2023-12-06 03:41:27 Times Seen1 Hash b531974188276cad62e4fd88f3e34647 291afb2fc5319bc43f6cef4209d8e8ab4ea55624 8fbc924b9642e5556600090c4688a33462bb81e64c9f75c78508f1ca65687bef Loading...

	#3 Write - d007f445355465aff9cae364f107686e	1.1 MB	2023-12-04	2023-12-06
Pretty Observations First Seen2023-12-04 20:27:00 Last Seen2023-12-06 21:54:45 Times Seen7 Hash d007f445355465aff9cae364f107686e 1e2a4162fa7d310f9e9c29d661994004a44f5e6c 32e845d566f9226601bf5bddad80738b092e81aa14d03e0222c84acb65c4399f Loading...

HTTP Transactions (117)

URL IP Response Size

www.googletagmanager.com/gtag/js?id=UA-257244167-1

142.250.74.168

200 OK

69 kB

URL GET HTTP/2
www.googletagmanager.com/gtag/js?id=UA-257244167-1
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://fighterpunch.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (4179)
Size
69 kB (69121 bytes)
Hash
bdf8b8c2de0379c72b0bd9c0c8ac3bab
115aba71624cf3ab8edded43529fe50b5be2759c
98994a41708e506ec23b271bcb091d9674422fb450a745ca97204057c0f845ce

HTTP Headers

GET /gtag/js?id=UA-257244167-1 HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 06 Dec 2023 02:40:57 GMT
expires: Wed, 06 Dec 2023 02:40:57 GMT
cache-control: private, max-age=900
last-modified: Wed, 06 Dec 2023 00:00:00 GMT
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 69121
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/plugins/coupon-reveal-button/css/spbcta-stylesheet-front.css?ver=1.2.5

162.0.215.120

200 OK

925 B

URL GET HTTP/2
fighterpunch.com/wp-content/plugins/coupon-reveal-button/css/spbcta-stylesheet-front.css?ver=1.2.5
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4471), with no line terminators
Size
925 B (925 bytes)
Hash
9d9687fdc8d73217e2786f62cb0008f0
fed7cf5590e42246de1c6cd9c11ddfd6de261bd2
1c79d10a736a7799df7e2f8c7385e9c816f808abec79ea638d0a190d484fa57d

HTTP Headers

GET /wp-content/plugins/coupon-reveal-button/css/spbcta-stylesheet-front.css?ver=1.2.5 HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:57 GMT
content-type: text/css
last-modified: Thu, 27 Apr 2023 09:42:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 925
date: Wed, 06 Dec 2023 02:40:57 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/wp-includes/css/dist/block-library/style.min.css?ver=6.4.1

162.0.215.120

200 OK

14 kB

URL GET HTTP/2
fighterpunch.com/wp-includes/css/dist/block-library/style.min.css?ver=6.4.1
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (57084)
Size
14 kB (13607 bytes)
Hash
99ab466e0866c823ae5db517d59cebd1
5595a586cbd42b31377681b9d35293278d75d336
698b89c0da3d319754d6a837b5e6d4e6a42dc402d9ffd7559b8c4cb29c644340

HTTP Headers

GET /wp-includes/css/dist/block-library/style.min.css?ver=6.4.1 HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:57 GMT
content-type: text/css
last-modified: Wed, 08 Nov 2023 18:39:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 13607
date: Wed, 06 Dec 2023 02:40:57 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/themes/gridshow/style.css

162.0.215.120

200 OK

16 kB

URL GET HTTP/2
fighterpunch.com/wp-content/themes/gridshow/style.css
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1576), with CRLF line terminators
Size
16 kB (16190 bytes)
Hash
091f9012df57dc83fd2f8b836838b430
dedfd184a6842915248ffe139bbb61d47d7096dd
d2790422ad5defcae48261daaf8d364f0ec1b19ddc78627de3a73b791001ec0c

HTTP Headers

GET /wp-content/themes/gridshow/style.css HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:57 GMT
content-type: text/css
last-modified: Wed, 19 Jul 2023 00:57:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 16190
date: Wed, 06 Dec 2023 02:40:57 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/themes/gridshow/assets/css/all.min.css

162.0.215.120

200 OK

12 kB

URL GET HTTP/2
fighterpunch.com/wp-content/themes/gridshow/assets/css/all.min.css
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (56656)
Size
12 kB (11868 bytes)
Hash
41d394990448b2c2b1afe840e837dc8e
29250ef1fa6bfbda364a1112a86b2fb7157dd44b
f8de3f57f49b005896d4c3c10979df9cff5048ddfe29ebbe36507ed1ebff60a4

HTTP Headers

GET /wp-content/themes/gridshow/assets/css/all.min.css HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:57 GMT
content-type: text/css
last-modified: Wed, 19 Jul 2023 00:57:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 11868
date: Wed, 06 Dec 2023 02:40:57 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

code.jivosite.com/widget/q5I98oX9eW

5.101.37.37

200 OK

6.1 kB

URL GET HTTP/2
code.jivosite.com/widget/q5I98oX9eW
IP
5.101.37.37:443
ASN
#57416 LLC South Internet

Requested by
https://fighterpunch.com/
Certificate
IssuerGoDaddy.com, Inc.
Subject*.jivosite.com
Fingerprint48:23:E2:E5:0B:0A:4E:4F:CA:AD:65:27:8E:22:2A:8F:87:B3:6D:F4
ValidityWed, 05 Apr 2023 11:26:25 GMT - Mon, 06 May 2024 11:26:25 GMT

File type
ASCII text, with very long lines (17621), with no line terminators
Size
6.1 kB (6061 bytes)
Hash
594268ca98b7212df8e7a97bc62e40f2
dbf607222a5221900a163110cf5fc5cb62b15d12
eb94169a7557a8d64fb38a58ed6c6e50d9a252b59f8f2e0a93f425299bebc079

HTTP Headers

GET /widget/q5I98oX9eW HTTP/1.1
Host: code.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 06 Dec 2023 02:40:58 GMT
content-type: application/javascript
content-length: 6061
access-control-allow-origin: *
cache-control: max-age=7200
content-encoding: br
etag: "6569ddd1-17ad"
expires: Wed, 06 Dec 2023 04:07:35 GMT
last-modified: Fri, 01 Dec 2023 13:21:21 GMT
vary: Accept-Encoding
via: 1.1 sharxy
x-geo-shard: ya
cache: HIT
x-cached-since: 2023-12-06T02:07:35+00:00
x-node: fr5-up-gc15
accept-ranges: bytes
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/plugins/jet-blocker-anti-ad-blocker-detector/assets/css/jetblocker.css?ver=1.0.0

162.0.215.120

200 OK

759 B

URL GET HTTP/2
fighterpunch.com/wp-content/plugins/jet-blocker-anti-ad-blocker-detector/assets/css/jetblocker.css?ver=1.0.0
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
759 B (759 bytes)
Hash
4d84e2ceab8754f554084ef2780c1bdd
effe617350a5ca3d95a29cadb58c1bf7ea705e69
ea1403c194ecab5cc694ef8c6a3523be0fa1bcf9eb6847678aad2ed30d550ff3

HTTP Headers

GET /wp-content/plugins/jet-blocker-anti-ad-blocker-detector/assets/css/jetblocker.css?ver=1.0.0 HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:57 GMT
content-type: text/css
last-modified: Sat, 21 Oct 2023 18:19:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 759
date: Wed, 06 Dec 2023 02:40:57 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1

162.0.215.120

200 OK

30 kB

URL GET HTTP/2
fighterpunch.com/wp-includes/js/jquery/jquery.min.js?ver=3.7.1
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (65447)
Size
30 kB (29744 bytes)
Hash
826eb77e86b02ab7724fe3d0141ff87c
79cd3587d565afe290076a8d36c31c305a573d18
cb6f2d32c49d1c2b25e9ffc9aaafa3f83075346c01bcd4ae6eb187392a4292cf

HTTP Headers

GET /wp-includes/js/jquery/jquery.min.js?ver=3.7.1 HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:57 GMT
content-type: application/javascript
last-modified: Wed, 08 Nov 2023 18:39:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 29744
date: Wed, 06 Dec 2023 02:40:57 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16

162.0.215.120

200 OK

402 B

URL GET HTTP/2
fighterpunch.com/wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (1519), with no line terminators
Size
402 B (402 bytes)
Hash
73e46bbd8244a60086283f5fe275d682
b477443fbe8763c8f111877029b7aee9039ef64d
f93483f0aaf24aea4b5534bb8647d22cd9dfcb4d08d2fd1008787bdfb8a6cc47

HTTP Headers

GET /wp-content/plugins/add-to-any/addtoany.min.css?ver=1.16 HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:57 GMT
content-type: text/css
last-modified: Sun, 16 Apr 2023 23:10:01 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 402
date: Wed, 06 Dec 2023 02:40:57 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1

162.0.215.120

200 OK

129 B

URL GET HTTP/2
fighterpunch.com/wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
129 B (129 bytes)
Hash
5ef26b5e47e6951f43ecf2b1fc645222
081afb52577f6f3bb044fdea6d34a632c3cce7e8
50679e0e3933c945348a2db0cc128bb14b57a60a74fabf8cae13acc14efbb2e1

HTTP Headers

GET /wp-content/plugins/add-to-any/addtoany.min.js?ver=1.1 HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:57 GMT
content-type: application/javascript
last-modified: Sun, 16 Apr 2023 23:10:01 GMT
accept-ranges: bytes
content-length: 129
date: Wed, 06 Dec 2023 02:40:57 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/plugins/coupon-reveal-button/js/spbcta-nm.js?ver=1.2.5

162.0.215.120

200 OK

834 B

URL GET HTTP/2
fighterpunch.com/wp-content/plugins/coupon-reveal-button/js/spbcta-nm.js?ver=1.2.5
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
834 B (834 bytes)
Hash
8cf4b5c4d575456ac8fe86078be4bec0
c6dafa34622cd27889458adc61fc8796e2415448
b73b3dab142ab6e08f115ec8cb10921ec43a68d621f994eee17ae38f3715107c

HTTP Headers

GET /wp-content/plugins/coupon-reveal-button/js/spbcta-nm.js?ver=1.2.5 HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:57 GMT
content-type: application/javascript
last-modified: Thu, 27 Apr 2023 09:42:41 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 834
date: Wed, 06 Dec 2023 02:40:57 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1

162.0.215.120

200 OK

4.7 kB

URL GET HTTP/2
fighterpunch.com/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (13479)
Size
4.7 kB (4678 bytes)
Hash
9ffeb32e2d9efbf8f70caabded242267
3ad0c10e501ac2a9bfa18f9cd7e700219b378738
5274f11e6fb32ae0cf2dfb9f8043272865c397a7c4223b4cfa7d50ea52fbde89

HTTP Headers

GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.4.1 HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:57 GMT
content-type: application/javascript
last-modified: Wed, 09 Aug 2023 05:33:59 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 4678
date: Wed, 06 Dec 2023 02:40:57 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/uploads/2023/12/Watch-WWE-NxT-Live-12523-December-5th-2023-Online-Full-Show-Free-360x270.jpg

162.0.215.120

200 OK

16 kB

URL GET HTTP/2
fighterpunch.com/wp-content/uploads/2023/12/Watch-WWE-NxT-Live-12523-December-5th-2023-Online-Full-Show-Free-360x270.jpg
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 360x270, components 3\012- data
Size
16 kB (16515 bytes)
Hash
aa1002c02fb533a4c56b6fea3e734b02
2f93a35c27e97be9f8df19a5f20bd4f1bbb78a3b
f9f07bd7dfcb6ad30c56e7eca3d42a7a1d0bdc4c91c02e3a10ad80ef97e1f7e4

HTTP Headers

GET /wp-content/uploads/2023/12/Watch-WWE-NxT-Live-12523-December-5th-2023-Online-Full-Show-Free-360x270.jpg HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:58 GMT
content-type: image/jpeg
last-modified: Wed, 06 Dec 2023 02:08:21 GMT
accept-ranges: bytes
content-length: 16515
date: Wed, 06 Dec 2023 02:40:58 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/uploads/2023/12/Watch-Garcia-Vs-Duarte-December-2nd-2023-12223-Online-Full-Show-Free-360x270.jpg

162.0.215.120

200 OK

22 kB

URL GET HTTP/2
fighterpunch.com/wp-content/uploads/2023/12/Watch-Garcia-Vs-Duarte-December-2nd-2023-12223-Online-Full-Show-Free-360x270.jpg
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 360x270, components 3\012- data
Size
22 kB (22105 bytes)
Hash
82ce219bb86a59da036fa25d20dd5902
18b51069bc1d98c0b2cb56ce2d6221577a30c946
1a8b6cbf42f58bdef8c8372283ee313fe1ea4a0951ed28e943570de821e3ea13

HTTP Headers

GET /wp-content/uploads/2023/12/Watch-Garcia-Vs-Duarte-December-2nd-2023-12223-Online-Full-Show-Free-360x270.jpg HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:58 GMT
content-type: image/jpeg
last-modified: Sat, 02 Dec 2023 21:03:17 GMT
accept-ranges: bytes
content-length: 22105
date: Wed, 06 Dec 2023 02:40:58 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/uploads/2023/12/Watch-UFC-Fight-Night-Dariush-vs.-Tsarukyan-12223-December-2nd-2023-Online-Full-Show-Free-360x270.jpg

162.0.215.120

200 OK

30 kB

URL GET HTTP/2
fighterpunch.com/wp-content/uploads/2023/12/Watch-UFC-Fight-Night-Dariush-vs.-Tsarukyan-12223-December-2nd-2023-Online-Full-Show-Free-360x270.jpg
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 360x270, components 3\012- data
Size
30 kB (30143 bytes)
Hash
302ac2fd787dd09544710a24e84dae8c
f7c98f72e130c902feca03312b07337edd9eab41
7860713f37c7c95d280ef2716df6499cde58ccdbdc31e94e4a6c8d2702fc2363

HTTP Headers

GET /wp-content/uploads/2023/12/Watch-UFC-Fight-Night-Dariush-vs.-Tsarukyan-12223-December-2nd-2023-Online-Full-Show-Free-360x270.jpg HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:58 GMT
content-type: image/jpeg
last-modified: Sat, 02 Dec 2023 21:05:18 GMT
accept-ranges: bytes
content-length: 30143
date: Wed, 06 Dec 2023 02:40:58 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/plugins/jet-blocker-anti-ad-blocker-detector/assets/js/jetblock-scripts.js?ver=1.0.0

162.0.215.120

200 OK

847 B

URL GET HTTP/2
fighterpunch.com/wp-content/plugins/jet-blocker-anti-ad-blocker-detector/assets/js/jetblock-scripts.js?ver=1.0.0
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
ASCII text, with CRLF line terminators
Size
847 B (847 bytes)
Hash
76ba3d64823d38f92761f75a791b21c0
1145527af1b1e2b831ec1dc10ade687f4d15f7bf
2a56d840ae97611bed234e7f3ec2b8c022f8d2898ea874e0b8274a300c553512

HTTP Headers

GET /wp-content/plugins/jet-blocker-anti-ad-blocker-detector/assets/js/jetblock-scripts.js?ver=1.0.0 HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:58 GMT
content-type: application/javascript
last-modified: Sat, 21 Oct 2023 18:19:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 847
date: Wed, 06 Dec 2023 02:40:58 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/themes/gridshow/assets/js/jquery.fitvids.min.js

162.0.215.120

200 OK

658 B

URL GET HTTP/2
fighterpunch.com/wp-content/themes/gridshow/assets/js/jquery.fitvids.min.js
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
HTML document, ASCII text, with very long lines (1781), with no line terminators
Size
658 B (658 bytes)
Hash
02187919639033ddbe1ba88a422c37a8
152a354a6ac63a5cb20a453e89bf4953a6fb47c9
8570b14bb3216bcfb445442d65095db7428892ea6ed93a1ce3c04e28dbd238ee

HTTP Headers

GET /wp-content/themes/gridshow/assets/js/jquery.fitvids.min.js HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:58 GMT
content-type: application/javascript
last-modified: Wed, 19 Jul 2023 00:57:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 658
date: Wed, 06 Dec 2023 02:40:58 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/themes/gridshow/assets/js/navigation.js

162.0.215.120

200 OK

1.5 kB

URL GET HTTP/2
fighterpunch.com/wp-content/themes/gridshow/assets/js/navigation.js
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
ASCII text
Size
1.5 kB (1538 bytes)
Hash
699b9c700532059447b737881650ff07
25aef952431aaa2e45d0e0aed6426a6255139b91
6ea10761d62dc89a5cacb9f2b8dcf1316ddf30a0099e07522225ef1c515c14dd

HTTP Headers

GET /wp-content/themes/gridshow/assets/js/navigation.js HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:58 GMT
content-type: application/javascript
last-modified: Wed, 19 Jul 2023 00:57:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1538
date: Wed, 06 Dec 2023 02:40:58 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/themes/gridshow/assets/js/skip-link-focus-fix.js

162.0.215.120

200 OK

347 B

URL GET HTTP/2
fighterpunch.com/wp-content/themes/gridshow/assets/js/skip-link-focus-fix.js
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
ASCII text
Size
347 B (347 bytes)
Hash
1e2caa73e386148cc0892463750d9f92
a9e07545c8f1bef3b56f0c4e2f32ea0b71ff2cf1
5ca257ab8ea720ff657a153f7212034735691282ef8cbfd1af6b6fe9dfb4f536

HTTP Headers

GET /wp-content/themes/gridshow/assets/js/skip-link-focus-fix.js HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:58 GMT
content-type: application/javascript
last-modified: Wed, 19 Jul 2023 00:57:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 347
date: Wed, 06 Dec 2023 02:40:58 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/themes/gridshow/assets/js/custom.js

162.0.215.120

200 OK

1.4 kB

URL GET HTTP/2
fighterpunch.com/wp-content/themes/gridshow/assets/js/custom.js
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
ASCII text
Size
1.4 kB (1437 bytes)
Hash
8d24f727d0bacd083e8cc67fd929dc71
fd9b56d35f4ada17c78fa8ccce97bad6f49d55d6
a8413645741f65c9ff789d0dceabbde4d807bc98c67b29490ba5ee81f4c7c894

HTTP Headers

GET /wp-content/themes/gridshow/assets/js/custom.js HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:58 GMT
content-type: application/javascript
last-modified: Wed, 19 Jul 2023 00:57:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1437
date: Wed, 06 Dec 2023 02:40:58 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/wp-includes/js/imagesloaded.min.js?ver=5.0.0

162.0.215.120

200 OK

1.7 kB

URL GET HTTP/2
fighterpunch.com/wp-includes/js/imagesloaded.min.js?ver=5.0.0
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
ASCII text, with very long lines (4358)
Size
1.7 kB (1687 bytes)
Hash
6823120876c9afc8929418c9a6f8e343
90b0adb37d70ffec5f9189c36bb0027c310c9502
b65b3de1bc923b9355248a0d941a0eaee15dfb9a6b8eadb51323a8df6189dcd1

HTTP Headers

GET /wp-includes/js/imagesloaded.min.js?ver=5.0.0 HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:58 GMT
content-type: application/javascript
last-modified: Wed, 08 Nov 2023 18:39:11 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 1687
date: Wed, 06 Dec 2023 02:40:58 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/themes/gridshow/assets/js/html5shiv.js

162.0.215.120

200 OK

2.8 kB

URL GET HTTP/2
fighterpunch.com/wp-content/themes/gridshow/assets/js/html5shiv.js
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
HTML document, ASCII text
Size
2.8 kB (2801 bytes)
Hash
94af6868f8e778c5b2d90b4a2e157698
cdca2fdf3867c09d3620e7dec4866e8ccf36d95f
483d754ec68aa08ffc679aed70fab78a51195fe3efd95ca193fa3b9a1eef9adb

HTTP Headers

GET /wp-content/themes/gridshow/assets/js/html5shiv.js HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:58 GMT
content-type: application/javascript
last-modified: Wed, 19 Jul 2023 00:57:39 GMT
accept-ranges: bytes
content-encoding: br
vary: Accept-Encoding
content-length: 2801
date: Wed, 06 Dec 2023 02:40:58 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fonts.gstatic.com/s/pridi/v13/2sDQZG5JnZLfkcWdqWg.woff2

216.58.207.227

200 OK

21 kB

URL GET HTTP/2
fonts.gstatic.com/s/pridi/v13/2sDQZG5JnZLfkcWdqWg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://fighterpunch.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 21012, version 1.0\012- data
Size
21 kB (21012 bytes)
Hash
737e2e1903753c1e17c910347418a925
518a7868ca8d3c1728884bdbec30da545b6abf52
68942e6caaca1f9305125771c9a6ac758e118e10ace5c80e14d8ec855cfae698

HTTP Headers

GET /s/pridi/v13/2sDQZG5JnZLfkcWdqWg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21012
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 30 Nov 2023 05:00:00 GMT
expires: Fri, 29 Nov 2024 05:00:00 GMT
cache-control: public, max-age=31536000
age: 510058
last-modified: Thu, 24 Aug 2023 20:26:15 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.gstatic.com/s/frankruhllibre/v20/j8_w6_fAw7jrcalD7oKYNX0QfAnPW7Dl4briiY6hBg.woff2

216.58.207.227

200 OK

44 kB

URL GET HTTP/2
fonts.gstatic.com/s/frankruhllibre/v20/j8_w6_fAw7jrcalD7oKYNX0QfAnPW7Dl4briiY6hBg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://fighterpunch.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 44436, version 1.0\012- data
Size
44 kB (44436 bytes)
Hash
7790d11313189a7b6088040b9e0b0dad
e5e4ba252594d23d5576a9b4801dc6848efc9fa5
575dc842390800677f130797b50d609aad4d4675dc14faf9ce34cd469a15b5cd

HTTP Headers

GET /s/frankruhllibre/v20/j8_w6_fAw7jrcalD7oKYNX0QfAnPW7Dl4briiY6hBg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 44436
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 07:32:59 GMT
expires: Wed, 04 Dec 2024 07:32:59 GMT
cache-control: public, max-age=31536000
last-modified: Thu, 22 Jun 2023 15:17:37 GMT
content-type: font/woff2
age: 68879
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

code.jivosite.com/script/widget/config/q5I98oX9eW

5.101.37.37

200 OK

668 B

URL GET HTTP/2
code.jivosite.com/script/widget/config/q5I98oX9eW
IP
5.101.37.37:443
ASN
#57416 LLC South Internet

Requested by
https://fighterpunch.com/
Certificate
IssuerGoDaddy.com, Inc.
Subject*.jivosite.com
Fingerprint48:23:E2:E5:0B:0A:4E:4F:CA:AD:65:27:8E:22:2A:8F:87:B3:6D:F4
ValidityWed, 05 Apr 2023 11:26:25 GMT - Mon, 06 May 2024 11:26:25 GMT

File type
JSON data\012- , ASCII text, with very long lines (1290), with no line terminators
Size
668 B (668 bytes)
Hash
a65b0f7af91f25fe365a69e2cabf2cb1
397bd3ee9b1a7d2799a00a62550baef477745af5
814c0c8178e1544e363a0a7dbe297eb7cd6a9c81ca9f59a96ade92f98c977f9a

HTTP Headers

GET /script/widget/config/q5I98oX9eW HTTP/1.1
Host: code.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 06 Dec 2023 02:40:58 GMT
content-type: application/x-javascript
content-length: 668
access-control-allow-origin: *
cache-control: max-age=7200
content-encoding: gzip
expires: Wed, 06 Dec 2023 04:07:36 GMT
vary: Accept-Encoding
via: 1.1 sharxy
x-geo-shard: ya
cache: HIT
x-cached-since: 2023-12-06T02:07:36+00:00
x-node: fr5-up-gc15
accept-ranges: bytes
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/themes/gridshow/assets/images/background.png

162.0.215.120

200 OK

38 kB

URL GET HTTP/2
fighterpunch.com/wp-content/themes/gridshow/assets/images/background.png
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
PNG image data, 218 x 218, 8-bit/color RGB, non-interlaced\012- data
Size
38 kB (38530 bytes)
Hash
c119fd750a52f9bd00f034258860bc39
3efa76d5d9d1449a74c5b1a3a43e116f251c1eb9
d259958a0810b337663c9c5bd1ee0701bf575e5040dab287f7df5d1227d876af

HTTP Headers

GET /wp-content/themes/gridshow/assets/images/background.png HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:58 GMT
content-type: image/png
last-modified: Wed, 19 Jul 2023 00:57:39 GMT
accept-ranges: bytes
content-length: 38530
date: Wed, 06 Dec 2023 02:40:58 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fonts.gstatic.com/s/oswald/v53/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2

216.58.207.227

200 OK

21 kB

URL GET HTTP/2
fonts.gstatic.com/s/oswald/v53/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2
IP
216.58.207.227:443
ASN
#15169 GOOGLE

Requested by
https://fighterpunch.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.gstatic.com
FingerprintE5:79:1F:1A:04:3F:B9:B0:FB:41:4E:B5:E5:97:AD:FE:D9:2C:4A:CD
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
Web Open Font Format (Version 2), TrueType, length 21444, version 1.0\012- data
Size
21 kB (21444 bytes)
Hash
ffd3d57638a7899d80bcc108713c271c
d186409ee24fc3d1cc8194434dd707181ead20ec
99027d866818f716d208569108a962ac72200197cae503efe5b6bf002bf4915b

HTTP Headers

GET /s/oswald/v53/TK3IWkUHHAIjg75cFRf3bXL8LICs1_Fv40pKlN4NNSeSASz7FmlWHYg.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 21444
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 05 Dec 2023 22:53:46 GMT
expires: Wed, 04 Dec 2024 22:53:46 GMT
cache-control: public, max-age=31536000
last-modified: Tue, 15 Aug 2023 18:38:40 GMT
content-type: font/woff2
age: 13632
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

www.googletagmanager.com/gtag/js?id=G-L4J0XMWNXV&l=dataLayer&cx=c

142.250.74.168

200 OK

81 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-L4J0XMWNXV&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://fighterpunch.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (5955)
Size
81 kB (81346 bytes)
Hash
f2b3c93e9c245ed1e6ab4d8b649eb4b9
20d98f5a69caad78c730c2bba82bb86c886a5487
98bf06ad7d733b35f4259aa5786c7eae32c474a37798e06aca900b4621c36209

HTTP Headers

GET /gtag/js?id=G-L4J0XMWNXV&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 06 Dec 2023 02:40:58 GMT
expires: Wed, 06 Dec 2023 02:40:58 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81346
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=G-B5T3G0YBDY&l=dataLayer&cx=c

142.250.74.168

200 OK

81 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=G-B5T3G0YBDY&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://fighterpunch.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (5955)
Size
81 kB (81343 bytes)
Hash
3a2ccf1c8b1eb6a373d46b6b9cc033b2
a0554c2cbc233ba629f5856e76715177ca97f0d0
c8e29c6471e0fefaf0733c3cf5699d301ad36e676194cfd9d628c4f3f4968f1d

HTTP Headers

GET /gtag/js?id=G-B5T3G0YBDY&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 06 Dec 2023 02:40:58 GMT
expires: Wed, 06 Dec 2023 02:40:58 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 81343
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

www.googletagmanager.com/gtag/js?id=GT-5R7PFGF&l=dataLayer&cx=c

142.250.74.168

200 OK

93 kB

URL GET HTTP/3
www.googletagmanager.com/gtag/js?id=GT-5R7PFGF&l=dataLayer&cx=c
IP
142.250.74.168:443
ASN
#15169 GOOGLE

Requested by
https://fighterpunch.com/
Certificate
IssuerGoogle Trust Services LLC
Subject*.google-analytics.com
Fingerprint37:42:10:B7:89:70:45:51:80:81:66:CE:95:21:72:5D:46:0B:E2:34
ValidityMon, 23 Oct 2023 11:18:19 GMT - Mon, 15 Jan 2024 11:18:18 GMT

File type
ASCII text, with very long lines (5955)
Size
93 kB (93183 bytes)
Hash
0630aa8f967eac65ee541aaf3ba2726a
003812e34a97014ab88c9f58bdf896c89258d828
e61382dad8cc485a1430f764683931d0c82bef5cebc2f0e79a25e1086d990ef4

HTTP Headers

GET /gtag/js?id=GT-5R7PFGF&l=dataLayer&cx=c HTTP/1.1
Host: www.googletagmanager.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
content-type: application/javascript; charset=UTF-8
access-control-allow-origin: *
access-control-allow-credentials: true
access-control-allow-headers: Cache-Control
content-encoding: br
vary: Accept-Encoding
date: Wed, 06 Dec 2023 02:40:58 GMT
expires: Wed, 06 Dec 2023 02:40:58 GMT
cache-control: private, max-age=900
strict-transport-security: max-age=31536000; includeSubDomains
cross-origin-resource-policy: cross-origin
server: Google Tag Manager
content-length: 93183
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

fighterpunch.com/wp-content/themes/gridshow/assets/webfonts/fa-solid-900.woff2

162.0.215.120

200 OK

76 kB

URL GET HTTP/2
fighterpunch.com/wp-content/themes/gridshow/assets/webfonts/fa-solid-900.woff2
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
Web Open Font Format (Version 2), TrueType, length 75728, version 330.32636\012- data
Size
76 kB (75728 bytes)
Hash
44d537ab79f921fde5a28b2c1636f397
b2879f9e1d0985a96842bf7f55a2b2cc4c636d04
3d1080625d3030e88357b3ac9aa377dcec23f1b529c4ad03f7a9a435ccae04be

HTTP Headers

GET /wp-content/themes/gridshow/assets/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Referer: https://fighterpunch.com/wp-content/themes/gridshow/assets/css/all.min.css
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:58 GMT
content-type: font/woff2
last-modified: Wed, 19 Jul 2023 00:57:39 GMT
accept-ranges: bytes
content-length: 75728
date: Wed, 06 Dec 2023 02:40:58 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/

162.0.215.120

200 OK

0 B

URL HEAD HTTP/2
fighterpunch.com/
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD / HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://fighterpunch.com/wp-json/>; rel="https://api.w.org/"
date: Wed, 06 Dec 2023 02:40:58 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js

192.243.59.20

200 OK

11 kB

URL GET HTTP/1.1
www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectprofitablecreativeformat.com
Fingerprint3C:4F:9B:FB:66:B4:E2:8B:8C:D1:71:85:B7:C1:E1:97:48:3D:E9:DC
ValidityTue, 28 Nov 2023 07:18:39 GMT - Mon, 26 Feb 2024 07:18:38 GMT

File type
exported SGML document, ASCII text, with very long lines (29607), with no line terminators
Size
11 kB (10909 bytes)
Hash
3b517423a8d20e6e8fc9547a3c4ec7ac
14c328058f7a51d1fbfda9ffc65f47b2a2d5719a
0e4111eb31f2796b4e0126f18dda173d5db2645a4b7eeef319bbac0da62a188e

HTTP Headers

GET /7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js HTTP/1.1
Host: www.profitablecreativeformat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 06 Dec 2023 02:40:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 293506bb072ff77a45490f5ed3dd9c86
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

node-ya-3.jivosite.com/widget/status/964138/q5I98oX9eW?rnd=0.9743625503695263

158.160.7.212

200 OK

189 B

URL GET HTTP/2
node-ya-3.jivosite.com/widget/status/964138/q5I98oX9eW?rnd=0.9743625503695263
IP
158.160.7.212:443
ASN
#0

Requested by
https://fighterpunch.com/
Certificate
IssuerGoDaddy.com, Inc.
Subject*.jivosite.com
Fingerprint48:23:E2:E5:0B:0A:4E:4F:CA:AD:65:27:8E:22:2A:8F:87:B3:6D:F4
ValidityWed, 05 Apr 2023 11:26:25 GMT - Mon, 06 May 2024 11:26:25 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
189 B (189 bytes)
Hash
b7185568241804687953e567a47914c5
ed2b0cebb9ccd672e3fc5e93759541f183b4c13a
f6a4e722d05fe00f4d67c945fb53acbc64b7e977729f579a9d9c5aec4cddf796

HTTP Headers

GET /widget/status/964138/q5I98oX9eW?rnd=0.9743625503695263 HTTP/1.1
Host: node-ya-3.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
access-control-allow-credentials: true
access-control-allow-max-age: 1728000
access-control-allow-origin: https://fighterpunch.com
access-control-expose-headers: X-Geoip, X-Botmode
cache-control: no-cache, no-store, must-revalidate
content-security-policy: frame-ancestors 'none';
content-type: application/json; charset=utf-8;
date: Wed, 06 Dec 2023 02:40:59 GMT
pragma: no-cache
server: foxy/3.2
x-botmode: no
x-frame-options: DENY
x-geoip: NO;03;Oslo (Alna District)
content-length: 189
X-Firefox-Spdy: h2

www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js

192.243.59.20

200 OK

11 kB

URL GET HTTP/1.1
www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectprofitablecreativeformat.com
Fingerprint3C:4F:9B:FB:66:B4:E2:8B:8C:D1:71:85:B7:C1:E1:97:48:3D:E9:DC
ValidityTue, 28 Nov 2023 07:18:39 GMT - Mon, 26 Feb 2024 07:18:38 GMT

File type
exported SGML document, ASCII text, with very long lines (29610), with no line terminators
Size
11 kB (10911 bytes)
Hash
fd4a853b19af5f54f2dd919249f88755
a0622cd04cc8bda27c0b777469c762c48aec307f
7b61bf0bddd0d8ca082aaceeb81db7a396283b10a935676255c92e76ff5c0a11

HTTP Headers

GET /7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js HTTP/1.1
Host: www.profitablecreativeformat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 06 Dec 2023 02:40:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 962515a2326b16fe09b4b044eb224520
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

ocsp.r2m03.amazontrust.com/

143.204.53.97

471 B

URL
ocsp.r2m03.amazontrust.com/
IP
143.204.53.97:0
ASN
#16509 AMAZON-02

File type
data
Size
471 B (471 bytes)
Hash
1bfba60a71cfc2840a9d32837d6e0007
a0b0d4b59cdb00e6b087cad1a6c4b08aa7459fc9
7e592639e95cbc324b3017f1a6aa171657ee61fa9e4eea956c1b719cebd1f44d

HTTP Headers

POST / HTTP/1.1
Host: ocsp.r2m03.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: max-age=7200
Date: Wed, 06 Dec 2023 02:40:59 GMT
Last-Modified: Wed, 06 Dec 2023 01:36:53 GMT
Server: ECAcc (ska/F776)
X-Cache: Miss from cloudfront
Via: 1.1 6cb1d4b545e7beb4ead790454f4807c6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _3MW2X9dlC0qjxHPvcR2RGCN6TcI5IEWnKymUZg4kCkZiAjd_BYQIA==
Age: 3846

proftrafficcounter.com/stats

18.184.210.76

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.184.210.76:443
ASN
#16509 AMAZON-02

Requested by
https://fighterpunch.com/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
ecf399784b609d878a5a8851e21ba546
ff79cabfbc479fe9b19beb40edc05ad8684de326
f68e4141a5b0bceeda3f730d660a619bdb41196d36945d8dbd815b2c6f15bb31

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 02:40:59 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://fighterpunch.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=faa3b3fb-91f7-4110-89b4-fa4f35b83803:3:1; expires=Sat, 03 Dec 2033 02:40:59 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

proftrafficcounter.com/stats

18.184.210.76

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.184.210.76:443
ASN
#16509 AMAZON-02

Requested by
https://fighterpunch.com/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
dfc26b8f544e6717c9733799e259c56b
008df0ac11f76602e08023f60bb10d13d77ba081
f375234c2465243b71e2281263d9cd6c35a3e09eccd16a607c52b7158298cd20

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 06 Dec 2023 02:40:59 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://fighterpunch.com
vary: Origin
access-control-allow-credentials: true
set-cookie: uid_id2=6ce1a077-f853-4246-9c4b-7e7817f64f60:3:1; expires=Sat, 03 Dec 2033 02:40:59 GMT; secure; SameSite=None
X-Firefox-Spdy: h2

www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js

192.243.59.20

200 OK

11 kB

URL GET HTTP/1.1
www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectprofitablecreativeformat.com
Fingerprint3C:4F:9B:FB:66:B4:E2:8B:8C:D1:71:85:B7:C1:E1:97:48:3D:E9:DC
ValidityTue, 28 Nov 2023 07:18:39 GMT - Mon, 26 Feb 2024 07:18:38 GMT

File type
exported SGML document, ASCII text, with very long lines (29601), with no line terminators
Size
11 kB (10908 bytes)
Hash
68f81b32cadfd21cba4ec1cd484e1db0
7a93a7a466194f6cf53c60e8213356782fbde9d4
76e339748e8bae6018f3ae6b6b1754d61601011d3c4a0d7fcd01f0d1b2cd45dd

HTTP Headers

GET /7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js HTTP/1.1
Host: www.profitablecreativeformat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 06 Dec 2023 02:40:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 472d1bf8b1eb58587f0b4d69de6127c4
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

proftrafficcounter.com/stats

18.184.210.76

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.184.210.76:443
ASN
#16509 AMAZON-02

Requested by
https://fighterpunch.com/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
dfc26b8f544e6717c9733799e259c56b
008df0ac11f76602e08023f60bb10d13d77ba081
f375234c2465243b71e2281263d9cd6c35a3e09eccd16a607c52b7158298cd20

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Cookie: uid_id2=6ce1a077-f853-4246-9c4b-7e7817f64f60:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 06 Dec 2023 02:40:59 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://fighterpunch.com
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2

www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js

192.243.59.20

200 OK

11 kB

URL GET HTTP/1.1
www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectprofitablecreativeformat.com
Fingerprint3C:4F:9B:FB:66:B4:E2:8B:8C:D1:71:85:B7:C1:E1:97:48:3D:E9:DC
ValidityTue, 28 Nov 2023 07:18:39 GMT - Mon, 26 Feb 2024 07:18:38 GMT

File type
exported SGML document, ASCII text, with very long lines (29592), with no line terminators
Size
11 kB (10905 bytes)
Hash
2ee23010b0bf1c7cd28bc737343bc8a2
dc020a619e5859836831cf239b3e9397e15d94f5
a3a7ee07d3c28c3877c3e716f5bbef12484865470fe9aaf13183175b0c213154

HTTP Headers

GET /7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js HTTP/1.1
Host: www.profitablecreativeformat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 06 Dec 2023 02:40:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3643c6303e344eba392488614b7ac28a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

proftrafficcounter.com/stats

18.184.210.76

200 OK

40 B

URL GET HTTP/2
proftrafficcounter.com/stats
IP
18.184.210.76:443
ASN
#16509 AMAZON-02

Requested by
https://fighterpunch.com/
Certificate
IssuerAmazon
Subjectproftrafficcounter.com
FingerprintE3:9F:79:6F:80:C0:BF:F8:C4:EB:45:F3:E9:0F:A7:41:F6:0C:05:E6
ValidityTue, 21 Nov 2023 00:00:00 GMT - Thu, 19 Dec 2024 23:59:59 GMT

File type
ASCII text, with no line terminators
Size
40 B (40 bytes)
Hash
dfc26b8f544e6717c9733799e259c56b
008df0ac11f76602e08023f60bb10d13d77ba081
f375234c2465243b71e2281263d9cd6c35a3e09eccd16a607c52b7158298cd20

HTTP Headers

GET /stats HTTP/1.1
Host: proftrafficcounter.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Cookie: uid_id2=6ce1a077-f853-4246-9c4b-7e7817f64f60:3:1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 06 Dec 2023 02:40:59 GMT
content-type: text/html; charset=UTF-8
content-length: 40
server: fasthttp
access-control-allow-origin: https://fighterpunch.com
vary: Origin
access-control-allow-credentials: true
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/uploads/2023/12/Watch-WWE-Smackdown-Live-12123-December-1st-2023-Online-Full-Show-Free-1-360x270.jpg

162.0.215.120

200 OK

27 kB

URL GET HTTP/2
fighterpunch.com/wp-content/uploads/2023/12/Watch-WWE-Smackdown-Live-12123-December-1st-2023-Online-Full-Show-Free-1-360x270.jpg
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 360x270, components 3\012- data
Size
27 kB (27118 bytes)
Hash
980346b054b618b1e12ade1bf2567646
d2db1e0d3a5df7af92aab9aee1ed89e1cca46af3
1a1355cbf9bcc5975d16c575ea8fc571e157b5c3e8eb3e777b00790ca68a3a68

HTTP Headers

GET /wp-content/uploads/2023/12/Watch-WWE-Smackdown-Live-12123-December-1st-2023-Online-Full-Show-Free-1-360x270.jpg HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_T3L00BXE82=GS1.1.1701830465.1.0.1701830465.0.0.0; _ga=GA1.1.280370316.1701830465; _ga_L4J0XMWNXV=GS1.1.1701830465.1.0.1701830465.0.0.0; _ga_B5T3G0YBDY=GS1.1.1701830465.1.0.1701830465.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:59 GMT
content-type: image/jpeg
last-modified: Fri, 01 Dec 2023 22:38:19 GMT
accept-ranges: bytes
content-length: 27118
date: Wed, 06 Dec 2023 02:40:59 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js

192.243.59.20

200 OK

11 kB

URL GET HTTP/1.1
www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectprofitablecreativeformat.com
Fingerprint3C:4F:9B:FB:66:B4:E2:8B:8C:D1:71:85:B7:C1:E1:97:48:3D:E9:DC
ValidityTue, 28 Nov 2023 07:18:39 GMT - Mon, 26 Feb 2024 07:18:38 GMT

File type
exported SGML document, ASCII text, with very long lines (29601), with no line terminators
Size
11 kB (10908 bytes)
Hash
68f81b32cadfd21cba4ec1cd484e1db0
7a93a7a466194f6cf53c60e8213356782fbde9d4
76e339748e8bae6018f3ae6b6b1754d61601011d3c4a0d7fcd01f0d1b2cd45dd

HTTP Headers

GET /7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js HTTP/1.1
Host: www.profitablecreativeformat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 06 Dec 2023 02:40:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: ccdace796c52dfc84bfaf48dc957b534
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f

139.45.195.254

200 OK

12 B

URL POST HTTP/1.1
fleraprt.com/log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f
IP
139.45.195.254:443
ASN
#9002 RETN Limited

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfleraprt.com
FingerprintA4:AF:A0:00:99:C9:85:E5:30:F6:F3:F2:B5:4F:AE:4F:D0:46:74:A9
ValidityMon, 09 Jan 2023 00:00:00 GMT - Sun, 14 Jan 2024 23:59:59 GMT

File type
JSON data\012- , ASCII text, with no line terminators
Size
12 B (12 bytes)
Hash
adb4650bfc9d2a73d4dd69583b0ceb14
1ce399d6e936232aaf2192cd7903a279c5015f22
21c1f682de27109caabcca9016511974defcec217c0441fd3f1b50ecdf8247ed

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

POST /log/add?cid=1db9169f-90f4-4b2d-b517-bc47aab19c1f HTTP/1.1
Host: fleraprt.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 1354
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.10
Date: Wed, 06 Dec 2023 02:41:42 GMT
Content-Type: application/json; charset=utf-8
Content-Length: 12
Connection: keep-alive
Access-Control-Allow-Origin: https://fighterpunch.com
Access-Control-Allow-Methods: POST, GET, OPTIONS, PUT, DELETE
Access-Control-Allow-Headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-CSRF-Token, Authorization, X-Forwarded-For, If-None-Match
Access-Control-Allow-Credentials: true

fighterpunch.com/wp-content/uploads/2023/12/Watch-AEW-Rampage-Live-12123-December-1st-2023-Online-Full-Show-Free-360x270.jpg

162.0.215.120

200 OK

25 kB

URL GET HTTP/2
fighterpunch.com/wp-content/uploads/2023/12/Watch-AEW-Rampage-Live-12123-December-1st-2023-Online-Full-Show-Free-360x270.jpg
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 360x270, components 3\012- data
Size
25 kB (24931 bytes)
Hash
f45670d574fe105cc336f59e16ec67c3
58b28fe825d6607210756ff1059cb6e96096610f
af3809a1c4539afa5cf6148f3b3836851b56414909c71c79ea38db3884f53ea4

HTTP Headers

GET /wp-content/uploads/2023/12/Watch-AEW-Rampage-Live-12123-December-1st-2023-Online-Full-Show-Free-360x270.jpg HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_T3L00BXE82=GS1.1.1701830465.1.0.1701830465.0.0.0; _ga=GA1.1.280370316.1701830465; _ga_L4J0XMWNXV=GS1.1.1701830465.1.0.1701830465.0.0.0; _ga_B5T3G0YBDY=GS1.1.1701830465.1.0.1701830465.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:59 GMT
content-type: image/jpeg
last-modified: Fri, 01 Dec 2023 22:36:36 GMT
accept-ranges: bytes
content-length: 24931
date: Wed, 06 Dec 2023 02:40:59 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/uploads/2023/12/Watch-Conlan-Vs-Gill-December-2nd-2023-12223-Online-Full-Show-Free-360x270.jpg

162.0.215.120

200 OK

20 kB

URL GET HTTP/2
fighterpunch.com/wp-content/uploads/2023/12/Watch-Conlan-Vs-Gill-December-2nd-2023-12223-Online-Full-Show-Free-360x270.jpg
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 360x270, components 3\012- data
Size
20 kB (20175 bytes)
Hash
987f4e48f15901888d385f26efe24923
0a701b274dab9da404d2e425a3d2b00048a9bac0
7f8e6ef428a98ca56e0d2be4e9f213ef89b7c1ba28ef1826650ae14e38d2e42e

HTTP Headers

GET /wp-content/uploads/2023/12/Watch-Conlan-Vs-Gill-December-2nd-2023-12223-Online-Full-Show-Free-360x270.jpg HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_T3L00BXE82=GS1.1.1701830465.1.0.1701830465.0.0.0; _ga=GA1.1.280370316.1701830465; _ga_L4J0XMWNXV=GS1.1.1701830465.1.0.1701830465.0.0.0; _ga_B5T3G0YBDY=GS1.1.1701830465.1.0.1701830465.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:59 GMT
content-type: image/jpeg
last-modified: Sat, 02 Dec 2023 21:00:36 GMT
accept-ranges: bytes
content-length: 20175
date: Wed, 06 Dec 2023 02:40:59 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/uploads/2023/11/Watch-Impact-Wrestling-Live-113023-November-30th-2023-Online-Full-Show-Free-360x270.jpg

162.0.215.120

200 OK

12 kB

URL GET HTTP/2
fighterpunch.com/wp-content/uploads/2023/11/Watch-Impact-Wrestling-Live-113023-November-30th-2023-Online-Full-Show-Free-360x270.jpg
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 360x270, components 3\012- data
Size
12 kB (11943 bytes)
Hash
8420095cbf30bc74db1804129ea8708b
06a47a767ecaf418ddf10d156d85bd04f0a2f6cd
92e4061f7ce8419d75116da900941bdad8c7230fdfc8f76fb271299b0262c899

HTTP Headers

GET /wp-content/uploads/2023/11/Watch-Impact-Wrestling-Live-113023-November-30th-2023-Online-Full-Show-Free-360x270.jpg HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_T3L00BXE82=GS1.1.1701830465.1.0.1701830465.0.0.0; _ga=GA1.1.280370316.1701830465; _ga_L4J0XMWNXV=GS1.1.1701830465.1.0.1701830465.0.0.0; _ga_B5T3G0YBDY=GS1.1.1701830465.1.0.1701830465.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:59 GMT
content-type: image/jpeg
last-modified: Thu, 30 Nov 2023 15:24:32 GMT
accept-ranges: bytes
content-length: 11943
date: Wed, 06 Dec 2023 02:40:59 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

my.rtmark.net/gid.js

139.45.195.8

200 OK

65 B

URL GET HTTP/2
my.rtmark.net/gid.js
IP
139.45.195.8:443
ASN
#9002 RETN Limited

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectrtmark.net
FingerprintE8:81:4E:79:89:89:BE:CE:75:1F:E0:2A:60:54:8A:A4:11:2E:F7:42
ValiditySat, 07 Oct 2023 15:22:00 GMT - Fri, 05 Jan 2024 15:21:59 GMT

File type
JSON data\012- , ASCII text
Size
65 B (65 bytes)
Hash
eec6a4c838b42ef48afc60654746178d
3bf0e5c284abf25d64b7b5be48fe4b34b71af31f
a4afc93396f9b367b46690fa65a0732f86605154acd033816df0cf8248ec7af4

HTTP Headers

GET /gid.js HTTP/1.1
Host: my.rtmark.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 06 Dec 2023 02:40:59 GMT
content-type: application/json; charset=utf-8
content-length: 65
access-control-allow-origin: https://fighterpunch.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, Authorization,X-CSRF-Token
access-control-expose-headers: Authorization
access-control-allow-credentials: true
set-cookie: ID=584778ce78884739b2135bc46b1c4ae1; expires=Thu, 05 Dec 2024 02:40:59 GMT; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js

192.243.59.20

200 OK

11 kB

URL GET HTTP/1.1
www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectprofitablecreativeformat.com
Fingerprint3C:4F:9B:FB:66:B4:E2:8B:8C:D1:71:85:B7:C1:E1:97:48:3D:E9:DC
ValidityTue, 28 Nov 2023 07:18:39 GMT - Mon, 26 Feb 2024 07:18:38 GMT

File type
exported SGML document, ASCII text, with very long lines (29619), with no line terminators
Size
11 kB (10909 bytes)
Hash
576442791b9482c3776a3309165ba102
c5ae50f09faddd38031699c999137badd7f7cf45
5fa1cc362a68f376415ff600953a5ac7fa17e91c39433a2a78ce90ccc42fa9af

HTTP Headers

GET /7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js HTTP/1.1
Host: www.profitablecreativeformat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 06 Dec 2023 02:40:59 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 49d86fea6091a86f097d7d3191d56e3a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

fighterpunch.com/wp-content/uploads/2023/11/Watch-ROH-Wrestling-Live-113023-November-30th-2023-Online-Full-Show-Free-360x270.jpg

162.0.215.120

200 OK

19 kB

URL GET HTTP/2
fighterpunch.com/wp-content/uploads/2023/11/Watch-ROH-Wrestling-Live-113023-November-30th-2023-Online-Full-Show-Free-360x270.jpg
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 360x270, components 3\012- data
Size
19 kB (19138 bytes)
Hash
565dd6e2f22a369c97723e155577f3d6
309a6100f02f50113ff2499118153416bdaaff0d
c4b75e91a41820a0263798e0e97e7047e22467c1f5ad1f61a7ebe73a3c88a053

HTTP Headers

GET /wp-content/uploads/2023/11/Watch-ROH-Wrestling-Live-113023-November-30th-2023-Online-Full-Show-Free-360x270.jpg HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_T3L00BXE82=GS1.1.1701830465.1.0.1701830465.0.0.0; _ga=GA1.1.280370316.1701830465; _ga_L4J0XMWNXV=GS1.1.1701830465.1.0.1701830465.0.0.0; _ga_B5T3G0YBDY=GS1.1.1701830465.1.0.1701830465.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:59 GMT
content-type: image/jpeg
last-modified: Thu, 30 Nov 2023 15:25:50 GMT
accept-ranges: bytes
content-length: 19138
date: Wed, 06 Dec 2023 02:40:59 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

becorsolaom.com/400/6287845

139.45.197.238

200 OK

54 kB

URL GET HTTP/2
becorsolaom.com/400/6287845
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectbecorsolaom.com
Fingerprint32:D4:35:EC:1A:B0:59:31:29:92:7C:3D:6E:6C:40:EB:28:AF:57:9B
ValidityTue, 28 Nov 2023 20:57:36 GMT - Mon, 26 Feb 2024 20:57:35 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
54 kB (53489 bytes)
Hash
dac77d149ab53071a6903900a0e31e0c
4dc3f0c1c2ba40e1d3c709edd92dfa3b3409ff8b
351c629ce99e60c3ec810b0c1d9b0c6014860e71d08996dede329d7472f5f89b

HTTP Headers

GET /400/6287845 HTTP/1.1
Host: becorsolaom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 06 Dec 2023 02:40:59 GMT
content-type: application/javascript
x-trace-id: 08ced543b7db56ed3a15d48637071081
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=928efa4668f04cdd83f7bbbe93735483; expires=Thu, 05 Dec 2024 02:40:59 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

fighterpunch.com/wp-content/uploads/2023/12/Watch-WWE-NxT-Level-Up-Live-12123-December-1st-2023-Online-Full-Show-Free-360x270.jpg

162.0.215.120

200 OK

14 kB

URL GET HTTP/2
fighterpunch.com/wp-content/uploads/2023/12/Watch-WWE-NxT-Level-Up-Live-12123-December-1st-2023-Online-Full-Show-Free-360x270.jpg
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 360x270, components 3\012- data
Size
14 kB (14353 bytes)
Hash
11d619c5d73e0e33e980fcf2f8043086
b3586574fdf2c05514761342caf709863f19ef49
98682d75b02b2c7ac45f458de1bc11ba9d4d929932b97382b25864e2b0cb571a

HTTP Headers

GET /wp-content/uploads/2023/12/Watch-WWE-NxT-Level-Up-Live-12123-December-1st-2023-Online-Full-Show-Free-360x270.jpg HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_T3L00BXE82=GS1.1.1701830465.1.0.1701830465.0.0.0; _ga=GA1.1.280370316.1701830465; _ga_L4J0XMWNXV=GS1.1.1701830465.1.0.1701830465.0.0.0; _ga_B5T3G0YBDY=GS1.1.1701830465.1.0.1701830465.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:59 GMT
content-type: image/jpeg
last-modified: Fri, 01 Dec 2023 22:34:24 GMT
accept-ranges: bytes
content-length: 14353
date: Wed, 06 Dec 2023 02:40:59 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js

192.243.59.20

200 OK

11 kB

URL GET HTTP/1.1
www.profitablecreativeformat.com/7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectprofitablecreativeformat.com
Fingerprint3C:4F:9B:FB:66:B4:E2:8B:8C:D1:71:85:B7:C1:E1:97:48:3D:E9:DC
ValidityTue, 28 Nov 2023 07:18:39 GMT - Mon, 26 Feb 2024 07:18:38 GMT

File type
exported SGML document, ASCII text, with very long lines (29619), with no line terminators
Size
11 kB (10912 bytes)
Hash
9b4a5c0fe11dd4241ad60412777fdf56
31e43750a4c80cbb347621b25f31b9e0b5597e6c
e0735b4021aa5916783590509a4baba8156941fa52de1e034a3a67ce23eaa9d7

HTTP Headers

GET /7b57ef9c2f1a1e7fa516e4fce2e11737/invoke.js HTTP/1.1
Host: www.profitablecreativeformat.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 06 Dec 2023 02:41:00 GMT
Content-Type: application/javascript
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Access-Control-Allow-Origin: *
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 60bbbc012ceff8fc7c268de6ce40568a
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

becorsolaom.com/500/6287845?excludes=&oaid=584778ce78884739b2135bc46b1c4ae1&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Ffighterpunch.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0

139.45.197.238

200 OK

0 B

URL OPTIONS HTTP/2
becorsolaom.com/500/6287845?excludes=&oaid=584778ce78884739b2135bc46b1c4ae1&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Ffighterpunch.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectbecorsolaom.com
Fingerprint32:D4:35:EC:1A:B0:59:31:29:92:7C:3D:6E:6C:40:EB:28:AF:57:9B
ValidityTue, 28 Nov 2023 20:57:36 GMT - Mon, 26 Feb 2024 20:57:35 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /500/6287845?excludes=&oaid=584778ce78884739b2135bc46b1c4ae1&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=1&pl=https%3A%2F%2Ffighterpunch.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: becorsolaom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://fighterpunch.com/
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 06 Dec 2023 02:41:00 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://fighterpunch.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2

173.233.137.52

307 Temporary Redirect

0 B

URL GET HTTP/1.1
traumatizedenied.com/watch.805879242272.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=faa3b3fb-91f7-4110-89b4-fa4f35b83803%3A3%3A1
IP
173.233.137.52:443
ASN
#7979 SERVERS-COM

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjecttraumatizedenied.com
Fingerprint4C:8A:B7:86:62:BE:3C:2D:B0:E7:F6:06:FB:6B:A9:1B:7B:CF:FA:7C
ValidityTue, 28 Nov 2023 08:04:06 GMT - Mon, 26 Feb 2024 08:04:05 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.805879242272.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=faa3b3fb-91f7-4110-89b4-fa4f35b83803%3A3%3A1 HTTP/1.1
Host: traumatizedenied.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Wed, 06 Dec 2023 02:41:00 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://fighterpunch.com
Access-Control-Allow-Origin: https://fighterpunch.com
Access-Control-Allow-Credentials: true
Location: https://traumatizedenied.com/watch.805879242272.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=faa3b3fb-91f7-4110-89b4-fa4f35b83803%3A3%3A1&shu=db3593990c0186688fc03b8c6631a88d66235fd6017a241e939eef3bfbbb31046ad56973015611470bd2ec9e4704a15d1e38fd4765577ad3c0b8e0c0f591453c0bdee9133bc618816932932e467c5c1d65236871546efafce0c181b5705883&pst=1701830520&rmtc=t
Set-Cookie: u_pl=20395311; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.23GzJV9YunaITZEcghkfi_xdBjdYUqSMAHqnD2mYygo; expires=Wed, 06 Dec 2023 02:42:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 69e5d5ba23f527eb2206766b8b4ddda4
Strict-Transport-Security: max-age=0; includeSubdomains

173.233.137.60

307 Temporary Redirect

0 B

URL GET HTTP/1.1
growledavenuejill.com/watch.1675051702659.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1
IP
173.233.137.60:443
ASN
#7979 SERVERS-COM

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectgrowledavenuejill.com
Fingerprint50:97:C7:CA:37:99:93:62:32:18:B9:E4:22:54:6D:32:09:B4:97:72
ValidityTue, 28 Nov 2023 10:58:45 GMT - Mon, 26 Feb 2024 10:58:44 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1675051702659.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1 HTTP/1.1
Host: growledavenuejill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Wed, 06 Dec 2023 02:41:00 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://fighterpunch.com
Access-Control-Allow-Origin: https://fighterpunch.com
Access-Control-Allow-Credentials: true
Location: https://growledavenuejill.com/watch.1675051702659.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=3580868c0e9bbf6162651d03e65e425ad98f44306ca371dd771f2a8768ff103a9c6818ef073624683d0215a90d80f49e67efb0a498aa588d291a4d646f16386899e68b9e48d0344e3e5936799317b1a8c6286603edd9fe9f1ce45106e07a93b6f3077a&pst=1701830520&rmtc=t
Set-Cookie: u_pl=20395311; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.23GzJV9YunaITZEcghkfi_xdBjdYUqSMAHqnD2mYygo; expires=Wed, 06 Dec 2023 02:42:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 402ee11660c798f700aa126a2b7f5c87
Strict-Transport-Security: max-age=0; includeSubdomains

192.243.59.13

307 Temporary Redirect

0 B

URL GET HTTP/1.1
divedresign.com/watch.1649727369213.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectdivedresign.com
FingerprintFD:4F:62:E6:DE:53:D1:B9:E0:A6:67:51:14:6D:2C:FE:3F:C1:0E:41
ValidityTue, 28 Nov 2023 08:17:41 GMT - Mon, 26 Feb 2024 08:17:40 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1649727369213.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1 HTTP/1.1
Host: divedresign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Wed, 06 Dec 2023 02:41:00 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://fighterpunch.com
Access-Control-Allow-Origin: https://fighterpunch.com
Access-Control-Allow-Credentials: true
Location: https://divedresign.com/watch.1649727369213.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=e470479a7a7a94bf1bd587df4d161d65c7440abb36488138dab559fc83f4c841fcba9d8d61854315231187976bd293d48eebbf1d0780edb10f54c0a1b4801f1b7f0238732c4ee91006c757be1094213e7d3e32aaeb1d2e55f06907c88858ae&pst=1701830520&rmtc=t
Set-Cookie: u_pl=20395311; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.23GzJV9YunaITZEcghkfi_xdBjdYUqSMAHqnD2mYygo; expires=Wed, 06 Dec 2023 02:42:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3a6f8d6e7cabf3a33704427fe4e45284
Strict-Transport-Security: max-age=0; includeSubdomains

fighterpunch.com/

162.0.215.120

200 OK

0 B

URL HEAD HTTP/2
fighterpunch.com/
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

HEAD / HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_T3L00BXE82=GS1.1.1701830465.1.0.1701830465.0.0.0; _ga=GA1.1.280370316.1701830465; _ga_L4J0XMWNXV=GS1.1.1701830465.1.0.1701830465.0.0.0; _ga_B5T3G0YBDY=GS1.1.1701830465.1.0.1701830465.0.0.0; dom3ic8zudi28v8lr6fgphwffqoz0j6c=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
content-type: text/html; charset=UTF-8
link: <https://fighterpunch.com/wp-json/>; rel="https://api.w.org/"
date: Wed, 06 Dec 2023 02:41:00 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

static.addtoany.com/menu/svg/icons/a2a.js

104.22.70.197

200 OK

630 B

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/a2a.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
FingerprintCD:32:6F:BB:77:FF:5A:24:10:3C:B9:90:72:64:6B:45:03:F0:A2:30
ValiditySun, 29 Oct 2023 04:52:36 GMT - Sat, 27 Jan 2024 04:52:35 GMT

File type
ASCII text, with no line terminators
Size
630 B (630 bytes)
Hash
baf0595a19bdc7f7497b74731d2166c4
fd5714384c52fc0338083574434d12328313896c
3dab93242ee573bbcfc22c9d15acd47794e500ed44e6bd48a35400b39d65aa43

HTTP Headers

GET /menu/svg/icons/a2a.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 02:41:00 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"0aca4ea1e5f8f250126a8e0c597dd969"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=5zq32kCAkPdADib2N%2F%2BQp%2FwUm0p4KTs4b1CD6NqqSJAXImHcvisElZD%2FNF5iV%2BGBZGEaLLohWkDwy6Bu8CP19FzrP6XFokr39hspXnJUG8cBhFl1Qx2gSie7MaO4%2FmbzaxX%2F69LA"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 83112ad97cba991b-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

192.243.61.227

307 Temporary Redirect

0 B

URL GET HTTP/1.1
awaydefinitecreature.com/watch.1065873560316.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectawaydefinitecreature.com
FingerprintC6:95:70:F7:D6:25:46:2B:9F:7D:35:31:B3:A2:59:37:9A:7C:A5:4D
ValidityTue, 28 Nov 2023 10:43:09 GMT - Mon, 26 Feb 2024 10:43:08 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1065873560316.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1 HTTP/1.1
Host: awaydefinitecreature.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.21.6
Date: Wed, 06 Dec 2023 02:41:00 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://fighterpunch.com
Access-Control-Allow-Origin: https://fighterpunch.com
Access-Control-Allow-Credentials: true
Location: https://awaydefinitecreature.com/watch.1065873560316.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=1587beacb7af670e33bc079e64119e6b48cddce9755ce8e9d3354866a6fc24fed414ebb283422f5504ffb8009b35b9c8f10a282d091aae74478fd5fe56782a6f56bd7705bab988e7821aea79291cf253dd13dc61002a1b7b7bd3f078b94381&pst=1701830520&rmtc=t
Set-Cookie: u_pl=20395311; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.23GzJV9YunaITZEcghkfi_xdBjdYUqSMAHqnD2mYygo; expires=Wed, 06 Dec 2023 02:42:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 100a50f291ac21ad82c036eb0922411d
Strict-Transport-Security: max-age=0; includeSubdomains

offerimage.com/www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg

172.67.22.216

200 OK

19 kB

URL GET HTTP/2
offerimage.com/www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg
IP
172.67.22.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fighterpunch.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Size
19 kB (19381 bytes)
Hash
71581bf2ce9a00138faf7dd80fe3e12e
56479135ed64bf23e1037067c0c87047eb8a414c
5d9f95c8c06343cc189b38268296615ed8816d8154b4b782ad0d62bedd23525e

HTTP Headers

GET /www/images/71581bf2ce9a00138faf7dd80fe3e12e.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 02:41:00 GMT
content-type: image/jpeg
content-length: 19381
cache-control: max-age=86400
cf-bgj: h2pri
etag: "65674405-4bb5"
expires: Wed, 06 Dec 2023 14:13:35 GMT
last-modified: Wed, 29 Nov 2023 14:00:37 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 44845
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 83112adabf35b4f7-OSL
X-Firefox-Spdy: h2

growledavenuejill.com/watch.1675051702659.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=3580868c0e9bbf6162651d03e65e425ad98f44306ca371dd771f2a8768ff103a9c6818ef073624683d0215a90d80f49e67efb0a498aa588d291a4d646f16386899e68b9e48d0344e3e5936799317b1a8c6286603edd9fe9f1ce45106e07a93b6f3077a&pst=1701830520&rmtc=t

173.233.137.60

200 OK

2.1 kB

URL GET HTTP/1.1
growledavenuejill.com/watch.1675051702659.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=3580868c0e9bbf6162651d03e65e425ad98f44306ca371dd771f2a8768ff103a9c6818ef073624683d0215a90d80f49e67efb0a498aa588d291a4d646f16386899e68b9e48d0344e3e5936799317b1a8c6286603edd9fe9f1ce45106e07a93b6f3077a&pst=1701830520&rmtc=t
IP
173.233.137.60:443
ASN
#7979 SERVERS-COM

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectgrowledavenuejill.com
Fingerprint50:97:C7:CA:37:99:93:62:32:18:B9:E4:22:54:6D:32:09:B4:97:72
ValidityTue, 28 Nov 2023 10:58:45 GMT - Mon, 26 Feb 2024 10:58:44 GMT

File type
HTML document text\012- HTML document, ASCII text, with very long lines (2644)
Size
2.1 kB (2106 bytes)
Hash
4431cbb8ea54ad41e5c235e9c8763777
f2647c195d633ebcf02a92a00856d8a2bb32ff5f
85e22fef330d525155ecdcf65b5ab24bace192ccd866c7d82e40d9fae4473df5

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1675051702659.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=3580868c0e9bbf6162651d03e65e425ad98f44306ca371dd771f2a8768ff103a9c6818ef073624683d0215a90d80f49e67efb0a498aa588d291a4d646f16386899e68b9e48d0344e3e5936799317b1a8c6286603edd9fe9f1ce45106e07a93b6f3077a&pst=1701830520&rmtc=t HTTP/1.1
Host: growledavenuejill.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Cookie: u_pl=20395311; ain=eyJhbGciOiJIUzI1NiJ9.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.23GzJV9YunaITZEcghkfi_xdBjdYUqSMAHqnD2mYygo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 06 Dec 2023 02:41:00 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://fighterpunch.com
Access-Control-Allow-Origin: https://fighterpunch.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=6ce1a077-f853-4246-9c4b-7e7817f64f60:3:1; expires=Wed, 13 Dec 2023 02:41:00 GMT; secure; SameSite=None
iprc6f1ae00d3f8668ad60ab7141f933d1f6=3570421; expires=Wed, 06 Dec 2023 06:41:00 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
uncs=1; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
pdhtkv32=true; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
uncs32=1; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 3eccabc79c4938bc81532d112d49e322
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

static.addtoany.com/menu/sm.24.html

104.22.70.197

2.5 kB

URL
static.addtoany.com/menu/sm.24.html
IP
104.22.70.197:0
ASN
#13335 CLOUDFLARENET

Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
FingerprintCD:32:6F:BB:77:FF:5A:24:10:3C:B9:90:72:64:6B:45:03:F0:A2:30
ValiditySun, 29 Oct 2023 04:52:36 GMT - Sat, 27 Jan 2024 04:52:35 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (677), with no line terminators
Size
2.5 kB (2496 bytes)
Hash
44159485d6e6221dda54af2df7cc7fd1
bc1d911a820c00010002e7632e91f1cd6d3f8706
5a4192e762a449dfd6e63bee835e0941627223c9159e8219acdd01881a1ac175

HTTP Headers

GET /menu/sm.24.html HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 02:41:00 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x0AGzN6VnU5rC0rDp1WWGffpVhLXhewGgJJdgo0XlNGLjVSig63Pe8VCgpJdmHsoiYfTB3IKSCbnCUNZ0tcSS%2F4CNML2Qm83G3kdSE8Eqdz7lApDw3Gf7%2B05kA2uqGC9y2HPMcXolWmxOApwazNx9N1m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 8008
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 83112ad8f9f92d71-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

awaydefinitecreature.com/watch.1065873560316.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=1587beacb7af670e33bc079e64119e6b48cddce9755ce8e9d3354866a6fc24fed414ebb283422f5504ffb8009b35b9c8f10a282d091aae74478fd5fe56782a6f56bd7705bab988e7821aea79291cf253dd13dc61002a1b7b7bd3f078b94381&pst=1701830520&rmtc=t

192.243.61.227

200 OK

2.1 kB

URL GET HTTP/1.1
awaydefinitecreature.com/watch.1065873560316.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=1587beacb7af670e33bc079e64119e6b48cddce9755ce8e9d3354866a6fc24fed414ebb283422f5504ffb8009b35b9c8f10a282d091aae74478fd5fe56782a6f56bd7705bab988e7821aea79291cf253dd13dc61002a1b7b7bd3f078b94381&pst=1701830520&rmtc=t
IP
192.243.61.227:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectawaydefinitecreature.com
FingerprintC6:95:70:F7:D6:25:46:2B:9F:7D:35:31:B3:A2:59:37:9A:7C:A5:4D
ValidityTue, 28 Nov 2023 10:43:09 GMT - Mon, 26 Feb 2024 10:43:08 GMT

File type
HTML document, ASCII text, with very long lines (2568)
Size
2.1 kB (2076 bytes)
Hash
27ef00022928b42d94557fedb1553215
b559531dd2bbe0c780a6ba68dfb3abcebca67543
84699371564cd1712360546353dd9f37b2358f6ee5c1eaace913c23cbc57eb3a

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1065873560316.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=1587beacb7af670e33bc079e64119e6b48cddce9755ce8e9d3354866a6fc24fed414ebb283422f5504ffb8009b35b9c8f10a282d091aae74478fd5fe56782a6f56bd7705bab988e7821aea79291cf253dd13dc61002a1b7b7bd3f078b94381&pst=1701830520&rmtc=t HTTP/1.1
Host: awaydefinitecreature.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Cookie: u_pl=20395311; ain=eyJhbGciOiJIUzI1NiJ9.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.23GzJV9YunaITZEcghkfi_xdBjdYUqSMAHqnD2mYygo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 06 Dec 2023 02:41:00 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://fighterpunch.com
Access-Control-Allow-Origin: https://fighterpunch.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=6ce1a077-f853-4246-9c4b-7e7817f64f60:3:1; expires=Wed, 13 Dec 2023 02:41:00 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
uncs=1; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
pdhtkv32=true; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
uncs32=1; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6e68c5e24ae25f1c4fc20a4957a04e14
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

192.243.59.20

307 Temporary Redirect

0 B

URL GET HTTP/1.1
fistsurprising.com/watch.1459759335774.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectfistsurprising.com
FingerprintE5:F2:5A:82:F8:3A:5F:BC:8E:83:DD:40:35:37:DB:DA:14:3F:2F:21
ValidityTue, 28 Nov 2023 11:02:57 GMT - Mon, 26 Feb 2024 11:02:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1459759335774.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1 HTTP/1.1
Host: fistsurprising.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Wed, 06 Dec 2023 02:41:00 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://fighterpunch.com
Access-Control-Allow-Origin: https://fighterpunch.com
Access-Control-Allow-Credentials: true
Location: https://fistsurprising.com/watch.1459759335774.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=841d8cc7c0319860130680b2e3c10e198cd24708310531dec5a4578adf399028e399d15c5fd05e372ac39478bb69f438f1930be10e5dcf98bcefea17d943b450d74f4c5a4a70a0e42c4335547cc810402db9ada789f6c5513a275e0da114cd&pst=1701830520&rmtc=t
Set-Cookie: u_pl=20395311; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.23GzJV9YunaITZEcghkfi_xdBjdYUqSMAHqnD2mYygo; expires=Wed, 06 Dec 2023 02:42:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 32c337dbe8b67dc9c960cd7d1e1c4e92
Strict-Transport-Security: max-age=0; includeSubdomains

static.addtoany.com/menu/page.js

104.22.70.197

200 OK

1.5 kB

URL GET HTTP/2
static.addtoany.com/menu/page.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
FingerprintCD:32:6F:BB:77:FF:5A:24:10:3C:B9:90:72:64:6B:45:03:F0:A2:30
ValiditySun, 29 Oct 2023 04:52:36 GMT - Sat, 27 Jan 2024 04:52:35 GMT

File type
ASCII text, with very long lines (3081), with no line terminators
Size
1.5 kB (1467 bytes)
Hash
c600948b9f6b92e63735acd32e7b695a
1326a432fa4e80f103146d14b2a7c31ecf6dcbe9
042a9121e1c7bcdc3bfc48ed5e23b8dd1f64f375ef5872a5984e5d5096444702

HTTP Headers

GET /menu/page.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 02:40:57 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=86400, stale-while-revalidate=30, public
etag: W/"03396a6543cd35a0e73d2b4de150841b"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=57fp4HstUQx0fFi6fcvvmLoRd8Ob2Cg6DuI%2FJEZ2AZ041RN1KrRsTYNCCnnnvlWtpSUk2c9EqhvHrbMrdwnyvCoZ%2B4tg6K8rbTzMra7n30O33ZCStaoLKsvl0tvDr7PXsEin1G1E"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 26014
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 83112ac98be070d4-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

192.243.59.20

307 Temporary Redirect

0 B

URL GET HTTP/1.1
fistsurprising.com/watch.977158532624.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectfistsurprising.com
FingerprintE5:F2:5A:82:F8:3A:5F:BC:8E:83:DD:40:35:37:DB:DA:14:3F:2F:21
ValidityTue, 28 Nov 2023 11:02:57 GMT - Mon, 26 Feb 2024 11:02:56 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.977158532624.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1 HTTP/1.1
Host: fistsurprising.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Wed, 06 Dec 2023 02:41:00 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://fighterpunch.com
Access-Control-Allow-Origin: https://fighterpunch.com
Access-Control-Allow-Credentials: true
Location: https://fistsurprising.com/watch.977158532624.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=8648034ffc85f87b75d5c80be0ac288e4b1f8dc5435b1f30f71152c261a66ee6b1a5cc83c5946203cedd1a17ebe5027d855d9e12a58fb486607a2a9cbc050df8b8fdeac384f0bdea6765aa861057fead2e90fb&pst=1701830520&rmtc=t
Set-Cookie: u_pl=20395311; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.23GzJV9YunaITZEcghkfi_xdBjdYUqSMAHqnD2mYygo; expires=Wed, 06 Dec 2023 02:42:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 80e714623ee850f05c65ff14cea76fe5
Strict-Transport-Security: max-age=0; includeSubdomains

divedresign.com/watch.1649727369213.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=e470479a7a7a94bf1bd587df4d161d65c7440abb36488138dab559fc83f4c841fcba9d8d61854315231187976bd293d48eebbf1d0780edb10f54c0a1b4801f1b7f0238732c4ee91006c757be1094213e7d3e32aaeb1d2e55f06907c88858ae&pst=1701830520&rmtc=t

192.243.59.13

200 OK

2.1 kB

URL GET HTTP/1.1
divedresign.com/watch.1649727369213.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=e470479a7a7a94bf1bd587df4d161d65c7440abb36488138dab559fc83f4c841fcba9d8d61854315231187976bd293d48eebbf1d0780edb10f54c0a1b4801f1b7f0238732c4ee91006c757be1094213e7d3e32aaeb1d2e55f06907c88858ae&pst=1701830520&rmtc=t
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectdivedresign.com
FingerprintFD:4F:62:E6:DE:53:D1:B9:E0:A6:67:51:14:6D:2C:FE:3F:C1:0E:41
ValidityTue, 28 Nov 2023 08:17:41 GMT - Mon, 26 Feb 2024 08:17:40 GMT

File type
HTML document, ASCII text, with very long lines (2538)
Size
2.1 kB (2054 bytes)
Hash
c1ebfe4fd143fd39464d75add227b12a
0ec24e0e2fa55770b04da263c017698bfa1604c6
fe57da2be0730db72fca0682a0e1d314eb7b0868b9fe424fbc5dd55112489942

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1649727369213.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=e470479a7a7a94bf1bd587df4d161d65c7440abb36488138dab559fc83f4c841fcba9d8d61854315231187976bd293d48eebbf1d0780edb10f54c0a1b4801f1b7f0238732c4ee91006c757be1094213e7d3e32aaeb1d2e55f06907c88858ae&pst=1701830520&rmtc=t HTTP/1.1
Host: divedresign.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Cookie: u_pl=20395311; ain=eyJhbGciOiJIUzI1NiJ9.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.23GzJV9YunaITZEcghkfi_xdBjdYUqSMAHqnD2mYygo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 06 Dec 2023 02:41:00 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://fighterpunch.com
Access-Control-Allow-Origin: https://fighterpunch.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=6ce1a077-f853-4246-9c4b-7e7817f64f60:3:1; expires=Wed, 13 Dec 2023 02:41:00 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
uncs=1; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
pdhtkv32=true; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
uncs32=1; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: b5b6f8cdb27a8c4c1d2bbe0e2de52e15
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

thubanoa.com/9?z=5297528&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Ffighterpunch.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&oaid=584778ce78884739b2135bc46b1c4ae1

139.45.197.242

204 No Content

0 B

URL OPTIONS HTTP/2
thubanoa.com/9?z=5297528&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Ffighterpunch.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&oaid=584778ce78884739b2135bc46b1c4ae1
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectthubanoa.com
Fingerprint29:B3:7B:FD:B2:7E:87:35:DA:50:73:78:59:11:52:35:7E:F9:21:32
ValidityFri, 17 Nov 2023 15:12:05 GMT - Thu, 15 Feb 2024 15:12:04 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

OPTIONS /9?z=5297528&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Ffighterpunch.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&oaid=584778ce78884739b2135bc46b1c4ae1 HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Access-Control-Request-Headers: content-type
Referer: https://fighterpunch.com/
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 204 No Content
server: nginx
date: Wed, 06 Dec 2023 02:41:00 GMT
access-control-allow-credentials: true
access-control-allow-origin: https://fighterpunch.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

code.jivosite.com/js/bundle_en_US.js?rand=1701697919

5.101.37.37

200 OK

238 kB

URL GET HTTP/2
code.jivosite.com/js/bundle_en_US.js?rand=1701697919
IP
5.101.37.37:443
ASN
#57416 LLC South Internet

Requested by
https://fighterpunch.com/
Certificate
IssuerGoDaddy.com, Inc.
Subject*.jivosite.com
Fingerprint48:23:E2:E5:0B:0A:4E:4F:CA:AD:65:27:8E:22:2A:8F:87:B3:6D:F4
ValidityWed, 05 Apr 2023 11:26:25 GMT - Mon, 06 May 2024 11:26:25 GMT

File type
Unicode text, UTF-8 text, with very long lines (65511), with no line terminators
Size
238 kB (237707 bytes)
Hash
aa6ecbc517d96d7cbf89e1382901f32d
8c3d17cb9b31a5a13bce3192f99e74cab8d893c8
0ca0234c85af827653d7fb6aa9a3266bbbd1c74a0a07309d9029e5ccb8ae7946

HTTP Headers

GET /js/bundle_en_US.js?rand=1701697919 HTTP/1.1
Host: code.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 06 Dec 2023 02:41:00 GMT
content-type: application/javascript
content-length: 237707
access-control-allow-origin: *
cache-control: max-age=86400
content-encoding: br
etag: "6569ddd1-3a08b"
last-modified: Fri, 01 Dec 2023 13:21:21 GMT
vary: Accept-Encoding
via: 1.1 sharxy
x-geo-shard: ya
cache: HIT
x-cached-since: 2023-12-05T05:27:37+00:00
x-node: fr5-up-gc15
accept-ranges: bytes
X-Firefox-Spdy: h2

fistsurprising.com/watch.1459759335774.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=841d8cc7c0319860130680b2e3c10e198cd24708310531dec5a4578adf399028e399d15c5fd05e372ac39478bb69f438f1930be10e5dcf98bcefea17d943b450d74f4c5a4a70a0e42c4335547cc810402db9ada789f6c5513a275e0da114cd&pst=1701830520&rmtc=t

192.243.59.20

200 OK

2.1 kB

URL GET HTTP/1.1
fistsurprising.com/watch.1459759335774.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=841d8cc7c0319860130680b2e3c10e198cd24708310531dec5a4578adf399028e399d15c5fd05e372ac39478bb69f438f1930be10e5dcf98bcefea17d943b450d74f4c5a4a70a0e42c4335547cc810402db9ada789f6c5513a275e0da114cd&pst=1701830520&rmtc=t
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectfistsurprising.com
FingerprintE5:F2:5A:82:F8:3A:5F:BC:8E:83:DD:40:35:37:DB:DA:14:3F:2F:21
ValidityTue, 28 Nov 2023 11:02:57 GMT - Mon, 26 Feb 2024 11:02:56 GMT

File type
HTML document, ASCII text, with very long lines (2582)
Size
2.1 kB (2079 bytes)
Hash
239c89821796452ba351e3a732e8e587
3279cc6b6a7eb684aca070abd7c27a59c15a83b8
61abec0703d946a04988520f8d40dccf9c335a09fec23842f94dc68f6997ef9e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.1459759335774.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=841d8cc7c0319860130680b2e3c10e198cd24708310531dec5a4578adf399028e399d15c5fd05e372ac39478bb69f438f1930be10e5dcf98bcefea17d943b450d74f4c5a4a70a0e42c4335547cc810402db9ada789f6c5513a275e0da114cd&pst=1701830520&rmtc=t HTTP/1.1
Host: fistsurprising.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Cookie: u_pl=20395311; ain=eyJhbGciOiJIUzI1NiJ9.eyJwIjp7ImlkIjoyMDM5NTMxMSwiayI6IjdiNTdlZjljMmYxYTFlN2ZhNTE2ZTRmY2UyZTExNzM3Iiwic2lkIjoiIiwiaXNpZCI6MiwiYXNpZCI6MSwiemlkIjoyOTExMTUxLCJwaWQiOjExOTc0NTUsImFuIjp0cnVlLCJsYW4iOnRydWUsImNpZCI6MTksImFpZCI6MzIsInB0Ijo0LCJwayI6InkzcjA3ZnA5IiwidCI6MX0sInUiOnsidSI6MSwiYXUiOjEsImQiOnsiaWQiOjkwNzUzNDU3LCJpZHMiOiIiLCJpYyI6ZmFsc2UsIm4iOiJEZXNrdG9wLEVtdWxhdG9yIiwidiI6IlVua25vd24iLCJtIjoiVW5rbm93biIsImYiOjEsImZuIjoiRGVza3RvcCIsIm9pZCI6Mzg5MTQsIm9uIjoiV2luZG93cyIsIm92IjoiMTAuMCIsImJpZCI6MTIwNjI1LCJibiI6IkZpcmVmb3giLCJidiI6IjEwNS4wIiwid3YiOmZhbHNlLCJlIjp0cnVlLCJhYiI6ZmFsc2V9LCJjIjp7ImlkIjoxNjIsImMiOiJOTyIsIm4iOiJOb3J3YXkifSwiYSI6ZmFsc2UsImNyIjp7Im4iOiJCbGl4IFNvbHV0aW9ucyJ9LCJ4ZiI6IiIsIml4ZiI6ZmFsc2UsImlneGYiOmZhbHNlLCJ1cCI6dHJ1ZSwiciI6Imh0dHBzOi8vZmlnaHRlcnB1bmNoLmNvbS8iLCJhciI6W119fQ.23GzJV9YunaITZEcghkfi_xdBjdYUqSMAHqnD2mYygo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 06 Dec 2023 02:41:00 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://fighterpunch.com
Access-Control-Allow-Origin: https://fighterpunch.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=6ce1a077-f853-4246-9c4b-7e7817f64f60:3:1; expires=Wed, 13 Dec 2023 02:41:00 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
uncs=1; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
pdhtkv32=true; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
uncs32=1; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 19daa66287135f320b30c6a79695e738
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

devoutdoubtfulsample.com/watch.695476666492.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=2fcad1f896156739f444c6a11b592fdb9f45895922048383a90c6ba98a47bec95db9ac1bcb6340387fb35867f00bb173a22bee158788cc28fff9e5968e379268ecca2c6dd4c127b918f295428521b1187a93b67a6e3e612d278705c65b9fcd&pst=1701830520&rmtc=t

192.243.59.13

200 OK

2.0 kB

URL GET HTTP/1.1
devoutdoubtfulsample.com/watch.695476666492.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=2fcad1f896156739f444c6a11b592fdb9f45895922048383a90c6ba98a47bec95db9ac1bcb6340387fb35867f00bb173a22bee158788cc28fff9e5968e379268ecca2c6dd4c127b918f295428521b1187a93b67a6e3e612d278705c65b9fcd&pst=1701830520&rmtc=t
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectdevoutdoubtfulsample.com
Fingerprint46:DE:76:4D:52:45:B0:2F:13:58:87:BE:89:D2:89:F5:9B:CA:E2:5F
ValidityTue, 28 Nov 2023 08:12:35 GMT - Mon, 26 Feb 2024 08:12:34 GMT

File type
HTML document, ASCII text, with very long lines (2437)
Size
2.0 kB (1977 bytes)
Hash
132fa7194f0d81ec5ec159aa1f10d1df
b51d43ae67f9ac514d2be3836769964f80fb2952
25658ec663710ad7733d8ee13c3ff678c2491fb2ce816fe35242a4bdc2d6b9bc

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.695476666492.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=2fcad1f896156739f444c6a11b592fdb9f45895922048383a90c6ba98a47bec95db9ac1bcb6340387fb35867f00bb173a22bee158788cc28fff9e5968e379268ecca2c6dd4c127b918f295428521b1187a93b67a6e3e612d278705c65b9fcd&pst=1701830520&rmtc=t HTTP/1.1
Host: devoutdoubtfulsample.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Cookie: u_pl=20395311; ain=eyJhbGciOiJIUzI1NiJ9.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.23GzJV9YunaITZEcghkfi_xdBjdYUqSMAHqnD2mYygo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 06 Dec 2023 02:41:00 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://fighterpunch.com
Access-Control-Allow-Origin: https://fighterpunch.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=6ce1a077-f853-4246-9c4b-7e7817f64f60:3:1; expires=Wed, 13 Dec 2023 02:41:00 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
uncs=1; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
pdhtkv32=true; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
uncs32=1; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 6731e30e288711031de4053d66754d3b
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg

45.133.44.9

200 OK

25 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
JPEG image data, baseline, precision 8, 320x50, components 3\012- data
Size
25 kB (24714 bytes)
Hash
d465d02b90e928dfd9d9846e102a9dac
22f7333777bec813bd9a7b870913a2b79b6d2fe4
e393d4f1c6b5d4973e157f0f10764b92037dc18239500f42b72bed8ecef462fd

HTTP Headers

GET /cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 02:41:01 GMT
content-type: image/jpeg
content-length: 24714
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 14:06:18 GMT
etag: "62e1465a-608a"
expires: Fri, 08 Dec 2023 02:41:01 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/bi/d1/22/72/d1227234867245c6ac12ed8cce95f899/1663242581.jpg

45.133.44.9

200 OK

9.3 kB

URL GET HTTP/2
cdn.cloudimagesb.com/bi/d1/22/72/d1227234867245c6ac12ed8cce95f899/1663242581.jpg
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
JPEG image data, Exif standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=86, yresolution=94, resolutionunit=2], baseline, precision 8, 320x50, components 3\012- data
Size
9.3 kB (9282 bytes)
Hash
c31a377637e6675574204359dc04fa1d
323a831ad847c558fd75368bd89f59f0757406b0
ac9752154005cf53e0dd2e157aea30044f47d45df93bdd91791b2cc8184531bf

HTTP Headers

GET /bi/d1/22/72/d1227234867245c6ac12ed8cce95f899/1663242581.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 02:41:01 GMT
content-type: image/jpeg
content-length: 9282
server: nginx/1.21.6
last-modified: Thu, 15 Sep 2022 11:49:49 GMT
etag: "6323115d-2442"
expires: Fri, 08 Dec 2023 02:41:01 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

fistsurprising.com/watch.977158532624.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=8648034ffc85f87b75d5c80be0ac288e4b1f8dc5435b1f30f71152c261a66ee6b1a5cc83c5946203cedd1a17ebe5027d855d9e12a58fb486607a2a9cbc050df8b8fdeac384f0bdea6765aa861057fead2e90fb&pst=1701830520&rmtc=t

192.243.59.20

200 OK

2.0 kB

URL GET HTTP/1.1
fistsurprising.com/watch.977158532624.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=8648034ffc85f87b75d5c80be0ac288e4b1f8dc5435b1f30f71152c261a66ee6b1a5cc83c5946203cedd1a17ebe5027d855d9e12a58fb486607a2a9cbc050df8b8fdeac384f0bdea6765aa861057fead2e90fb&pst=1701830520&rmtc=t
IP
192.243.59.20:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectfistsurprising.com
FingerprintE5:F2:5A:82:F8:3A:5F:BC:8E:83:DD:40:35:37:DB:DA:14:3F:2F:21
ValidityTue, 28 Nov 2023 11:02:57 GMT - Mon, 26 Feb 2024 11:02:56 GMT

File type
HTML document, ASCII text, with very long lines (2520)
Size
2.0 kB (2038 bytes)
Hash
e85c7c1d5b539a83e09ce8cb052e4290
5022ec463d4dcbb9a1244583e4b705656c25a5b9
17f4fa44c797173d7f585e1a2ad5e5501dfb90846349fe29c4df6b2ce15745fa

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.977158532624.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=8648034ffc85f87b75d5c80be0ac288e4b1f8dc5435b1f30f71152c261a66ee6b1a5cc83c5946203cedd1a17ebe5027d855d9e12a58fb486607a2a9cbc050df8b8fdeac384f0bdea6765aa861057fead2e90fb&pst=1701830520&rmtc=t HTTP/1.1
Host: fistsurprising.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Cookie: u_pl=20395311; ain=eyJhbGciOiJIUzI1NiJ9.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.23GzJV9YunaITZEcghkfi_xdBjdYUqSMAHqnD2mYygo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.19.5
Date: Wed, 06 Dec 2023 02:41:01 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://fighterpunch.com
Access-Control-Allow-Origin: https://fighterpunch.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=6ce1a077-f853-4246-9c4b-7e7817f64f60:3:1; expires=Wed, 13 Dec 2023 02:41:00 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 07 Dec 2023 02:41:01 GMT; secure; SameSite=None
uncs=1; expires=Thu, 07 Dec 2023 02:41:01 GMT; secure; SameSite=None
pdhtkv32=true; expires=Thu, 07 Dec 2023 02:41:01 GMT; secure; SameSite=None
uncs32=1; expires=Thu, 07 Dec 2023 02:41:01 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 282aca14e16c930a0a689b3fb4932a0d
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

ossmightyenar.net/401/6287854

139.45.197.245

200 OK

68 kB

URL GET HTTP/2
ossmightyenar.net/401/6287854
IP
139.45.197.245:443
ASN
#9002 RETN Limited

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectossmightyenar.net
Fingerprint0E:D3:09:79:9C:DD:16:39:20:44:A5:13:2B:E0:03:A4:E6:4A:A9:CA
ValidityWed, 29 Nov 2023 05:17:05 GMT - Tue, 27 Feb 2024 05:17:04 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
68 kB (68380 bytes)
Hash
b99020945d2919b68bd4afe55361f94b
9cb1a894e1f2733afa0d562df02e8507afc10f39
a003d9b93ee8d4b1355407d9d9fe03e73d50ebc1970780a54875b7e8f6d79100

HTTP Headers

GET /401/6287854 HTTP/1.1
Host: ossmightyenar.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 06 Dec 2023 02:41:00 GMT
content-type: application/javascript
x-trace-id: 78b333221c2cb7ebc9c23fca5e21dfda
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=13e32b55d8874f1cb2600c955a801a9f; expires=Thu, 05 Dec 2024 02:41:00 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg

45.133.44.9

200 OK

25 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
JPEG image data, baseline, precision 8, 320x50, components 3\012- data
Size
25 kB (24714 bytes)
Hash
d465d02b90e928dfd9d9846e102a9dac
22f7333777bec813bd9a7b870913a2b79b6d2fe4
e393d4f1c6b5d4973e157f0f10764b92037dc18239500f42b72bed8ecef462fd

HTTP Headers

GET /cti/43/ff/51/43ff51c07da75eaedd548042d5154cfe/1658930770.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 02:41:01 GMT
content-type: image/jpeg
content-length: 24714
server: nginx/1.21.6
last-modified: Wed, 27 Jul 2022 14:06:18 GMT
etag: "62e1465a-608a"
expires: Fri, 08 Dec 2023 02:41:01 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

ossmightyenar.net/500/6287854?excludes=&oaid=584778ce78884739b2135bc46b1c4ae1&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=7&pl=https%3A%2F%2Ffighterpunch.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0

139.45.197.245

200 OK

0 B

URL GET HTTP/2
ossmightyenar.net/500/6287854?excludes=&oaid=584778ce78884739b2135bc46b1c4ae1&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=7&pl=https%3A%2F%2Ffighterpunch.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
139.45.197.245:443
ASN
#9002 RETN Limited

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectossmightyenar.net
Fingerprint0E:D3:09:79:9C:DD:16:39:20:44:A5:13:2B:E0:03:A4:E6:4A:A9:CA
ValidityWed, 29 Nov 2023 05:17:05 GMT - Tue, 27 Feb 2024 05:17:04 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /500/6287854?excludes=&oaid=584778ce78884739b2135bc46b1c4ae1&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=7&pl=https%3A%2F%2Ffighterpunch.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: ossmightyenar.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://fighterpunch.com/
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 06 Dec 2023 02:41:01 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://fighterpunch.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2

code.jivosite.com/css/0f43a4a/widget.css

5.101.37.37

200 OK

40 kB

URL GET HTTP/2
code.jivosite.com/css/0f43a4a/widget.css
IP
5.101.37.37:443
ASN
#57416 LLC South Internet

Requested by
https://fighterpunch.com/
Certificate
IssuerGoDaddy.com, Inc.
Subject*.jivosite.com
Fingerprint48:23:E2:E5:0B:0A:4E:4F:CA:AD:65:27:8E:22:2A:8F:87:B3:6D:F4
ValidityWed, 05 Apr 2023 11:26:25 GMT - Mon, 06 May 2024 11:26:25 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
40 kB (40039 bytes)
Hash
6da576d87450eb18dc0960a098c91b78
6fd3b65721dd2a37f7a46261f8ffdb17886a6cd0
6d2f65ab1574e574468bc52513f828c7aa87ef062941c461f497f7a2b3382c35

HTTP Headers

GET /css/0f43a4a/widget.css HTTP/1.1
Host: code.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 06 Dec 2023 02:41:01 GMT
content-type: text/css
content-length: 40039
cache-control: max-age=864000
content-encoding: br
etag: "6569ddd1-9c67"
expires: Fri, 15 Dec 2023 05:28:22 GMT
last-modified: Fri, 01 Dec 2023 13:21:21 GMT
vary: Accept-Encoding
via: 1.1 sharxy
x-geo-shard: ya
cache: HIT
x-cached-since: 2023-12-05T05:28:22+00:00
x-node: fr5-up-gc15
accept-ranges: bytes
X-Firefox-Spdy: h2

thubanoa.com/11?rnd=3147630673&z=5297528&b=17227367&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=1&rb=8mpA1cuFmeZ1jQspzdLA92uErA_R_vcmrf4p_2j5OR6ijW-JqPyX7fhWxjNzHBh3wkblLsMpdSaSX_YZZXiaLM1cv4JEULW90F4RJk6HszVx10Eq5Mf9R3FUOG4sH41gt4BdQXtoYZYGIRpTXkdu_yDTAtntQSDfx8PngJJtY0vPbqwSSUeqLdilGXJUUFLHcm8WK2RWXX49HN9uMG0ee3_AcdjHAxfLs6gd2wn57IbCyo5p-xN-1xIuzisME8y3GQ8W1WugdmxaahRD06Qm1JarYTO6tw6f_qwbXeJIN1oIV86t9S352FG0UOFuZQLs6tqEiOJ-MPmnVMbs71Yq1S3YKzQg8tZRfGyo90bAtin4uYTkrlvpGtRGt70iivcbQk2JUKhuppG7HGPojAcKTMFjubCEu2CLD_9CWrVguw_2rUIEs-prOHr3-aYK7TIBq2p3g5RAlwQqvlX-o2TZ6ezRFYt38d3Mhyx9511KVEdnTGRNEw2hrhxpKVoROnKs_68WGOjznP7yNB4aY9V0tCbwgUDIbChmC8bTA5FVVCtFKn92Xo517u40bzj-d6Ud6zI8tncU9LmQCOTNynUh9U2qApJmFPMqGNNNiR41AvVEceE8v2uQzR1gTX_WfrQMF1IqmcRWON-fdMH8yu9syiy-ZEmL9WKB6vAjmFsLOBHIB_8EvaAbpMqdFYuXx-SHkfn5bTmvjb_oXytI8aWtPjIXAgXVDO4fnJzfJgR746hAHmdVwumK3XD2NT_EijbW&ruid=68b43ea1-b2e9-4f96-895f-905bbfb44cb8&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Ffighterpunch.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ot=287

139.45.197.242

200 OK

0 B

URL GET HTTP/2
thubanoa.com/11?rnd=3147630673&z=5297528&b=17227367&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=1&rb=8mpA1cuFmeZ1jQspzdLA92uErA_R_vcmrf4p_2j5OR6ijW-JqPyX7fhWxjNzHBh3wkblLsMpdSaSX_YZZXiaLM1cv4JEULW90F4RJk6HszVx10Eq5Mf9R3FUOG4sH41gt4BdQXtoYZYGIRpTXkdu_yDTAtntQSDfx8PngJJtY0vPbqwSSUeqLdilGXJUUFLHcm8WK2RWXX49HN9uMG0ee3_AcdjHAxfLs6gd2wn57IbCyo5p-xN-1xIuzisME8y3GQ8W1WugdmxaahRD06Qm1JarYTO6tw6f_qwbXeJIN1oIV86t9S352FG0UOFuZQLs6tqEiOJ-MPmnVMbs71Yq1S3YKzQg8tZRfGyo90bAtin4uYTkrlvpGtRGt70iivcbQk2JUKhuppG7HGPojAcKTMFjubCEu2CLD_9CWrVguw_2rUIEs-prOHr3-aYK7TIBq2p3g5RAlwQqvlX-o2TZ6ezRFYt38d3Mhyx9511KVEdnTGRNEw2hrhxpKVoROnKs_68WGOjznP7yNB4aY9V0tCbwgUDIbChmC8bTA5FVVCtFKn92Xo517u40bzj-d6Ud6zI8tncU9LmQCOTNynUh9U2qApJmFPMqGNNNiR41AvVEceE8v2uQzR1gTX_WfrQMF1IqmcRWON-fdMH8yu9syiy-ZEmL9WKB6vAjmFsLOBHIB_8EvaAbpMqdFYuXx-SHkfn5bTmvjb_oXytI8aWtPjIXAgXVDO4fnJzfJgR746hAHmdVwumK3XD2NT_EijbW&ruid=68b43ea1-b2e9-4f96-895f-905bbfb44cb8&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Ffighterpunch.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ot=287
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectthubanoa.com
Fingerprint29:B3:7B:FD:B2:7E:87:35:DA:50:73:78:59:11:52:35:7E:F9:21:32
ValidityFri, 17 Nov 2023 15:12:05 GMT - Thu, 15 Feb 2024 15:12:04 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /11?rnd=3147630673&z=5297528&b=17227367&var=&varid=0&rqtdbc=1&rcvdbc=1&btp=1&rb=8mpA1cuFmeZ1jQspzdLA92uErA_R_vcmrf4p_2j5OR6ijW-JqPyX7fhWxjNzHBh3wkblLsMpdSaSX_YZZXiaLM1cv4JEULW90F4RJk6HszVx10Eq5Mf9R3FUOG4sH41gt4BdQXtoYZYGIRpTXkdu_yDTAtntQSDfx8PngJJtY0vPbqwSSUeqLdilGXJUUFLHcm8WK2RWXX49HN9uMG0ee3_AcdjHAxfLs6gd2wn57IbCyo5p-xN-1xIuzisME8y3GQ8W1WugdmxaahRD06Qm1JarYTO6tw6f_qwbXeJIN1oIV86t9S352FG0UOFuZQLs6tqEiOJ-MPmnVMbs71Yq1S3YKzQg8tZRfGyo90bAtin4uYTkrlvpGtRGt70iivcbQk2JUKhuppG7HGPojAcKTMFjubCEu2CLD_9CWrVguw_2rUIEs-prOHr3-aYK7TIBq2p3g5RAlwQqvlX-o2TZ6ezRFYt38d3Mhyx9511KVEdnTGRNEw2hrhxpKVoROnKs_68WGOjznP7yNB4aY9V0tCbwgUDIbChmC8bTA5FVVCtFKn92Xo517u40bzj-d6Ud6zI8tncU9LmQCOTNynUh9U2qApJmFPMqGNNNiR41AvVEceE8v2uQzR1gTX_WfrQMF1IqmcRWON-fdMH8yu9syiy-ZEmL9WKB6vAjmFsLOBHIB_8EvaAbpMqdFYuXx-SHkfn5bTmvjb_oXytI8aWtPjIXAgXVDO4fnJzfJgR746hAHmdVwumK3XD2NT_EijbW&ruid=68b43ea1-b2e9-4f96-895f-905bbfb44cb8&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Ffighterpunch.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ot=287 HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Cookie: scm=1; OAID=584778ce78884739b2135bc46b1c4ae1; oaidts=1701830458
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 06 Dec 2023 02:41:01 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://fighterpunch.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 9d9d0d9c1597319731b2c5534407c47c
access-control-expose-headers: X-Sc
set-cookie: OAID=584778ce78884739b2135bc46b1c4ae1; expires=Thu, 05 Dec 2024 02:41:01 GMT; secure; SameSite=None
oaidts=1701830458; expires=Thu, 05 Dec 2024 02:41:01 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

d3x2.myfastcdn.com/www/images/f15dbe580a237f0d067aa9c11c74f177.png?width=984

172.66.40.155

200 OK

43 kB

URL GET HTTP/2
d3x2.myfastcdn.com/www/images/f15dbe580a237f0d067aa9c11c74f177.png?width=984
IP
172.66.40.155:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fighterpunch.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
Fingerprint9B:E0:88:3B:1B:31:56:B9:D9:94:4F:4F:54:13:FB:0B:2F:17:37:7F
ValidityTue, 11 Apr 2023 00:00:00 GMT - Wed, 10 Apr 2024 23:59:59 GMT

File type
RIFF (little-endian) data, Web/P image\012- data
Size
43 kB (42760 bytes)
Hash
30dfa8f99fd1b894a13124afca5d3f0b
1a633e0cd811da1c79144281db3e4cb1fa0b758a
4e1e68518abbc63ade654c8b3c511879445421873579cf422c60c70808807881

HTTP Headers

GET /www/images/f15dbe580a237f0d067aa9c11c74f177.png?width=984 HTTP/1.1
Host: d3x2.myfastcdn.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 02:41:01 GMT
content-type: image/webp
content-length: 42760
access-control-allow-headers: X-Requested-With
access-control-allow-origin: *
edge-cache-tag: 614095050190827332879261464066804609414,613570411217116831189459287628353010494,29ecf9b93bbf306179626feeda1fab70
etag: "a1772a76de23e0060a65906211d11fee"
last-modified: Thu, 26 Oct 2023 12:46:23 GMT
req-referer: https://sportshub.stream/
status: 200 OK
surrogate-reporting: width=900,height=600,bytes=78438,owidth=900,oheight=600,obytes=322865
x-ratelimit-limit: 101
x-ratelimit-remaining: 100
x-ratelimit-reset: 1
x-envoy-upstream-service-time: 2072
x-backend-name: LA_nlb204
cache-control: max-age=86400
age: 43741
vary: ImageFormat, Accept-Encoding
x-vcl-time-ms: 1
expires: Wed, 06 Dec 2023 14:31:59 GMT
timing-allow-origin: *
cf-cache-status: HIT
accept-ranges: bytes
server: cloudflare
cf-ray: 83112adf1ab9568d-OSL
X-Firefox-Spdy: h2

offerimage.com/www/images/1254ddfd42baa84cea2221d2e82fa511.png

172.67.22.216

200 OK

70 kB

URL GET HTTP/2
offerimage.com/www/images/1254ddfd42baa84cea2221d2e82fa511.png
IP
172.67.22.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fighterpunch.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT

File type
PNG image data, 192 x 192, 8-bit/color RGBA, non-interlaced\012- data
Size
70 kB (69506 bytes)
Hash
1254ddfd42baa84cea2221d2e82fa511
84b26dfb937aa8b9746a20e52f9d1330a9a29eab
eba572a9f6836dc915e75251fed8c1e6129c7013cb380af95899e9824a82fd92

HTTP Headers

GET /www/images/1254ddfd42baa84cea2221d2e82fa511.png HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 06 Dec 2023 02:41:01 GMT
content-type: image/png
content-length: 69506
last-modified: Mon, 28 Aug 2023 16:35:16 GMT
etag: "64ecccc4-10f82"
expires: Wed, 06 Dec 2023 08:39:08 GMT
cache-control: max-age=86400
timing-allow-origin: *
cf-cache-status: HIT
age: 64913
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 83112adfb8cab4f7-OSL
X-Firefox-Spdy: h2

139.45.197.245

200 OK

2.6 kB

URL GET HTTP/2
ossmightyenar.net/500/6287854?excludes=&oaid=584778ce78884739b2135bc46b1c4ae1&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=7&pl=https%3A%2F%2Ffighterpunch.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
139.45.197.245:443
ASN
#9002 RETN Limited

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectossmightyenar.net
Fingerprint0E:D3:09:79:9C:DD:16:39:20:44:A5:13:2B:E0:03:A4:E6:4A:A9:CA
ValidityWed, 29 Nov 2023 05:17:05 GMT - Tue, 27 Feb 2024 05:17:04 GMT

File type
gzip compressed data, max speed, from Unix\012- data
Size
2.6 kB (2607 bytes)
Hash
e50903aaf321d6dab51d6772d2017550
7142e7dd7e448eefcdb004bdf051ee138b157e6b
f4319002ad1d1e28a21e4b348ceb53e5f3b483c021d95c365dc571b380cacd56

HTTP Headers

GET /500/6287854?excludes=&oaid=584778ce78884739b2135bc46b1c4ae1&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=7&pl=https%3A%2F%2Ffighterpunch.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: ossmightyenar.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Cookie: OAID=13e32b55d8874f1cb2600c955a801a9f
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 06 Dec 2023 02:41:01 GMT
content-type: application/javascript
x-trace-id: d2f7583d2767f261ffa0e05a79c38924
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://fighterpunch.com
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=584778ce78884739b2135bc46b1c4ae1; expires=Thu, 05 Dec 2024 02:41:01 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

code.jivosite.com/sounds/agent_message.mp3

5.101.37.37

206 Partial Content

3.8 kB

URL GET HTTP/2
code.jivosite.com/sounds/agent_message.mp3
IP
5.101.37.37:443
ASN
#57416 LLC South Internet

Requested by
https://fighterpunch.com/
Certificate
IssuerGoDaddy.com, Inc.
Subject*.jivosite.com
Fingerprint48:23:E2:E5:0B:0A:4E:4F:CA:AD:65:27:8E:22:2A:8F:87:B3:6D:F4
ValidityWed, 05 Apr 2023 11:26:25 GMT - Mon, 06 May 2024 11:26:25 GMT

File type
MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo\012- data
Size
3.8 kB (3760 bytes)
Hash
8e9a165c4cb185ffd0b2658fa088e43b
195873e5e8bbb2f5ecc32d95f90d6fb75817a649
ff81aad05612f90cf97c238f219765884e5cbf49351d8dc96a4a063c598c3f43

HTTP Headers

GET /sounds/agent_message.mp3 HTTP/1.1
Host: code.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 206 Partial Content
server: nginx
date: Wed, 06 Dec 2023 02:41:01 GMT
content-type: audio/mpeg
content-length: 3760
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cache-control: max-age=2592000
etag: "6569ddd1-eb0"
expires: Thu, 04 Jan 2024 05:27:09 GMT
last-modified: Fri, 01 Dec 2023 13:21:21 GMT
vary: Accept-Encoding
via: 1.1 sharxy
x-geo-shard: ya
cache: HIT
x-cached-since: 2023-12-05T05:27:09+00:00
x-node: fr5-up-gc15
content-range: bytes 0-3759/3760
X-Firefox-Spdy: h2

code.jivosite.com/sounds/notification.mp3

5.101.37.37

206 Partial Content

5.8 kB

URL GET HTTP/2
code.jivosite.com/sounds/notification.mp3
IP
5.101.37.37:443
ASN
#57416 LLC South Internet

Requested by
https://fighterpunch.com/
Certificate
IssuerGoDaddy.com, Inc.
Subject*.jivosite.com
Fingerprint48:23:E2:E5:0B:0A:4E:4F:CA:AD:65:27:8E:22:2A:8F:87:B3:6D:F4
ValidityWed, 05 Apr 2023 11:26:25 GMT - Mon, 06 May 2024 11:26:25 GMT

File type
Audio file with ID3 version 2.3.0, contains: MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Monaural\012- data
Size
5.8 kB (5808 bytes)
Hash
9aa341af370c4e59155717260ba0f282
0c1216ecead8d1409557c843d96202c063f3f252
1112436abea08c851302bba4d4e37a27e25e5ec26b20474667a3369d41154bab

HTTP Headers

GET /sounds/notification.mp3 HTTP/1.1
Host: code.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 206 Partial Content
server: nginx
date: Wed, 06 Dec 2023 02:41:01 GMT
content-type: audio/mpeg
content-length: 5808
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cache-control: max-age=2592000
etag: "6569ddd1-16b0"
expires: Thu, 04 Jan 2024 05:30:02 GMT
last-modified: Fri, 01 Dec 2023 13:21:21 GMT
vary: Accept-Encoding
via: 1.1 sharxy
x-geo-shard: ya
cache: HIT
x-cached-since: 2023-12-05T05:30:02+00:00
x-node: fr5-up-gc15
content-range: bytes 0-5807/5808
X-Firefox-Spdy: h2

code.jivosite.com/sounds/outgoing_message.mp3

5.101.37.37

206 Partial Content

5.0 kB

URL GET HTTP/2
code.jivosite.com/sounds/outgoing_message.mp3
IP
5.101.37.37:443
ASN
#57416 LLC South Internet

Requested by
https://fighterpunch.com/
Certificate
IssuerGoDaddy.com, Inc.
Subject*.jivosite.com
Fingerprint48:23:E2:E5:0B:0A:4E:4F:CA:AD:65:27:8E:22:2A:8F:87:B3:6D:F4
ValidityWed, 05 Apr 2023 11:26:25 GMT - Mon, 06 May 2024 11:26:25 GMT

File type
MPEG ADTS, layer III, v1, 128 kbps, 44.1 kHz, Stereo\012- data
Size
5.0 kB (5014 bytes)
Hash
7bf3e4962a5ecf1f8cbcc2ff3428f531
f75c694461a643d2e096ae8d0f6c1a9d19602eee
d44244617bf21df7a137694fa762d5cab3b82cb9fae8f33de5917977b02b2a11

HTTP Headers

GET /sounds/outgoing_message.mp3 HTTP/1.1
Host: code.jivosite.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: audio/webm,audio/ogg,audio/wav,audio/*;q=0.9,application/ogg;q=0.7,video/*;q=0.6,*/*;q=0.5
Accept-Language: en-US,en;q=0.5
Range: bytes=0-
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: audio
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Accept-Encoding: identity
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 206 Partial Content
server: nginx
date: Wed, 06 Dec 2023 02:41:01 GMT
content-type: audio/mpeg
content-length: 5014
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-origin: *
cache-control: max-age=2592000
etag: "6569ddd1-1396"
expires: Thu, 04 Jan 2024 05:30:11 GMT
last-modified: Fri, 01 Dec 2023 13:21:21 GMT
vary: Accept-Encoding
via: 1.1 sharxy
x-geo-shard: ya
cache: HIT
x-cached-since: 2023-12-05T05:30:11+00:00
x-node: fr5-up-gc15
content-range: bytes 0-5013/5014
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/bi/ab/89/fb/ab89fba0589ed18528d5eb44dc81461f/1688139796.jpg

45.133.44.9

200 OK

23 kB

URL GET HTTP/2
cdn.cloudimagesb.com/bi/ab/89/fb/ab89fba0589ed18528d5eb44dc81461f/1688139796.jpg
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, Exif Standard: [TIFF image data, little-endian, direntries=6, orientation=upper-left, xresolution=176, yresolution=184, resolutionunit=2], baseline, precision 8, 320x50, components 3\012- data
Size
23 kB (23051 bytes)
Hash
8bb1438ed10a47422259efc9df994c33
e4db1a796481130a32fe8c208cf6c2582a1d085e
49c63109aa1156b77d849879a431c6588cc7b48b2f1aa7742adee8882ae6242a

HTTP Headers

GET /bi/ab/89/fb/ab89fba0589ed18528d5eb44dc81461f/1688139796.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 06 Dec 2023 02:41:01 GMT
content-type: image/jpeg
content-length: 23051
server: nginx/1.21.6
last-modified: Fri, 30 Jun 2023 15:43:26 GMT
etag: "649ef81e-5a0b"
expires: Fri, 08 Dec 2023 02:41:01 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/cti/7f/17/5a/7f175ae83b480b2a0af0c355f8843c70/1627916108.png

45.133.44.9

200 OK

20 kB

URL GET HTTP/2
cdn.cloudimagesb.com/cti/7f/17/5a/7f175ae83b480b2a0af0c355f8843c70/1627916108.png
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
PNG image data, 320 x 50, 8-bit/color RGB, non-interlaced\012- data
Size
20 kB (19457 bytes)
Hash
5f3ab32ca06df0759e895b9445c491a5
2b95dabc7bf6288fc1cce7383ec7183db0f504c4
f590884a93d3d362bef6712b73e9a725cca99b18f725b1e6a8b92bac60249dc5

HTTP Headers

GET /cti/7f/17/5a/7f175ae83b480b2a0af0c355f8843c70/1627916108.png HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 06 Dec 2023 02:41:01 GMT
content-type: image/png
content-length: 19457
server: nginx/1.21.6
last-modified: Mon, 02 Aug 2021 14:55:18 GMT
etag: "61080756-4c01"
expires: Fri, 08 Dec 2023 02:41:01 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/bi/69/81/30/69813059d681c826a8ad21e7094a4fab/1647777266.jpg

45.133.44.9

200 OK

45 kB

URL GET HTTP/2
cdn.cloudimagesb.com/bi/69/81/30/69813059d681c826a8ad21e7094a4fab/1647777266.jpg
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2022:03:14 17:27:51], baseline, precision 8, 320x50, components 3\012- data
Size
45 kB (45278 bytes)
Hash
0832e2719326724290de56119e46ca5f
6edbb34d90b41013b44b5a1e6e25bfdf808bc23d
40f4af95dfba6452d367f40cc11da0e27e2d55cfc6fce42facd2b9b58b4e64b7

HTTP Headers

GET /bi/69/81/30/69813059d681c826a8ad21e7094a4fab/1647777266.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 06 Dec 2023 02:41:01 GMT
content-type: image/jpeg
content-length: 45278
server: nginx/1.21.6
last-modified: Sun, 20 Mar 2022 11:54:33 GMT
etag: "623715f9-b0de"
expires: Fri, 08 Dec 2023 02:41:01 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

thubanoa.com/11?rnd=3147630673&z=5297528&b=17227367&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=1&rb=8mpA1cuFmeZ1jQspzdLA92uErA_R_vcmrf4p_2j5OR6ijW-JqPyX7fhWxjNzHBh3wkblLsMpdSaSX_YZZXiaLM1cv4JEULW90F4RJk6HszVx10Eq5Mf9R3FUOG4sH41gt4BdQXtoYZYGIRpTXkdu_yDTAtntQSDfx8PngJJtY0vPbqwSSUeqLdilGXJUUFLHcm8WK2RWXX49HN9uMG0ee3_AcdjHAxfLs6gd2wn57IbCyo5p-xN-1xIuzisME8y3GQ8W1WugdmxaahRD06Qm1JarYTO6tw6f_qwbXeJIN1oIV86t9S352FG0UOFuZQLs6tqEiOJ-MPmnVMbs71Yq1S3YKzQg8tZRfGyo90bAtin4uYTkrlvpGtRGt70iivcbQk2JUKhuppG7HGPojAcKTMFjubCEu2CLD_9CWrVguw_2rUIEs-prOHr3-aYK7TIBq2p3g5RAlwQqvlX-o2TZ6ezRFYt38d3Mhyx9511KVEdnTGRNEw2hrhxpKVoROnKs_68WGOjznP7yNB4aY9V0tCbwgUDIbChmC8bTA5FVVCtFKn92Xo517u40bzj-d6Ud6zI8tncU9LmQCOTNynUh9U2qApJmFPMqGNNNiR41AvVEceE8v2uQzR1gTX_WfrQMF1IqmcRWON-fdMH8yu9syiy-ZEmL9WKB6vAjmFsLOBHIB_8EvaAbpMqdFYuXx-SHkfn5bTmvjb_oXytI8aWtPjIXAgXVDO4fnJzfJgR746hAHmdVwumK3XD2NT_EijbW&ruid=68b43ea1-b2e9-4f96-895f-905bbfb44cb8&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Ffighterpunch.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1

139.45.197.242

200 OK

0 B

URL GET HTTP/2
thubanoa.com/11?rnd=3147630673&z=5297528&b=17227367&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=1&rb=8mpA1cuFmeZ1jQspzdLA92uErA_R_vcmrf4p_2j5OR6ijW-JqPyX7fhWxjNzHBh3wkblLsMpdSaSX_YZZXiaLM1cv4JEULW90F4RJk6HszVx10Eq5Mf9R3FUOG4sH41gt4BdQXtoYZYGIRpTXkdu_yDTAtntQSDfx8PngJJtY0vPbqwSSUeqLdilGXJUUFLHcm8WK2RWXX49HN9uMG0ee3_AcdjHAxfLs6gd2wn57IbCyo5p-xN-1xIuzisME8y3GQ8W1WugdmxaahRD06Qm1JarYTO6tw6f_qwbXeJIN1oIV86t9S352FG0UOFuZQLs6tqEiOJ-MPmnVMbs71Yq1S3YKzQg8tZRfGyo90bAtin4uYTkrlvpGtRGt70iivcbQk2JUKhuppG7HGPojAcKTMFjubCEu2CLD_9CWrVguw_2rUIEs-prOHr3-aYK7TIBq2p3g5RAlwQqvlX-o2TZ6ezRFYt38d3Mhyx9511KVEdnTGRNEw2hrhxpKVoROnKs_68WGOjznP7yNB4aY9V0tCbwgUDIbChmC8bTA5FVVCtFKn92Xo517u40bzj-d6Ud6zI8tncU9LmQCOTNynUh9U2qApJmFPMqGNNNiR41AvVEceE8v2uQzR1gTX_WfrQMF1IqmcRWON-fdMH8yu9syiy-ZEmL9WKB6vAjmFsLOBHIB_8EvaAbpMqdFYuXx-SHkfn5bTmvjb_oXytI8aWtPjIXAgXVDO4fnJzfJgR746hAHmdVwumK3XD2NT_EijbW&ruid=68b43ea1-b2e9-4f96-895f-905bbfb44cb8&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Ffighterpunch.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectthubanoa.com
Fingerprint29:B3:7B:FD:B2:7E:87:35:DA:50:73:78:59:11:52:35:7E:F9:21:32
ValidityFri, 17 Nov 2023 15:12:05 GMT - Thu, 15 Feb 2024 15:12:04 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /11?rnd=3147630673&z=5297528&b=17227367&var=&varid=0&rqtdbc=0&rcvdbc=0&btp=1&rb=8mpA1cuFmeZ1jQspzdLA92uErA_R_vcmrf4p_2j5OR6ijW-JqPyX7fhWxjNzHBh3wkblLsMpdSaSX_YZZXiaLM1cv4JEULW90F4RJk6HszVx10Eq5Mf9R3FUOG4sH41gt4BdQXtoYZYGIRpTXkdu_yDTAtntQSDfx8PngJJtY0vPbqwSSUeqLdilGXJUUFLHcm8WK2RWXX49HN9uMG0ee3_AcdjHAxfLs6gd2wn57IbCyo5p-xN-1xIuzisME8y3GQ8W1WugdmxaahRD06Qm1JarYTO6tw6f_qwbXeJIN1oIV86t9S352FG0UOFuZQLs6tqEiOJ-MPmnVMbs71Yq1S3YKzQg8tZRfGyo90bAtin4uYTkrlvpGtRGt70iivcbQk2JUKhuppG7HGPojAcKTMFjubCEu2CLD_9CWrVguw_2rUIEs-prOHr3-aYK7TIBq2p3g5RAlwQqvlX-o2TZ6ezRFYt38d3Mhyx9511KVEdnTGRNEw2hrhxpKVoROnKs_68WGOjznP7yNB4aY9V0tCbwgUDIbChmC8bTA5FVVCtFKn92Xo517u40bzj-d6Ud6zI8tncU9LmQCOTNynUh9U2qApJmFPMqGNNNiR41AvVEceE8v2uQzR1gTX_WfrQMF1IqmcRWON-fdMH8yu9syiy-ZEmL9WKB6vAjmFsLOBHIB_8EvaAbpMqdFYuXx-SHkfn5bTmvjb_oXytI8aWtPjIXAgXVDO4fnJzfJgR746hAHmdVwumK3XD2NT_EijbW&ruid=68b43ea1-b2e9-4f96-895f-905bbfb44cb8&ng=1&ix=0&pt=0&np=0&gp=5&bp=4&nw=1&nb=1&sw=1280&sh=1024&pl=https%3A%2F%2Ffighterpunch.com%2F&wy=0&wx=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=3&sah=1024&drf=&hil=1&ist=0&ri=1&wvd=0&wvr=1.0000&isions=1 HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Cookie: scm=1; OAID=584778ce78884739b2135bc46b1c4ae1; oaidts=1701830458
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 06 Dec 2023 02:41:01 GMT
content-type: image/jpeg
content-length: 0
access-control-allow-credentials: true
access-control-allow-origin: https://fighterpunch.com
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: f98164b61be0024eb61e25c66c8d8c67
access-control-expose-headers: X-Sc
set-cookie: OAID=584778ce78884739b2135bc46b1c4ae1; expires=Thu, 05 Dec 2024 02:41:01 GMT; secure; SameSite=None
oaidts=1701830458; expires=Thu, 05 Dec 2024 02:41:01 GMT; secure; SameSite=None
oaidvc=1; expires=Thu, 05 Dec 2024 02:41:01 GMT; secure; SameSite=None
CNT=1_v1_Z94GAQEAAADxTAAA; expires=Wed, 06 Dec 2023 03:41:01 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
X-Firefox-Spdy: h2

ossmightyenar.net/impression/hIuMZHYbDUlkKVmWmkPit1UQ3cUTGmXOn9ZTZLBmnksYootXOjs7qvtFbCeZdaR8OBOT_GhB_8KxSP9TxiBE8iLRE_oty7eoSWDY27cZODxu3Oeo5Pa2gPv3Hvw1kM9Z3hFaZRBRF7HAOG3_vnYt5f9sOgYamzzXGwWtomW57i9XBUCvdaEKeX5SXi17TCmcWG6Lm3e3w7WElEdbaigD9zvJQBu7MRsMAawBgOOevrOx_1wwgF6vwmnB352g_qwuZCNnC3Pc4V5czaXCUysGTGpcClpNlwHoP2ThR00Mrq8sBg5Jc6IGUyw0kFy__2DD2FhESYlZhmj7fTRkoiKhhy6S-2_X2iwX9cijTrZlpnxtkR6HJ4yuix_9x6ERODeodt_K40XrDUo0tx1SFF_yajm1hiELsLws_4G_Ga7fo1hkZViGmLwVI0BOsOGAHGMVLHmHhVyGpSin5VX1y9Amaa_tcMo9efUUN-kclGeHvamN62Rhj8dEsKKiAGxynOtzsoYXdfx_LTSfCU7XDFSOEz_2pCcOAt3uOO5s6kq3ahsbJKVDRhlYlJ0gzI98ttSgUejY2Wu687-6HCmloCzfJO_2nxsNpyvPi_rYk9vzPDQw8UIhYXW1qNWkydRg1tIJuLG1zysjd3p99guYP3uotjfEC7weyVDQYPE3vxBrxopTNIzGtdxPEvAIvc_XqHgRmj28kYuDPkLiMk5PT8GEaV7eSQC4qwtj_5frwoGD96RNvpZfCgvZUneuqI-vQ7_zCF366GyKzv_dtOCalXuc_EQaS8cnt8CTZd92l93Ds6abe3FfvZhdf1Ofj0Pxsi5g?_z=6287854&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=11&pl=https%3A%2F%2Ffighterpunch.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0

139.45.197.245

200 OK

43 B

URL GET HTTP/2
ossmightyenar.net/impression/hIuMZHYbDUlkKVmWmkPit1UQ3cUTGmXOn9ZTZLBmnksYootXOjs7qvtFbCeZdaR8OBOT_GhB_8KxSP9TxiBE8iLRE_oty7eoSWDY27cZODxu3Oeo5Pa2gPv3Hvw1kM9Z3hFaZRBRF7HAOG3_vnYt5f9sOgYamzzXGwWtomW57i9XBUCvdaEKeX5SXi17TCmcWG6Lm3e3w7WElEdbaigD9zvJQBu7MRsMAawBgOOevrOx_1wwgF6vwmnB352g_qwuZCNnC3Pc4V5czaXCUysGTGpcClpNlwHoP2ThR00Mrq8sBg5Jc6IGUyw0kFy__2DD2FhESYlZhmj7fTRkoiKhhy6S-2_X2iwX9cijTrZlpnxtkR6HJ4yuix_9x6ERODeodt_K40XrDUo0tx1SFF_yajm1hiELsLws_4G_Ga7fo1hkZViGmLwVI0BOsOGAHGMVLHmHhVyGpSin5VX1y9Amaa_tcMo9efUUN-kclGeHvamN62Rhj8dEsKKiAGxynOtzsoYXdfx_LTSfCU7XDFSOEz_2pCcOAt3uOO5s6kq3ahsbJKVDRhlYlJ0gzI98ttSgUejY2Wu687-6HCmloCzfJO_2nxsNpyvPi_rYk9vzPDQw8UIhYXW1qNWkydRg1tIJuLG1zysjd3p99guYP3uotjfEC7weyVDQYPE3vxBrxopTNIzGtdxPEvAIvc_XqHgRmj28kYuDPkLiMk5PT8GEaV7eSQC4qwtj_5frwoGD96RNvpZfCgvZUneuqI-vQ7_zCF366GyKzv_dtOCalXuc_EQaS8cnt8CTZd92l93Ds6abe3FfvZhdf1Ofj0Pxsi5g?_z=6287854&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=11&pl=https%3A%2F%2Ffighterpunch.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
139.45.197.245:443
ASN
#9002 RETN Limited

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectossmightyenar.net
Fingerprint0E:D3:09:79:9C:DD:16:39:20:44:A5:13:2B:E0:03:A4:E6:4A:A9:CA
ValidityWed, 29 Nov 2023 05:17:05 GMT - Tue, 27 Feb 2024 05:17:04 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

HTTP Headers

GET /impression/hIuMZHYbDUlkKVmWmkPit1UQ3cUTGmXOn9ZTZLBmnksYootXOjs7qvtFbCeZdaR8OBOT_GhB_8KxSP9TxiBE8iLRE_oty7eoSWDY27cZODxu3Oeo5Pa2gPv3Hvw1kM9Z3hFaZRBRF7HAOG3_vnYt5f9sOgYamzzXGwWtomW57i9XBUCvdaEKeX5SXi17TCmcWG6Lm3e3w7WElEdbaigD9zvJQBu7MRsMAawBgOOevrOx_1wwgF6vwmnB352g_qwuZCNnC3Pc4V5czaXCUysGTGpcClpNlwHoP2ThR00Mrq8sBg5Jc6IGUyw0kFy__2DD2FhESYlZhmj7fTRkoiKhhy6S-2_X2iwX9cijTrZlpnxtkR6HJ4yuix_9x6ERODeodt_K40XrDUo0tx1SFF_yajm1hiELsLws_4G_Ga7fo1hkZViGmLwVI0BOsOGAHGMVLHmHhVyGpSin5VX1y9Amaa_tcMo9efUUN-kclGeHvamN62Rhj8dEsKKiAGxynOtzsoYXdfx_LTSfCU7XDFSOEz_2pCcOAt3uOO5s6kq3ahsbJKVDRhlYlJ0gzI98ttSgUejY2Wu687-6HCmloCzfJO_2nxsNpyvPi_rYk9vzPDQw8UIhYXW1qNWkydRg1tIJuLG1zysjd3p99guYP3uotjfEC7weyVDQYPE3vxBrxopTNIzGtdxPEvAIvc_XqHgRmj28kYuDPkLiMk5PT8GEaV7eSQC4qwtj_5frwoGD96RNvpZfCgvZUneuqI-vQ7_zCF366GyKzv_dtOCalXuc_EQaS8cnt8CTZd92l93Ds6abe3FfvZhdf1Ofj0Pxsi5g?_z=6287854&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=11&pl=https%3A%2F%2Ffighterpunch.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: ossmightyenar.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Cookie: OAID=584778ce78884739b2135bc46b1c4ae1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 06 Dec 2023 02:41:04 GMT
content-type: image/gif
content-length: 43
x-trace-id: 8eaac29a7f71795a01a4c61b4130c666
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

becorsolaom.com/impression/Y3axtbH1q0UNQTfJIlzeH2zfTl4AYQnIHtN9Nkdq_CV_h0JJyn1lHOUiBtLEKxNT_ilUhCYAOhILyRjo0lAGGyEOM4Tv05wyaO4yF-HMhvo4dVQLd3Lgv4NaqCuD5Lx6hc5MzXdWerwXzNk8DQq7K52nkeaKc6NbKILpDNAzluaF6oNc36yiBRAwc1_Y5ty3I2TMiP7ykR7xMAxRLtEYohxQlF3HzgaQddzcAB4XawjDrrCx0m-8bQ85NKKG5kt-kCADvdlyMrsgVzBcXNJLNIQisy9wFZqlkF32TEsUVdxj9RM7RgWVwnw1OMqTVli83G9mXox_MuNa4QpX6PvE0WjMnoTg9Xo61L5dt5ER6clxIm22PEDsvmE42CoHwkVIxO4-1hzA1Ww-gFVEOGF1fjRpVDxde-gJcaUEcBvKw81bRxoub7t6iuzuAPKjLhzcw9wjQb0CeoU6PdNkEQejYYGLI0XPzRFynMiBbNHl5NQq0Km77J2WXocSLKeOi5HAGIaUUhGSLbumU8tyfF9laO9aHVf3cZw174zS_hJjidn7k4B0c9BtGN3bFqM-GYWyYqfD5WSApztK2fJGjrYb30gyvXdlVEJqXNv54-STuf63IN1GGGZnbu2GMIwIS5xK7g16o5FFA4bF6y1VPE7i7LiFKlvt_2NK-x6-E4zHEbkzngO3fxRL0Vu8Gs8L-Sjk7A9_db3bCe_b-FKO9jALXfWcUdNRELfba3od3KCe_3yXRh_MrE1ChzmHFNKDd2GaJ8lHT-KkvwM=?_z=6287845&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=11&pl=https%3A%2F%2Ffighterpunch.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0

139.45.197.238

200 OK

43 B

URL GET HTTP/2
becorsolaom.com/impression/Y3axtbH1q0UNQTfJIlzeH2zfTl4AYQnIHtN9Nkdq_CV_h0JJyn1lHOUiBtLEKxNT_ilUhCYAOhILyRjo0lAGGyEOM4Tv05wyaO4yF-HMhvo4dVQLd3Lgv4NaqCuD5Lx6hc5MzXdWerwXzNk8DQq7K52nkeaKc6NbKILpDNAzluaF6oNc36yiBRAwc1_Y5ty3I2TMiP7ykR7xMAxRLtEYohxQlF3HzgaQddzcAB4XawjDrrCx0m-8bQ85NKKG5kt-kCADvdlyMrsgVzBcXNJLNIQisy9wFZqlkF32TEsUVdxj9RM7RgWVwnw1OMqTVli83G9mXox_MuNa4QpX6PvE0WjMnoTg9Xo61L5dt5ER6clxIm22PEDsvmE42CoHwkVIxO4-1hzA1Ww-gFVEOGF1fjRpVDxde-gJcaUEcBvKw81bRxoub7t6iuzuAPKjLhzcw9wjQb0CeoU6PdNkEQejYYGLI0XPzRFynMiBbNHl5NQq0Km77J2WXocSLKeOi5HAGIaUUhGSLbumU8tyfF9laO9aHVf3cZw174zS_hJjidn7k4B0c9BtGN3bFqM-GYWyYqfD5WSApztK2fJGjrYb30gyvXdlVEJqXNv54-STuf63IN1GGGZnbu2GMIwIS5xK7g16o5FFA4bF6y1VPE7i7LiFKlvt_2NK-x6-E4zHEbkzngO3fxRL0Vu8Gs8L-Sjk7A9_db3bCe_b-FKO9jALXfWcUdNRELfba3od3KCe_3yXRh_MrE1ChzmHFNKDd2GaJ8lHT-KkvwM=?_z=6287845&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=11&pl=https%3A%2F%2Ffighterpunch.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectbecorsolaom.com
Fingerprint32:D4:35:EC:1A:B0:59:31:29:92:7C:3D:6E:6C:40:EB:28:AF:57:9B
ValidityTue, 28 Nov 2023 20:57:36 GMT - Mon, 26 Feb 2024 20:57:35 GMT

File type
GIF image data, version 89a, 1 x 1\012- data
Size
43 B (43 bytes)
Hash
b4491705564909da7f9eaf749dbbfbb1
279315d507855c6a4351e1e2c2f39dd9cd2fccd8
4e0705327480ad2323cb03d9c450ffcae4a98bf3a5382fa0c7882145ed620e49

HTTP Headers

GET /impression/Y3axtbH1q0UNQTfJIlzeH2zfTl4AYQnIHtN9Nkdq_CV_h0JJyn1lHOUiBtLEKxNT_ilUhCYAOhILyRjo0lAGGyEOM4Tv05wyaO4yF-HMhvo4dVQLd3Lgv4NaqCuD5Lx6hc5MzXdWerwXzNk8DQq7K52nkeaKc6NbKILpDNAzluaF6oNc36yiBRAwc1_Y5ty3I2TMiP7ykR7xMAxRLtEYohxQlF3HzgaQddzcAB4XawjDrrCx0m-8bQ85NKKG5kt-kCADvdlyMrsgVzBcXNJLNIQisy9wFZqlkF32TEsUVdxj9RM7RgWVwnw1OMqTVli83G9mXox_MuNa4QpX6PvE0WjMnoTg9Xo61L5dt5ER6clxIm22PEDsvmE42CoHwkVIxO4-1hzA1Ww-gFVEOGF1fjRpVDxde-gJcaUEcBvKw81bRxoub7t6iuzuAPKjLhzcw9wjQb0CeoU6PdNkEQejYYGLI0XPzRFynMiBbNHl5NQq0Km77J2WXocSLKeOi5HAGIaUUhGSLbumU8tyfF9laO9aHVf3cZw174zS_hJjidn7k4B0c9BtGN3bFqM-GYWyYqfD5WSApztK2fJGjrYb30gyvXdlVEJqXNv54-STuf63IN1GGGZnbu2GMIwIS5xK7g16o5FFA4bF6y1VPE7i7LiFKlvt_2NK-x6-E4zHEbkzngO3fxRL0Vu8Gs8L-Sjk7A9_db3bCe_b-FKO9jALXfWcUdNRELfba3od3KCe_3yXRh_MrE1ChzmHFNKDd2GaJ8lHT-KkvwM=?_z=6287845&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=11&pl=https%3A%2F%2Ffighterpunch.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: becorsolaom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Cookie: OAID=584778ce78884739b2135bc46b1c4ae1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
server: nginx
date: Wed, 06 Dec 2023 02:41:09 GMT
content-type: image/gif
content-length: 43
x-trace-id: 168e41619d2ab4ccd6de4f866a90948b
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: *
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
X-Firefox-Spdy: h2

static.addtoany.com/menu/svg/icons/telegram.js

104.22.70.197

200 OK

236 B

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/telegram.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
FingerprintCD:32:6F:BB:77:FF:5A:24:10:3C:B9:90:72:64:6B:45:03:F0:A2:30
ValiditySun, 29 Oct 2023 04:52:36 GMT - Sat, 27 Jan 2024 04:52:35 GMT

File type
ASCII text, with very long lines (360), with no line terminators
Size
236 B (236 bytes)
Hash
48f25c508c92c3601cf047609318001f
59117e825084c63a0dda48edec82c14a60e16f23
6415561e892cf9d614e7179f71353af4ceadfd641d71c42fe54c9420eb0d0138

HTTP Headers

GET /menu/svg/icons/telegram.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 02:41:00 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"fb47b4f6548b6499923a1beed7472419"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=0fSsbVfTgqEmcT8%2Fxkq9P%2FpA0Y7vh6V%2Be%2F2RU42FdgEjgyAaKPCX3%2F1Hc2Zj193shWSNCQtHVTwaOCELqsy1n9Eg6foshsAH3ZDdzRtkl%2FJLSkZmT9kjNnLKxeOFj4L8tzFEFSWZ"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 83112ad96cb5991b-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

offerimage.com/www/images/c8ab7c608555b511dfa28f585183edc9.jpg

172.67.22.216

200 OK

17 kB

URL GET HTTP/2
offerimage.com/www/images/c8ab7c608555b511dfa28f585183edc9.jpg
IP
172.67.22.216:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fighterpunch.com/
Certificate
IssuerCloudflare, Inc.
Subjectsni.cloudflaressl.com
FingerprintDB:4D:42:F8:E2:4C:E3:E4:BB:22:D8:D1:F7:64:B5:9A:10:B6:25:E0
ValiditySun, 07 May 2023 00:00:00 GMT - Mon, 06 May 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 192x192, components 3\012- data
Size
17 kB (16731 bytes)
Hash
c8ab7c608555b511dfa28f585183edc9
07b4fe6aa263e63dc15ca76e57280cf4a1da347a
1086d90e75d50f3d72b9782ab379b7fd12e41b0088aa6ca631b800236fe5d5e7

HTTP Headers

GET /www/images/c8ab7c608555b511dfa28f585183edc9.jpg HTTP/1.1
Host: offerimage.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/2 200 OK
date: Wed, 06 Dec 2023 02:41:09 GMT
content-type: image/jpeg
content-length: 16731
access-control-allow-credentials: true
access-control-allow-headers: DNT,X-Mx-ReqToken,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-allow-methods: GET, POST, OPTIONS
access-control-max-age: 86400
cache-control: max-age=86400
cf-bgj: h2pri
etag: "65674405-415b"
expires: Wed, 06 Dec 2023 14:11:58 GMT
last-modified: Wed, 29 Nov 2023 14:00:37 GMT
timing-allow-origin: *
cf-cache-status: HIT
age: 44951
accept-ranges: bytes
vary: Accept-Encoding
server: cloudflare
cf-ray: 83112b13cea9b4f7-OSL
X-Firefox-Spdy: h2

static.addtoany.com/menu/svg/icons/facebook.js

104.22.70.197

200 OK

318 B

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/facebook.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
FingerprintCD:32:6F:BB:77:FF:5A:24:10:3C:B9:90:72:64:6B:45:03:F0:A2:30
ValiditySun, 29 Oct 2023 04:52:36 GMT - Sat, 27 Jan 2024 04:52:35 GMT

File type
ASCII text, with very long lines (430), with no line terminators
Size
318 B (318 bytes)
Hash
243f2a5cd6aa04e6f0d3e7f1f1a577a5
4b4943d6f2f483dd5ecde6e0e94a40fd13e59b9b
9ee1397f4da0e0c981a979bc1ea43be1d0c28bf3619636df8ab9dc09fa770aaf

HTTP Headers

GET /menu/svg/icons/facebook.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
TE: trailers

HTTP/3 200 OK
date: Wed, 06 Dec 2023 02:41:00 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"3c6ccaafe275b5b477d0400b5847bbce"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=FrjY6AhmVmrbU2JJV1g%2Bjdec5LFaXsHzFTDFgjBzTdSaVPWlloAkzG6Pqlflyw7rv11D86MnL4m3DcTzmSnDfyU467zoBnbGhgP4rkxH3w96dIVBxp%2FxTPlGuZiSSllFdicok4Vj"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 83112ad94ca9991b-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

becorsolaom.com/500/6287845?excludes=19727211&oaid=584778ce78884739b2135bc46b1c4ae1&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=11&pl=https%3A%2F%2Ffighterpunch.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0

139.45.197.238

200 OK

0 B

URL OPTIONS HTTP/2
becorsolaom.com/500/6287845?excludes=19727211&oaid=584778ce78884739b2135bc46b1c4ae1&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=11&pl=https%3A%2F%2Ffighterpunch.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectbecorsolaom.com
Fingerprint32:D4:35:EC:1A:B0:59:31:29:92:7C:3D:6E:6C:40:EB:28:AF:57:9B
ValidityTue, 28 Nov 2023 20:57:36 GMT - Mon, 26 Feb 2024 20:57:35 GMT

File type

Size
0 B (0 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

HTTP Headers

OPTIONS /500/6287845?excludes=19727211&oaid=584778ce78884739b2135bc46b1c4ae1&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=11&pl=https%3A%2F%2Ffighterpunch.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: becorsolaom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: GET
Access-Control-Request-Headers: content-type
Referer: https://fighterpunch.com/
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 06 Dec 2023 02:41:09 GMT
content-length: 0
allow: GET, OPTIONS
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
access-control-allow-origin: https://fighterpunch.com
access-control-allow-methods: GET, POST, OPTIONS
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, baggage, sentry-trace
access-control-allow-credentials: true
access-control-max-age: 600
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *
X-Firefox-Spdy: h2

static.addtoany.com/menu/modules/core.11bfb520.js

104.22.70.197

200 OK

71 kB

URL GET HTTP/3
static.addtoany.com/menu/modules/core.11bfb520.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
FingerprintCD:32:6F:BB:77:FF:5A:24:10:3C:B9:90:72:64:6B:45:03:F0:A2:30
ValiditySun, 29 Oct 2023 04:52:36 GMT - Sat, 27 Jan 2024 04:52:35 GMT

File type
ASCII text, with very long lines (65536), with no line terminators
Size
71 kB (71282 bytes)
Hash
a5823e226d8e9ecea7da99d2b395a0a0
437a591d21ad4281ccaff225189d5d8e9b3a6e4d
77fd2e01fe7322b437084ad512b3c3df777ce7d092b975eb8b29ecb4fb612187

HTTP Headers

GET /menu/modules/core.11bfb520.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 02:40:58 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
etag: W/"a34c5f06f67d42236ec124345ba1b81c"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=H6vGeTPsIWxnEXocZ8jrqjQ8MTgC5yBmkhWBVMEs3lqVsqO1X%2B%2BMdzHnrFIXFPRMIpBEboCC9PWbO1e1T0w74%2FE%2B3xS8pi3brPnLcpKeykMO851cDtvNjDkpfnoznCWTgIuJ1RjK"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 83112acd1889991b-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

traumatizedenied.com/watch.805879242272.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=faa3b3fb-91f7-4110-89b4-fa4f35b83803%3A3%3A1&shu=db3593990c0186688fc03b8c6631a88d66235fd6017a241e939eef3bfbbb31046ad56973015611470bd2ec9e4704a15d1e38fd4765577ad3c0b8e0c0f591453c0bdee9133bc618816932932e467c5c1d65236871546efafce0c181b5705883&pst=1701830520&rmtc=t

173.233.137.52

200 OK

3.5 kB

URL GET HTTP/1.1
traumatizedenied.com/watch.805879242272.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=faa3b3fb-91f7-4110-89b4-fa4f35b83803%3A3%3A1&shu=db3593990c0186688fc03b8c6631a88d66235fd6017a241e939eef3bfbbb31046ad56973015611470bd2ec9e4704a15d1e38fd4765577ad3c0b8e0c0f591453c0bdee9133bc618816932932e467c5c1d65236871546efafce0c181b5705883&pst=1701830520&rmtc=t
IP
173.233.137.52:443
ASN
#7979 SERVERS-COM

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjecttraumatizedenied.com
Fingerprint4C:8A:B7:86:62:BE:3C:2D:B0:E7:F6:06:FB:6B:A9:1B:7B:CF:FA:7C
ValidityTue, 28 Nov 2023 08:04:06 GMT - Mon, 26 Feb 2024 08:04:05 GMT

File type
HTML document text\012- HTML document, ASCII text, with very long lines (3543), with no line terminators
Size
3.5 kB (3515 bytes)
Hash
f499c0f1438676f4a51584aa0eda6ca2
cf2181f43850a5f626e6f23a331454aca672afef
d69fb646c1ef26104eea034fb40957c3f46c66521338942634ea72c52e3e02ce

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.805879242272.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=faa3b3fb-91f7-4110-89b4-fa4f35b83803%3A3%3A1&shu=db3593990c0186688fc03b8c6631a88d66235fd6017a241e939eef3bfbbb31046ad56973015611470bd2ec9e4704a15d1e38fd4765577ad3c0b8e0c0f591453c0bdee9133bc618816932932e467c5c1d65236871546efafce0c181b5705883&pst=1701830520&rmtc=t HTTP/1.1
Host: traumatizedenied.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Cookie: u_pl=20395311; ain=eyJhbGciOiJIUzI1NiJ9.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.23GzJV9YunaITZEcghkfi_xdBjdYUqSMAHqnD2mYygo
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 200 OK
Server: nginx/1.21.6
Date: Wed, 06 Dec 2023 02:41:00 GMT
Content-Type: text/html
Transfer-Encoding: chunked
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://fighterpunch.com
Access-Control-Allow-Origin: https://fighterpunch.com
Access-Control-Allow-Credentials: true
Set-Cookie: uid_id2=faa3b3fb-91f7-4110-89b4-fa4f35b83803:3:1; expires=Wed, 13 Dec 2023 02:41:00 GMT; secure; SameSite=None
iprc6f1ae00d3f8668ad60ab7141f933d1f6=3570421; expires=Wed, 06 Dec 2023 06:41:00 GMT; secure; SameSite=None
pdhtkv=true; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
uncs=1; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
pdhtkv32=true; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
uncs32=1; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: 7bddf8dc7728de971fb1be13201aa55f
Strict-Transport-Security: max-age=0; includeSubdomains
Content-Encoding: gzip

thubanoa.com/27/b7af9eee900df9a8aa2af9ad8ee46174

139.45.197.242

200 OK

413 kB

URL GET HTTP/2
thubanoa.com/27/b7af9eee900df9a8aa2af9ad8ee46174
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectthubanoa.com
Fingerprint29:B3:7B:FD:B2:7E:87:35:DA:50:73:78:59:11:52:35:7E:F9:21:32
ValidityFri, 17 Nov 2023 15:12:05 GMT - Thu, 15 Feb 2024 15:12:04 GMT

File type
ASCII text, with very long lines (65523)
Size
413 kB (412914 bytes)
Hash
1dc3ebe1459db3cde0597b21156f2665
0e5a8c7b79a34f4fffaeab7c7eb4f3a19b0d75f6
1a3f7f2cfe5fba958e9df1a38c0980aab5bb21225601ea849f9e6df4afe09f2e

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /27/b7af9eee900df9a8aa2af9ad8ee46174 HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Cookie: scm=1; OAID=496c81813e6f49feb4caaf4c4ec9408f; oaidts=1701830458
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 06 Dec 2023 02:41:00 GMT
content-type: application/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: 0d9e43bafdf209061de76f39a425b0d9
cache-control: max-age:290304000, public
last-modified: Fri, 24 Nov 2023 06:46:08 GMT
expires: Fri, 24 Dec 2083 06:46:08 GMT
access-control-expose-headers: X-Sc
strict-transport-security: max-age=1
x-content-type-options: nosniff
content-encoding: gzip
X-Firefox-Spdy: h2

static.addtoany.com/menu/svg/icons/facebook_messenger.js

104.22.70.197

200 OK

378 B

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/facebook_messenger.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
FingerprintCD:32:6F:BB:77:FF:5A:24:10:3C:B9:90:72:64:6B:45:03:F0:A2:30
ValiditySun, 29 Oct 2023 04:52:36 GMT - Sat, 27 Jan 2024 04:52:35 GMT

File type
ASCII text, with very long lines (388), with no line terminators
Size
378 B (378 bytes)
Hash
c2c49b3eda0b56a60602b0de9a1c253a
8d5ed94ac5eeee58abe1daec8f6dea4ebc2630c9
80200be4782ff1e73678811ee25c30ff0a3d3aa173935a2721930913445c2ed7

HTTP Headers

GET /menu/svg/icons/facebook_messenger.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 02:41:00 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"a7acd011eeba6d8c34c891c7c795d4e3"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=lCeBJkr212fFa5dpg%2Bf03KCI9jfQzQsFWwUR2ScZPz3nwPVrR3GxSNRUwmtN8Dhn7YOs1ZbNDpN0jnf1mvVvgKyx%2Fr%2Bcenq65qS2NBtlPln6UFTOH2ZySYItYCI75aEmfWltknYn"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 83112ad96cb7991b-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

fighterpunch.com/favicon.ico

162.0.215.120

404 Not Found

1.2 kB

URL GET HTTP/2
fighterpunch.com/favicon.ico
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (1276), with no line terminators
Size
1.2 kB (1238 bytes)
Hash
24b426fea67958554911ff4c943fdfe4
b92889146d4c1bbddccabe58ca15c814ea066f72
335fd88e127ff1b19e6c5af3c801186182f064e4c6747b9a76a0b3988553716c

HTTP Headers

GET /favicon.ico HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_T3L00BXE82=GS1.1.1701830465.1.0.1701830465.0.0.0; _ga=GA1.1.280370316.1701830465; _ga_L4J0XMWNXV=GS1.1.1701830465.1.0.1701830465.0.0.0; _ga_B5T3G0YBDY=GS1.1.1701830465.1.0.1701830465.0.0.0; dom3ic8zudi28v8lr6fgphwffqoz0j6c=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 404 Not Found
cache-control: private, no-cache, no-store, must-revalidate, max-age=0
pragma: no-cache
content-type: text/html
content-length: 1238
date: Wed, 06 Dec 2023 02:41:01 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

thubanoa.com/1?z=5297528

139.45.197.242

200 OK

43 kB

URL GET HTTP/2
thubanoa.com/1?z=5297528
IP
139.45.197.242:443
ASN
#9002 RETN Limited

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectthubanoa.com
Fingerprint29:B3:7B:FD:B2:7E:87:35:DA:50:73:78:59:11:52:35:7E:F9:21:32
ValidityFri, 17 Nov 2023 15:12:05 GMT - Thu, 15 Feb 2024 15:12:04 GMT

File type
ASCII text, with very long lines (41880)
Size
43 kB (42869 bytes)
Hash
3d172155319290d58f7a50e911e97b28
117d006b047a41f66e0391d35d64d74ef2855a71
80e0245bc3f62b9c452afc3a566d7e2ab975906d358fc51e909d7c168f7d76d9

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /1?z=5297528 HTTP/1.1
Host: thubanoa.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 06 Dec 2023 02:40:58 GMT
content-type: text/javascript
access-control-allow-credentials: true
access-control-allow-origin: 
access-control-allow-methods: POST, GET, OPTIONS, PUT, DELETE
access-control-allow-headers: Accept, Content-Type, Content-Length, Accept-Encoding, X-Sc, CVERSION, VERSION, X-Ancestor-Origins, X-Zone-ID, baggage, sentry-trace
x-trace-id: ac82677b116f87c00eb91f5b7e889db8
access-control-expose-headers: X-Sc
x-sc: v8fjsT854EeHyolho3ojITSIcupD37uuCcqSQeYWhGNBpPgvsplcQaX2gzn14UV5FQBb8LHUbYO-b6hqdOHpWOQ3q5k=
set-cookie: scm=1; expires=Thu, 05 Dec 2024 02:40:58 GMT; secure; SameSite=None
OAID=496c81813e6f49feb4caaf4c4ec9408f; expires=Thu, 05 Dec 2024 02:40:58 GMT; secure; SameSite=None
oaidts=1701830458; expires=Thu, 05 Dec 2024 02:40:58 GMT; secure; SameSite=None
pragma: no-cache
cache-control: no-store, no-cache, must-revalidate, max-age=0
expires: Mon, 26 Jul 1997 05:00:00 GMT
content-encoding: gzip
X-Firefox-Spdy: h2

static.addtoany.com/menu/svg/icons/pinterest.js

104.22.70.197

200 OK

901 B

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/pinterest.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
FingerprintCD:32:6F:BB:77:FF:5A:24:10:3C:B9:90:72:64:6B:45:03:F0:A2:30
ValiditySun, 29 Oct 2023 04:52:36 GMT - Sat, 27 Jan 2024 04:52:35 GMT

File type
ASCII text, with very long lines (911), with no line terminators
Size
901 B (901 bytes)
Hash
75d7ce987a69ebcc1e4e5360294d8603
33d967949bfedb91fe0b7c35c0af0f405d15e508
671b4cebe26e6ec63a1e89c46cb94459efc4c1c31a013255fc36c98ba8a60a1a

HTTP Headers

GET /menu/svg/icons/pinterest.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 02:41:00 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"573fae6e51435ee7155601d053377d81"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=U2d6UC2W1TDiSvzt2Iw2PBCbMEhz3f8D1X9yfcdMs6TAP1hP6VdyiVz%2FLXesg%2BUakRXgi6ohzISFdN4ANZatAWhYhfZ86H3jt8SSyU4gacLGHYQtEwTnbD3nrCr%2BfzvuVfj4ezjh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 83112ad96cb1991b-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

139.45.197.238

200 OK

1.9 kB

URL GET HTTP/2
becorsolaom.com/500/6287845?excludes=19727211&oaid=584778ce78884739b2135bc46b1c4ae1&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=11&pl=https%3A%2F%2Ffighterpunch.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0
IP
139.45.197.238:443
ASN
#9002 RETN Limited

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectbecorsolaom.com
Fingerprint32:D4:35:EC:1A:B0:59:31:29:92:7C:3D:6E:6C:40:EB:28:AF:57:9B
ValidityTue, 28 Nov 2023 20:57:36 GMT - Mon, 26 Feb 2024 20:57:35 GMT

File type
troff or preprocessor input, Unicode text, UTF-8 text, with very long lines (1969), with no line terminators
Size
1.9 kB (1935 bytes)
Hash
6391d58e24ec44bc727aa8664b9dfafc
22bd875ee194be34049e19222d7e83138b9a94b5
177ea16f6bfa5eda9d1a454f61149ca71274d84248b55623d9e076e8b6764189

HTTP Headers

GET /500/6287845?excludes=19727211&oaid=584778ce78884739b2135bc46b1c4ae1&fs=0&cf=0&sw=1280&sh=1024&sah=1024&wx=0&wy=0&ww=1280&wh=1024&cw=1280&wiw=1280&wih=1024&wfc=11&pl=https%3A%2F%2Ffighterpunch.com%2F&drf=&np=1&pt=0&nb=1&ng=1&ix=0&nw=1&tb=false&tzofs=0&js_build=8&sw_version=v1.312.0 HTTP/1.1
Host: becorsolaom.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Cookie: OAID=584778ce78884739b2135bc46b1c4ae1
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
server: nginx
date: Wed, 06 Dec 2023 02:41:09 GMT
content-type: application/javascript
x-trace-id: 6a74c6cfa793e34d23e903fbd1eeb78e
expires: Tue, 11 Jan 1994 10:00:00 GMT
cache-control: no-cache, no-store, no-transform, must-revalidate, private, max-age=0
pragma: no-cache
vary: Origin
access-control-allow-origin: https://fighterpunch.com
access-control-expose-headers: Link
access-control-allow-credentials: true
accept-ch: Sec-CH-UA-Arch, Sec-CH-UA-Bitness, Sec-CH-UA-Full-Version, Sec-CH-UA-Full-Version-List, Sec-CH-UA-Model, Sec-CH-UA-Platform-Version, Sec-CH-UA-Wow64
set-cookie: OAID=584778ce78884739b2135bc46b1c4ae1; expires=Thu, 05 Dec 2024 02:41:09 GMT; path=/; secure; SameSite=None
strict-transport-security: max-age=1
x-content-type-options: nosniff
timing-allow-origin: *, *
content-encoding: gzip
X-Firefox-Spdy: h2

static.addtoany.com/menu/svg/icons/twitter.js

104.22.70.197

200 OK

695 B

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/twitter.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
FingerprintCD:32:6F:BB:77:FF:5A:24:10:3C:B9:90:72:64:6B:45:03:F0:A2:30
ValiditySun, 29 Oct 2023 04:52:36 GMT - Sat, 27 Jan 2024 04:52:35 GMT

File type
ASCII text, with very long lines (705), with no line terminators
Size
695 B (695 bytes)
Hash
995fdafe1159f77fdd8c1f053a281bc4
ae931dbcb462f897540a696186dfa4147b02ce8d
ccff3da2d5b8974ef5758f1306d36c234c0763539177d2c36d6eda545dec2a2e

HTTP Headers

GET /menu/svg/icons/twitter.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 02:41:00 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"31edccd311957616d32bbcad27fcf679"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IUEWXobIW57kEzT2SY0oIy2ttDvH2tjIJ99OgXao2vhbJRfCOlJLkF1l8lZV43JDZ153QgplxIqbhg5Um7g3F5cwDawsMMSjJrZJyeE8kKeg0jcMfhvV1oBChOcmwIZaaRnfQ1bT"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 83112ad96caf991b-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

static.addtoany.com/menu/svg/icons/whatsapp.js

104.22.70.197

200 OK

1.1 kB

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/whatsapp.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
FingerprintCD:32:6F:BB:77:FF:5A:24:10:3C:B9:90:72:64:6B:45:03:F0:A2:30
ValiditySun, 29 Oct 2023 04:52:36 GMT - Sat, 27 Jan 2024 04:52:35 GMT

File type
ASCII text, with very long lines (1151), with no line terminators
Size
1.1 kB (1137 bytes)
Hash
c357646b9d4eeff483d3f4240057a1fb
d6d3f7060c58dd03264c217aa052231881185802
748962709e5daf12cbd844ec7dbdbf7585686302a861573db550639aa3bfb3fa

HTTP Headers

GET /menu/svg/icons/whatsapp.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 02:41:00 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"6a035bb94747645017c1cfe9f5801857"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=IquGRD0hPKJSOC59PT3sn4pp2Tco%2FvUdvkNmmUmMJlgB%2FbOr%2B0gptos68FKsjWprUhUTkt%2B5bkwB3IjTTa5MXRFu%2FF2PPgtYjafWrBfhxU%2FXHou0GbIBR%2BXAShzNmWPOOijKwrjh"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 83112ad96cb3991b-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

fighterpunch.com/wp-content/uploads/2023/11/Watch-AEW-Dynamite-Live-112223-Thanksgiving-Edition-November-22nd-2023-Online-Full-Show-Free-360x270.jpg

162.0.215.120

200 OK

22 kB

URL GET HTTP/2
fighterpunch.com/wp-content/uploads/2023/11/Watch-AEW-Dynamite-Live-112223-Thanksgiving-Edition-November-22nd-2023-Online-Full-Show-Free-360x270.jpg
IP
162.0.215.120:443
ASN
#22612 NAMECHEAP-NET

Requested by
https://fighterpunch.com/
Certificate
IssuerSectigo Limited
Subjectfighterpunch.com
FingerprintFB:41:10:22:41:2C:EE:8A:AE:41:A8:95:20:B9:51:3E:A0:58:64:A6
ValidityThu, 02 Feb 2023 00:00:00 GMT - Fri, 02 Feb 2024 23:59:59 GMT

File type
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, comment: "CREATOR: gd-jpeg v1.0 (using IJG JPEG v62), quality = 82", baseline, precision 8, 360x270, components 3\012- data
Size
22 kB (22090 bytes)
Hash
74815f58a8a98a919ef2a1d109e006dc
86fc6ef0f6646aa3edd9f0f784266ad9d4e2ec5c
97b80303c6d04e07d5bb9b28e446b57371f86b71ccb15ffe8e6417e0c27a57e6

HTTP Headers

GET /wp-content/uploads/2023/11/Watch-AEW-Dynamite-Live-112223-Thanksgiving-Edition-November-22nd-2023-Online-Full-Show-Free-360x270.jpg HTTP/1.1
Host: fighterpunch.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://fighterpunch.com/
DNT: 1
Connection: keep-alive
Cookie: _ga_T3L00BXE82=GS1.1.1701830465.1.0.1701830465.0.0.0; _ga=GA1.1.280370316.1701830465; _ga_L4J0XMWNXV=GS1.1.1701830465.1.0.1701830465.0.0.0; _ga_B5T3G0YBDY=GS1.1.1701830465.1.0.1701830465.0.0.0
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
cache-control: public, max-age=604800
expires: Wed, 13 Dec 2023 02:40:59 GMT
content-type: image/jpeg
last-modified: Wed, 22 Nov 2023 21:03:10 GMT
accept-ranges: bytes
content-length: 22090
date: Wed, 06 Dec 2023 02:40:59 GMT
server: LiteSpeed
x-turbo-charged-by: LiteSpeed
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
x-content-type-options: nosniff
strict-transport-security: max-age=31536000; includeSubDomains; preload;
referrer-policy: no-referrer-when-downgrade
X-Firefox-Spdy: h2

static.addtoany.com/menu/sm.24.html

104.22.70.197

200 OK

677 B

URL GET HTTP/3
static.addtoany.com/menu/sm.24.html
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
FingerprintCD:32:6F:BB:77:FF:5A:24:10:3C:B9:90:72:64:6B:45:03:F0:A2:30
ValiditySun, 29 Oct 2023 04:52:36 GMT - Sat, 27 Jan 2024 04:52:35 GMT

File type
HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text, with very long lines (700), with no line terminators
Size
677 B (677 bytes)
Hash
cfd119cf6bef57fab6c6d11a41f5551a
479462a99e186c36e68e3fc8f12dd795c65d4366
8460305d50a708748c228ecefae928f9392d4e451b89106021434c989eef106b

HTTP Headers

GET /menu/sm.24.html HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: iframe
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 02:41:00 GMT
content-type: text/html; charset=utf-8
access-control-allow-origin: *
cache-control: max-age=315360000, immutable
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=x0AGzN6VnU5rC0rDp1WWGffpVhLXhewGgJJdgo0XlNGLjVSig63Pe8VCgpJdmHsoiYfTB3IKSCbnCUNZ0tcSS%2F4CNML2Qm83G3kdSE8Eqdz7lApDw3Gf7%2B05kA2uqGC9y2HPMcXolWmxOApwazNx9N1m"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: HIT
age: 8008
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 83112ad8f9f92d71-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

fonts.googleapis.com/css?family=Oswald:400,700|Frank+Ruhl+Libre:400,700|Pridi:400,700&display=swap

142.250.74.106

200 OK

9.1 kB

URL GET HTTP/2
fonts.googleapis.com/css?family=Oswald:400,700|Frank+Ruhl+Libre:400,700|Pridi:400,700&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://fighterpunch.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (9300), with no line terminators
Size
9.1 kB (9084 bytes)
Hash
1b7baf6fbe9dc9235b2cb37247186cb7
9cf18d82bf9a9676bd0034ef0f6ba2b60019c3f2
f4a806f96a312be8ea96c5fcc7bd3923658bd68ca8d207d563431539140c64ae

HTTP Headers

GET /css?family=Oswald:400,700|Frank+Ruhl+Libre:400,700|Pridi:400,700&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 06 Dec 2023 02:40:57 GMT
date: Wed, 06 Dec 2023 02:40:57 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2

fonts.googleapis.com/css2?family=Space+Grotesk&display=swap

142.250.74.106

200 OK

1.3 kB

URL GET HTTP/3
fonts.googleapis.com/css2?family=Space+Grotesk&display=swap
IP
142.250.74.106:443
ASN
#15169 GOOGLE

Requested by
https://fighterpunch.com/
Certificate
IssuerGoogle Trust Services LLC
Subjectupload.video.google.com
FingerprintCC:96:E0:52:E0:9B:EA:A9:A0:F8:88:9A:90:20:11:47:61:00:3C:42
ValidityMon, 23 Oct 2023 11:24:07 GMT - Mon, 15 Jan 2024 11:24:06 GMT

File type
ASCII text, with very long lines (1311), with no line terminators
Size
1.3 kB (1284 bytes)
Hash
278f877d1458cd34a543e2e06d6fc7cd
06167ab85a1db7de64a2fdd1323c26e2481d7c74
578a25168699e217c03e070a6839f25723df8170ee807709cdc2ff6b1ff73017

HTTP Headers

GET /css2?family=Space+Grotesk&display=swap HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Wed, 06 Dec 2023 02:40:58 GMT
date: Wed, 06 Dec 2023 02:40:58 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000

192.243.59.13

307 Temporary Redirect

3.3 kB

URL GET HTTP/1.1
devoutdoubtfulsample.com/watch.695476666492.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1
IP
192.243.59.13:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectdevoutdoubtfulsample.com
Fingerprint46:DE:76:4D:52:45:B0:2F:13:58:87:BE:89:D2:89:F5:9B:CA:E2:5F
ValidityTue, 28 Nov 2023 08:12:35 GMT - Mon, 26 Feb 2024 08:12:34 GMT

File type

Size
3.3 kB (3313 bytes)
Hash
d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855

Detections

Analyzer	Verdict	Alert
Quad9 DNS	malicious	Sinkholed

HTTP Headers

GET /watch.695476666492.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1 HTTP/1.1
Host: devoutdoubtfulsample.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/1.1 307 Temporary Redirect
Server: nginx/1.19.5
Date: Wed, 06 Dec 2023 02:41:00 GMT
Content-Type: text/html
Content-Length: 0
Connection: keep-alive
P3P: CP="IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT"
Accept-CH: Device-Stock-UA,Sec-CH-UA,Sec-CH-UA-Full-Version,Sec-CH-UA-Full-Version-List,Sec-CH-UA-Mobile,Sec-CH-UA-Model,Sec-CH-UA-Platform,Sec-CH-UA-Platform-Version,User-Agent,X-Device-User-Agent,X-OperaMini-Phone-UA,X-UCBrowser-Device-UA
Custom-Referer: https://fighterpunch.com
Access-Control-Allow-Origin: https://fighterpunch.com
Access-Control-Allow-Credentials: true
Location: https://devoutdoubtfulsample.com/watch.695476666492.js?key=7b57ef9c2f1a1e7fa516e4fce2e11737&kw=%5B%22fighterpunch%22%2C%22-%22%5D&refer=https%3A%2F%2Ffighterpunch.com%2F&tz=0&dev=e&res=14.3095&uuid=6ce1a077-f853-4246-9c4b-7e7817f64f60%3A3%3A1&shu=2fcad1f896156739f444c6a11b592fdb9f45895922048383a90c6ba98a47bec95db9ac1bcb6340387fb35867f00bb173a22bee158788cc28fff9e5968e379268ecca2c6dd4c127b918f295428521b1187a93b67a6e3e612d278705c65b9fcd&pst=1701830520&rmtc=t
Set-Cookie: u_pl=20395311; expires=Thu, 07 Dec 2023 02:41:00 GMT; secure; SameSite=None
ain=eyJhbGciOiJIUzI1NiJ9.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.23GzJV9YunaITZEcghkfi_xdBjdYUqSMAHqnD2mYygo; expires=Wed, 06 Dec 2023 02:42:00 GMT; secure; SameSite=None
Expires: Thu, 01 Jan 1970 00:00:01 GMT
Cache-Control: no-cache
X-Request-ID: dc4121373d5b0d570132694d43d078c8
Strict-Transport-Security: max-age=0; includeSubdomains

static.addtoany.com/menu/svg/icons/link.js

104.22.70.197

200 OK

1.8 kB

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/link.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
FingerprintCD:32:6F:BB:77:FF:5A:24:10:3C:B9:90:72:64:6B:45:03:F0:A2:30
ValiditySun, 29 Oct 2023 04:52:36 GMT - Sat, 27 Jan 2024 04:52:35 GMT

File type
ASCII text, with very long lines (1854), with no line terminators
Size
1.8 kB (1844 bytes)
Hash
39fae0e59b112340468773df52253091
9cf4c2c5e1933f832100c7dd3f2559951a6b1463
b51577fe7ac247a13a4ab32bea9629fb1a745d7ceb372f807c8971c566ccc106

HTTP Headers

GET /menu/svg/icons/link.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 02:41:00 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"99c7a7be08efc7d197a90cef9fa16318"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=kzb%2BzXPKoguk6L7RS%2BLHQ6FvvRsB24kAUe1wlKWni%2B5WsGGNujbrYl4XJD9tO%2B8bTg5xLHRylFqotIAp9t5ptEkBC93U7XpGQ7FpZvLVsJoDbsBNo8whMSuWwiLjljcPi4a7gCIH"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 83112ad96cb8991b-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

tzegilo.com/stattag.js

104.21.11.245

200 OK

19 kB

URL GET HTTP/2
tzegilo.com/stattag.js
IP
104.21.11.245:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fighterpunch.com/
Certificate
IssuerGoogle Trust Services LLC
Subjecttzegilo.com
FingerprintF2:F3:F8:C4:40:73:B6:FE:DD:58:70:D7:13:25:D2:51:21:88:50:0B
ValiditySun, 03 Dec 2023 17:24:18 GMT - Sat, 02 Mar 2024 17:24:17 GMT

File type
ASCII text, with very long lines (18369)
Size
19 kB (19019 bytes)
Hash
89e89aea544ea2785d49cc4cd9cf26f6
7d53437a89eb9861038ee27a8ff0e3bb70fa2a0b
86da38693fcea056d36588a4146e85392f784c457511de416fec32034aafa4f9

HTTP Headers

GET /stattag.js HTTP/1.1
Host: tzegilo.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Referer: https://fighterpunch.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 02:40:59 GMT
content-type: application/javascript
last-modified: Thu, 07 Sep 2023 08:19:52 GMT
etag: W/"64f987a8-4a4b"
link: <https://flerap.com/>; rel=preconnect; crossorigin, <https://fleraprt.com/>; rel=preconnect; crossorigin
cache-control: max-age=14400
cf-cache-status: HIT
age: 1847
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=Tp%2Brb16RC%2BxrMsBk7lcMMw4FeE98U61PNYC0pM6XLn%2BFlOQBF%2FihNOBeOBGrviedMdkjBxUsJ5o9WECWoi7mY%2FqElfvT3nY39xM%2Bwho1YDgA%2Bbl%2BW5Cy4iZx6KZUiw%3D%3D"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
server: cloudflare
cf-ray: 83112ad34983712f-OSL
content-encoding: br
alt-svc: h3=":443"; ma=86400
X-Firefox-Spdy: h2

cdn.cloudimagesb.com/bi/94/9c/0f/949c0fd6cd4bc1d28928c2fa071cd2bb/1671440632.jpg

45.133.44.9

200 OK

34 kB

URL GET HTTP/2
cdn.cloudimagesb.com/bi/94/9c/0f/949c0fd6cd4bc1d28928c2fa071cd2bb/1671440632.jpg
IP
45.133.44.9:443
ASN
#39572 DataWeb Global Group B.V.

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectcdn.cloudimagesb.com
Fingerprint71:EC:C0:22:20:76:60:90:92:4C:5C:F3:AD:17:3C:41:B5:00:25:AF
ValidityThu, 23 Nov 2023 05:00:53 GMT - Wed, 21 Feb 2024 05:00:52 GMT

File type
JPEG image data, Exif standard: [TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe Photoshop CC 2019 (Windows), datetime=2022:12:01 14:49:13], baseline, precision 8, 320x50, components 3\012- data
Size
34 kB (34012 bytes)
Hash
edf60075a43ba06f2c318615adc4a779
d1d6f7f14ed44cae06f30363c6e9748441ea18c2
d957c1bd995a56d9a22c086cdaea2ddff4fdf980f85d665c364f41495174cbb6

HTTP Headers

GET /bi/94/9c/0f/949c0fd6cd4bc1d28928c2fa071cd2bb/1671440632.jpg HTTP/1.1
Host: cdn.cloudimagesb.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/2 200 OK
date: Wed, 06 Dec 2023 02:41:01 GMT
content-type: image/jpeg
content-length: 34012
server: nginx/1.21.6
last-modified: Mon, 19 Dec 2022 09:04:00 GMT
etag: "63a02900-84dc"
expires: Fri, 08 Dec 2023 02:41:01 GMT
cache-control: max-age=172800
x-proxy-cache: HIT
accept-ranges: bytes
X-Firefox-Spdy: h2

static.addtoany.com/menu/svg/icons/email.js

104.22.70.197

200 OK

427 B

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/email.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
FingerprintCD:32:6F:BB:77:FF:5A:24:10:3C:B9:90:72:64:6B:45:03:F0:A2:30
ValiditySun, 29 Oct 2023 04:52:36 GMT - Sat, 27 Jan 2024 04:52:35 GMT

File type
ASCII text, with very long lines (437), with no line terminators
Size
427 B (427 bytes)
Hash
fb25981b72e1c08dca383e2f0ef7a498
3aac17d991d1d07754490c1436fcafa2a4f5330f
f03cc0d49e5081adf5f6908dafa9eab849a0ecb2805e024065f36cd550e98a5c

HTTP Headers

GET /menu/svg/icons/email.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 02:41:00 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"48a669f03d3a3ea93ea22be8f12d6cc2"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=KZ3eVcxLXMeEY5mjBqqQxZ2OsIV8TYj8PnL9imDMaofBTQ1j44x9%2BGlyAP0e4FW5KoCskD2cnZ6zZasCa7dDYUrP%2Fr7LeSouT51TBYlskpXiU25ir5c6Kv3HrqrgBYjBNXRRVm2M"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 83112ad96cb0991b-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

static.addtoany.com/menu/svg/icons/reddit.js

104.22.70.197

200 OK

929 B

URL GET HTTP/3
static.addtoany.com/menu/svg/icons/reddit.js
IP
104.22.70.197:443
ASN
#13335 CLOUDFLARENET

Requested by
https://fighterpunch.com/
Certificate
IssuerLet's Encrypt
Subjectstatic.addtoany.com
FingerprintCD:32:6F:BB:77:FF:5A:24:10:3C:B9:90:72:64:6B:45:03:F0:A2:30
ValiditySun, 29 Oct 2023 04:52:36 GMT - Sat, 27 Jan 2024 04:52:35 GMT

File type
ASCII text, with very long lines (939), with no line terminators
Size
929 B (929 bytes)
Hash
074a77d44f0f9f7d5b6005e498b1dc24
ba4ee8976649c56accab5095d187bd24552812ee
42ccafaa9128e24dfaaf6d99eca8000add3dbc2d4cad9442ef13c833496a5f6f

HTTP Headers

GET /menu/svg/icons/reddit.js HTTP/1.1
Host: static.addtoany.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://fighterpunch.com
DNT: 1
Connection: keep-alive
Referer: https://static.addtoany.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

HTTP/3 200 OK
date: Wed, 06 Dec 2023 02:41:00 GMT
content-type: application/javascript
access-control-allow-origin: *
cache-control: max-age=7776000, stale-while-revalidate=30, public
etag: W/"22f5e4e420fe8a8f261f152f0bdf4c34"
referrer-policy: strict-origin-when-cross-origin
x-content-type-options: nosniff
report-to: {"endpoints":[{"url":"https:\/\/a.nel.cloudflare.com\/report\/v3?s=omRpFhupfRGvRVx1RJX2jqlrGNTSOlvZPzPuQN3JXgWw5K1N73z8xBra5wkWbQBYIz4e%2F8uobWpdXP5PeCUe0cEo2P6x58cqrh%2FST%2BkZKXXG7OepGqS7YczePuLfsMWtIDFfOngd"}],"group":"cf-nel","max_age":604800}
nel: {"success_fraction":0,"report_to":"cf-nel","max_age":604800}
vary: Accept-Encoding
cf-cache-status: MISS
strict-transport-security: max-age=31536000; includeSubDomains; preload
server: cloudflare
cf-ray: 83112ad96cb2991b-ARN
content-encoding: br
alt-svc: h3=":443"; ma=86400

Report Overview

Submitted URL

IP

ASN

Submitted

Access

Website Title

Final URL

Tags

urlquery detections

Detections

urlquery

Network Intrusion Detection

Threat Detection Systems

Domain Summary

Related reports

Network Intrusion Detection Systems

Suricata /w Emerging Threats Pro

Threat Detection Systems

Public InfoSec YARA rules

OpenPhish

PhishTank

Fortinet's Web Filter

mnemonic secure dns

Quad9 DNS

ThreatFox

JavaScript (78)

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN

Introduced by

Embedded in HTML

Observations

Hash

URL

IP

ASN