firefox.settings.services.mozilla.com/v1/
143.204.55.115200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash 99b7d23c1748d0526782b9ff9ea45f09
eadd801a3ba2aa00632c6fb52e1f9125bd6d5b4f
48f81668f76955320480b484138aebdad5d03c471036b4449c737aca1ecab08e
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Content-Length, Backoff, Retry-After, Alert
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Thu, 08 Sep 2022 22:05:33 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 057fdebf738f5915bf38a78949190758.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: 8fq47A_zisuZZeBXVWf0vqJNI8i3_1fWhe3LTKyIDTBcPwECq46FdQ==
Age: 2618
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash b9adda4796e3cda8d92753c46964621c
5f1eba1f6085b23dea088a91fe6f8947172f9f62
a0577a8fcfa81b3f86d99566eb4429655b93a238ffd1a3752bc9aae3d969deea
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A0577A8FCFA81B3F86D99566EB4429655B93A238FFD1A3752BC9AAE3D969DEEA"
Last-Modified: Tue, 06 Sep 2022 11:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=2774
Expires: Thu, 08 Sep 2022 23:35:25 GMT
Date: Thu, 08 Sep 2022 22:49:11 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
143.204.55.49200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain
IP 143.204.55.49:0
File type PEM certificate\012- , ASCII text
Hash 742edb4038f38bc533514982f3d2e861
cc3a20c8dc2a8c632ef9387a2744253f1e3fdef1
b6bfa49d3d135035701231db2fffc0c0643444394009a94c6a1b4d829d6b8345
GET /chains/remote-settings.content-signature.mozilla.org-2022-10-09-23-18-04.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: binary/octet-stream
content-length: 5348
last-modified: Sat, 20 Aug 2022 23:18:05 GMT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
date: Thu, 08 Sep 2022 03:46:35 GMT
etag: "742edb4038f38bc533514982f3d2e861"
x-cache: Hit from cloudfront
via: 1.1 a034aae43a19aef875fa395182990970.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-C1
x-amz-cf-id: kQx_ZJdBgWDb1J3qGPnaMVjlPltm2ATIwPgOG6pa-nismBkkibZ1fg==
age: 68557
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Thu, 08 Sep 2022 22:49:11 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
www.optionaneity.com/
47.89.213.145301 Moved Permanently 166 B IP 47.89.213.145:0
ASN #45102 Alibaba US Technology Co., Ltd.
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash 3ea1c8d079b38532a6e01a96216ba5e2
598d3ff91d3e252f1e13df8cf0348b270ff2da3f
87a9323ac85ce28867d5d7ce590c8f29b8d1a999961fca71bb33adef48683691
GET / HTTP/1.1
Host: www.optionaneity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: openresty
Date: Thu, 08 Sep 2022 22:49:11 GMT
Content-Type: text/html
Content-Length: 166
Connection: keep-alive
Location: https://www.optionaneity.com/
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.115200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.115:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Thu, 08 Sep 2022 22:38:18 GMT
Cache-Control: max-age=3600
Expires: Thu, 08 Sep 2022 23:15:55 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 410f51195842d9b592b15d6588c36654.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: axZ4s62n9msljwispctqwg9nyjCxrpGFn2suixdQap6yFQnu6C6FfA==
Age: 654
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 042105f89c8d64b470d84e052cd412d1
a26c7e2559b3760ea2765b16a3f8d1be27f5dcf4
fadb8cdd22f4d7773d5c20d576f6400ab25e20e1efe3e3fe50d2ae39ca6f2725
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3008
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 22:49:12 GMT
Last-Modified: Thu, 08 Sep 2022 21:59:04 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash c0b8960afeaa1db5055a44bb968b6d50
2a08cbb3abc4903f557547d53343b462f9569734
8d21cebf2976cb2e835a3a6ea9fd126f0ab73f17b24382b8c823345dfdff565c
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "8D21CEBF2976CB2E835A3A6EA9FD126F0AB73F17B24382B8C823345DFDFF565C"
Last-Modified: Thu, 08 Sep 2022 15:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=21600
Expires: Fri, 09 Sep 2022 04:49:12 GMT
Date: Thu, 08 Sep 2022 22:49:12 GMT
Connection: keep-alive
push.services.mozilla.com/
52.41.246.187101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 52.41.246.187:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: TyrcdLmdavgZ6X2GReCziA==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: ccms0ZfXBNa3HiWplB050eL7LTE=
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash ad1a8d1c3c894ac89873383afadb2681
635cd19a8594dd0b0a8bd96f1ce317a9d89fb32c
6b20eee6903e86f70f5257eaa03a1842d41c929b5ac98c1448318280d0de6719
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1454
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 22:49:12 GMT
Last-Modified: Thu, 08 Sep 2022 22:24:58 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
www.paypalobjects.com/api/checkout.min.js
192.229.221.25200 OK 193 kB URL HTTP/2 www.paypalobjects.com/api/checkout.min.js
IP 192.229.221.25:0
File type ASCII text, with very long lines (65466)
Size 193 kB (192776 bytes)
Hash bf027ef2295da63a74b6b64f89eb677c
2a454cbea072ac35f89446b567502b445368ec92
31e58628e2b182e9a279dca32e5dd78905d4db0ebcb818b207f6bfc6c454aa14
GET /api/checkout.min.js HTTP/1.1
Host: www.paypalobjects.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-encoding: gzip
accept-ranges: bytes
access-control-allow-headers: x-csrf-token
access-control-allow-methods: GET
access-control-allow-origin: *
cache-control: s-maxage=31536000, public,max-age=3600
content-type: application/javascript; charset=utf-8
date: Thu, 08 Sep 2022 22:49:12 GMT
dc: ccg11-origin-www-1.paypal.com
etag: "6266d4b0-d7987"
expires: Fri, 09 Sep 2022 22:49:12 GMT
last-modified: Mon, 25 Apr 2022 17:04:48 GMT
paypal-debug-id: 48804e2055ff6
server: ECAcc (ska/F7B0)
strict-transport-security: max-age=63072000; includeSubDomains; preload
timing-allow-origin: https://www.paypal.com,https://www.sandbox.paypal.com
vary: Accept-Encoding
x-cache: HIT
x-content-type-options: nosniff
content-length: 192776
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 896b51cc185e4072e093d8e636ea1353
3f19d4603221d723e53c26300227dbf1bb58fe3b
1291ef8d689570c1f37907a7c5f66fe393037dd43ac9ab257cda5634e175d106
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 3020
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 22:49:13 GMT
Last-Modified: Thu, 08 Sep 2022 21:58:53 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 896b51cc185e4072e093d8e636ea1353
3f19d4603221d723e53c26300227dbf1bb58fe3b
1291ef8d689570c1f37907a7c5f66fe393037dd43ac9ab257cda5634e175d106
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 1738
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 22:49:13 GMT
Last-Modified: Thu, 08 Sep 2022 22:20:15 GMT
Server: ECS (amb/6B73)
X-Cache: HIT
Content-Length: 471
static.unickshoppy.com/liquid/buyer/public/js/plug/Swiper.js
47.246.44.211200 OK 32 kB URL HTTP/2 static.unickshoppy.com/liquid/buyer/public/js/plug/Swiper.js
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type ASCII text, with very long lines (65536), with no line terminators
Hash 47fd4bb28beb1fa46753f9e52e750517
c059dbd1226412910634c521212062bd0d930bb2
dd0e0eb16166f318ff75f2b844fec901e81b1656cd2a2c8db227e5af72617c12
Analyzer Verdict Alert fortinet Phishing
GET /liquid/buyer/public/js/plug/Swiper.js HTTP/1.1
Host: static.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 32210
strict-transport-security: max-age=5184000; includeSubDomains
date: Wed, 07 Sep 2022 17:44:31 GMT
last-modified: Mon, 05 Sep 2022 09:25:13 GMT
vary: Accept-Encoding
etag: W/"6315c079-1e56e"
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
content-encoding: gzip
ali-swift-global-savetime: 1662572672
via: cache9.l2de2[0,0,200-0,H], cache5.l2de2[2,0], cache2.se1[0,0,200-0,H], cache5.se1[4,0]
age: 104681
x-cache: HIT TCP_HIT dirn:11:170843171
x-swift-savetime: Wed, 07 Sep 2022 19:30:52 GMT
x-swift-cachetime: 252820
timing-allow-origin: *
eagleid: 2ff62c9916626773531723344e
X-Firefox-Spdy: h2
static.unickshoppy.com/liquid/buyer/public/img/payment/maestro.svg
47.246.44.211200 OK 3.5 kB URL HTTP/2 static.unickshoppy.com/liquid/buyer/public/img/payment/maestro.svg
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (6149)
Hash 1d0f4f70bd3d09167c7d003f3527863d
c72c9cef44b1a669b84611fb8846318f3f346958
1a0163541cd11c4ab08c86da78e14e4dba09bb0b789089ac4ab4a4dfb3c7cbfd
Analyzer Verdict Alert fortinet Phishing
GET /liquid/buyer/public/img/payment/maestro.svg HTTP/1.1
Host: static.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/svg+xml
content-length: 3511
strict-transport-security: max-age=5184000; includeSubDomains
date: Wed, 07 Sep 2022 18:02:03 GMT
last-modified: Mon, 05 Sep 2022 09:25:28 GMT
vary: Accept-Encoding
etag: W/"6315c088-20a8"
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
content-encoding: gzip
ali-swift-global-savetime: 1662573723
via: cache3.l2de2[0,0,200-0,H], cache14.l2de2[1,0], cache2.se1[0,0,200-0,H], cache5.se1[7,0]
age: 103630
x-cache: HIT TCP_HIT dirn:6:167160278
x-swift-savetime: Wed, 07 Sep 2022 19:30:55 GMT
x-swift-cachetime: 253868
timing-allow-origin: *
eagleid: 2ff62c9916626773531793351e
X-Firefox-Spdy: h2
static.unickshoppy.com/liquid/buyer/public/js/plug/fingerprint2.min.js
47.246.44.211200 OK 10 kB URL HTTP/2 static.unickshoppy.com/liquid/buyer/public/js/plug/fingerprint2.min.js
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type Unicode text, UTF-8 text, with very long lines (29110), with no line terminators
Hash 31d16bb939e6d810d76d9921d86819e7
c1340aa66317020bcfa61ad5afb11831aa6c721a
a332b026863e058b081db25cbbc2533640e3e3b19875ff794db6495b033d9897
Analyzer Verdict Alert fortinet Phishing
GET /liquid/buyer/public/js/plug/fingerprint2.min.js HTTP/1.1
Host: static.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 10510
strict-transport-security: max-age=5184000; includeSubDomains
date: Wed, 07 Sep 2022 17:44:31 GMT
last-modified: Mon, 05 Sep 2022 09:25:26 GMT
vary: Accept-Encoding
etag: W/"6315c086-71bc"
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
content-encoding: gzip
ali-swift-global-savetime: 1662572671
via: cache3.l2de2[0,0,200-0,H], cache2.l2de2[1,0], cache4.se1[0,0,200-0,H], cache5.se1[7,0]
age: 104682
x-cache: HIT TCP_HIT dirn:11:427482614
x-swift-savetime: Wed, 07 Sep 2022 21:43:45 GMT
x-swift-cachetime: 244846
timing-allow-origin: *
eagleid: 2ff62c9916626773531793356e
X-Firefox-Spdy: h2
static.unickshoppy.com/liquid/buyer/public/img/default.png
47.246.44.211200 OK 618 B URL HTTP/2 static.unickshoppy.com/liquid/buyer/public/img/default.png
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type RIFF (little-endian) data, Web/P image, VP8 encoding, 560x560, Scaling: [none]x[none], YUV color, decoders should clamp\012- data
Hash f20546d89d1105a1fef971c3034fe50d
1d81e1f68b94a2f90275c44f792ead7f704dcf9b
12b8bf9074d868bdaae3f670f6add14ff4f94139b67da7f43ac927450e5d9559
GET /liquid/buyer/public/img/default.png HTTP/1.1
Host: static.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/webp
content-length: 618
strict-transport-security: max-age=5184000; includeSubDomains
date: Wed, 07 Sep 2022 23:02:32 GMT
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
etag: "6315c088-1a84"
last-modified: Mon, 05 Sep 2022 09:25:28 GMT
access-control-max-age: 86400
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
accept-ranges: bytes
ali-swift-global-savetime: 1662591752
via: cache3.l2de2[0,0,200-0,H], cache10.l2de2[1,0], cache4.se1[0,0,200-0,H], cache5.se1[2,0]
age: 85601
x-cache: HIT TCP_HIT dirn:2:425013719
x-swift-savetime: Wed, 07 Sep 2022 23:20:41 GMT
x-swift-cachetime: 258111
timing-allow-origin: *
eagleid: 2ff62c9916626773531843360e
X-Firefox-Spdy: h2
static.unickshoppy.com/liquid/buyer/public/js/plug/jquery.js
47.246.44.211200 OK 33 kB URL HTTP/2 static.unickshoppy.com/liquid/buyer/public/js/plug/jquery.js
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash a75dece38c92919d353cb64842ab2878
f2c51ea5aa55a914969dd79371628d9a5029e409
48799ce8d64bc5d1915ce23975ccdc82c68dfa0956a19feae587448c980ff9ab
Analyzer Verdict Alert fortinet Phishing
GET /liquid/buyer/public/js/plug/jquery.js HTTP/1.1
Host: static.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 32776
strict-transport-security: max-age=5184000; includeSubDomains
date: Tue, 06 Sep 2022 02:38:13 GMT
last-modified: Mon, 05 Sep 2022 09:25:27 GMT
vary: Accept-Encoding
etag: W/"6315c087-16ca0"
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
content-encoding: gzip
ali-swift-global-savetime: 1662431893
via: cache2.l2de2[0,0,200-0,H], cache26.l2de2[1,0], cache26.l2de2[2,0], cache8.se1[0,0,200-0,H], cache5.se1[8,0]
age: 245460
x-cache: HIT TCP_HIT dirn:1:223107084
x-swift-savetime: Tue, 06 Sep 2022 03:23:50 GMT
x-swift-cachetime: 256463
timing-allow-origin: *
eagleid: 2ff62c9916626773531793354e
X-Firefox-Spdy: h2
static.unickshoppy.com/liquid/buyer/public/js/lib/event.js?t=20220907141029
47.246.44.211200 OK 1.5 kB URL HTTP/2 static.unickshoppy.com/liquid/buyer/public/js/lib/event.js?t=20220907141029
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type ASCII text, with very long lines (6272), with no line terminators
Hash 811a6a12ae84c455ebe6fba15af248a2
5d3cb7ddd9c67a47a6f43b70b7ca17091a12daf4
3eb9a9db41a0381af7db17e468f531ff59661713aa1d556091f91081612752b2
Analyzer Verdict Alert fortinet Phishing
GET /liquid/buyer/public/js/lib/event.js?t=20220907141029 HTTP/1.1
Host: static.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 1475
strict-transport-security: max-age=5184000; includeSubDomains
date: Wed, 07 Sep 2022 06:10:35 GMT
last-modified: Mon, 05 Sep 2022 09:25:19 GMT
vary: Accept-Encoding
etag: W/"6315c07f-1880"
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
content-encoding: gzip
ali-swift-global-savetime: 1662531035
via: cache1.l2de2[0,0,200-0,H], cache9.l2de2[1,0], cache9.l2de2[2,0], cache2.se1[0,0,200-0,H], cache5.se1[5,0]
age: 146318
x-cache: HIT TCP_HIT dirn:6:49902755
x-swift-savetime: Wed, 07 Sep 2022 06:41:06 GMT
x-swift-cachetime: 257369
timing-allow-origin: *
eagleid: 2ff62c9916626773531823358e
X-Firefox-Spdy: h2
static.unickshoppy.com/liquid/buyer/public/img/payment/mastercard.svg
47.246.44.211200 OK 4.7 kB URL HTTP/2 static.unickshoppy.com/liquid/buyer/public/img/payment/mastercard.svg
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (9801)
Hash 4ef68854f044a70a5d75750c2081eb7e
3ce13ea139c1b1e8e0aedba6143b01a150c5f2f3
af12903a5f484fcfbb95a002391302997a5478efdab0d21203c60d3a72851f7e
Analyzer Verdict Alert fortinet Phishing
GET /liquid/buyer/public/img/payment/mastercard.svg HTTP/1.1
Host: static.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/svg+xml
content-length: 4732
strict-transport-security: max-age=5184000; includeSubDomains
date: Wed, 07 Sep 2022 17:44:31 GMT
last-modified: Mon, 05 Sep 2022 09:25:28 GMT
vary: Accept-Encoding
etag: W/"6315c088-2f86"
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
content-encoding: gzip
ali-swift-global-savetime: 1662572671
via: cache1.l2de2[0,0,200-0,H], cache1.l2de2[0,0], cache8.se1[0,0,200-0,H], cache5.se1[3,0]
age: 104682
x-cache: HIT TCP_HIT dirn:1:117380373
x-swift-savetime: Wed, 07 Sep 2022 19:30:55 GMT
x-swift-cachetime: 252816
timing-allow-origin: *
eagleid: 2ff62c9916626773531853363e
X-Firefox-Spdy: h2
static.unickshoppy.com/liquid/buyer/public/img/paypal.png
47.246.44.211200 OK 2.0 kB URL HTTP/2 static.unickshoppy.com/liquid/buyer/public/img/paypal.png
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7f9b839dfcdedd4ca538f5b9ee351503
597f6cc0a3f352b904050886e956c92986e6a5f5
cda180e3032db59aeb541f9b6987260f454b10e0011c977f10665552c755af8e
GET /liquid/buyer/public/img/paypal.png HTTP/1.1
Host: static.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/webp
content-length: 2002
strict-transport-security: max-age=5184000; includeSubDomains
date: Wed, 07 Sep 2022 14:13:09 GMT
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
etag: "6315c088-ab2"
last-modified: Mon, 05 Sep 2022 09:25:28 GMT
access-control-max-age: 86400
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
accept-ranges: bytes
ali-swift-global-savetime: 1662559989
via: cache8.l2de2[0,0,200-0,H], cache16.l2de2[0,0], cache3.se1[0,13,200-0,H], cache5.se1[15,0]
age: 117364
x-cache: HIT TCP_HIT dirn:11:266775587
x-swift-savetime: Wed, 07 Sep 2022 19:30:52 GMT
x-swift-cachetime: 240137
timing-allow-origin: *
eagleid: 2ff62c9916626773531843361e
X-Firefox-Spdy: h2
static.unickshoppy.com/liquid/buyer/public/img/payment/visa1.svg
47.246.44.211200 OK 1.9 kB URL HTTP/2 static.unickshoppy.com/liquid/buyer/public/img/payment/visa1.svg
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type SVG Scalable Vector Graphics image\012- XML 1.0 document text\012- XML document text\012- HTML document, Unicode text, UTF-8 text, with very long lines (3211)
Hash b81412326fb998a98952846d005bd626
0a076460467b217d4317801e10c08d8618ad48a9
884f6e044b1c367163cffa6fbf8cab80d587d7443cb3ed88b326f9d72eac8c27
Analyzer Verdict Alert fortinet Phishing
GET /liquid/buyer/public/img/payment/visa1.svg HTTP/1.1
Host: static.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/svg+xml
content-length: 1879
strict-transport-security: max-age=5184000; includeSubDomains
date: Wed, 07 Sep 2022 17:44:31 GMT
last-modified: Mon, 05 Sep 2022 09:25:28 GMT
vary: Accept-Encoding
etag: W/"6315c088-e1e"
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
content-encoding: gzip
ali-swift-global-savetime: 1662572671
via: cache26.l2de2[0,0,200-0,H], cache2.l2de2[1,0], cache3.se1[0,13,200-0,H], cache5.se1[14,0]
age: 104682
x-cache: HIT TCP_HIT dirn:11:266785199
x-swift-savetime: Wed, 07 Sep 2022 19:30:55 GMT
x-swift-cachetime: 252816
timing-allow-origin: *
eagleid: 2ff62c9916626773531853362e
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 896b51cc185e4072e093d8e636ea1353
3f19d4603221d723e53c26300227dbf1bb58fe3b
1291ef8d689570c1f37907a7c5f66fe393037dd43ac9ab257cda5634e175d106
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 22:49:13 GMT
Etag: "6318e78e-1d7"
Server: ECS (amb/6BA0)
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 896b51cc185e4072e093d8e636ea1353
3f19d4603221d723e53c26300227dbf1bb58fe3b
1291ef8d689570c1f37907a7c5f66fe393037dd43ac9ab257cda5634e175d106
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 22:49:13 GMT
Server: ECS (amb/6B7E)
Content-Length: 471
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 896b51cc185e4072e093d8e636ea1353
3f19d4603221d723e53c26300227dbf1bb58fe3b
1291ef8d689570c1f37907a7c5f66fe393037dd43ac9ab257cda5634e175d106
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Cache-Control: max-age=158372
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 22:49:13 GMT
Etag: "631a390d-1d7"
Expires: Sat, 10 Sep 2022 18:48:45 GMT
Last-Modified: Thu, 08 Sep 2022 18:48:45 GMT
Server: nginx
Content-Length: 471
static.unickshoppy.com/liquid/buyer/public/css/styles.min.css?t=20220907141029
47.246.44.211200 OK 50 kB URL HTTP/2 static.unickshoppy.com/liquid/buyer/public/css/styles.min.css?t=20220907141029
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type ASCII text, with very long lines (54327)
Hash 13325c3e4b3ff62788a5fbe017f2c45b
3d9ee1bc26332f640dc503dffa698d66a0dd55fd
ddebedbf1f397e569681bb390e3a6bdd7318ce87aa1095b5ae27c14848bf6ac7
Analyzer Verdict Alert fortinet Phishing
GET /liquid/buyer/public/css/styles.min.css?t=20220907141029 HTTP/1.1
Host: static.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: text/css
content-length: 49659
strict-transport-security: max-age=5184000; includeSubDomains
date: Wed, 07 Sep 2022 06:10:35 GMT
last-modified: Mon, 05 Sep 2022 09:25:20 GMT
vary: Accept-Encoding
etag: W/"6315c080-514c5"
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
content-encoding: gzip
ali-swift-global-savetime: 1662531035
via: cache26.l2de2[0,0,200-0,H], cache20.l2de2[1,0], cache8.se1[0,0,200-0,H], cache5.se1[2,0]
age: 146318
x-cache: HIT TCP_HIT dirn:11:7932976
x-swift-savetime: Wed, 07 Sep 2022 06:41:06 GMT
x-swift-cachetime: 257369
timing-allow-origin: *
eagleid: 2ff62c9916626773532823426e
X-Firefox-Spdy: h2
static.unickshoppy.com/liquid/buyer/public/css/dawn.comm.min.css?t=20220907141029
47.246.44.211200 OK 21 kB URL HTTP/2 static.unickshoppy.com/liquid/buyer/public/css/dawn.comm.min.css?t=20220907141029
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type Unicode text, UTF-8 text, with very long lines (15559)
Hash ab70e04dc583a248a999fa63d6da760e
44d760d8cde3b39287587ebdd820904678ed8da1
972ba50129f4b337377a7971111590975c5a24fd918e499d5386beb1b85c3e77
Analyzer Verdict Alert fortinet Phishing
GET /liquid/buyer/public/css/dawn.comm.min.css?t=20220907141029 HTTP/1.1
Host: static.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: text/css
content-length: 21293
strict-transport-security: max-age=5184000; includeSubDomains
date: Wed, 07 Sep 2022 07:04:50 GMT
last-modified: Mon, 05 Sep 2022 09:25:19 GMT
vary: Accept-Encoding
etag: W/"6315c07f-25c0f"
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
content-encoding: gzip
ali-swift-global-savetime: 1662534291
via: cache1.l2de2[0,0,200-0,H], cache10.l2de2[1,0], cache1.se1[0,0,200-0,H], cache5.se1[2,0]
age: 143062
x-cache: HIT TCP_HIT dirn:11:109413722
x-swift-savetime: Wed, 07 Sep 2022 07:42:40 GMT
x-swift-cachetime: 256931
timing-allow-origin: *
eagleid: 2ff62c9916626773532863432e
X-Firefox-Spdy: h2
static.unickshoppy.com/liquid/buyer/public/js/init.js
47.246.44.211200 OK 634 B URL HTTP/2 static.unickshoppy.com/liquid/buyer/public/js/init.js
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type ASCII text, with very long lines (1183), with no line terminators
Hash 9622fc70a9398c1937fd158887d0ec0e
ac4ffc34c5517ef63fdc10d226d85d39d06f3c93
1909501f258b01cc233d1c28f3953ec4e78d7e4ca5ce9e9300563faa9c6dd38c
Analyzer Verdict Alert fortinet Phishing
GET /liquid/buyer/public/js/init.js HTTP/1.1
Host: static.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 634
strict-transport-security: max-age=5184000; includeSubDomains
date: Tue, 06 Sep 2022 23:50:17 GMT
last-modified: Mon, 05 Sep 2022 09:25:11 GMT
vary: Accept-Encoding
etag: W/"6315c077-49f"
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
content-encoding: gzip
ali-swift-global-savetime: 1662508217
via: cache10.l2de2[0,0,200-0,H], cache14.l2de2[1,0], cache4.se1[0,7,200-0,H], cache5.se1[9,0]
age: 169136
x-cache: HIT TCP_HIT dirn:11:238323517
x-swift-savetime: Wed, 07 Sep 2022 00:20:36 GMT
x-swift-cachetime: 257381
timing-allow-origin: *
eagleid: 2ff62c9916626773533183447e
X-Firefox-Spdy: h2
static.unickshoppy.com/liquid/buyer/public/img/sprite.png
47.246.44.211200 OK 3.0 kB URL HTTP/2 static.unickshoppy.com/liquid/buyer/public/img/sprite.png
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type RIFF (little-endian) data, Web/P image\012- data
Hash dcc51358b1a26b717ff3420b6ff509a7
c7fea171b6062eff8200940630e15908ca543205
9d840d15d4257a35de361641dc329b8338f69a0d01f42c7c9e6423519425282e
GET /liquid/buyer/public/img/sprite.png HTTP/1.1
Host: static.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://static.unickshoppy.com/liquid/buyer/public/css/styles.min.css?t=20220907141029
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/webp
content-length: 3040
strict-transport-security: max-age=5184000; includeSubDomains
date: Wed, 07 Sep 2022 17:30:27 GMT
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
etag: "6315c088-1d19"
last-modified: Mon, 05 Sep 2022 09:25:28 GMT
access-control-max-age: 86400
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
accept-ranges: bytes
ali-swift-global-savetime: 1662571827
via: cache11.l2de2[0,0,200-0,H], cache15.l2de2[2,0], cache7.se1[0,0,200-0,H], cache5.se1[2,0]
age: 105526
x-cache: HIT TCP_HIT dirn:11:461562691
x-swift-savetime: Wed, 07 Sep 2022 19:30:55 GMT
x-swift-cachetime: 251972
timing-allow-origin: *
eagleid: 2ff62c9916626773534243502e
X-Firefox-Spdy: h2
static.unickshoppy.com/liquid/buyer/public/css/font/Roboto-Light.ttf
47.246.44.211200 OK 167 kB URL HTTP/2 static.unickshoppy.com/liquid/buyer/public/css/font/Roboto-Light.ttf
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type TrueType Font data, 18 tables, 1st "GDEF", 15 names, Microsoft, language 0x409, Copyright 2011 Google Inc. All Rights Reserved.Roboto LightRegularVersion 2.137; 2017Roboto-Ligh\012- data
Size 167 kB (167000 bytes)
Hash 6090d256d88dcd7f0244eaa4a3eafbba
51dbae4543aaa10096e344e48fcffe468bd314a9
2835b358aaaa329f9a4bb47936c96687202ca24774a2e1c78251a596f2b01fa5
Analyzer Verdict Alert fortinet Phishing
GET /liquid/buyer/public/css/font/Roboto-Light.ttf HTTP/1.1
Host: static.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://www.optionaneity.com
Connection: keep-alive
Referer: https://static.unickshoppy.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: application/octet-stream
content-length: 167000
strict-transport-security: max-age=5184000; includeSubDomains
date: Tue, 06 Sep 2022 16:14:04 GMT
last-modified: Mon, 05 Sep 2022 09:25:28 GMT
etag: "6315c088-28c58"
access-control-allow-origin: https://www.sweetgolden.shop
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
accept-ranges: bytes
ali-swift-global-savetime: 1662480844
via: cache25.l2de2[0,0,200-0,H], cache26.l2de2[1,0], cache26.l2de2[1,0], cache5.se1[0,0,200-0,H], cache5.se1[2,0]
age: 196509
x-cache: HIT TCP_HIT dirn:1:205872461
x-swift-savetime: Tue, 06 Sep 2022 23:33:14 GMT
x-swift-cachetime: 232850
timing-allow-origin: *
eagleid: 2ff62c9916626773534253503e
X-Firefox-Spdy: h2
www.paypal.com/tagmanager/pptm.js?id=www.optionaneity.com&source=checkoutjs&t=xo&v=4.0.336
151.101.193.21200 OK 4.3 kB URL HTTP/2 www.paypal.com/tagmanager/pptm.js?id=www.optionaneity.com&source=checkoutjs&t=xo&v=4.0.336
IP 151.101.193.21:0
File type ASCII text, with very long lines (12084), with no line terminators
Hash da1b94bdea2eb1769e74df6fbd2c1a2e
4c7f6b5318ffd3d36b6b431f4bd113b55d8f14a7
45cc4e008a654e4ef3f3b3eb0ca92f52ade64445039059b5395b11734b033be4
GET /tagmanager/pptm.js?id=www.optionaneity.com&source=checkoutjs&t=xo&v=4.0.336 HTTP/1.1
Host: www.paypal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-expose-headers: Server-Timing
cache-control: public, max-age=3600
content-security-policy: default-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline'; script-src 'nonce-4SVfJ4vYWW+J4cAfuxEBLqAr2QP7Y41G/faEuZb2d9m75nPE' 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' 'unsafe-eval'; img-src * data:; object-src 'none'; font-src 'self' https://*.paypalobjects.com https://*.paypal.com; connect-src 'self' https://*.paypal.com https://*.paypalobjects.com https://nexus.ensighten.com https://*.google-analytics.com 'unsafe-inline' https://*.qualtrics.com; form-action 'self' https://*.paypal.com; base-uri 'self' https://*.paypal.com; upgrade-insecure-requests;; report-uri https://www.paypal.com/csplog/api/log/csp; frame-src 'self' https://*.paypal.com https://*.paypalobjects.com 'unsafe-inline' https://*.qualtrics.com;
content-type: application/x-javascript; charset=utf-8
etag: W/"2f34-zQQ0FVqIlbkbuS4WgpPW/nUPXC4"
paypal-debug-id: f123325faa80f
traceparent: 00-0000000000000000000f123325faa80f-b76c4d4be865f285-01
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
x-xss-protection: 1; mode=block
dc: ccg11-origin-www-1.paypal.com
content-encoding: gzip
via: 1.1 varnish, 1.1 varnish
accept-ranges: bytes
date: Thu, 08 Sep 2022 22:49:13 GMT
age: 0
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn11551-HHN, cache-bma1656-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1662677354.590168,VS0,VE297
vary: Accept-Encoding
server-timing: "traceparent;desc="00-0000000000000000000f123325faa80f-a4acf679aa2b9fc7-01"";content-encoding;desc="gzip",x-cdn;desc="fastly"
content-length: 4299
X-Firefox-Spdy: h2
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3501
Expires: Thu, 08 Sep 2022 23:47:34 GMT
Date: Thu, 08 Sep 2022 22:49:13 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash e0fbe5627b19e9ad7ad4d40c96514ae9
d9d361271987c5947d96ddacc67efb3f3a32bbd3
48b4321f3bda8fd67c5bc75f98b0dfe6df2bfda8dcf5e708aecd47270ae03217
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "48B4321F3BDA8FD67C5BC75F98B0DFE6DF2BFDA8DCF5E708AECD47270AE03217"
Last-Modified: Wed, 07 Sep 2022 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3501
Expires: Thu, 08 Sep 2022 23:47:34 GMT
Date: Thu, 08 Sep 2022 22:49:13 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb358d56b-1529-49fb-acad-abce67fe4e95.jpeg
34.120.237.76200 OK 10 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb358d56b-1529-49fb-acad-abce67fe4e95.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash e2d5547c8b8cf6288807524542d73c8e
05927ada9355556ab3911fb81f243d8649593cb9
af5f55648469bee39b7eb9cb35264298a14b3337a207897d0cb92efadfd5901e
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fb358d56b-1529-49fb-acad-abce67fe4e95.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10455
x-amzn-requestid: bedd2292-8bde-409c-9d4f-f3ab16b925d6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YEN37GOyoAMFYAg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6317f698-08445d9f0015ca331f58caaa;Sampled=0
x-amzn-remapped-date: Wed, 07 Sep 2022 01:40:40 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: ScmF5OcUTgU0k8UJxDzPOzqNTmapptzIRw5dQAGDjjZIHZJqPJX2kg==
via: 1.1 8f22423015641505b8c857a37450d6c0.cloudfront.net (CloudFront), 1.1 ca66331b52971370c4e54619e8a952cc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 21:50:37 GMT
age: 3516
etag: "05927ada9355556ab3911fb81f243d8649593cb9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93fb3e60-781f-438a-8602-d6632160df67.jpeg
34.120.237.76200 OK 4.0 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93fb3e60-781f-438a-8602-d6632160df67.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 90fc2601a0ca4581ebc880dd11408bda
b50cbeafea3f65610cff83f3946c2452fa70e191
6f72acb93226b6772a6afb6893d95379a448cda4a3e86f8a88e7f05526c1eea4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F93fb3e60-781f-438a-8602-d6632160df67.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 4014
x-amzn-requestid: 28c3042e-24ab-44c5-b838-f8d1c0c5955e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YIqqKEyUIAMFbgA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6319be40-3a9997121c9585884eecf245;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 10:04:48 GMT
x-amz-cf-pop: SFO5-C3, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: f3y4zXS-wPdMpzxU9s8H6beHv32vsjEYNI7-7kPN9INaLWjfymgg3g==
via: 1.1 2ac6b2644462a8466362b046856a127e.cloudfront.net (CloudFront), 1.1 9b21fd56256eda6d1379e32829c4c446.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 21:57:56 GMT
age: 42352
etag: "b50cbeafea3f65610cff83f3946c2452fa70e191"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/config.js?sdkid=&hostname=www.optionaneity.com
104.84.152.241200 OK 26 kB URL HTTP/2 analytics.tiktok.com/i18n/pixel/config.js?sdkid=&hostname=www.optionaneity.com
IP 104.84.152.241:0
ASN #20940 Akamai International B.V.
Hash bdc03de704dbe38883a6ed30a0e3375e
203ce73ad4aec37f58c7eda735c55f3f150e7588
9e99116f2400ef4871a376f0896bcb54262d88190176462807666d97825930fa
GET /i18n/pixel/config.js?sdkid=&hostname=www.optionaneity.com HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2022090822491308A221C0F0938FCB3FED
x-tt-trace-host: 014c3d3a48b720cad047ee4725ef00c61ea9100f488fbe968d3522ee3004f59590f7226f50b243b35645beb83734958a4ea3788367be670f2640249fdcb521fb47f4023e558aec83795862cdbad7d4e735
content-encoding: gzip
expires: Thu, 08 Sep 2022 22:49:13 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 08 Sep 2022 22:49:13 GMT
x-cache: TCP_MISS from a104-84-152-237.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
vary: Accept-Encoding
set-cookie: _ttp=2EVObCJnhS1drwpSCXQtCz67Hx7; Path=/; Domain=tiktok.com; Max-Age=33696000; Secure; SameSite=None
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=14, cdn-cache; desc=MISS, edge; dur=0, origin; dur=107
x-origin-response-time: 107,104.84.152.237
x-akamai-request-id: 5aaca458
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9009587-828b-4a7a-8b84-f28d4b93cdef.jpeg
34.120.237.76200 OK 7.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9009587-828b-4a7a-8b84-f28d4b93cdef.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 60fa03262bb3728f24a4c7a8177ec788
09dcbdc6043f01dd56920cca3ce3920d0d07b795
e7448f186933f9848f1d55f0e8dba593918846d02fb9cc3a7cd86d69b96a7fde
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fd9009587-828b-4a7a-8b84-f28d4b93cdef.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7515
x-amzn-requestid: bb6a7928-9bdc-44e7-8478-b415bc504343
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YJu0bGYdoAMF5jQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631a2b4f-208339fd72e62dff4a2ba339;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 17:50:07 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: UaU9GK4lcCuAN2WghBDa7f-21dRTA4Fh1tlAmGFMKh4wQOGZlKdmOw==
via: 1.1 4d7fa73f804f1c93f20cfc24c4b1266e.cloudfront.net (CloudFront), 1.1 e77661e211afe9242e85e573f12d5534.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 21:46:49 GMT
etag: "09dcbdc6043f01dd56920cca3ce3920d0d07b795"
content-type: image/jpeg
age: 3744
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc935f3d1-f1ad-4753-8e03-988c366f974f.jpeg
34.120.237.76200 OK 7.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc935f3d1-f1ad-4753-8e03-988c366f974f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 356d258ee8fe7dd3a49d6e910ad4e6d1
69582548ae31d56ebd4a140e000ae6ab1a6a399b
32394386d1762e03f6ee1cbc5c6ed40a0a745745da646d8879fc8b59a089b887
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Fc935f3d1-f1ad-4753-8e03-988c366f974f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7787
x-amzn-requestid: 3dba260f-c87d-40ac-b840-ec3ce2f315d5
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YKRjNF5RIAMFncA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631a62e1-5e73894d42ccca495868d250;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 21:47:13 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Hit from cloudfront
x-amz-cf-id: ijCbDoTKkmXPqC1EGt5-ONwGWHMB83kluoTiIoGIDhFr6byq1k_QEA==
via: 1.1 efe54e8b68e074d39b2ecd249f85100a.cloudfront.net (CloudFront), 1.1 a8e5d5aeee6eacca5c379e5059b1f68c.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 22:02:44 GMT
age: 2789
etag: "69582548ae31d56ebd4a140e000ae6ab1a6a399b"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fe67ce8-0dbe-46fe-b313-0e2a78618af6.jpeg
34.120.237.76200 OK 8.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fe67ce8-0dbe-46fe-b313-0e2a78618af6.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6b210b0740e1eb42fcbd3aba71ceb8b4
467e3fee064805e08a9e6e3c86b195f6aa68c433
d5ecaf9ae06ff984c86bee5005c534e3c65255e6faeb5c3837fa601740a2c5ae
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F6fe67ce8-0dbe-46fe-b313-0e2a78618af6.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8308
x-amzn-requestid: 3610a034-9015-43b5-9ff7-321d7629e77d
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: YKQ6-EiIIAMFaJg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-631a61df-23a8a01717f7e19d5fd6233b;Sampled=0
x-amzn-remapped-date: Thu, 08 Sep 2022 21:42:55 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P2
x-cache: Miss from cloudfront
x-amz-cf-id: uMVbhDzCFBjAYRJsfox5aEW5HJ9muukQRjIJDVXMp_y48cposGzt-w==
via: 1.1 030fe0607711293dda988e571617a9f2.cloudfront.net (CloudFront), 1.1 76dcc62b68091cc715d50b5017be77fc.cloudfront.net (CloudFront), 1.1 google
date: Thu, 08 Sep 2022 21:45:51 GMT
etag: "467e3fee064805e08a9e6e3c86b195f6aa68c433"
content-type: image/jpeg
age: 3802
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
analytics.tiktok.com/api/v2/pixel
104.84.152.241200 OK 0 B URL HTTP/2 analytics.tiktok.com/api/v2/pixel
IP 104.84.152.241:0
ASN #20940 Akamai International B.V.
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
POST /api/v2/pixel HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: text/plain;charset=UTF-8
Content-Length: 577
Origin: https://www.optionaneity.com
Connection: keep-alive
Referer: https://www.optionaneity.com/
Cookie: _ttp=2EVObCJnhS1drwpSCXQtCz67Hx7
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: nginx
content-type: application/octet-stream
content-length: 0
access-control-allow-origin: *
x-tt-logid: 2022090822491379969F8E272F0ECD3B9C
x-tt-trace-host: 014c3d3a48b720cad047ee4725ef00c61ea9100f488fbe968d3522ee3004f595901065895256564b48291e8be30aac8b65b4002fe45a0579d4fabfc93bf94e498b00e704c5acf03729f016e27c8e7afe72
expires: Thu, 08 Sep 2022 22:49:14 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 08 Sep 2022 22:49:14 GMT
x-cache: TCP_MISS from a104-84-152-237.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=11, cdn-cache; desc=MISS, edge; dur=0, origin; dur=103
x-origin-response-time: 103,104.84.152.237
x-akamai-request-id: 5aaca4ee
X-Firefox-Spdy: h2
ocsp2.globalsign.com/gsorganizationvalsha2g2
104.18.21.226200 OK 1.5 kB URL HTTP/1.1 ocsp2.globalsign.com/gsorganizationvalsha2g2
IP 104.18.21.226:0
Hash a62c7abe9f911ffcd7bae82dedb901f8
6b9ce3f1d3f225639200cb326fe922fc820bc8ff
3538a76e23470916a74bde3e4a2e01de4a741d7bd115944604235c56f6eeedfd
POST /gsorganizationvalsha2g2 HTTP/1.1
Host: ocsp2.globalsign.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 79
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Date: Thu, 08 Sep 2022 22:49:14 GMT
Content-Type: application/ocsp-response
Content-Length: 1459
Connection: keep-alive
Expires: Mon, 12 Sep 2022 19:33:17 GMT
ETag: "6b9ce3f1d3f225639200cb326fe922fc820bc8ff"
Last-Modified: Thu, 08 Sep 2022 19:33:18 GMT
Cache-Control: public, no-transform, must-revalidate, s-maxage=3600
CF-Cache-Status: HIT
Age: 1570
Accept-Ranges: bytes
Vary: Accept-Encoding
Server: cloudflare
CF-RAY: 747b3c772d930b31-OSL
t.paypal.com/ts?pgrp=muse%3Ageneric%3Aanalytics%3A%3Amerchant&page=muse%3Ageneric%3Aanalytics%3A%3Amerchant%3A%3A%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&fltp=analytics-generic&pt=Optionaneity&dh=1024&dw=1280&bh=836&bw=1152&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1662677345819&g=0&completeurl=https%3A%2F%2Fwww.optionaneity.com%2F&sinfo=%7B%22partners%22%3A%7B%22ecwid%22%3A%7B%7D%2C%22bigCommerce%22%3A%7B%7D%2C%22shopify%22%3A%7B%7D%2C%22wix%22%3A%7B%7D%2C%22bigCartel%22%3A%7B%7D%7D%7D
151.101.193.35200 OK 42 B URL HTTP/2 t.paypal.com/ts?pgrp=muse%3Ageneric%3Aanalytics%3A%3Amerchant&page=muse%3Ageneric%3Aanalytics%3A%3Amerchant%3A%3A%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&fltp=analytics-generic&pt=Optionaneity&dh=1024&dw=1280&bh=836&bw=1152&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1662677345819&g=0&completeurl=https%3A%2F%2Fwww.optionaneity.com%2F&sinfo=%7B%22partners%22%3A%7B%22ecwid%22%3A%7B%7D%2C%22bigCommerce%22%3A%7B%7D%2C%22shopify%22%3A%7B%7D%2C%22wix%22%3A%7B%7D%2C%22bigCartel%22%3A%7B%7D%7D%7D
IP 151.101.193.35:0
File type GIF image data, version 89a, 1 x 1\012- data
Hash b4682377ddfbe4e7dabfddb2e543e842
328e472721a93345801ed5533240eac2d1f8498c
6d8ba81d1b60a18707722a1f2b62dad48a6acced95a1933f49a68b5016620b93
GET /ts?pgrp=muse%3Ageneric%3Aanalytics%3A%3Amerchant&page=muse%3Ageneric%3Aanalytics%3A%3Amerchant%3A%3A%3A&tsrce=tagmanagernodeweb&comp=tagmanagernodeweb&sub_component=analytics&s=ci&fltp=analytics-generic&pt=Optionaneity&dh=1024&dw=1280&bh=836&bw=1152&cd=24&sh=1024&sw=1280&v=NA&rosetta_language=en-US%2Cen&e=im&t=1662677345819&g=0&completeurl=https%3A%2F%2Fwww.optionaneity.com%2F&sinfo=%7B%22partners%22%3A%7B%22ecwid%22%3A%7B%7D%2C%22bigCommerce%22%3A%7B%7D%2C%22shopify%22%3A%7B%7D%2C%22wix%22%3A%7B%7D%2C%22bigCartel%22%3A%7B%7D%7D%7D HTTP/1.1
Host: t.paypal.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: max-age=0, no-cache, no-store, must-revalidate
content-type: image/gif
expires: Thu, 08 Sep 2022 22:49:14 GMT
p3p: policyref="https://t.paypal.com/w3c/p3p.xml",CP="CAO IND OUR SAM UNI STA COR COM"
paypal-debug-id: d5848967c5b7a
pragma: no-cache
set-cookie: ts=vreXpYrS%3D1757371754%26vteXpYrS%3D1662679154%26vr%3D1f4b06501830aa5aed87ae7affffffff%26vt%3D1f4b06501830aa5aed87ae7afffffffe; Expires=Mon, 08 Sep 2025 22:49:14 GMT; Domain=.paypal.com; Path=/; Secure; HttpOnly
ts_c=vr%3D1f4b06501830aa5aed87ae7affffffff%26vt%3D1f4b06501830aa5aed87ae7afffffffe; Expires=Mon, 08 Sep 2025 22:49:14 GMT; Domain=.paypal.com; Path=/; Secure
traceparent: 00-0000000000000000000d5848967c5b7a-9b8b54448dfb24e3-01
accept-ranges: bytes
via: 1.1 varnish, 1.1 varnish
date: Thu, 08 Sep 2022 22:49:14 GMT
strict-transport-security: max-age=63072000; includeSubDomains; preload
x-served-by: cache-hhn4049-HHN, cache-bma1635-BMA
x-cache: MISS, MISS
x-cache-hits: 0, 0
x-timer: S1662677354.977609,VS0,VE165
server-timing: content-encoding;desc="",x-cdn;desc="fastly"
timing-allow-origin: *
content-length: 42
X-Firefox-Spdy: h2
cdn.unickshoppy.com/uploader/d17ad8526434aae2e0bf560a94bdb0b8.jpg
47.246.44.211200 OK 16 kB URL HTTP/2 cdn.unickshoppy.com/uploader/d17ad8526434aae2e0bf560a94bdb0b8.jpg
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type RIFF (little-endian) data, Web/P image\012- data
Hash 5488e3b0016c0906ee9c89abc335a528
8181d9a5e73f530ffa97e87f101eacbaf3c2c72d
4004f98eee2dad64d75d5e26c6f82997baef8b086895ee1964d8a2cd6fdd9eec
GET /uploader/d17ad8526434aae2e0bf560a94bdb0b8.jpg HTTP/1.1
Host: cdn.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/webp
content-length: 15510
strict-transport-security: max-age=5184000
x-oss-hash-crc64ecma: 12691961054526107383
x-oss-cdn-auth: success
date: Thu, 08 Sep 2022 22:49:14 GMT
x-oss-request-id: 631A71698BA11E39319E1E30
content-md5: 7EPdh5st7YNasLyIeK6j9A==
etag: "EC43DD879B2DED835AB0BC8878AEA3F4"
x-oss-storage-class: Standard
x-oss-server-time: 75
last-modified: Thu, 28 Jul 2022 05:51:11 GMT
x-oss-object-type: Normal
accept-ranges: bytes
ali-swift-global-savetime: 1662677354
via: cache4.l2de2[1061,1061,200-0,M], cache26.l2de2[1063,0], cache1.se1[1095,1095,200-0,M], cache5.se1[1098,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 08 Sep 2022 22:49:14 GMT
x-swift-cachetime: 259200
timing-allow-origin: *
eagleid: 2ff62c9916626773533193452e
X-Firefox-Spdy: h2
static.unickshoppy.com/liquid/buyer/public/img/payment/visa_blue.svg
47.246.44.211200 OK 2.0 kB URL HTTP/2 static.unickshoppy.com/liquid/buyer/public/img/payment/visa_blue.svg
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type SVG Scalable Vector Graphics image\012- , ASCII text, with very long lines (4100)
Hash 3b33244f1b0d28751e33edb2c2d22e61
23d897bae4bd8f258fb56104e2ee4efeae15a8cf
bf32fe0191ff499fff0fe205a0b1c6f6da1d2edbc1cc8197b0e6ccbc1ff1ee10
Analyzer Verdict Alert fortinet Phishing
GET /liquid/buyer/public/img/payment/visa_blue.svg HTTP/1.1
Host: static.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/svg+xml
content-length: 1985
strict-transport-security: max-age=5184000; includeSubDomains
date: Thu, 08 Sep 2022 03:03:19 GMT
last-modified: Mon, 05 Sep 2022 09:25:28 GMT
vary: Accept-Encoding
etag: W/"6315c088-109a"
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
content-encoding: gzip
ali-swift-global-savetime: 1662606199
via: cache4.l2de2[0,0,200-0,H], cache3.l2de2[1,0], cache3.l2de2[2,0], cache8.se1[1709,1709,200-0,M], cache5.se1[1717,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 08 Sep 2022 22:49:14 GMT
x-swift-cachetime: 188045
timing-allow-origin: *
eagleid: 2ff62c9916626773531793352e
X-Firefox-Spdy: h2
at.alicdn.com/t/font_871426_ou7555ftk8o.woff2?t=1631848450369
47.246.44.251200 OK 43 kB URL HTTP/2 at.alicdn.com/t/font_871426_ou7555ftk8o.woff2?t=1631848450369
IP 47.246.44.251:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type Web Open Font Format (Version 2), TrueType, length 43280, version 1.0\012- data
Hash ae0587c076cf55a0936a9efcec1628aa
a26daeb01236052b97b3fdf07ba09716404c3428
7d81f3c3e1c65379bfdec8620a41bd87581d45677316e57becc16692b8737d3a
GET /t/font_871426_ou7555ftk8o.woff2?t=1631848450369 HTTP/1.1
Host: at.alicdn.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.optionaneity.com
Connection: keep-alive
Referer: https://static.unickshoppy.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: Tengine
content-type: font/woff2
content-length: 43280
date: Thu, 08 Sep 2022 22:49:14 GMT
x-oss-request-id: 631A716A9628C333363B5236
vary: Origin
accept-ranges: bytes
etag: "AE0587C076CF55A0936A9EFCEC1628AA"
last-modified: Sat, 25 Dec 2021 04:51:23 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 16904730654307218689
x-oss-storage-class: Standard
cache-control: max-age=63072000
content-md5: rgWHwHbPVaCTap787BYoqg==
x-oss-server-time: 4
ali-swift-global-savetime: 1662677354
via: cache35.l2us1[455,455,200-0,M], cache30.l2us1[457,0], cache7.se1[653,652,200-0,M], cache3.se1[654,0]
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 08 Sep 2022 22:49:14 GMT
x-swift-cachetime: 31104000
access-control-allow-origin: *
timing-allow-origin: *
eagleid: 2ff62c9716626773540941151e
X-Firefox-Spdy: h2
cdn.unickshoppy.com/uploader/997107fa2073d0dd75f602f1da4966a8.jpg
47.246.44.211200 OK 18 kB URL HTTP/2 cdn.unickshoppy.com/uploader/997107fa2073d0dd75f602f1da4966a8.jpg
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type RIFF (little-endian) data, Web/P image\012- data
Hash 55203e52abfb179174854e83d0b2625f
460463e91575d3646ecfa47ab6c43bd91697ae33
045fc1e81ae627c11ac0b13e185cf0b3fdf1164df72024c79bdfa7e9f2fe2630
GET /uploader/997107fa2073d0dd75f602f1da4966a8.jpg HTTP/1.1
Host: cdn.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/webp
content-length: 17716
strict-transport-security: max-age=5184000
x-oss-hash-crc64ecma: 3507155010432699768
x-oss-cdn-auth: success
date: Thu, 08 Sep 2022 22:49:15 GMT
x-oss-request-id: 631A716B613553303895E062
content-md5: HK+cCoqWysmaZAeX543R5g==
etag: "1CAF9C0A8A96CAC99A640797E78DD1E6"
x-oss-storage-class: Standard
x-oss-server-time: 41
last-modified: Sat, 23 Jul 2022 09:03:55 GMT
x-oss-object-type: Normal
accept-ranges: bytes
ali-swift-global-savetime: 1662677355
via: cache8.l2de2[679,679,200-0,M], cache10.l2de2[680,0], cache4.se1[2284,2283,200-0,M], cache5.se1[2287,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 08 Sep 2022 22:49:15 GMT
x-swift-cachetime: 259200
timing-allow-origin: *
eagleid: 2ff62c9916626773533193451e
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f1e86d2ddbc9e712bef1dad1b5166687
a7708dcb8822d53706beb0c6a5feb021eab57d9d
946849b7035bc3e384c8323c7bbb73ecf182baf5d9b3214ebc78359a6957f3ad
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2818
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 22:49:15 GMT
Last-Modified: Thu, 08 Sep 2022 22:02:17 GMT
Server: ECS (ska/F70E)
X-Cache: HIT
Content-Length: 471
connect.facebook.net/en_US/fbevents.js
31.13.72.12200 OK 27 kB URL HTTP/2 connect.facebook.net/en_US/fbevents.js
IP 31.13.72.12:0
File type ASCII text, with very long lines (64348)
Hash 8e7e24fb3539746aa8b869558f589615
d8086d86bbd5cfacc3b6a5ef14aa917830e137dd
7304497ee417a664bdea67d7307ca36a36013556b927c3ea5bca6c04b66236ef
GET /en_US/fbevents.js HTTP/1.1
Host: connect.facebook.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
vary: Accept-Encoding
content-encoding: gzip
content-type: application/x-javascript; charset=utf-8
content-security-policy: default-src facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com data: blob: 'self';script-src *.fbcdn.net *.facebook.net 'unsafe-inline' 'unsafe-eval' blob: data: 'self';style-src data: blob: 'unsafe-inline' facebook.net *.facebook.net fbcdn.net *.fbcdn.net fbsbx.com *.fbsbx.com;connect-src *.fbcdn.net *.facebook.net wss://*.fbcdn.net attachment.fbsbx.com blob: 'self';block-all-mixed-content;upgrade-insecure-requests;report-uri https://www.facebook.com/csp/reporting/?m=c&minimize=0;
x-fb-rlafr: 0
document-policy: force-load-at-top
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
pragma: public
cache-control: public, max-age=1200
expires: Sat, 01 Jan 2000 00:00:00 GMT
x-content-type-options: nosniff
x-xss-protection: 0
x-frame-options: DENY
strict-transport-security: max-age=31536000; preload; includeSubDomains
x-fb-debug: EQzbVX9ztyjRUHhOglCqd1uV9BT6d7qhBX2nk84Be0aLIQsf1nKEDLp5HGmlE8Rh/WOVZpnd4uEw+7F3NVqN3w==
content-length: 26737
x-fb-trip-id: 1904183273
date: Thu, 08 Sep 2022 22:49:15 GMT
alt-svc: h3=":443"; ma=86400,h3-29=":443"; ma=86400
X-Firefox-Spdy: h2
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash f1e86d2ddbc9e712bef1dad1b5166687
a7708dcb8822d53706beb0c6a5feb021eab57d9d
946849b7035bc3e384c8323c7bbb73ecf182baf5d9b3214ebc78359a6957f3ad
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 5526
Cache-Control: 'max-age=158059'
Content-Type: application/ocsp-response
Date: Thu, 08 Sep 2022 22:49:15 GMT
Last-Modified: Thu, 08 Sep 2022 21:17:09 GMT
Server: ECS (ska/F70D)
X-Cache: HIT
Content-Length: 471
cdn.unickshoppy.com/uploader/e27381b12bb18eaaa0e0f7a6a9611a58ddbc2f3d.jpg
47.246.44.211200 OK 5.8 kB URL HTTP/2 cdn.unickshoppy.com/uploader/e27381b12bb18eaaa0e0f7a6a9611a58ddbc2f3d.jpg
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type RIFF (little-endian) data, Web/P image\012- data
Hash fa2e562d49ee241489fb674411c10ef3
8e64872a420247fe70a81dfb39a6d44ce9775137
da43f3ef3a397a92b60e42f46eee9dc7dd4e9368827ffefa6e7a605c9314781a
GET /uploader/e27381b12bb18eaaa0e0f7a6a9611a58ddbc2f3d.jpg HTTP/1.1
Host: cdn.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/webp
content-length: 5820
strict-transport-security: max-age=5184000
content-disposition: inline; filename="1658987488-6"
date: Thu, 08 Sep 2022 22:49:15 GMT
x-oss-hash-crc64ecma: 10703475623725261444
x-oss-cdn-auth: success
x-oss-request-id: 631A716BE2741F32343B413A
etag: "86AC91763C27F200492F2D6E5F62A711"
x-oss-storage-class: Standard
x-oss-server-time: 49
x-oss-object-type: Normal
content-md5: hqyRdjwn8gBJLy1uX2KnEQ==
last-modified: Thu, 28 Jul 2022 05:51:28 GMT
accept-ranges: bytes
ali-swift-global-savetime: 1662677355
via: cache23.l2de2[351,350,200-0,M], cache21.l2de2[352,0], cache8.se1[374,374,200-0,M], cache5.se1[376,0]
x-cache: MISS TCP_MISS dirn:1:196236413
x-swift-savetime: Thu, 08 Sep 2022 22:49:15 GMT
x-swift-cachetime: 259200
timing-allow-origin: *
eagleid: 2ff62c9916626773555884417e
X-Firefox-Spdy: h2
cdn.unickshoppy.com/uploader/dfe8a3ddeb30725618eae68cc34d76b5c9eb4143.png
47.246.44.211200 OK 11 MB URL HTTP/2 cdn.unickshoppy.com/uploader/dfe8a3ddeb30725618eae68cc34d76b5c9eb4143.png
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type PNG image data, 3605 x 3245, 8-bit/color RGB, non-interlaced\012- data
Size 11 MB (11134725 bytes)
Hash d9ed885295d161b13f3025f26d619191
e128ff7ab78ae076ca7b203713547802b66d50dd
0fa21db320bd0100c73e092f0841bfe7a57fb6744fd2fb7194756d92ee04f79a
GET /uploader/dfe8a3ddeb30725618eae68cc34d76b5c9eb4143.png HTTP/1.1
Host: cdn.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 11134725
strict-transport-security: max-age=5184000
date: Thu, 08 Sep 2022 22:49:14 GMT
x-oss-request-id: 631A716A719F773438AB792A
x-oss-cdn-auth: success
accept-ranges: bytes
etag: "D9ED885295D161B13F3025F26D619191"
last-modified: Sat, 23 Jul 2022 08:46:06 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 15898243486528410374
x-oss-storage-class: Standard
content-disposition: inline; filename="677c0509eb4c05d2b6cad1d6b114f95bee647006_677"
content-md5: 2e2IUpXRYbE/MCXybWGRkQ==
x-oss-server-time: 5
ali-swift-global-savetime: 1662677354
via: cache25.l2de2[727,726,200-0,M], cache6.l2de2[728,0], cache7.se1[771,771,200-0,M], cache5.se1[774,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 08 Sep 2022 22:49:14 GMT
x-swift-cachetime: 259200
timing-allow-origin: *
eagleid: 2ff62c9916626773533193450e
X-Firefox-Spdy: h2
cdn.unickshoppy.com/uploader/ed08ae3e98e7620b588fc39e4978adaeb318c769.png
47.246.44.211200 OK 16 MB URL HTTP/2 cdn.unickshoppy.com/uploader/ed08ae3e98e7620b588fc39e4978adaeb318c769.png
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
File type PNG image data, 4848 x 3232, 8-bit/color RGB, non-interlaced\012- data
Size 16 MB (15741141 bytes)
Hash d47e1596a0ee23d683d863e70b0f75dd
14b44c22e42c13f6ac4828d333363bd50fb4d056
66b2dcf204bcceb25753957f80b1138ca19081be4834727f9b019199b336ac51
GET /uploader/ed08ae3e98e7620b588fc39e4978adaeb318c769.png HTTP/1.1
Host: cdn.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: image/png
content-length: 15741141
strict-transport-security: max-age=5184000
date: Thu, 08 Sep 2022 22:49:15 GMT
x-oss-request-id: 631A716B2CAF363839B60D89
x-oss-cdn-auth: success
accept-ranges: bytes
etag: "D47E1596A0EE23D683D863E70B0F75DD"
last-modified: Sat, 23 Jul 2022 08:45:58 GMT
x-oss-object-type: Normal
x-oss-hash-crc64ecma: 5674626614731610044
x-oss-storage-class: Standard
content-disposition: inline; filename="677486673f03781ce6d5b06bc6740f0f68393423_677"
content-md5: 1H4VlqDuI9aD2GPnCw913Q==
x-oss-server-time: 8
ali-swift-global-savetime: 1662677355
via: cache9.l2de2[702,701,200-0,M], cache19.l2de2[704,0], cache1.se1[2309,2309,200-0,M], cache5.se1[2311,0]
age: 0
x-cache: MISS TCP_MISS dirn:-2:-2
x-swift-savetime: Thu, 08 Sep 2022 22:49:15 GMT
x-swift-cachetime: 259200
timing-allow-origin: *
eagleid: 2ff62c9916626773533183448e
X-Firefox-Spdy: h2
static.unickshoppy.com/liquid/buyer/public/js/plug/vendor.min.js?t=20220907141029
47.246.44.211200 OK 0 B URL HTTP/2 static.unickshoppy.com/liquid/buyer/public/js/plug/vendor.min.js?t=20220907141029
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Analyzer Verdict Alert fortinet Phishing
GET /liquid/buyer/public/js/plug/vendor.min.js?t=20220907141029 HTTP/1.1
Host: static.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 16647
strict-transport-security: max-age=5184000; includeSubDomains
date: Wed, 07 Sep 2022 06:10:35 GMT
last-modified: Mon, 05 Sep 2022 09:25:17 GMT
vary: Accept-Encoding
etag: W/"6315c07d-dfcc"
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
content-encoding: gzip
ali-swift-global-savetime: 1662531035
via: cache12.l2de2[0,0,200-0,H], cache10.l2de2[1,0], cache8.se1[0,0,200-0,H], cache5.se1[5,0]
age: 146318
x-cache: HIT TCP_HIT dirn:4:467807451
x-swift-savetime: Wed, 07 Sep 2022 06:41:06 GMT
x-swift-cachetime: 257369
timing-allow-origin: *
eagleid: 2ff62c9916626773531823357e
X-Firefox-Spdy: h2
static.unickshoppy.com/liquid/buyer/public/js/lib/index.js?t=20220907141029
47.246.44.211200 OK 0 B URL HTTP/2 static.unickshoppy.com/liquid/buyer/public/js/lib/index.js?t=20220907141029
IP 47.246.44.211:0
ASN #24429 Zhejiang Taobao Network Co.,Ltd
Analyzer Verdict Alert fortinet Phishing
GET /liquid/buyer/public/js/lib/index.js?t=20220907141029 HTTP/1.1
Host: static.unickshoppy.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
server: Tengine
content-type: application/javascript
content-length: 161700
strict-transport-security: max-age=5184000; includeSubDomains
date: Wed, 07 Sep 2022 06:10:35 GMT
last-modified: Mon, 05 Sep 2022 09:25:26 GMT
vary: Accept-Encoding
etag: W/"6315c086-c017c"
access-control-allow-credentials: true
access-control-allow-methods: GET, POST, PUT, DELETE, OPTIONS
access-control-allow-headers: DNT,X-CustomHeader,Keep-Alive,User-Agent,X-Requested-With,If-Modified-Since,Cache-Control,Content-Type
access-control-max-age: 86400
content-encoding: gzip
ali-swift-global-savetime: 1662531035
via: cache14.l2de2[0,0,200-0,H], cache26.l2de2[1,0], cache26.l2de2[2,0], cache2.se1[0,0,200-0,H], cache5.se1[5,0]
age: 146318
x-cache: HIT TCP_HIT dirn:11:53529582
x-swift-savetime: Wed, 07 Sep 2022 06:41:06 GMT
x-swift-cachetime: 257369
timing-allow-origin: *
eagleid: 2ff62c9916626773531833359e
X-Firefox-Spdy: h2
www.optionaneity.com/buyer/user/user-capi
47.89.213.145200 OK 0 B URL HTTP/2 www.optionaneity.com/buyer/user/user-capi
IP 47.89.213.145:0
ASN #45102 Alibaba US Technology Co., Ltd.
POST /buyer/user/user-capi HTTP/1.1
Host: www.optionaneity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Content-Length: 2
Origin: https://www.optionaneity.com
Connection: keep-alive
Referer: https://www.optionaneity.com/
Cookie: ssid=677; utuni=90f0bb4adb52e3131386d7317b2808cd18eb06efe26bd235aa0caad378f17a40a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22utuni%22%3Bi%3A1%3Bi%3A769062133%3B%7D; ga_utm={}
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 08 Sep 2022 22:49:13 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
set-cookie: ssid=677; expires=Fri, 09-Sep-2022 22:49:13 GMT; Max-Age=86400; path=/; domain=www.optionaneity.com; HttpOnly
content-encoding: gzip
X-Firefox-Spdy: h2
www.optionaneity.com/buyer/statistics/logger
47.89.213.145200 OK 0 B URL HTTP/2 www.optionaneity.com/buyer/statistics/logger
IP 47.89.213.145:0
ASN #45102 Alibaba US Technology Co., Ltd.
POST /buyer/statistics/logger HTTP/1.1
Host: www.optionaneity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Content-Length: 342
Origin: https://www.optionaneity.com
Connection: keep-alive
Referer: https://www.optionaneity.com/
Cookie: ssid=677; utuni=90f0bb4adb52e3131386d7317b2808cd18eb06efe26bd235aa0caad378f17a40a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22utuni%22%3Bi%3A1%3Bi%3A769062133%3B%7D; ga_utm={}
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 08 Sep 2022 22:49:13 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
set-cookie: ssid=677; expires=Fri, 09-Sep-2022 22:49:13 GMT; Max-Age=86400; path=/; domain=www.optionaneity.com; HttpOnly
content-encoding: gzip
X-Firefox-Spdy: h2
www.optionaneity.com/buyer/statistics/logger
47.89.213.145200 OK 0 B URL HTTP/2 www.optionaneity.com/buyer/statistics/logger
IP 47.89.213.145:0
ASN #45102 Alibaba US Technology Co., Ltd.
POST /buyer/statistics/logger HTTP/1.1
Host: www.optionaneity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Content-Length: 339
Origin: https://www.optionaneity.com
Connection: keep-alive
Referer: https://www.optionaneity.com/
Cookie: ssid=677; utuni=90f0bb4adb52e3131386d7317b2808cd18eb06efe26bd235aa0caad378f17a40a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22utuni%22%3Bi%3A1%3Bi%3A769062133%3B%7D; ga_utm={}
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 08 Sep 2022 22:49:13 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
set-cookie: ssid=677; expires=Fri, 09-Sep-2022 22:49:13 GMT; Max-Age=86400; path=/; domain=www.optionaneity.com; HttpOnly
content-encoding: gzip
X-Firefox-Spdy: h2
www.optionaneity.com/
47.89.213.145200 OK 0 B IP 47.89.213.145:0
ASN #45102 Alibaba US Technology Co., Ltd.
GET / HTTP/1.1
Host: www.optionaneity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 200 OK
server: openresty
date: Thu, 08 Sep 2022 22:49:12 GMT
content-type: text/html; charset=UTF-8
vary: Accept-Encoding
set-cookie: ssid=677; expires=Fri, 09-Sep-2022 22:49:12 GMT; Max-Age=86400; path=/; domain=www.optionaneity.com; HttpOnly
utuni=90f0bb4adb52e3131386d7317b2808cd18eb06efe26bd235aa0caad378f17a40a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22utuni%22%3Bi%3A1%3Bi%3A769062133%3B%7D; expires=Sat, 08-Oct-2022 22:49:12 GMT; Max-Age=2592000; path=/; domain=www.optionaneity.com; HttpOnly
content-encoding: gzip
X-Firefox-Spdy: h2
analytics.tiktok.com/i18n/pixel/events.js?sdkid=&lib=ttq
104.84.152.241200 OK 0 B URL HTTP/2 analytics.tiktok.com/i18n/pixel/events.js?sdkid=&lib=ttq
IP 104.84.152.241:0
ASN #20940 Akamai International B.V.
GET /i18n/pixel/events.js?sdkid=&lib=ttq HTTP/1.1
Host: analytics.tiktok.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://www.optionaneity.com/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-type: application/javascript; charset=UTF-8
x-tt-logid: 2022090822491344F5AAB02F3A1DC6CD40
x-tt-trace-host: 014c3d3a48b720cad047ee4725ef00c61ea9100f488fbe968d3522ee3004f595900a8cfb1d50f973275516fb968c405bc5344f2abbe1b296ca34603a571a3cbb790080344fa2921e59e2d26ad336e4c4e5
content-encoding: gzip
expires: Thu, 08 Sep 2022 22:49:13 GMT
cache-control: max-age=0, no-cache, no-store
pragma: no-cache
date: Thu, 08 Sep 2022 22:49:13 GMT
x-cache: TCP_MISS from a104-84-152-237.deploy.akamaitechnologies.com (AkamaiGHost/10.9.3-43949849) (-)
vary: Accept-Encoding
x-tt-trace-tag: id=16;cdn-cache=miss;type=dyn
server-timing: inner; dur=3, cdn-cache; desc=MISS, edge; dur=0, origin; dur=98
x-origin-response-time: 98,104.84.152.237
x-akamai-request-id: 5aaca374
X-Firefox-Spdy: h2
www.optionaneity.com/sail/currency/get-currency-list
47.89.213.145200 OK 0 B URL HTTP/2 www.optionaneity.com/sail/currency/get-currency-list
IP 47.89.213.145:0
ASN #45102 Alibaba US Technology Co., Ltd.
POST /sail/currency/get-currency-list HTTP/1.1
Host: www.optionaneity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Origin: https://www.optionaneity.com
Connection: keep-alive
Referer: https://www.optionaneity.com/
Cookie: ssid=677; utuni=90f0bb4adb52e3131386d7317b2808cd18eb06efe26bd235aa0caad378f17a40a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22utuni%22%3Bi%3A1%3Bi%3A769062133%3B%7D; ga_utm={}
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
Content-Length: 0
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 08 Sep 2022 22:49:13 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
set-cookie: ssid=677; expires=Fri, 09-Sep-2022 22:49:13 GMT; Max-Age=86400; path=/; domain=www.optionaneity.com; HttpOnly
content-encoding: gzip
X-Firefox-Spdy: h2
www.optionaneity.com/buyer/cart
47.89.213.145200 OK 0 B URL HTTP/2 www.optionaneity.com/buyer/cart
IP 47.89.213.145:0
ASN #45102 Alibaba US Technology Co., Ltd.
POST /buyer/cart HTTP/1.1
Host: www.optionaneity.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json, text/javascript, */*; q=0.01
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
X-Requested-With: XMLHttpRequest
Content-Length: 94
Origin: https://www.optionaneity.com
Connection: keep-alive
Referer: https://www.optionaneity.com/
Cookie: ssid=677; utuni=90f0bb4adb52e3131386d7317b2808cd18eb06efe26bd235aa0caad378f17a40a%3A2%3A%7Bi%3A0%3Bs%3A5%3A%22utuni%22%3Bi%3A1%3Bi%3A769062133%3B%7D; ga_utm={}
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
TE: trailers
HTTP/2 200 OK
server: openresty
date: Thu, 08 Sep 2022 22:49:16 GMT
content-type: application/json; charset=UTF-8
vary: Accept-Encoding
set-cookie: ssid=677; expires=Fri, 09-Sep-2022 22:49:16 GMT; Max-Age=86400; path=/; domain=www.optionaneity.com; HttpOnly
content-encoding: gzip
X-Firefox-Spdy: h2